Agency Policy: Risk Management V4 August 2017
ac.care collects information where such information relates to the activities of the organization; relates solely to the members of the organization, or individuals who have regular contact with the organization in connection with its activities. We value your information and take all reasonable steps to hold your information securely, in either electronic or physical form. The information is stored in access controlled premises or in electronic databases requiring logins and passwords. ac.care staff who have access to your information are subject to strict confidentiality obligations.
Access and correction:
Requests for private information should be made in writing and with proof of identity of the individual and authority to request if relevant. The request must be made made by the individual concerned, or by another person who is authorised to make a request on their behalf, for example, as a legal guardian or authorised agent. This is necessary to ensure that personal information is provided only to the correct individuals and that the privacy of others is not compromised.
ac.care will take such steps (if any) as are reasonable in the circumstances to correct that information to ensure that, having regard to the purpose for which it is held, the information is accurate, up to date, complete, relevant and not misleading.
We may refuse to provide access to information held about you in situations if the Australian Privacy Principles (APPs) within the Privacy Act 1988 (and as amended) allow us to do so. However, if we refuse access, we will supply written notice that sets out:
Requests for access and/or correction should be made to the Privacy Officer, PO Box 1842, Mount Gambier, SA 5290 or firstname.lastname@example.org
Further information on Privacy legislation is available from Office of the Australian Information Commissioner – email@example.com or 1300 363 992