Privacy policy

How we collect, use and protect the personal information you share with Inaro.

A calm shared workspace

For the Inaro team

This is a starting template. Have it reviewed by a privacy lawyer (Privacy Act 1988 + Australian Privacy Principles) before publishing, and replace bracketed text with Inaro's real details. Note: as a disability-supports provider, Inaro is covered by the Privacy Act regardless of the $3M small-business turnover threshold, and is subject to the Notifiable Data Breaches scheme.

Last updated: [date].

About this policy

This policy explains how Inaro Support ("Inaro", "we", "us") handles personal information under the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). It applies to people who use our website, participants and their families, support workers, and anyone else who interacts with us.

The information we collect

Depending on who you are and how you interact with Inaro, we may collect:

  • Contact details (name, email, phone, address);
  • NDIS plan information (for participants) — including supports funded, plan management arrangement, and your support goals;
  • Information about your health, disability or support needs, where you choose to share it;
  • Identification, employment and screening information (for support workers) — including Tax File Number, superannuation fund details, NDIS Worker Screening, Worker Orientation Module completion, qualifications and references;
  • Payroll records (for support workers) — PAYG payslips, leave balances, superannuation contributions and timesheets, processed through our payroll provider;
  • Service-Agreement and billing records (participants) — the invoices we issue to you or your plan manager for the supports we deliver;
  • Information about your use of our website (cookies, analytics) and any communications with us.

How we use it

We use personal information to provide and improve our services — including matching participants with workers, running bookings and Service Agreements, issuing invoices, running payroll for our workers, meeting our legal obligations, responding to feedback and concerns, and keeping you and your support safe.

When we share it

We share personal information only where it's necessary to provide the service or where we're legally required to. That can include sharing relevant details with a support worker so they can support you safely; with our payroll and accounting providers; with our service providers (e.g. IT and cloud hosting); with plan managers so we can be paid for the supports we deliver; with the NDIS Quality and Safeguards Commission as required by law (for example, reportable incidents); and with the Australian Taxation Office and superannuation funds as required for our employment obligations.

How we store and protect it

Information is stored on secure systems with access controls. We take reasonable steps to protect it from misuse, loss, unauthorised access, modification or disclosure.

Your rights

You can ask us what information we hold about you, ask to correct it, or ask us to delete it (subject to legal record-keeping obligations). You can also opt out of marketing communications at any time.

Contact us

If you have a question or concern about how we handle your information, please get in touch. If we can't resolve it, you can also contact the Office of the Australian Information Commissioner.