Last updated: [05/01/2026]

Barton Care Pty Ltd (“Barton Care”, “we”, “us”) is committed to protecting your privacy. This Privacy Policy explains how we collect, hold, use and disclose personal information, and how you can access and correct your information or make a complaint.

This policy applies to personal information we collect through:

• our website (www.bartoncare.com.au)
• enquiries by phone, email or online forms
• recruitment, onboarding and placement of nurses and healthcare staff
• providing services to client facilities and organisations
• our marketing and communications

1) Contact us (Privacy Officer)

If you have questions, requests or complaints about privacy, contact our Privacy Officer:

• Privacy Officer: Director of Finance
• Email: Reach us through our Contact Us page 
• Phone: 03 9059 8041
• Address: L1/2 Eaton Mall Oakleigh VIC 3166
• ABN: 24 129 584 311

2) What is “personal information” and “sensitive information”?

Personal information is information or an opinion about an identified individual, or an individual who is reasonably identifiable.

Sensitive information includes things like health information, biometric information, or information about racial/ethnic origin, religious beliefs, etc. Health information is commonly sensitive information.

3) What personal information we collect and hold

The type of personal information we collect depends on how you interact with us.

A. Website visitors

We may collect:

• device and browser information (e.g., IP address, browser type, operating system)
• website usage data (e.g., pages viewed, time on site, referring page)
• cookie identifiers and analytics data (see section 10)

B. Enquiries and general contacts

We may collect:

• name, email, phone number
• organisation and role (if relevant)
• the content of your enquiry and any information you choose to provide

C. Candidates, contractors and employees (recruitment/placement)

We may collect:

• identity and contact details (name, DOB, address, email, phone)
• employment history, experience, referees and references
• qualifications, registrations, certificates and training records
• right to work documentation
• compliance documents (e.g., police checks, working with children checks) where relevant
• availability, placement history, shift preferences and performance feedback where relevant
• payroll and payment-related details (e.g., bank details, tax/super information) where applicable

D. Health / sensitive information (only where necessary)

Where required for placements, safety, compliance, or to provide services, we may collect health information or other sensitive information (e.g., vaccination status). We only collect sensitive information where it is reasonably necessary and we do so with your consent or where otherwise permitted/required by law.

E. Client facilities and representatives

We may collect:

• contact details and role information
• service requirements and communications relating to staff placements and operations

4) How we collect personal information

We collect personal information in a number of ways, including:

• when you submit a form on our website
• when you contact us by phone, email, SMS, WhatsApp or other channels
• when you apply for roles or register with Barton Care
• from third parties, where appropriate (e.g., referees, background check providers, training providers, client facilities) and where permitted by law
• from publicly available sources (e.g., professional registers) where relevant

If you don’t provide requested information, we may not be able to respond to your enquiry or provide recruitment/placement services.

5) Why we collect, hold, use and disclose personal information

We collect, hold, use and disclose personal information for purposes including:

• responding to enquiries and providing customer support
• recruiting, onboarding, credentialing and placing healthcare staff
• verifying identity, qualifications, registrations and compliance requirements
• coordinating shifts, scheduling, timekeeping and operational management
• paying staff/contractors and managing billing/invoicing (where applicable)
• meeting legal and regulatory obligations (e.g., workplace, safety, aged care, record-keeping)
• improving our services and website performance
• sending updates and marketing communications
• managing and protecting our business, including preventing fraud and maintaining security

6) Who we disclose personal information to

We may disclose personal information to:

• client facilities/organisations to facilitate placements, onboarding and service delivery
• service providers who help us operate. We currently use Kinsta’s Melbourne DC for hosting, MYOB for Accounts and Entire On Hire for Candidate Management and Payroll. 
• background checking and compliance providers (e.g., police check providers) where relevant
• professional advisers (lawyers, accountants, auditors)
• government agencies, regulators or law enforcement where required or authorised by law

We take reasonable steps to ensure third parties handle personal information appropriately.

7) Overseas disclosures

Some of our service providers (such as cloud, email, analytics, customer support or storage providers) may store or process personal information outside Australia. If we disclose personal information overseas, we take reasonable steps to ensure that the overseas recipient handles your personal information in a way that is consistent with Australian privacy requirements.

8) How we hold and protect personal information

We take reasonable steps to protect personal information from misuse, interference and loss, and from unauthorised access, modification or disclosure.

Security measures may include:

• access controls and role-based permissions
• secure cloud services and encryption (where available)
• multi-factor authentication for key systems (where available)
• monitoring and logging (where appropriate)
• staff training and confidentiality obligations

No method of transmission or storage is completely secure, but we work to maintain appropriate safeguards.

9) How long we keep personal information

We keep personal information only for as long as needed to:

• provide our services
• meet legal, regulatory, tax, accounting and reporting obligations
• resolve disputes and enforce agreements

When personal information is no longer required, we take reasonable steps to securely destroy or de-identify it (unless we are required by law to retain it).

10) Cookies, analytics and website tracking

We use cookies and similar technologies to:

• help our website function properly
• understand how visitors use our website
• improve performance and user experience
• measure marketing effectiveness (if applicable)

You can manage cookies through your browser settings. Disabling cookies may affect site functionality.

Services we use include:

• Google Analytics
• reCAPTCHA]

11) Marketing communications

We may send you marketing or service-related communications where permitted by law (for example, if you have opted in or where a lawful basis applies).

You can opt out at any time by using the unsubscribe link in emails.

12) Accessing and correcting your personal information

You may request access to personal information we hold about you, and request corrections if you believe it is inaccurate, out of date, incomplete, irrelevant or misleading.

To make a request, contact our Privacy Officer using the details above. We may need to verify your identity before processing your request.

We will respond within a reasonable timeframe and will explain if we cannot provide access or make a change (where permitted by law).

13) Privacy complaints and how we handle them

If you believe we have mishandled your personal information, you can make a complaint by contacting our Privacy Officer.

Please include:

• your name and contact details
• what happened and when
• what outcome you are seeking

Our process:

1. We will acknowledge your complaint within 5 business days. 
2. We will investigate and respond within 30 days (or let you know if more time is needed).
3. If you are not satisfied, you may lodge a complaint with the Office of the Australian Information Commissioner (OAIC).

14) Data breaches

If we become aware of a data breach that is likely to result in serious harm, we will take steps consistent with our legal obligations, including notifying affected individuals and relevant authorities where required.

15) Automated decision-making

We may use software tools to support administrative, scheduling, recruitment or compliance processes. We may use automated tools to assist with screening/shortlisting/scheduling, but decisions are subject to human review. You can contact us to request more information.

16) Links to other websites

Our website may contain links to third-party sites. We are not responsible for the privacy practices of those sites and encourage you to review their privacy policies.

17) Changes to this Privacy Policy

We may update this Privacy Policy from time to time. The updated version will be published on our website with a revised “Last updated” date.