Privacy Policy

aurii is used by specialists in Australian private hospitals. At the bedside a specialist opens a patient and speaks the consult. aurii drafts the clinical note, the GP and referrer letters and the discharge summary, and the specialist captures the private health fund billing for the episode, for review and signing.

In this policy, “aurii”, “we”, “us” and “our” mean Aurii Pty Ltd (ABN 52 697 638 538), the entity that operates the aurii platform. “You” means the people whose personal information we handle — the specialists and hospital staff who use aurii, and the patients whose clinical information passes through it.

This policy explains what we collect, why, where it lives, who can touch it, and the rights you have under the Australian Privacy Principles (APPs) in the Privacy Act 1988 (Cth). For clinical (health) information we also follow the obligations that attach to health records in Australia.

We collect only what aurii needs to do its job. Broadly, this falls into three groups:

• Account & practice information The names, work email addresses, provider numbers, specialty, hospital affiliations and role of the clinicians and staff who use aurii — supplied by you or your hospital when an account is created.
• Clinical information you create The spoken consult audio, the transcript, and the documents aurii drafts from it — progress notes, letters and discharge summaries — together with the private health fund billing items you record and the patient identifiers attached to them.
• Operational & device information The technical records a clinical system must keep: sign-in events, the device and app version in use, the actions taken on a record, and diagnostic logs needed to keep the service safe and available.

We do not buy personal information from data brokers, and aurii is not advertising-funded. We do not run third-party advertising or tracking pixels on the clinical application.

Patient health information is the consult audio, the transcripts, and the documents drafted from them. We handle it to a higher standard than anything else aurii holds.

Consult audio is captured and transcribed in Australia, and the documents drafted from it are stored and encrypted in Australia. Audio is captured only to draft your documentation; once a document is drafted, retention of the underlying audio follows the configuration agreed with your hospital. Every draft is created for a clinician to check.

aurii drafts — the specialist decides. No clinical output is final, sent, or billed until a doctor has reviewed and signed it. aurii does not make autonomous clinical decisions, and it is not a substitute for a clinician’s judgement.

We use the information above for clearly defined, clinically necessary purposes:

• To provide the service To transcribe the consult and draft the note, letters and discharge summary you ask aurii to prepare, and to record the private health fund billing for your review and signature.
• To keep it safe & accountable To authenticate users, prevent misuse, and maintain the tamper-evident record of who did what and when that a clinical system must keep.
• To support and improve reliability To diagnose faults and keep aurii available and accurate. We do not use your patients’ clinical information to train general-purpose AI models for unrelated use.

We do not use clinical information for marketing, and we do not sell personal or health information to anyone, ever.

All your data lives in Australia. The primary region is in Sydney, with your data replicated to a backup region in Melbourne. Your clinical records — consult audio, transcripts and the documents drafted from them — are stored and encrypted within Australian borders.

Where a sub-processor is involved (see below), it is bound by contract to the residency and confidentiality terms described there. Your records are stored in Australia.

Clinical information is encrypted in transit and at rest. At rest, sensitive clinical data is encrypted record by record using envelope encryption — each record gets its own data key, wrapped by a key-encryption key held in Microsoft Azure Key Vault located in Australia.

aurii operates those keys in Australian Key Vault. Keys are rotated on a schedule and every key version is logged, so the encryption is auditable. Each practice’s data is isolated from every other tenant. If you ask us to permanently purge your data, it is destroyed — not just hidden — and removed from our live systems, with encrypted backups ageing out on a defined cycle.

Only a short list of parties can touch your data, each under contract and only to run aurii. We use sub-processors in two areas:

• In-region cloud infrastructure An Australian cloud region (Sydney primary, Melbourne backup) hosts and stores the platform and your data. Your records are stored and backed up in Australia.
• In-region transcription Speech-to-text processing that converts the spoken consult into a transcript, performed within Australia under contract and bound to the same residency and confidentiality terms.

We share clinical information beyond these sub-processors only where you direct it (for example, a letter you sign and send to a GP), or where we are required to by Australian law. We do not disclose your data to overseas recipients for our own purposes.

Clinical records carry legal retention obligations. Every document and every action is written to an append-only, tamper-evident audit — a record that can be added to but not silently altered or deleted — and retained for seven years.

We retain clinical information for as long as your hospital’s record-keeping obligations require, and in line with the agreement we hold with your organisation. Account information is kept while your account is active and for the period needed afterwards to meet legal and audit obligations, then disposed of securely.

Under the APPs you have real rights over your personal information. Depending on whether you are a clinician using aurii or a patient whose information passes through it, these include:

• Access You can ask what personal information we hold about you and request a copy of it.
• Correction You can ask us to correct information that is inaccurate, out of date or incomplete.
• Complaint You can raise a privacy concern with us, and escalate to the Office of the Australian Information Commissioner (OAIC) if you are not satisfied with our response.

Because aurii holds patient information on behalf of hospitals and specialists, a patient request usually flows through the treating clinician or hospital that controls the record. Where that applies, we will help your hospital respond. To make any request, contact us at hello@aurii.com.au.

Clinical information is encrypted in transit and at rest, record by record, with keys held in Australian Key Vault. Access is authenticated and least-privilege, and each practice’s data is isolated from every other tenant. Every action is written to the tamper-evident audit described above.

We keep the service patched and monitored, and nothing clinical is final until a doctor has signed it. No system is perfectly secure. But your records are stored and encrypted in Australia, record by record and isolated to your practice, with a permanent record of everything — and if you ask us to purge them, they are destroyed for good.

For any privacy question — access, correction, a concern, or how aurii would handle data in your hospital — reach the team directly. We answer privacy enquiries personally.