Privacy Policy
We are committed to ensuring the privacy of our patient's sensitive health information. We expect all staff to meet their obligations to collect, hold, use, and disclose health information in accordance with the:
· Health Information Privacy Code 2020
· Health (Retention of Information) Regulations 1996
We have systems in place to maintain patient privacy and confidentiality:
· A robust IT security policy keeps information secure.
· Health information is stored within a secure and purpose-built practice management system.
· Records being transferred reach the correct person.
· Patient information is disclosed with consent and in accordance with legislation.
· Our physical environment is set up so health information can't be seen or overheard.
· Health information is collected, used, and stored in accordance with legislation.
· Significant privacy breaches are reported to the Privacy Commissioner | Te Mana Mātāpono Matatapu and the affected parties.
All new staff receive training about confidentiality, the Privacy Act 2020 and their corresponding obligations at the practice during their induction.
Privacy officer
We have designated privacy officers to oversee all privacy-related matters and concerns.
The privacy officers:
· ensure we comply with the Privacy Act 2020, e.g. by making sure that staff receive privacy training and understand and comply with their obligations and responsibilities to patients.
· deal with requests for personal information
· authorise release of patient information to third parties
· advises team members on privacy-related issues
· manage any complaints about privacy breaches
· ensure staff with access to patient information have signed confidentiality agreements.
· ensure contractors and other visitors complete a confidentiality form.