The CMPA encourages members to require their employees and employees to sign a « confidentiality/non-disclosure agreement » [PDF] as they can tailor members and use them in their practice. It may be advantageous for the agreement to be renewed each year. This agreement helps ensure that staff and staff understand their obligations, encourages compliance with confidential patient information and provides valuable patient safety. 3 – The practice should not collect personal data (other than sensitive information), unless the information is reasonably necessary for one or more functions or activities of the company and if the individual agrees to collect the information. 6 – If the practice contains personal data about a person collected for purposes (the main purpose), the practice should not use or disclose the information for other purposes (the secondary objective), unless: 5 – At or before or, if this is not feasible, as soon as possible, the practice collects personal data about a person, the practice must take appropriate measures (if any) that are appropriate in the circumstances: 1 – Practice is necessary to manage personal data in an open and transparent manner and have a clear and current policy (the APP privacy policy) on the management of personal data by the company. The APP`s privacy policy must contain the following information: This process should be consistent with Australian data protection principles and all applicable state and territory data protection laws. Below is a summary of the 13 APIs and their effects on your doctor`s office. You need to familiarize yourself with the full requirements and duties you may have for your patients. In addition to the obligations under the Data Protection Act, there are practical elements that you can use in practice to promote privacy and confidentiality: 8 – Before the practice transmits personal data about a person to an overseas recipient: if the practice contains personal information about a person (including staff); This would result in the practice being well aware of the situation, such as: all staff and contractors should sign a confidentiality agreement with the practice to ensure that they are aware of their confidentiality obligations and to protect the practice in the event of an infringement. 2 – Individuals should have the option of not identifying themselves or using a pseudonym when dealing with the practice of a particular case. This is not the case: the practice should aim to ensure that health and other sensitive personal data collected during a patient`s relationship with the practice and its staff remain safe and are used and disclosed for any primary or secondary purpose for which they have been collected, with the exception of legal exceptions (see below).
