1. Committed to protecting the privacy of your personal information
MP Safety Management is committed to protecting your privacy and maintaining the confidentiality, currency, accuracy and security of your personal information. It is fundamental to the way we develop trusting and beneficial relationships.
Our commitment is guided by the:
- Commonwealth Privacy Act 1988 and the Australian Privacy Principles;
- Privacy and health records laws of each State and Territory within which we operate; and
- Australian Health Practitioner Regulations and Professional Codes of Conduct.
2. Open & transparent management of your personal information
MP Safety Management will take all reasonable steps to ensure that you are informed about:
- The purposes of collecting, holding, using and disclosing your personal information;
- The type of personal information we are lawfully required to collect from you and any person, organisation or agency; and how we go about collecting that information;
- How we securely hold and use your personal information;
- Any person, organisation or agency to which we are lawfully required to disclose your personal information;
- How you can access your information and, where necessary, have it corrected; and
- How you can make a complaint about how we manage your personal information.
3. What is Personal Information?
Personal information is any information (including an opinion, photograph or image) that identifies you and is about you. It includes information that may or may not be true; and may or may not be recorded. Common examples of personal information are your name, date of birth, address and phone number, employment history and medical records. Information is no longer personal when it has been de-identified (i.e. when it is no longer possible to identify you).
4. What is Health Information?
Health information is a form of personal information and includes details of your past, present and future physical and mental health or disability.
5. What is Sensitive Information?
Sensitive information is a form of personal information that requires additional privacy protections. It includes information or opinions about your ethnic origin, political and religious beliefs, sexual preferences and criminal history. Health information is sensitive information.
6. Why do we need to collect, hold, use & disclose your personal information?
MP Safety Management is required to collect, hold, use and disclose personal information for the purposes of providing services that conform to the regulations, standards and principles that govern the practices of health practitioners in Australia.
Collection and management of your personal information enables us to:
- Accurately assess your needs;
- Undertake effective activities and services that best meet your needs and interests;
- Continuously improve what we do; and
- Control risks to the safety and health affecting you, other persons and the public.
7. What kinds of personal information do we need to collect?
MP Safety Management is required to collect and hold personal information that is reasonably necessary for and directly relevant to the services we provide.
When collecting your personal information, we will:
- Specify the kinds of information we require;
- Explain the specific purposes of collecting it; and
- Specify the period of time that we will require your information.
We will obtain your consent to collect your personal information.
8. How do we collect & hold your personal information?
Information may be collected by phone or face-to-face interview with you or other authorised persons, use of questionnaires, observation or examination, and review of documents. We then establish and maintain a private and confidential record in both hard copy and electronic form.
Our secure health information management system protects your record against:
- Misuse, interference and loss; and
- Unauthorised access, modification or disclosure.
Protection is ensured through the use of our:
- Secure filing and archiving facilities; and
- Password-encrypted and firewall-secured information and communication system.
9. For how long will your personal information be held?
Your private and confidential record will be securely held and retained for a minimum period of seven years. If, during that time, your record needs to be handed over or transferred to another person, organisation or agency, we will ensure that:
- You are made aware of the reasons for the handover or transfer;
- Unauthorised access, modification or disclosure of your record is prevented; and
- Your record is up to date, accurate and complete.
After seven years, in most cases, we are permitted to either destroy or de-identify your record. For all other non-sensitive personal information, we may destroy or de-identify it when the purposes for which it was collected have expired.
10. How do we use and disclose personal information?
MP Safety Management will only use personal information to conduct business activities and deliver services that meet your needs and interests. This may involve disclosing information (verbally, in printed/written form or electronically) to persons, organisations or agencies that have a legitimate and lawful role in the provision of our services. They may include:
- Medical and health practitioners;
- Your employers – past and present;
- Our contracted advisors and service providers;
- Legal practitioners;
- Government departments and their agencies; and
- Law enforcement agencies.
We will only disclose personal information when:
- You have been made aware and have given us consent to do so; or
- We are lawfully required or authorised to do so; or
- It is necessary to prevent or lessen a serious and/or imminent threat to your life or health (or the life and health of another person).
We shall take all reasonable steps to ensure that the personal information we collect, hold, use and disclose is:
- Up to date;
- Complete; and
- Relevant to the business activities and services that meet your needs and interests.
11. Giving your consent to the collection, use & disclosure of your personal information
We will seek your express consent to collect and handle your personal information. Express consent means giving your agreement or permission either verbally or in writing. We will keep the record of your consent on your private and confidential record.
When you provide consent, you should be confident that:
- You understand what giving consent means;
- You have been adequately informed about our policy and how it relates to you;
- You are aware of the specific information we require, the specific purposes for which it will be used, and for how long we will require it;
- You are giving your consent on a voluntary basis;
- You are able communicate clearly how you would like us to handle your personal information and any concerns about your privacy.
12. Refusing or withdrawing your consent to collect, hold, use & disclose your personal information
You may refuse or withdraw your consent at any time. You can do this by giving a written or verbal statement, which should include your concerns and reasons. If you are considering refusing or withdrawing your consent, we will discuss your concerns and reasons with you. We will explain your rights and the consequences, if any, of refusing or withdrawing consent for you and other persons, including members of your family. We will discuss alternatives with you in order to address your privacy concerns. For example, you may prefer to specify the kinds of information we can collect, hold, use and disclose, and from/with whom we can collect and disclose your personal information.
If, thereafter, you choose to refuse or withdraw your consent, we cannot rely on your past consent for any future use or disclosure of your personal information. MP Safety Management will be unable to proceed to provide services without consent.
13. How you can access your personal information
MP Safety Management will provide you with access to your personal information on receiving your written or verbal request. First, we will verify your identity. Second, where reasonable and practicable, we will supply the information in the form requested. If we cannot supply the information in the requested form, we will give you a written notice to explain why and the alternatives available.
In certain circumstances, MP Safety Management may be lawfully required or authorised to withhold access to your personal information. For example, we may refuse access to some or all of your personal information when giving access would:
- Be prohibited or denied by Australian law or a court order; or
- Impose a serious and imminent risk to the life, safety or health of any individual and/or to the public; or
- Unreasonably impact the privacy of other persons; or
- Prejudice current or forthcoming legal proceedings or negotiations;
- Prejudice an investigation into unlawful activity or serious misconduct.
We may refuse access if your request for information is found to be frivolous or vexatious.
If we refuse your request for access, we will give you a written notice to explain:
- The reasons for our decision;
- The kinds of information that can be provided without risk and how, where or from whom they can be appropriately accessed; and
- How a complaint can be made if you are dissatisfied with our response.
14. Correcting your personal information
MP Safety Management will make appropriate corrections to your personal information to ensure that it is accurate, up to date, complete, relevant and not misleading. You may request the correction of your personal information at any time, either verbally or in writing. In doing so, you must provide reasons for the corrections to be made.
In certain circumstances, we may refuse to correct the information as requested. If so, we will give you a written notice to explain the reasons for our decision.
15. For complaints about the privacy of your information
If there is a concern about how we have handled your privacy; and you have been unable to resolve it through discussion with our consultant, you can take your complaint to the Managing Director:
You can lodge your complaint verbally, in writing or by email. The Managing Director will implement our Complaints Management Policy & Procedures to work with you on an agreeable resolution. The Complaint Management Policy & Procedures will be explained to you in full. You can access a copy of them on request. If your complaint cannot be resolved to your satisfaction with the Managing Director, you may lodge your complaint with the Privacy Commissioner through the Office of the Australian Information Commissioner.
Office of the Australian Information Commissioner
Phone: 1300 363 992
Grad. Dip. Ergonomics
Associate Fellow-Personal Injury Education Foundation
Workplace Occupational Therapist
Comcare ID No. 1256
0407 952 731