Privacy Policy

Last updated: 2 July 2025

AceGP (“AceGP”, “we”, “us”, “our”) is committed to protecting the personal information of our users in accordance with the Privacy Act 1988 (Cth) and the Australian Privacy Principles (APPs). The APPs are a set of 13 principles that govern the collection, use, and disclosure of personal information in Australia.  This Privacy Policy explains how we collect, use, disclose, and secure personal information in our services (including our website and study platform). By using our services, you consent to the practices described in this policy.

Collection of Personal Information

We collect personal information that is necessary to provide and improve our educational services.  This information is collected directly from you and, in some cases, indirectly through automated means:

  • Account and Registration Information: When you create an account or purchase a course, we collect details such as your name, email address, phone number, mailing address, professional registration numbers, and payment/billing information. This information is provided by you directly (for example, via online forms or email).
  • Usage and Activity Data: We collect information about how you use our website and study platform. For example, we record quiz responses, exam scores, time spent on activities, and other learning analytics to tailor the learning experience. On our public website, we also collect technical usage data (such as pages visited, date and time of access, device and browser type, and IP address) via cookies and third-party tracking tools. This data is collected automatically (indirectly) when you browse the site.
  • Communications: If you contact us (by email, contact form, or phone), we may keep records of your correspondence. This includes your contact details and any information you provide when you ask questions or request support.
  • Sensitive Information: We do not collect sensitive personal information (which under the Privacy Act includes health, genetic, biometric, racial, or political information). In particular, AceGP does not collect any information about your health or medical history, nor any other sensitive data, unless it is required by law and you have expressly consented.

Where possible, we collect information directly from you. We also use analytics tools (such as Google Analytics and Meta Pixel) on our website to gather usage data. These tools may use cookies or similar technologies to track user interactions. The data collected by these tools (e.g. pages viewed, browser information, IP addresses) is used in aggregate for site performance and improvement. You can choose to disable cookies or opt out of targeted advertising using your browser or device settings.

All collection of personal information is done by fair and lawful means. We collect only the information that is necessary for our stated purposes.

Use and Disclosure of Personal Information

We use personal information for the primary purposes for which it was collected, as well as other related purposes, always in accordance with Australian privacy laws. Key uses and disclosures include:

  • Service Delivery: We use your information to provide and operate our courses and study platform. This includes creating and managing your account, delivering course content, assessing your progress, and improving our services. For example, we use learning analytics to give you feedback and to enhance question banks.
  • Communications: We use your contact information to send administrative messages, respond to inquiries, and provide customer support. This may include appointment reminders, support responses, technical notices, and other essential communications about your use of AceGP.
  • Marketing and Outreach: With your consent (or where permitted by law), we may use your email or contact details to send you information about our courses, promotions, updates, or related educational content. All marketing communications include a clear opt-out mechanism. We comply with the Privacy Act’s direct marketing rules (APP 7) by offering easy ways to unsubscribe or opt out of marketing messages.
  • Analytics and Improvement: We analyze aggregated and de-identified usage data to understand how our services are used and to improve our platform. For example, we use Google Analytics and Meta (Facebook) Pixel on our public website to monitor traffic patterns and to optimize site performance. These tools collect information such as IP addresses, pages viewed, and referral data. We configure them to limit data collection to what is necessary (in line with the APP requirement for data minimisation).
  • Legal Compliance and Safety: We may use or disclose personal information to comply with legal obligations, enforce our terms of service, protect AceGP’s rights, prevent fraud, or to protect the safety of our users or others. For example, if required by law, we may disclose user information to government authorities.

We do not sell, rent, or trade your personal information to marketing or advertising companies.  We only disclose personal information to third parties that assist us in performing the above functions (such as hosting providers, payment processors, email service providers, and analytics companies), as described below. When we disclose personal information, it is only for the purposes for which it was collected (or for a directly related secondary purpose, with your consent or as permitted by law).

Third-Party Service Providers and Overseas Data Storage

AceGP uses a number of third-party service providers to deliver and support our services.  For example, we use cloud hosting providers, content delivery networks, payment gateways (such as Stripe), email and SMS providers, and analytics services (such as Google Analytics and Facebook/Meta). We do not typically identify these providers by name in this policy, as they may change over time. However, rest assured that any third-party provider we use is carefully selected and bound by contract to handle your personal information only for the purposes of providing their service to us.

Some of our third-party providers are located overseas or may store data on servers outside Australia. For example, Google Analytics and Meta are based in the United States, and our cloud hosting might involve data centers in the US, Europe, or Asia. When we transfer your personal information to overseas providers, we take reasonable steps to ensure they comply with Australian privacy laws and the APPs. Under the Privacy Act, we remain responsible for personal information disclosed overseas and must take reasonable steps to protect it (APP 8).

Because we rely on these external platforms, AceGP is not liable for any actions, omissions, or security breaches caused by those third-party providers.  In the unlikely event that a third-party service suffers a data breach or outage, our liability is limited by law. AceGP will not be responsible for losses or damages resulting from a third party’s failure to protect personal information. It is your responsibility to understand the privacy practices of any third-party services (e.g. social media networks or payment processors) that you interact with.

Data Security Measures

We implement appropriate technical and organizational measures to protect personal information from unauthorized access, disclosure, alteration, or destruction. For example, we use industry-standard encryption for data in transit (HTTPS/SSL) and may encrypt sensitive data at rest. We restrict access to personal data to authorized personnel who need it to perform their job functions, and we train our staff in privacy and security best practices.  We also maintain audit logs and monitoring systems to detect unauthorized activity, and we conduct periodic security risk assessments. These measures are in line with the OAIC’s guidance on information security, which recommends protections such as encryption and regular auditing.

While we strive to protect your personal information, no system can be guaranteed 100% secure. In the event of a data breach that compromises personal information, we will follow the Notifiable Data Breaches scheme (where required) and notify affected individuals and regulators in accordance with legal obligations.

Access and Correction of Personal Information

You have the right to request access to the personal information AceGP holds about you, and to ask for corrections to that information if it is inaccurate. This is a key privacy right under the Privacy Act (APP 12 and 13).  To make such a request, please contact our Administrative Team (see below).  We may need to verify your identity before providing access or making changes, and we will respond within a reasonable period (generally within the timeframes required by law). Access and correction requests are provided free of charge (unless a minimal administrative fee is required).

If you request access, we will provide you with the information in our possession, subject to limited exceptions allowed by the Privacy Act (for example, if providing it would unreasonably affect another person’s privacy or is unlawful).  If you request correction, we will take reasonable steps to update our records. If we refuse a request for access or correction, we will give you written reasons for the refusal and explain how to complain.

Our Administrative Team can be contacted at:

Complaints Process and Contact Information

If you have any questions or concerns about this Privacy Policy or our handling of your personal information, please contact us first so that we can address your concerns. You can lodge a privacy complaint by emailing our Administrative Team at admin@acegp.com.au or by writing to AceGP (see contact details above).  We will do our best to resolve any complaint quickly and fairly.

If you are not satisfied with our response to a privacy complaint, you may escalate your complaint. Under the Privacy Act and APPs, you have the right to complain to the Office of the Australian Information Commissioner (OAIC) or another applicable external dispute resolution body if your complaint remains unresolved. The OAIC can be contacted via its website (www.oaic.gov.au) or by phone (1300 363 992).

Contact Us:  For privacy-related inquiries, please email admin@acegp.com.au.  You may also reach us through our website’s Contact page. Our Administrative Team will handle your request or complaint in accordance with this Privacy Policy and relevant laws.

Note:  This Privacy Policy may be updated from time to time.  We will post any updates on our website with a revised effective date.

Summary of Key Points:  AceGP collects only the information needed to deliver our services, does not collect sensitive health data, uses analytics and marketing tools in compliance with APPs, relies on third-party providers (including overseas) for certain services and data storage, implements reasonable security measures, and respects your rights to access, correct, and complain about your personal information.

Sources:  This policy is based on the Privacy Act 1988 (Cth) and guidance from the Australian Information Commissioner (OAIC) on the APPs.