Glow Health Care Australia
ARIIA Skin Integrity Platform · Last updated: April 2026
Glow Health Care Australia (GHCA) is committed to protecting the privacy and confidentiality of all personal and health information collected through the ARIIA Skin Integrity Platform. This policy explains what information we collect, how we use it, and your rights in relation to it.
This policy applies to all clients, support workers, registered nurses, care partners, and administrators who use the ARIIA platform. We comply with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs).
We collect the following categories of information:
Client Health Information
Skin integrity observations, wound descriptions, pain levels, fall incidents, medication support notes, visit dates and times, and clinical assessments made by registered nurses.
Client Personal Information
Full name, address, program type, and assigned care team details.
Staff Information
Full name, email address, role, and activity logs within the platform.
Health information is collected by GHCA support workers at the time of a client visit through the ARIIA digital form. Support workers are required to obtain verbal or written consent from the client prior to documenting health observations. Clients are informed of the purpose of this documentation before it is recorded.
We will not use or disclose health information for any purpose other than the primary purpose of care, except where required by law or with the client's express consent.
Access is strictly role-based and limited to:
Support Workers
Can submit visit forms. Cannot view other clients or past records.
Registered Nurses
Can view and assess cases assigned to them.
Care Partners
Can review completed RN assessments for coordination.
Administrators
Full platform access for oversight and reporting.
No health information is shared with third parties without client consent, except where required by law (e.g. mandatory reporting obligations).
All data is stored in a secure cloud database provided by Supabase. GHCA takes reasonable technical and organisational steps to protect personal and health information from misuse, loss, and unauthorised access. These measures include:
Note on data location: Data may be stored on servers outside Australia. GHCA takes steps to ensure any overseas storage providers maintain equivalent privacy protections consistent with APP 8.
Health and care records are retained for a minimum of 7 years from the date of last service, in accordance with Australian healthcare record-keeping requirements. After this period, records are securely deleted or de-identified.
Under the Privacy Act 1988, clients and staff have the right to:
To exercise any of these rights, contact GHCA using the details below.
In the event of an eligible data breach involving health information, GHCA will notify affected individuals and the Office of the Australian Information Commissioner (OAIC) as required under the Notifiable Data Breaches (NDB) scheme. We will take immediate steps to contain any breach and prevent recurrence.
If you have a question or complaint about how GHCA handles your information, please contact us:
If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au or by calling 1300 363 992.