Briefly. is designed to align with Australian privacy legislation. Patient records are stored in Australia, and our controls are mapped to the Privacy Act 1988 and Australian Privacy Principles.
Supporting requirements across federal and state legislation
Controls are mapped to the federal Privacy Act 1988. Your health information is protected with lawful collection, purpose limitation, and strict security safeguards.
Controls are mapped to all 13 Australian Privacy Principles (APPs) governing collection, use, disclosure, and security of personal information.
Additional safeguards for Victorian healthcare providers and patients under the Health Records Act 2001 and Health Privacy Principles.
Controls are mapped to Australian Health Practitioner Regulation Agency guidance for health technology, supporting safe clinical documentation practices.
Controls mapped to the APPs that govern personal information handling
Patient records and application data are stored in Australia. Some processing services use secure US-based providers under data protection agreements.
Australian-First Data Storage
Patient records are stored in Australia. Transcription and letter generation use secure third-party providers under data protection agreements. Your data is never used for model training.
Industry-leading encryption protects your data at every stage
We comply with the Notifiable Data Breaches (NDB) scheme with comprehensive incident response procedures.
Patient records and application data are stored in AWS Sydney (ap-southeast-2). Some processing services use secure third-party providers under data protection agreements. Briefly. does not retain patient data beyond 30 days — we encourage you to export letters and recordings to your own devices or secure cloud storage.
Briefly. is designed to align with the Privacy Act 1988 and all 13 Australian Privacy Principles. We continuously review and improve controls as independent assurance work progresses.
We provide additional safeguards for Victorian healthcare providers to ensure compliance with the Health Records Act 2001 and all Health Privacy Principles.
No. Your patient data is never used for model training. This is a core commitment of our platform.
We comply with the Notifiable Data Breaches (NDB) scheme with OAIC notification within 72 hours for eligible breaches. Affected healthcare providers are notified immediately.
Need detailed compliance documentation or have questions about our Australian regulatory adherence?