Arthritis ACT adheres to the Privacy Act 1988 and the Privacy Amendment (Private Sector) Act 2000. Arthritis ACT affirms the protection of individual or authorised delegates from the unfair or unauthorized use of their personal information. Arthritis ACT adheres to the following principles.
- Collection of Information: Personal information can only be collected when it is necessary for an organisation’s operations.
- Use and Disclosure of Information: Information can only be used or disclosed for its original purpose of collection.
- Data Quality: All information must be recorded without bias, feeling, assumption and undue subjectivity.
- Data Security: Arthritis ACT will take reasonable precautions to protect personal information so that it is not misused, lost, accessed by unauthorized people, modified or disclosed.
- Clients or authorised delegate Files: All clients or authorised delegates have the right of access to their files.
- Openness: Arthritis ACT must be able to document its practices and make this information available to all who request it.
- Access and Correction: Arthritis ACT will take all reasonable steps to allow people to access their personal information unless the law does not allow it.
- Identifiers: Government Agency identifiers cannot be used as an identifier. This includes Medicare numbers, tax file numbers, Health Care Card numbers or future identity numbers assigned by Government Agencies.
- Sensitive Information: Collection of sensitive information will occur with an individual or authorized delegate’s consent, unless the collection is; required by law to establish, exercise or defend a legal or equitable claim, or; necessary to prevent or lessen a serious or imminent threat to the life or health of the individual or authorised delegate who is the subject of the information.
PROTECTING YOUR RIGHTS
In the case of a privacy issue, contact:
CEO: Arthritis ACT 02 6288 4244 | Privacy Commissioner: 1300 363 992