The company is committed to managing information and communication consistent with best practice principles of privacy and security. The company will adopt practices that are consistent with the Australian Privacy Principles as set out in the Clauses of Schedule 1 of the Privacy Act 1988. Also refer to Division 2, S14 of the Privacy Act 1988. The company will also refer to the Children and Young Persons Care and Protection Act 1998.
The following guiding principles shall apply:
-
- The company shall only collect and store information that is relevant and necessary to the purpose for which it was intended by its collection.
- Any information collected shall be stored in a manner that, as far as possible, is secured against tampering, unauthorised access, and inappropriate use.
- Information shall not be retained beyond its purpose and will be securely disposed of once the purpose for which it has been collected has expired.
- The person to whom the information relates (or their legally appointed advocate/representative) shall at all times have the right to access any information stored concerning them and shall have the right to request that inaccuracies regarding factual information be corrected on the record. This will not apply to clinical or professional opinion or assessment which may be accessed but not necessarily altered.
- A person whose information is stored by the company shall be made aware of:
1. The company’s approach to privacy;
2. The information that is being stored;
3. The purpose and method of storage and its management;
4. How the information may be accessed by them and how they may seek its correction;
5. To whom the information may be disclosed;
6. Their rights with regards to privacy. - Persons whose information is stored by the company shall be given opportunity to lodge a privacy complaint which shall be managed by the company in the manner indicated in this document.
- Any of the above shall be excepted where other legislation or legal requirements apply.
The Australian Privacy Principles
There are 13 Australian Privacy Principles (APP). The company will endeavour to meet these principles when working with and collecting information about individuals and their families.
The company may collect information from organisations and individuals for a variety of reasons. Information may be collected for event attendance, training purposes, information
[Date of Currency: 13 March, 2019]
dissemination or project and research purposes. The company will not on-sell or disclose any information collected to another person, organisation or agency unless permission has been granted or where required or authorised by or under Australian law, or a court/ tribunal order.
Part 1: Consideration of personal information privacy
|
APP 1: Open and transparent management of personal information |
The company is committed to being open and transparent about why information is collected; how it is stored and who the information is given to where it is safe to do so for the client, staff and relevant others. In response, the company has committed to having a dedicated Privacy Officer to ensure the company complies with its own privacy processes and those legislated; respond to and manage privacy complaints and report to the Board of Directors in relation to privacy breaches and the effectiveness of privacy processes. |
|
APP 2: Anonymity & pseudonymity |
When providing information or making an enquiry to the company, individuals and their families have the right to remain anonymous or use a pseudonym. |
Part 2: Collection of personal information
|
APP 3: Collection of solicited personal information |
The company will collect information through applications for service; surveys and feedback in relation to the quality of service delivery and the company’s management. Information collected by the company will be securely stored in personal files and electronic databases. |
|
APP 4: Dealing with unsolicited personal information |
In the unlikely event the company receives unsolicited information then the company will destroy or de-identify the information as soon as practical and if lawful to do so. |
|
APP 5: Notification of the collection of personal information |
In the event the company receives unsolicited information about an individual, and if the information is relevant and is likely to have been collected through our processes, the company will inform the individual and explain how the information will be used as soon as practical. |
Part 3: Dealing with personal information
|
APP 6: Use or disclosure of personal information |
Information will not be disclosed to another organisation or agency unless required or authorised by or under an Australian law, or a court/ tribunal order. Information collected by the company will be used for reporting statistics in relation to service delivery and client outcomes (information will be de-identified), disseminating information about upcoming community events and the company’s programs and training opportunities. Information will not be used for other purposes unless the person has consented or the information is required to locate a missing person or for the purpose of a confidential alternative dispute resolution. |
|
APP 7: Direct marketing |
The company does not intend to use personal information collected for direct marketing purposes. |