PeptideRXAU
Privacy & data handling

Privacy Policy

Last updated: 15 May 2026

PeptideRX AU ("we", "us", "our") respects your privacy. This page explains what information we collect through the pre-qualification questionnaire, how it is stored and used, who it is shared with, and how you can have it deleted. We handle personal and health information in line with the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth).

1. What we collect

When you complete the intake we collect:

  • Identification: first name, age, email, mobile number.
  • Health information: goals, medical history, current medications, allergies, lifestyle (sleep, exercise, alcohol, smoking), and screening responses for contraindications.
  • Optional measurements: height and weight, if provided.
  • Account data (only if you sign in): email and authentication identifier from our secure auth provider.

We do not collect Medicare numbers, government IDs, payment card details, or biometric data.

2. How we use it

  • To generate your indicative pre-qualification result and PDF summary.
  • To pass your intake to an AHPRA-registered Australian doctor if you choose to book a consult, so they can prepare for your appointment.
  • To contact you about your intake or consult booking.
  • To improve the questionnaire's clinical accuracy in aggregate, de-identified form only.

We never sell your data, use it for advertising, or share it with third parties for marketing purposes.

3. Where & how it is stored

  • Data is transmitted over TLS 1.2+ (HTTPS) and stored in encrypted-at-rest databases hosted in Australian or APAC regions where available.
  • Access is restricted via row-level security; only your account and authorised clinicians can view your record.
  • Internal staff access is logged and limited to necessary support, safety, and compliance purposes.
  • Your downloadable PDF summary is generated in your browser and is not retained by us.

4. AI processing of your answers

Your responses are processed by a large-language-model service to score eligibility and structure the summary. Inputs are sent over an encrypted connection and are not used to train the underlying model. The provider retains transient logs only as required for abuse monitoring and deletes them on a rolling short-term basis.

5. How long we keep it & how to delete it

  • No account: if you complete the questionnaire without signing in, your responses live only in your browser session and are discarded when you close the tab or click "Start over".
  • With an account: your intake is retained for up to 7 years, the minimum period required for Australian medical record-keeping.
  • You may request access, correction, or permanent deletion of your data at any time by emailing privacy@peptiderx.au. We action requests within 30 days.

6. Who we share it with

  • The treating Australian doctor you choose to book with.
  • Pharmacy partners only when a script is issued and dispensing requires it.
  • Service providers strictly necessary to operate the platform (hosting, authentication), under written confidentiality terms.
  • Law enforcement or regulators only when legally compelled (e.g. subpoena, AHPRA notification obligation).

7. Contact & complaints

For privacy questions or to exercise your rights, contact our Privacy Officer at privacy@peptiderx.au. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

See also our Terms & Conditions. This service is provided for educational and informational purposes only and is not medical advice.