Important Changes to the National Privacy Principles
The use and retention of personal and sensitive information is currently governed by the National Privacy Principles. From March 2014, the existing legislation will be replaced by the new Australian Privacy Principles (APP) which address specific situations more clearly. The APP is a stronger set of guidelines that carry more substantial penalties for breaches.
A copy of the new Australian Privacy Principles legislation can be downloaded from the Office of the Australian Information Commissioner (OAIC) website.
Most relevant to Kestral’s customers is the legislation relating to “Cross border disclosure of personal information”. These changes relate to the use of offshore entities. Where a business collects private information and uses services offshore, such as the typing of patient reports, strict new guidelines apply. Penalties for breaching the new regulations range from AU$340K for a single entity and up to AU$1.7M for corporate entities.
Kestral recommends that customers discuss any current or future
use of offshore services with their Karisma system with the relevant
administrative staff at their facility, as well as seek legal advice
from their medical indemnity insurer.