Privacy Statement

Effective Date: 7 August 2025
Last Reviewed: 7 August 2025
Next Review Due: 1 June 2026

Who We Are

Provider Advisory Services (PAS) is a consulting division of Rosenbaum Clarke & Co Pty Ltd, a multidisciplinary group supporting the disability, aged care, and human services sectors. As part of the RCC Group, PAS provides operational, HR, and compliance consulting to NDIS, allied health, and aged care service providers. We do not deliver direct supports to participants, but we may access or hold personal and commercial information on behalf of our clients.

Our Commitment to Privacy and Confidentiality

We are committed to protecting the privacy, confidentiality, and security of all information entrusted to us. This includes:

  • Personal and sensitive information about participants, clients, and staff
  • Commercial, operational, and strategic information about our clients

Our practices comply with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and relevant sector standards including the NDIS Practice Standards and Aged Care Quality Standards.

What Information We Collect

We may collect personal, sensitive, and health-related information including:

  • Name, contact details, employment history, and other personal and business information.
  • Service preferences and feedback
  • Website usage data via cookies and analytics

This information is collected directly from you, your representatives, or trusted third parties such referral partners.

In the course of consulting engagements, we may access information about individuals who receive services from our clients—including participants, clients, and staff—where necessary to support compliance, operational improvement, or workforce capability including:

  • Participant or client records (e.g. support plans, incident reports)
  • Staff information (e.g. rosters, HR files, training records)
  • Business documents (e.g. policies, procedures, pricing models, financials)
  • System access credentials or platform data (e.g. CRM, rostering, compliance tools)

This information remains the property of our clients and is handled strictly in accordance with our consulting agreements and confidentiality obligations.

Why We Collect It

We collect and access information solely to deliver contracted consulting services to NDIS and human services providers. This may include:

  • Operational and workforce data
  • Commercial and strategic business information
  • Personal or sensitive information about participants, clients, or staff (as authorised by our clients)

We do not collect information for direct service delivery or marketing purposes. All data access is governed by consulting agreements and client instructions.

How We Use and Share Your Information

Information accessed or provided to us is:

  • Used only for the purpose of fulfilling the scope of work agreed with the client
  • Not disclosed to third parties unless authorised or required by law
  • Protected by confidentiality agreements and ethical safeguards

We do not use participant or client data for profiling, advertising, or automated decision-making.

Data Security and Storage

We use secure servers, encryption, and role-based access controls to protect your data. Physical records are stored securely, and digital data is backed up regularly. Access is restricted to authorised personnel only.

Third-Party Providers

We may engage third-party consultants, IT vendors, and cloud platforms to support our services. All providers are vetted for privacy compliance and must adhere to our Privacy & Confidentiality Policy. Data may be hosted in jurisdictions with equivalent privacy protections.

Your Rights

f your information is accessed by PAS through a provider engagement, you have the right to:

  • Be informed about how your data is handled
  • Request access or correction through your service provider
  • Raise concerns or complaints via your provider or directly with PAS

We respond to privacy enquiries within 5 business days.

Cookies and Website Analytics

Our website uses cookies to improve functionality and monitor performance. These tools collect non-identifiable data such as browser type and pages visited. You can manage cookie preferences through your browser settings.

AI and Ethical Use

We may use AI tools to analyse anonymised data and improve service delivery. AI is not used to make autonomous decisions about individuals. All AI-supported processes are governed by human oversight and ethical safeguards.

Data Breach Notification

In the event of a data breach, we will notify affected individuals within 48 hours and initiate our Data Breach Response Plan.

Contact Us

For privacy enquiries, access requests, complaints, or a copy of the Rosenbaum Clark & Co Pty Ltd Group Privacy Policy & Procedure please contact:

Privacy Officer
Provider Advisory Services
Email: hello@rc-co.au
Mail: 4/858 Waterworks Rd, The Gap, QLD 4061

close menu icon

Learn how we helped 100 top brands gain success.

Let's have a chat