1. Overview
DiagnostiCare is committed to complying with its obligations under the Privacy Act 1988 (Cth) (Privacy Act), which includes the Australian Privacy Principles, and relevant State privacy legislation applying to health information.
This Policy outlines how we collect, use and share your personal and health information.
In this Policy, the term ‘your personal information’ encompasses the definitions of personal information and health information outlined below.
2. Definitions
2.1 What is personal information?
Personal information is information or an opinion about an individual who is identifiable or capable of identification from that information, whether that information or opinion is true or not.
Personal information can also be considered ‘sensitive information’ which is subject to additional protection under the Privacy Act. This can include information about your health.
2.2 What is health information?
Health information is:
a. Personal information about:
i. the physical, mental, psychological health or disability of an individual;
ii. an individual's expressed wishes about the future provision of health services to them; or
iii. the nature of health services that have been, or are to be, provided to an individual;
b. other personal information collected to provide, or in the course of providing, a health service;
c. other personal information collected in connection with the donation or intended donation of their body parts, organs or body substances; and
d. genetic information that is or could be predictive of the health of an individual or their descendants.
3. What personal information do we collect and hold?
We collect your personal information in the course of operating our business and providing our services to you. The types of personal information we collect about you will depend on the purpose for which the personal information is collected.
This can include the following:
a. names, date of birth, addresses, contact details;
b. medical information including medical history, allergies and medications; and
c. payment information such as health fund details and credit card details.
4. Why and how do we collect and hold your personal information?
If an individual is to receive or has received a service from DiagnostiCare, we will collect or use their personal information.
Generally, we will only collect health information where the information is necessary for the provision of our services and the following circumstances apply:
a. you have consented to its collection;
b. the collection is required, authorised or permitted by law; and
c. the information is necessary to provide a health service to you and you are incapable of giving consent.
Examples of how we collect personal information about you are the following:
a. completion of our electronic forms on our website;
b. your request or referral form which your referring healthcare provider completes when they recommend that you receive a medical service from us;
c. people or entities that ask us to provide you with our services (e.g. a hospital where you are a patient); and
d. We might ask people or entities (e.g a hospital or radiology clinic where you are a patient) to provide us with your medical records including radiology reports and images for the continuous provision of our services.
5. How do we use your personal information?
We primarily use your personal information to provide our services to you (as a patient) and to carry out patient-related services. This may include the following:
a. communicating your results from our services to your Referrer and their staff;
b. carrying our administrative services (e.g. billing); and
c. send out reminders for appointments.
6. Who may we share your personal information with?
We share your personal information outside of DiagnostiCare for medical, insurance,legal, management and administrative reasons. This may include healthcare providers and their administrative staff.
Our websites and IT systems are hosted by servers in Australia, however, we may use technical support services that are based off shore. This means that technically speaking, your personal information may travel electronically from Australia to another country and back to Australia. When sending information offshore, we ensure all providers we engage can and will observe the requirements of the Australian Privacy Principles.
7. How long do we retain your personal information?
We will retain your personal information for at least the minimum period required by law and otherwise dispose of it securely.
8. How can you manage and access your personal information?
We take all reasonable steps to ensure that the personal information we collect, use and share is accurate, complete and up to date. You may contact us directly at feedback@diagnosticare.com.au if you wish to update your personal information or believe that there are errors with the personal information we have collected.
9. What is the process for complaining about a breach of privacy?
Individuals who believe that we have breached their privacy rights in any way or wish to discuss any issues about our Policy, should contact us at feedback@diagnosticare.com.au so that we can try to satisfy any questions and correct any errors on our part.
If you are unsatisfied with the outcome of your complaint, we will advise you of further options, which may include review by the Privacy Commissioner within the Office of the Australian Information Commissioner and the Health Complaints Commissioner.
10. Changes to this Policy
DiagnostiCare may change this Policy from time to time at our discretion, including to maintain our compliance with applicable laws and regulations. Amendments to this Policy will be posted on our website.