1 SCOPE: National
This policy applies nationally to all entities within Silver Chain. In this policy, reference to “Silver Chain” or “we” means Silver Chain Group Limited and its related bodies corporate (as that term is defined in the Corporations Act (Cth)), including Royal District Nursing Service of SA Limited, Access Care Network Australia Pty Ltd and Silver Chain Foundation Inc.
The purpose of this policy is to outline how Silver Chain protects the privacy of individuals.
Silver Chain is a not-for-profit charitable organisation that provides healthcare and home support services to those in need within the community. We routinely collect personal and sensitive information from individuals to enable us to carry out these services.
3 POLICY DESCRIPTION
3.1 States Silver Chains commitment to the protection of privacy and the compliant management of personal information; and
3.2 Sets out our rights and responsibilities in relation to the collection, use, storage and disclosure of personal information.
Health information has the meaning provided in the Privacy Act 1988 (Cth) and includes:
- information or an opinion about the health or a disability of an individual;
- an individual’s expressed wishes about the future provision of health services to him or her;
- a health service provided, or to be provided, to an individual; and
- other personal information collected to provide, or in providing a health service.
Personal information has the meaning provided in the Privacy Act 1988 (Cth) which is “information or an opinion (including information or an opinion forming part of a database), whether true or not and whether recorded in a material form or not, about an individual whose identity is apparent, or can reasonably be ascertained, from the information or opinion.” Personal information includes sensitive information and health information.
Privacy Legislation means all privacy legislation which applies to Silver Chain Group and includes the Privacy Act 1988 (Cth) and the Health Records and Information Privacy Act 2002 (NSW);
Privacy Principles means the Australian Privacy Principles set out in the Privacy Act 1988 (Cth).
Privacy Officer means Silver Chain’s nominated Privacy Officer.
Sensitive information has the meaning provided in the Privacy Act 1988 (Cth) which is information or opinion about an individual’s:
- Racial or ethnic origin;
- Political opinions;
- Membership of a political association;
- Religious beliefs or affiliations;
- Philosophical beliefs;
- Membership of a professional or trade association;
- Membership of a trade union;
- Sexual preferences or practices;
- Criminal record;
- Health information; or
- Genetic information.
Website means the Silver Chain Group website - www.silverchain.org.au.
5 COLLECTION OF PERSONAL AND SENSITIVE INFORMATION
Silver Chain Group respects the privacy of individuals, and is open about the way it handles all, personal information (including sensitive information and health information) given to it by staff, volunteers, clients and members of the public.
To enable us to deliver our services and carry on our business, we collect the following types of personal information:
Silver Chain Clients
- Contact details (including name, address, telephone number, email for client and family contacts);
- Personal details (which may include date of birth, gender, nationality, religious affiliations, Medicare and health fund details);
- Health information (see clause 7 of this Policy); and
- Credit card and bank account details.
Silver Chain Employees, Volunteers, Candidates for Volunteer Work and Prospective Employees
- Contact details (including name, address, telephone number, email);
- Personal details (including date of birth, country of birth, citizenship, residency and visa details);
- Details of emergency contact persons;
- Information provided by the individual relating to qualifications, skills and experience; languages spoken, drivers licence details;
- Information and opinions from referees for prospective employees and candidates for volunteer work;
- Bank account details;
- Results of a Police Check; and
- Health information (if requested by Silver Chain Group in which case the reason for collection of this information will be provided).
- Contact details (including name, address, telephone number, email);
- Personal details (which may include date of birth, gender, income, areas of interest, donation history); and
- Credit card and bank account details.
If you do not provide personal information reasonably requested by Silver Chain, we may not be able to provide the services or products required to be provided.
6 HOW SILVER CHAIN COLLECTS INFORMATION
6.1 Silver Chain may collect personal information in a number of ways. Where possible, Silver Chain collects personal information directly from the individual concerned. Personal information is collected by us through various means, including telephone, face to face meetings, forms and questionnaires.
6.2 In some situations, we may also obtain personal information about an individual from a third party. In these circumstances, we will take reasonable steps to contact the individual and ensure that he or she is aware of the purpose for which the information was obtained and how the information will or may be disclosed. For example, we may collect information from a client’s doctor, or from a referee whose details have been provided by a prospective employee or volunteer, or from another person who you have given us the authority to contact.
6.3 For more information on how we collect, hold, use and disclose personal information, please consult our Privacy Collection Statement, which is provided to you at the time of collecting personal information or is available at www.silverchain.org.au/privacy/privacy-collection-statement.
7 HEALTH INFORMATION
7.1 In providing services to clients, Silver Chain may collect health information. This may include a client’s medical history, treatment notes and photographic images. We will obtain your prior consent before we disclose this information to anyone and we will explain to you how the information will be used.
7.2 If we collect health information from a third party (for example a doctor or specialist health provider) Silver Chain will let you know that this information has been collected and we will explain how the information will be used and disclosed.
7.2 Silver Chain will not use health information beyond the consent provided by you unless further consent is provided or in accordance with one of the exceptions under the Privacy Legislation.
7.3 If Silver Chain wishes to use health information provided by you for research or statistical purposes, this information will be de-identified unless you have given your consent for us to identify you.
8.1 We will obtain your consent before collecting your health information, unless it is unreasonable or impracticable for us to do so.
8.2 We may not be able to obtain consent directly from you if you are not able to communicate consent to us for reasons which may include age, mental incapacity or other illness.
8.3 In these circumstances, we may be limited in how we can collect, use and disclose your personal information. We will only do so in accordance with the Privacy Legislation.
8.4 If you are not able to provide your consent, the Privacy Legislation allows us to obtain consent from your legal guardian or attorney or someone else who is entitled to act on your behalf.
8.5 If you cannot give us your consent for any reason, the Privacy Legislation also allows us to disclose your personal information in limited circumstances if the disclosure is necessary to enable us to provide you with appropriate care or treatment.
9 USE AND DISCLOSURE OF PERSONAL INFORMATION
9.1 Other than as set out in this Policy, Silver Chain will only use and disclose your personal information for the purpose for which it was collected.
9.2 We may share your personal information within the divisions and bodies corporate forming part of Silver Chain.
9.3 We may also disclose your personal information to external organisations including:
- Government departments and agencies who provide funding for Silver Chain services;
- External assessment entities and agencies;
- Emergency services (including ambulance, police, fire brigade) who may be called upon to assist during the delivery of Silver Chain services;
- Doctors and health care professionals, who assist us to deliver our services;
- Other regulatory bodies (for example WorkSafe, the Workplace Gender Equality Agency, Centrelink);
- Referees provided by you;
- Former employers of people who apply for employment or volunteer services at Silver Chain;
- Credit agencies; and
- Silver Chain’s professional advisers, including lawyers, accountants and auditors.
9.4 Except as set out above, Silver Chain will not disclose an individual’s personal information to a third party unless:
- the individual has consented to the release;
- the release is authorised or required by law; or
- Silver Chain reasonably believes that an individual or the public will be harmed if the release is not made.
9.5 Unless an individual has opted not to receive such communications, Silver Chain may use personal information to contact that individual (including in person or by telephone, email or text message) in relation to services and products provided by Silver Chain that we reasonably believe may be of interest to the individual. This may include products and services provided by the various divisions and related bodies corporate within Silver Chain. For example, if an individual receives health care services from Silver Chain, we may contact the individual in relation to aged care services or products that we reasonably believe may be of interest to the individual. An individual may at any time opt out of receiving such communications by calling Silver Chain on 1300 650 803 or by
9.6 Silver Chain may store personal information outside Australia. If we do so, we will take reasonable steps to ensure that the overseas recipient protects your personal information in accordance with the Privacy Legislation.
10 RELEASE OF IMAGES OR PERSONAL INFORMATION FOR PUBLICITY PURPOSES
10.1 Silver Chain produces publications (including information brochures and a regular newsletter) and from time to time runs promotional campaigns to raise awareness of its services, raise funds and provide information to the public and other stakeholders. Some of these publications include photographs, video footage and sound recordings in electronic media.
10.2 Wherever practicable, we will obtain an individual’s consent before using or publishing any image or recording of that individual for marketing purposes.
11 ACCESS TO AND CORRECTION OF YOUR PERSONAL INFORMATION
11.1 Under the Privacy Principles (subject to some exceptions), you have a right to access and copy personal information which we hold about you. You also have a right to ask Silver Chain to correct personal information which is inaccurate, incomplete or out of date.
11.2 Silver Chain undertakes:
- to deal with requests to correct your personal information promptly and confidentially;
- to correct any inaccurate or out of date information which is brought to our attention; and
- that your request to access your personal information will not affect any commercial or professional relationship which you may have with Silver Chain.
11.3 Requests for information or access to your information, or corrections to your personal information should be made to the Silver Chain Privacy Officer whose contact details are set out in clause 13 of this Policy. A request must be in writing and provide proof of your identity.
11.4 Silver Chain will take all reasonable steps to provide you with access or the information requested by you within 14 days of your request. If we need more time, (for example, if we need to access a large volume of information) we will use our reasonable efforts to provide you with access or the information requested within 30 days of your request.
11.5 Silver Chain may charge you reasonable fees to reimburse us for the cost incurred in meeting your request for information, including photocopying and delivery cost of information which is stored offsite.
11.6 Silver Chain may refuse access to information requested by you in certain circumstances. These include if:
- the request relates to personal information about someone other than you;
- providing you with access would pose a serious and imminent threat to the life or health of a person;
- providing you with access would create an unreasonable impact on the privacy of others;
- the request is frivolous or vexatious;
- providing access would prejudice negotiations between you and Silver Chain;
- access would be unlawful;
- denial of access is authorised or required by law;
- access would prejudice law enforcement activities;
- access discloses a ‘commercially sensitive’ decision making process or information; or
- any other reason that is provided for in the Privacy Principles or the Privacy Legislation.
11.7 If we deny you access to any information requested by you, we will give you our written reasons for doing so. If there is a dispute about your right of access to information, this will be dealt with in accordance with the complaints procedure set out in clause 14 of this Policy.
12 SECURITY OF PERSONAL INFORMATION
We will take reasonable steps to ensure the security and protection of personal information held by us. Silver Chain IT systems are password protected and comply with relevant security standards.
13 QUESTIONS AND REQUESTS
13.1 Silver Chain has appointed a Privacy Officer who can be contacted about any questions or requests regarding this policy, including dealing with any complaints or requests to update or correct details of your personal information.
13.2 The Privacy Officer's contact details are as follows:
(08) 9242 0242
The Privacy Officer
Silver Chain Group
6 Sundercombe Street
Osborne Park WA 6017
14 COMPLAINTS PROCEDURE
14.1 If you have provided us with personal and sensitive information or we have collected and hold your personal information, you have a right to make a complaint and have it investigated and dealt with under this complaints procedure.
14.2 Any complaint should be sent in writing or by email to the Privacy Officer at the address set out in Paragraph 13.2 of this Policy.
14.3 We will use our reasonable endeavours to resolve any complaint within a reasonable timeframe, which will usually not be longer than 30 days. However, if the matter is complex, resolution of your complaint may take longer.
14.4 We will keep a record of your complaint and the outcome.