This Policy is written to be consistent with the Privacy Act 1988 (Cth), the Australian Privacy Principles (APPs), and the Notifiable Data Breaches scheme, and with our Trust & Security page: where one makes a promise, the other makes the same one. It is a plain-language policy, not legal advice.
1. Who we are
Budi is operated and located in Australia. You can reach us at hello@budi.health.
2. The information we collect
Account information. Name, work email, organisation/practice details, and authentication data needed to give you an account.
Content you provide. The visit notes, shorthand, and other clinical information you enter, and the report drafts generated from them. This content frequently includes health information about your clients(for example, NDIS participants), which is “sensitive information” under the Privacy Act.
Usage and technical information. Log data, device and browser information, IP address, and how you interact with the service, used to operate and secure it.
3. How we use your information
We use information to:
- provide the service — to generate, store, and let you edit report drafts from your notes;
- maintain, secure, and troubleshoot the service;
- communicate with you about your account and support requests;
- meet our legal and record-keeping obligations.
We do not use client content to train, fine-tune, or improve any AI model — ours or anyone else’s. Your notes are used to draft your report and for no other purpose. This line is deliberately unqualified.
4. AI processing and data residency
To generate drafts, your notes are processed by a foundation model hosted on Amazon Bedrock in the AWS Asia Pacific (Sydney) region. The storage and processing of your clinical content, and AI inference, occur within Australia. Bedrock processes each request and returns the draft; it does not retain your content and does not pass it to the model provider for training.
One supporting service process limited account and technical metadata outside Australia: our identity provider (Clerk). They do not receive your clinical content for their own purposes and are exclusively used to authenticate you and your account. See more in section 6.
5. Who can access your data
Within your organisation, access to client content is limited to your authenticated users and scoped to your organisation, so other practices can never see your data. Budi personnel access client content only where necessary to provide, support, or secure the service, under least-privilege controls and audit logging.
6. Disclosure and sub-processors
We do not sell or rent your information. We disclose it only:
- to the sub-processors below, who help us run the service under agreements that require them to protect it and use it only to provide services to us;
- where required or authorised by law, or to protect our legal rights;
| Provider | Purpose | Data location |
|---|---|---|
| Amazon Web Services (AWS) | AI inference (Amazon Bedrock) and encrypted data storage | Australia (Sydney, ap-southeast-2) |
| Clerk | Account authentication and identity | United States |
| Vercel | Application hosting and delivery | United States / global edge |
7. Storage, security, and residency
Client clinical content is stored encrypted at rest (AES-256) and transmitted over encrypted (TLS) connections, within Australia. We apply access controls, authentication, and logging, and our security program is built on the SOC 2 and ISO/IEC 27001 control frameworks.
8. Data retention and deletion
We retain your account and content information for as long as you maintain an active account and as needed to provide the service.
Much of the content you store concerns your clients. As the treating practitioner or practice, you carry the record-keeping obligations for those records — commonly a minimum of seven years from the last occasion of service, and longer for records concerning children — under State and Territory health-records law and your professional standards. Budi retains client content to support those obligations and in accordance with your agreement and instructions.
You may request export or deletion of your information at any time. Where you are subject to a retention obligation, you control whether content is retained to meet it or exported and deleted. On account closure we delete or return Your Data within 90 days, except where we are required by law to retain specific records.
9. Your rights
Under the Privacy Act and Australian Privacy Principles you may request to access the personal information we hold about you, request correction of it, and make a complaint about how we handle it. Contact us at privacy@budi.health. If you are not satisfied with our response, you may contact the Office of the Australian Information Commissioner (OAIC) at oaic.gov.au.
10. Clients’ information and your role
Much of the content in Budi is information about your clients, not about you. For that content, you (the clinician or practice) are responsible for having the appropriate consent and authority to use a software tool to assist in preparing reports, consistent with your obligations under the APPs and, where relevant, the NDIS Code of Conduct. We act as your service provider in handling that content.
11. Data breaches
We maintain procedures to detect, contain, and assess security incidents. If an eligible data breach occurs, we will comply with the Notifiable Data Breaches scheme, including notifying affected individuals and the OAIC where required, and we will notify affected customers promptly.
12. Children
Budi is a professional tool for clinicians and is not directed to children as users. Client content may relate to people of any age; that content is handled under this Policy and your professional obligations.
13. Changes to this Policy
We may update this Policy. We will post the current version here and, for material changes, notify account holders. The “Last updated” date reflects the latest version.
14. Contact
privacy@budi.health
Budi Health, ABN 90 408 246 379