Privacy Policy

Home
Privacy Policy

Last Updated: 12th May 2025

At P4Health, your privacy matters. This Privacy Policy explains how we handle your personal information, including your health data, and how we maintain compliance with Australian privacy law, particularly the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth).

Key Terms

Before we begin, here are some key terms to help you understand this policy:

  • Personal Information: Any information about you that identifies you or could reasonably identify you.
  • Health Information: Information about your physical or mental health, including test results and biomarker data.
  • Third-party Providers: Labs, technology platforms, and service providers we partner with.
  • Consent: Your explicit permission to collect, use, or share your information.

We share only the necessary identifying information required for lab processing, such as name, date of birth, email, and unique kit ID.

Who Manages Your Health Data

P4Health partners with accredited diagnostic laboratories and health technology platforms to provide testing, tracking, and results visualisation services. These third-party providers are responsible for securely storing and processing your health data, including:

  • Genetic and epigenetic markers
  • Biomarker and nutrient data (e.g., via dried blood spot testing)
  • Microbiome sequencing and related analysis

These services may be hosted in Australia, Europe, or the United States. All providers are contractually bound to comply with standards such as the Australian Privacy Principles (APPs), the General Data Protection Regulation (GDPR), and/or HIPAA.

P4Health accesses this data only with your explicit consent and only via secure, encrypted platforms. We do so in order to:

  • Deliver test results in your personal dashboard
  • Provide concierge support and non-diagnostic insight
  • Help coordinate your data across platforms for a seamless experience

How We Use and Collect Personal Information

P4Health collects and stores only the information necessary to:

  • Process your orders (e.g., name, email, address)
  • Create and manage your membership and dashboard access
  • Deliver content, updates, and notifications via email
  • Facilitate access to health-related results and insights
  • Support your engagement within our community platform

We do not store clinical data, test results, or biometric health data on our own servers. Any temporary access for coordination purposes is secure, encrypted, and based on your consent.

Cookies and Website Analytics

Our website uses cookies and similar technologies to enhance your browsing experience. These include:

  • Essential cookies: Required for website functionality
  • Analytics cookies: Help us understand how visitors use our website (e.g., Google Analytics)
  • Marketing cookies: Used to deliver relevant advertisements (e.g., Facebook Pixel)

These tools do not access or store your health information. You can manage cookie preferences through your browser settings or our cookie preference centre.

AI-Powered Insights

P4Health may use artificial intelligence (AI) tools, such as our wellness companion, to help provide personalised, educational insights based on the data you authorise.

These AI tools:

  • Process your test results to provide simplified explanations in plain language 
  • Suggest potential lifestyle adjustments based on general wellness principles
  • Help unpack test results to assist your understanding
  • Do not diagnose, treat, or prevent medical conditions
  • Are not a substitute for personalised medical advice

We encourage all users to speak with a qualified healthcare professional before making decisions based on AI-generated content.

Consent & Control

You provide consent at the time of activating any P4Health service, test, or dashboard. This includes permission for P4Health to:

  • View and coordinate your test results
  • Use non-identifiable data for analytics and service improvement
  • Offer guidance via support or educational tools

You may withdraw your consent at any time by contacting us or the original provider. You may also request the deletion of any personal information we control.

Data Security

All access to sensitive information is encrypted and monitored. Our partners implement industry-leading access controls, and P4Health only accesses data when necessary to deliver services you've requested.

Security measures we implement include:

  • Encryption of data in transit and at rest
  • Secure access controls and authentication
  • Regular security assessments and updates
  • Staff training on data protection procedures

Data Breach Notification

In the unlikely event of a data breach involving your personal or health-related information, P4 Health will:

  • Promptly assess the scope and risk of the breach
  • Notify affected users without undue delay, in accordance with the Notifiable Data Breaches (NDB) scheme under the Australian Privacy Act
  • Provide guidance on protective steps you can take, and outline any remediation measures we are implementing

International Data Transfers

Some of our trusted partners and service providers may operate outside of Australia, including in the European Union and United States. Where cross-border data transfers occur:

  • We ensure appropriate safeguards are in place (e.g. standard contractual clauses or equivalent protections)
  • Only essential data is transferred and only for the purpose originally disclosed

We work only with partners who meet or exceed Australia’s data protection standards.

Children’s Privacy

P4 Health’s services are intended for users aged 18 and over. We do not knowingly collect personal or health data from individuals under 18. If you believe a child has provided us with personal information, please contact us immediately so we can remove the data.

Data Retention

We retain personal, biomarker, and platform activity data only as long as necessary to:

  • Provide our services
  • Comply with legal, regulatory, or contractual obligations
  • Resolve disputes and enforce agreements

Typical retention periods:

  • Test result data: 7 years (in line with Australian pathology and medical data norms)
  • Account and transactional data: While account remains active + 24 months
  • Cookies and analytics data: 26 months or shorter where possible

Users may request deletion of their data at any time under our Data Rights section.

Your Privacy Rights

Under Australian law, you have the right to:

  • Access personal information we hold about you
  • Request correction of inaccurate information
  • Request deletion of your personal information (where applicable)
  • Withdraw consent for future data processing
  • Lodge a complaint with the Office of the Australian Information Commissioner

To exercise these rights, please contact us using the details below.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes via email or through a notice on our website.

Contact Us

If you have questions about your privacy or want to access, correct, or delete your personal information:

Email: privacy@p4health.com.au

Note: A more detailed breakdown of our providers’ privacy practices and data handling standards is available upon request.

Legal Hub
About UsAccessibility StatementPrivacy PolicyReturns & Refunds PolicyShipping PolicyTerms & ConditionsTesting Process Summary
Goals
The LabThe Tools
Service
SubscriptionsCommunity
Copyright© 2025