Lend A Friend

Work with us
Get Care

Lend A Friend

Work with us
Get Care

Who we are

Lend A Friend is made up of the trading trust “The Trustee for Lend A Friend Trust” with ABN 86 142 233 090 and the holding company “Lend A Friend Pty Ltd” with ABN 23 644 380 816.
The organisation can be contacted through the ‘contact us’ section on the website, or via email: [email protected]

What kind of personal information we collect and store

Lend A Friend may collect personal information and data from potential and actual Members, Staff, Contractors, Website visitors, leads etc. The types of information collected can include:

  • Names
  • Address and location
  • Contact information (Email, phone number)
  • NDIS numbers
  • NDIS goals
  • Resumes
  • Demographic (age, gender, culture)
  • Cookies and related data (IP addresses, analytics)
  • Nature of disability
  • Types of services you want
  • Interview questions and video responses
  • Financial data for invoicing and payment

How and why we collect information and where it is stored

Lend A Friend uses a suite of tools, software and systems to collect, manage and store personal data. In compliance with Australian Cyber security protocols, we use Australian servers and hosting for all website data collection, and use HIPAA compliant form capture software. A list of current tools and software being used, and why we use them is below:

  • WordPress with Siteground Hosting (Sydney Server)
    • WordPress is what out site is built upon, and Siteground provides the hosting for the website.
    • WordPress allows for the installation of various plugins which can collect data from website visitors, including cookies
    • We use this data to better understand the needs of our clients, optimise the site, and improve its function.
  • Google Workspace (Google Drive)
    • We use Google Drive for storage of all company, client and business information.
    • Storing through Google in the cloud means we can access important data from anywhere, while simultaneously having data protected by Google’s 256-bit SSL/TLS encryption
  • Grabsign
    • When we make contracts between Helpers, Members or Staff, we use Grabsign to allow for digital signing of contracts
  • Formaloo (HIPAA Compliant)
    • Multiple pages on our site features forms made by Formaloo. Entering your information saves it on Formaloo’s HIPAA compliant serves, meaning it is rated high enough security for Medical and highly sensitive information to be stored
    • Formaloo is our form capture software of choice because of it’s flexible and comprehensive form building capacity
    • Information captured via Formaloo may be converted into a google sheet, and inputted into other software
  • The Lookout Way
    • Information captured through forms is added to The Lookout Way to build a Member or Helper profile, and manage multiple business processes
    • Lend A Friend uses The Lookout Way for rostering, Care Management, Help Plan storage, Finance Management, and ticketing.
  • Xero (Australian accounting software)
    • Information captured through forms is added to Xero to build a Member or Helper profile, and manage multiple business processes
    • Xero accounting software is used for Member invoicing, Staff or Contractor payments, financial management
  • Hirevire (or alternative)
    • Video interviewer software may collect name and contact information for video interview applicants
    • The information is stored on foreign servers, however information can’t be collected without voluntary submission
    • Videos of the applicant are also stored on these servers for up to 90 days, and are then either deleted, or downloaded and stored on Australian Google Cloud infrastructure
    • We use video interviewing as part of the screening process and to share with Members to help identify a match between Members and Helpers
  • Visitor engagement
    • By engaging with our website and online presence, certain actions might mean personal information is collected. For example:
      • Comments
        • Commenting or posting on our social media pages or website leaves your online footprint, and could mean your IP address, name, comment content etc. is accessible to Lend A Friend
      • Media
        • If you upload content to our social media pages, website, forms, or recruitment video interview software, this would mean this content is stored with us and the above-mentioned software
      • Embedded content
        • Articles, media, and other content on our site may be embedded content from external websites. If you engage with this content, it would be tracked in the same way that it would if the content was accessed through that original website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content. As embedded content is from external companies, we can’t be held accountable for the treatment of any personal information as it falls outside of our privacy policy
      • Cookies
        • By using and engaging with our site, you opt-in to us saving your cookie data. This may include name, address, browser information and preferences, used to make our site run more effectively.

Tools used are subject to change. Additional types of software may be used, all of which may collect user data:

  • Landing page generators for (pagemaker, swipepages etc.)
  • Form capture (Google forms, rapid reg etc.)
  • Lead generation and marketing (Kingsumo, Perkzilla, Optinly)
  • Link management (Linktr.ee, Hy.page)
  • Google Workspace alternative (Microsoft 365)
  • Social Media (Facebook, Tiktok, Instagram, LinkedIn)
  • Email Marketing (SendFox, Acumbamail)
  • Automation software (Pabbly connect, Zapier)
  • Chat bots (Nilatech, Ideta)
  • Recruitment (CVVIZ, Interviewer.ai, Playhunt, Vidbites, Hirevire)

How we will use and disclose personal information

Personal information collected by Lend A Friend may be used and disclosed in multiple ways:

  • Provided to Lend A Friend team
    • Care Managers will have access to all Member information in order to facilitate support, including financial information, NDIS help plan, Notebook and other information
    • Helpers will have access to some Member information necessary to safely perform their duties, including the Notebook, address details, Help plan and other applicable information
    • Staff will have access to Helper personal information to facilitate payment, compliance and linking to Members
  • Provided to Authorities
    • Where required by law, we will comply with disclosure requirements and provide necessary information to authorities. This might be in cases of audits, subpoena or other related circumstances
  • Stored with third parties
    • The software companies we use to run our business will have access to the personal information listed on these platforms. For example, accounting software will have plan manager, Member and Helper financial information stored in it
    • For a full list of the software suite we use, see “How and why we collect information and where it is stored”
  • Website data
    • Comments, Meta data, and other information gathered from website interaction from visitors may be seen, stored and used by Lend A Friend Staff, other website visitors, website administers, and third party plugin/software staff

How you can request your personal information or ask for a correction

You have the right to request that your data be removed from our database and storage. You can do so by contacting us via email and letting us know which information you want us to remove.

Email: [email protected]

As a health care provider we may be required to store certain information for administrative, legal, or security purposes, for up to 7 years. If your information falls under this category we may be required to store your information, however we can provide you with a copy of the information we have stored for your records.

How to lodge a complaint if you think your information has been mishandled and what our process is

If you think your information has been mishandled you can contact us via the feedback and complaints page on our website. When you fill out the form, please add details about how, where and why you believe information has been mishandled, and we will be in touch to try to resolve the issue.

How we protect your data

We know data security is important for our Staff, Members and Contractors, so we keep all sensitive information within Australia and Australian servers where possible, and use HIPAA compliant servers for any foreign data capture tools. Long term information storage uses Google Cloud encryption, and we never sell your data to any marketing or other agencies.

We limit access to sensitive information to only those who require access to perform their role.

We don’t disclose personal information to other Allied Health Professionals without Member permission first

In case of a data breech, we will notify you once we become aware of the data breech and will contact the Office of the Australian Information Commissioner to report the data breech and mitigate risk from the breech. The contact form for the Office of the Australian Information Commissioner can be found here

How long we retain your data

Your interaction with our online presence, in the form of messaging, comments, emails, form submissions may be stored indefinitely. We will store your personal Member and Helper information on our accounting and rostering software too while your Membership is active, and archive it if you no longer work with us, with deletion of your records possible upon request.

We are required to store some information, like incident reports for 7 years, and so some data may not be able to be deleted.

Privacy Act

As an Australian business, we comply with the requirements under the Privacy Act 1988 (Privacy Act) to protect our consumer’s personal information from:

  • theft
  • misuse
  • interference
  • loss
  • unauthorised access
  • improper modification
  • improper disclosure

Lend A Friend

ABN 86 142 233 090

Socials
Facebook Instagram Linkedin
About
Info
Help
Privacy policy
Website cookies policy
NDIA Website
NDIS commission