This policy details how Dial-A-Doctor Australia Pty Ltd, collects and uses your data. Management of your patient health information is regulated by the Commonwealth Privacy Act 1988. We understand that your health information is of a sensitive nature, and we take your privacy very seriously. We have strict procedures in place to ensure that the collection, storage and use of your data is handled securely.
WHY AND WHEN YOUR CONSENT IS NECESSARY
When you register as a patient of our practice, you provide consent for our GPs and practice staff to access and use your personal information so they can provide you with the best possible healthcare. Only staff who need to see your personal information will have access to it. We also advise at time of booking that there may be a Doctors Assistant at time of consult and your verbal consent is recorded on your patient health record.
The patient health record is a confidential compilation of pertinent facts of your health history, including past and present medical conditions, illnesses, and treatments. This information is obtained from you or your caregiver at the time of consultation with our doctor.
WHAT INFORMATION DO WE COLLECT AND WHY?
We aim for full disclosure and believe it is important that you know what information we collect from you and why. Below is a list of information we will collect from you.
WHEN BOOKING YOUR HOME VISIT, WE WILL ASK:
- Suburb; To ensure we operate in your area
- Telephone Number; To ensure we can call you back if the call cuts out and for our team on the road to communicate ETA
- Symptoms; It is important we understand the reason you are asking for a home visit. We must make sure that your condition is not an emergency, and to check that our doctors can help you with the problem you have, to avoid wasting your time.
- First and Last Name
- Date of Birth
- Email Address
- Medicare Number
- Aboriginal or Torres Strait Islander Origin
This allows us to correctly identify you and can also help the Doctor in their diagnosis. For example, certain conditions are more likely to affect people of given ages and cultural backgrounds.
We collect your Medicare or DVA details to allow us to bulk bill you. Without these, we will have to privately bill you. We do not record or retain any of your bank or card details
- Next of Kin (name and number)
- Caller Name and Number (if different to the patient)
Contact details allow us to get in touch with you around the time of your visit to advise you on an estimated time of arrival. We will take down several contact details to ensure we can contact you, especially if we must do so urgently. This is why we ask for information about the person who books the visit (if not the patient) as well as the Next of Kin
- Your regular GP and GP Practice
Recording your GP and GP Practice is essential to keep your regular GP in the picture. We send your clinical note to your GP via secure electronic messaging, after your visit. You can choose not to have any correspondence sent to your GP, however you must understand that choosing to do so could potentially affect your care. If you do not wish for any correspondence being sent to your GP, please inform our receptionist or your Doctor at the time of your visit.
DURING YOUR VISIT
- History of the medical issue
- Past medical history
- Social history (e.g. conditions that run in the family)
- Allergy information
All information discussed during your visit, as well as details of any observations (e.g. blood pressure) or examinations (e.g. listening to your chest with a stethoscope) must be recorded on your patient file. We are required to keep an accurate record by law, but more importantly, this record allows for the provision of better care for you in the future. For example, because we send these notes to your GP, it allows them to make better decisions about your ongoing care.
We will also ask you for details of any allergies you have, your past medical history, your current medications and we may ask to take a photo of any relevant correspondence you have (e.g. a list of allergies or medications).
AFTER YOUR VISIT
Please be advised that all consultation notes are automatically reported back to your regular GP, unless you ask us not to.
HOW IS YOUR DATA STORED?
All data we collect from you is stored within our Practice Management System. This data is stored as a collection under your name and this is known as your “patient health record”. This is not to be confused with “My Health Record” which is a separate storage of health data hosted and controlled by the Australian Government.
Our Practice Management System stores your data on computers within a secure data-centre within Australia. None of your data is kept outside of Australia. Only Dial A Doctor has access to your data and it is stored in an encrypted format.
To protect against loss of data (e.g. due to a fire) it is backed up in another secure location, also within Australia. Again, this data is always encrypted when backed up and when moving from one computer to another to ensure that no-one can read your information.
WHO HAS ACCESS TO YOUR DATA?
Only staff and doctors that work for Dial-A-Doctor can access our Practice Management System. We do not allow any 3rd party access to our Practice Management System under any circumstances.
Unless you ask us not to, we will forward your consultation notes to your GP the day after your review. We only provide referral letters if you must attend the Emergency Department after your consultation with us. In this situation, we will write your referral letter to give to you, or to give to a paramedic crew if an ambulance is required. The referral letter will contain information related to the current consultation. Information from previous consultations will only be included if it is relevant to the current medical situation. Providing a referral letter is important as it allows for a thorough handover for both the paramedics and the hospital doctors, which means important information is not missed and you do not get asked the same questions again.
For all other referral letters (e.g. to a specialist) you should see your GP.
HOW DO YOU ACCESS YOUR OWN DATA?
You have a right to access your personal health information as set out in the Freedom of Information Act 1992 (WA). There are different reasons why you might choose to do this. You may simply wish to learn about what we have on file about you, or you may wish for us to transfer the information we hold on file to another health practitioner, for example, if you are changing GPs.
In the first instance we ask that you contact your regular GP as they have copies of your Clinical Note provided to them after your consultation with us.
Alternatively, we have formal processes that must be followed to access your data or to transfer it to another party. If you have a data request, please contact our receptionist for further information. They will explain the process to you and provide you with the relevant paperwork. Please note that there may be a charge for this.
There may be instances where we cannot grant you access to the personal information we hold; however, we will only do so in accordance with our rights and obligations under the Act.
If you believe that personal information, we hold about you is incorrect, incomplete, or inaccurate, then you may contact us to amend it.
THIRD-PARTY REQUESTS FOR YOUR DATA
We do not provide your data to anybody without asking for your permission first, whether this be in Australia or overseas. The only exception to this is where we are required to by Australian law. Your data is only stored in Australia and is therefore not subject to overseas jurisdictions, therefore your data will never be disclosed overseas unless you specifically request it to be. Third parties requesting your data must do so formally by submitting a written request using our ‘Request for Personal Health Information’ form.
Requests for the transfer of medical records must be made using our ‘Request for Medical Records Transfer’ form.
Please speak to our receptionist if you would like to make these requests.
USE OF DATA FOR QUALITY ASSURANCE AND RESEARCH
Dial-A-Doctor do not carry out research.
For Quality Assurance, patient health information may be reviewed by official agencies, without prior consent from patients. For example, an official accreditation agency must review our patient records to check that we continue to meet the highest standards of provision of care. The Office of the Federal Privacy Commissioner allows for this quality improvement activity to take place without patient consent. If you have any questions about these processes, please contact our receptionist.
HOW DO WE PROTECT DATA FROM MISUSE, LOSS AND UNAUTHORISED ACCESS?
Multiple security features exist to protect your data. We have security procedures and policies to maximise restriction of access and to prevent un-authorised people from seeing your information.
All your data is encrypted when it travels between computers and when it is stored. This added security means that the data is unreadable without the appropriate authorisation. In addition, all data is backed up in two additional secure locations, both within Australia, in case of an emergency (e.g. fire causing data loss on one of the data stores).
HOW LONG DO WE KEEP YOUR DATA FOR?
There are requirements by law for us to keep you records for defined minimum periods of time in different circumstances. For example, medical records that have been sought for legal purposes must be retained for 7 years.
If you have not used our service for a long period of time, we may choose to archive your data.
If you wish for us to remove your records from our Practice Management System, then please contact our receptionist.
DEALING WITH US ANONYMOUSLY
You have the right to deal with us anonymously or under a pseudonym unless it is impracticable for us to do so or unless we are required or authorised by law to only deal with identified individuals.
QUESTIONS, FEEDBACK AND COMPLAINTS
FAO The Receptionist
Dial-A-Doctor Australia Pty Ltd
4 Salford Street
Victoria Park, WA 6100
We make every effort to respond within the following timeframes:
For written communication we will respond by next business day after receipt.
For e mail communication we will respond within 48 hours.
For telephone communication, immediate response or within 48 hours of voicemail received.
You may also contact OAIC or HaDSCO, generally, they will require you to give them time to respond before they will investigate. For further information visit or call:
www.oaic.gov.au or call the OAIC on 1300 363 992
www.hadsco.wa.gov.au/home or call HaDSCO on 1800 813 583