By providing personal information to us, you consent to us collecting, using and disclosing your personal information as described in this Policy. In some circumstances, where it is not reasonable or practical for us to collect this information directly from you, responsible persons (for example, a spouse or partner, close family member, emergency contact or enduring medical power of attorney) can give consent for collection on your behalf.
We will usually collect your personal information directly from you by email, telephone, in writing or in person, or through our website(s). Where it is not reasonable or practical for us to collect this information directly from you, we may need to collect information about you from a third party. In the case of patients, we may also collect information from a third party where your health may be at risk and we need your personal information to provide you with emergency medical treatment. The third parties from whom we may collect your personal information include: Other health service providers, including healthcare professionals, hospitals, clinics and other pathology practices if they have referred you to us or are involved in your care. (Your doctor will generally explain why he or she is collecting the information and where it is going to.) Your responsible persons (such as a relative or carer). Our own internal records to link your information. The My Health Record program operated by the Commonwealth Department of Health, if you have chosen to participate. Health insurers, law enforcement or other government instrumentalities.
The type of personal information we collect about you depends on who you are, our relationship with you and the nature of our interaction with you. The personal information we collect about you will include only the information that is: Reasonably necessary for us to engage with you in the usual course of our business. Necessary to provide you with services (including, in the case of patients, coordinating and communicating with your healthcare providers). Required for administrative and internal business purposes related to the services we provide to you. The personal information we collect may include but not limited: Your name, age, gender, date of birth, contact details, Health information relating to your lifestyle and medical history relevant to providing healthcare services (such as your medications, diagnostic tests and treatments, family medical history, occupational history, genetic or biometric information and copies of correspondence to and from your healthcare providers). Relevant government identifiers (such as your Medicare number), when necessary for billing or other administrative purposes. Other personal information collected in the form of clinical images and samples. Records of our past engagement with you. In relation to employees, any information relating to your employment including, employment histories, applications, pre-employment checks, qualifications, training records and information required by laws, regulations or standards. Payment details. Other information, occasionally including religion and ethnicity, which may be relevant in our dealings with you.
We take the protection of your personal information seriously and take all reasonable steps to ensure the information that we collect, use and disclose is accurate, secure and protected from misuse and loss and from unauthorised access, modification or disclosure.
We will take reasonable steps to ensure that the personal information we collect, use or disclose is accurate, complete and current. To assist us, please ensure that the information you provide to us is accurate, up-to-date and complete, and let us know when your personal information changes. Security We will take all reasonable steps to protect your personal information from misuse, interference, loss, unauthorised access, modification or disclosure. We use technologies and processes including, but not limited to, access controls, network firewalls, encryption and physical security measures, in order to protect your privacy. Retention We will destroy or permanently de-identify any of your personal information that is no longer needed for the purpose for which it was collected, provided we are not required, under relevant accreditation standards or an Australian law, to retain the information
If you have comments or concerns relating to this Policy or wish to make a complaint about our handling of your personal information, please contact our Privacy Officer. We may need to verify your identity and ask for further information, in order to investigate and respond to your concern or complaint. We will aim to respond to you within a reasonable time, and generally within 21 days.