Step By Step Allied Health is committed to ensuring and providing quality services that upholds the privacy and confidentiality of our client’s Personal Information in accordance with the Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Privacy Act). A copy of the Australian Privacy Principles may be obtained from the website of The Office of the Australian Information Commissioner at www.aoic.gov.au.
- Why Step By Step Allied Health collects information.
- What type of information Step By Step Allied Health may collect and how it will be collected.
- Disclosure and use of information.
- How Step By Step Allied Health stores and protects information.
- How long information is kept.
- Access and changes to personal information
Personal Information as defined in the Privacy Act (1988) is information or an opinion about an identified individual, or an individual who is reasonable identifiable:
- Whether information or opinion is true or not.
- Whether the information or opinion is recorded in a material form or not.
Health Information as defined in the Privacy Act (1988) is information or an opinion about:
- The health or a disability (at any time) of an individual.
- An individual’s expressed wishes about the future provision of health services to him or her.
- A health service provided or to be provided to an individual.
Why We Collect Personal Information
Step By Step Allied Health collects personal information when it is reasonably necessary for us to provide the services that you may require.
Other reasons Step By Step Allied Health collects personal information is to:
- Understand how Step By Step Allied Health can meet your needs now and in the future.
- Provide the best possible service to achieve maximum results.
- Claim payment from external funding sources, including Medicare, National Disability Insurance Scheme (NDIS), and other Insurance organisations.
- Comply with third part agencies information along with their needs and requirements.
- Comply with reporting requirements and other obligations to third party agencies, for example, medical practitioners.
- Enable Step By Step Allied Health to send reports and other relevant data to other health care providers.
How We Collect Personal Information
Information may be collected in a number of different ways. Step By Step Allied Health will always attempt to initially obtain the required information from the client or parent/carer directly, by means of documentation, over the phone, via email, or in person. In certain circumstances information may need to be collected from a third party such as:
- General Practitioner (GP).
- Paediatrician.
- Family member.
- Carer.
- Health professionals.
- Teacher/educator
Type of Information We May Collect
The following information may be collected by Step By Step Allied Health in order to assist the business in providing the service that is required:
- Personal information including name, address, date of birth, gender, and contact information.
- Family medical history and next of kin details.
- Health information including medical conditions, medical records, and medical results.
- Source of initial referral.
- Other health or medical practitioner’s involved details
Disclosure and Use of Information
Step By Step Allied Health will only use or disclose personal information for the primary purpose for which it was collected, for a directly related secondary purpose, or as permitted or required by law. Along with the uses listed in this policy or otherwise permitted under the Privacy Act (1988), using or disclosing personal information will only be done after obtaining the client’s or parent/carer’s consent. Outlined below is how Step By Step Allied Health may use or disclose personal information:
- Personal information including sensitive and health information is collected and used for the primary purpose of ensuring all clients receive a high quality of service whilst under the care of Step By Step Allied Health.
- Where necessary information may be required to be disclosed to other health care providers, including a general practitioner (GP), a paediatrician, or other health professionals.
- We may provide information about medical conditions to the parents, carers, guardians or legal representatives unless previously stated by the client or parent/carer to not disclose personal or health information.
Quality assurance: On occasions we may need to collect, use, or disclose aspects of personal information to monitor the standard of health services provided. This is done for processes including evaluations, clinical audits, risk and claims management, education and training of staff, and quality assurance activities including monitoring clinical outcomes.
Client satisfaction: To ensure the business is providing a level of high quality services, a Step By Step Allied Health employee may contact the client or parent/carer in the future to request feedback on services. Billing: For billing and invoicing purposes, Step By Step Allied Health may disclose relevant aspects of the client or parent/carer’s personal information with third parties such as health care providers, Medicare, National Disability Insurance Scheme (NDIS), and other Insurance organisations.
Contactors: On occasions, Step By Step Allied Health may request engagement of third parties to assist in providing the services required such as building contractors and professional service providers. Step By Step Allied Health therefore may need to disclose the relevant personal information in relation to these services. All such contractors are required to handle your personal information in accordance with the Privacy Act (1988) and this policy.
Data required by law: Step By Step Allied Health have a legal obligation to provide information to various entities; Step By Step Allied Health may provide personal and health information to government agencies where Step By Step Allied Health are providing services under contracts.
How We Store and Protect Your Information
Step By Step Allied Health ensures information is securely stored in a range of mediums including electronic systems, cloud-based servers, and paper files. All information can only be accessed by authorised personnel of Step By Step Allied Health. Electronic data may be stored or processed using the following services:
- Halaxy.
- One Drive.
- Xero
Please contact us for further information about how they maintain security and privacy.
How Long We Keep Your Information
Step By Step Allied Health retains personal and health information in accordance with legal requirements:
- For an adult over the age of 18 years, the minimum timeframe is seven years from the date of the last entry in the client’s record.
- For a person under the age of 18 years, the minimum timeframe is until the person is 25 years of age.
All copies of client or parent/carer’s information will be securely destroyed at the appropriate time.
Access and Changes to Personal Information
If the client or parent/carer wishes to access the information Step By Step Allied Health hold (both personal and health) the client or parent/carer has the right to do so. The client and parent/carer also have a right to request an amendment to the information Step By Step Allied Health hold if the client or parent/carer believes it is inaccurate. Step By Step Allied Health will allow access or make amendments as per the request unless there is a reason under the Privacy Act (1988) or other relevant law to refuse the request.
Step By Step Allied Health will allow access to personal records in a manner which is suitable to the individual’s needs except when:
- Providing access would have an unreasonable impact upon the privacy of other individuals.
- The request for access is frivolous or vexatious.
- The information relates to an existing legal dispute resolution proceeding between Step By Step Allied Health and the individual.
- Providing access would be unlawful.
- An enforcement agency performing a lawful national security function asks Step By Step Allied Health not to provide access on the basis that providing access would be likely to cause damage to the national security of Australia.
Step By Step Allied Health will allow parents/carers to access their child’s personal records in a manner which is suitable to the individual’s needs except when:
- The child denies access and is aged 14 years or older and is considered to have the capacity to make independent decisions about their health care.
- Step By Step Allied Health is aware of a relationship breakdown between parents and if there is a court order in place.
- Step By Step Allied Health believes that giving information to a parent will pose a serious and imminent threat to a person or unreasonable impact the privacy of another person.
In order to gain access or request an amendment Step By Step Allied Health do require written consent from the individual. This can be in form of an email or written letter.
Contacting Us
At Step By Step Allied Health, client care is our main priority. If you have any concerns regarding our privacy policy or services please contact us directly using the contact details provided below.
Address: Unit 7 21/-23 Elizabeth Street, Camden, NSW, 2570
Email: admin@stepbystepalliedhealth.com.au
Phone: 0435 377 394
Step By Step Allied Health welcomes complaints, compliments and ideas and it provides feedback on our services and enables us to make service improvements. We will strive to resolve your complaint internally. If we are unable to resolve your complaint satisfactorily, you may request the Federal Privacy Commissioner to have your complaint investigated. For more information about how you may lodge a complaint with the Federal Privacy Commissioner, please contact the Commissioner’s hotline service on 1300 363 992.