Privacy Policy

We value our website users' privacy and aim to provide an open and transparent privacy policy.

1. Introduction

This Privacy Policy applies to CardiAction, owned by CardiAction Pty Ltd (ABN 41 619 022 141).

We respect your privacy and are committed to complying with Australian privacy laws, the General Data Protection Regulation (GDPR) (where applicable), and other relevant laws.

By using our Website, you acknowledge and agree to the terms outlined in this Privacy Policy.

2. Legal Basis for Processing (GDPR-Specific)

If you are located in the EU or EEA, we process your personal data based on one of the following legal bases under Article 6 of the GDPR:

  • Better than GP Heart Health Check

    Consent: When you explicitly consent to providing data (e.g., opting in for updates).

  • Better than GP Heart Health Check

    Contractual Necessity: When processing is necessary for providing our services.

  • Better than GP Heart Health Check

    Legitimate Interests: When processing is required for business operations, provided it does not override your rights.

  • Better than GP Heart Health Check

    Legal Obligation: When we must process data for legal compliance.

3. Your Rights Under GDPR

If you are an EU/EEA user, you have the following rights under GDPR:

  • Better than GP Heart Health Check

    Right to Access – Request a copy of your personal data.

  • Better than GP Heart Health Check

    Contractual Necessity: When processing is necessary for providing our services.

  • Better than GP Heart Health Check

    Right to Rectification – Correct inaccurate or incomplete data.

  • Better than GP Heart Health Check

    Right to Erasure (“Right to Be Forgotten”) – Request deletion of your data.

  • Better than GP Heart Health Check

    Right to Restriction of Processing – Restrict how we process your data.

  • Better than GP Heart Health Check

    Right to Object – Object to processing based on legitimate interests.

  • Better than GP Heart Health Check

    Right to Withdraw Consent – Withdraw consent at any time (without affecting prior processing).

  • Better than GP Heart Health Check

    Right to Lodge a Complaint – File a complaint with a data protection authority in your country

To exercise these rights, please contact email

4. International Data Transfers

As CardiAction is based in Australia, your personal data may be stored or processed outside the EU/EEA. If we transfer your data internationally, we implement appropriate safeguards such as:

  • Better than GP Heart Health Check

    Standard Contractual Clauses (SCCs) approved by the European Commission.

  • Better than GP Heart Health Check

    Data processing agreements (DPAs) with third-party service providers.

5. Data Retention

We retain personal data only as long as necessary for the purposes outlined in this Privacy Policy or as required by law.

6. Data Breach Notification

If a data breach occurs that may affect personal data of EU/EEA users, we will notify the relevant Data Protection Authority (DPA) and affected individuals within 72 hours, as required under GDPR.

7. Cookies and Tracking Technologies

We use cookies and analytics tools to improve user experience. Under GDPR, users from the EU/EEA must provide explicit consent before cookies are stored on their device. You can manage cookie settings through our settings.

8. Contact Information for GDPR Compliance

For GDPR-related inquiries or to exercise your data protection rights, please contact:

Data Protection Officer (DPO): Privacy Officer
Email: privacy@cardiaction.com


This Privacy Policy was last updated on Mar 20, 2025.