The provision of quality health care requires a doctor-patient relationship of trust and confidentiality. Consistent with our commitment to quality care, this practice has developed a policy to protect patient privacy in compliance with privacy legislation.
Collection
It is necessary for us to collect personal information from patients and sometimes others associated with their health care in order to attend to their health needs and for associated administrative purposes. Health information is “sensitive information” for the purposes of privacy legislation. This means that generally patients’ consent will be sought to collect health information that is necessary to make an accurate medical diagnosis, prescribe appropriate treatment and to be pro-active in patient health care.
Use and Disclosure
A patient’s personal health information is used or disclosed primarily for purposes directly related to patient health care and in ways that are consistent with expectations. This may include sharing information with other health care providers who comprise a patient’s medical team. In addition there are circumstances when information has to be disclosed without patient consent such as:
- Emergency situations.
- By law, doctors are sometimes required to disclose information for public interest reasons, e.g. mandatory reporting of some communicable diseases.
- It may be necessary to disclose information about a patient to fulfil medical indemnity insurance obligations.
- Provision of information to Medicare or private health funds, if relevant, for billing and medical rebate purposes.
In general a patient’s health information will not be used for any other purposes without their consent. There are some necessary purposes of collection for which information will be used beyond providing health care such as professional accreditation, quality and outcome assessments, clinical auditing, billing, and so forth.
Data Quality and Security
All patient information held by this practice relevant to the functions of providing health care will be maintained in a form that is accurate, complete, and up to date. The storage, use and, where necessary, transfer of personal health information will be undertaken in a secure manner that protects patient privacy. It is necessary for medical practices to keep patient information after a patient’s last attendance for as long as is required by law or is prudent having regard to administrative requirements.
Openness
This practice has made this and other material available to patients to inform them of our policies on management of personal information. On request this practice will let patients know generally what sort of information we hold, for what purposes, and how we collect, hold, use, and disclose that information.
Access and Correction
Patients may request access to their personal health information held by this practice. Where necessary, patients will be given the opportunity to amend any personal information held that is incorrect. There are some circumstances in which access is restricted and in these cases reasons for denying access will be explained. A charge may be payable where the practice incurs costs in providing access. This practice acknowledges the right of children to privacy of their health information. Based on the professional judgement of the doctor and consistent with the law, it might at times be necessary to restrict access to personal health information by parents or guardians. Upon request a patient’s health information held by this practice will be made available to another health service provider.
Identifiers
These are the numbers, letters or symbols that are used to identify patients with or without the use of a name. (E.g. Medicare numbers). We will limit the use of identifiers assigned to patients by commonwealth government agencies to those necessary to fulfil our obligations to those agencies.
Anonymity
A patient has the right to be dealt with anonymously, provided this is lawful and practicable. However, in the medical context this is not likely to be practical or possible for Medicare and insurance rebate purposes. It could also be dangerous to the patient’s health.
Trans-border data flow
Individual’s privacy is protected Australia-wide by privacy laws. We will take steps to protect patient privacy if information is to be sent interstate or outside Australia.
Collection, Use and Disclosure of your Information
Information about a patient’s medical and family health history is needed to provide accurate medical diagnoses and appropriate treatment. We will be fair in the way we collect information about our patients. This information is generally collected from the patient, and otherwise with the patient’s consent. However we may receive patient information from others. When this occurs we will wherever possible, make sure the patient knows we have received this information.
Medical care requires full knowledge of patient health information by all members of a medical team. To ensure quality and continuity of patient care a patient’s health information has to be shared with other health care providers from time to time. Some information about patients is also provided to Medicare and private health funds if relevant, for billing and medical rebate purposes. The doctors in this practice are members of various medical and professional bodies including medical defence organizations. There may be occasions when disclosure of patient information is required for medical defence purposes. There are also circumstances where a medical practitioner is legally bound to disclose personal information. An example of this is the mandatory reporting of communicable diseases. It is necessary for us to keep patients’ information after their last attendance at this practice for as long as is required by law or is prudent having regard to administrative requirements.
Access
A patient has a right to access their information. They may ask to view the information or ask for a copy of part or the whole record. While not required to give reasons, a patient may be asked to clarify the scope of the request. There are some circumstances in which access may be denied but in such an event, the patient will be advised of the reason. A charge may be payable where the practice incurs costs in providing access. This will depend on the nature of the access. The material over which the doctor has copyright might be subject to conditions that prevent further copying or publication without the doctor’s permission. If a patient finds that the information held on them is not accurate or complete, the patient may have that information amended accordingly. Upon request a patient’s health information held by this practice will be made available to another health service provider.
Complaints
It is important to us that your expectations about the way in which we handle your information are the same as ours. Please do not hesitate to discuss any concerns, questions or complaints about any issues related to the privacy of your personal information with your doctor.
If you are still dissatisfied you can complain to the federal privacy commissioner whose contact details are:
Office of Privacy Commissioner
GPO Box 5218
Sydney, 2001.
Privacy hotline: 1300 363 992, 1800 620 241 (hearing impaired)
Fax: 02 9284 9666
Website: www.oaic.gov.au
E-mail: privacy@privary.gov.au
Further information
If you have any questions about your privacy rights, please talk to your doctor, call 9508 6111, or use the following websites which have specific sections dealing with privacy issues: www.privacy.gov.au www.amavic.com.au www.nhmrc.gov.au