ACT Health Directorate Privacy Statement

ACT Health values your privacy. We ensure protection of information about you, which includes personal information and personal health information. Personal information such as your name and address, and personal health information such as the date of the service and your diagnosis or test results.

Why we collect your information

We receive your information when you visit a public health service in the ACT. Collection of your information help us deliver timely and efficient health services.

You can access more information about how public health service providers (like Canberra Hospital) collect and use your information on the Canberra Health Services website. ACT Health uses your information to administer the public health system within the ACT. Your information helps us with better decision-making, predictive modelling, and proactive service improvements. We use your information for purposes relating to research, funding, management, and quality of public health services in the ACT.  For example, your information can help us predict outbreak of diseases, enable pre-emptive measures, assign resources, and minimise harm.

ACT Health uses, manages, and shares your information safely, securely, and legally. We always ensure the integrity and confidentiality of your information. ACT Health complies with relevant ACT laws including the Information Privacy Act 2014 and the Health Records (Privacy and Access) Act 1997 (HRPA Act) which prohibit improper disclosure of information. The use of your information is also governed by the ACT Health’s Information Privacy Policy.

How we protect your privacy

Maintaining your privacy is of critical importance to us. Within the public health system, your information may be accessed by clinicians and support staff to provide you with health care services.

Where it is necessary to share information, we share information in a way where no person receiving the information can identify who the information is about. We do it by using data management techniques that protect your privacy. Where we need to share information, which is not de-identified, we ask for your consent, unless permissible by law.

For what purposes can we share your personal health information

In the ACT, the law permits sharing of information without consent in exceptional circumstances, e.g. where it is necessary for the management, funding, or quality of health services. ACT Health is also permitted to share de-identified personal health information for research and analysis that is:

• conducted in the public interest,
• permitted by relevant legislation, and
• approved and monitored by an accredited research ethics committee where required.

We determine requests for information for research purposes on a case-by-case basis. Information provided for research purposes is de-identified. We do not disclose personal information for research purposes unless the disclosure complies with applicable privacy laws. Prior to sharing your information, ACT Health must be satisfied that the person or organisation receiving the information will keep it secure, protect your privacy and not make the information publicly available.

ACT Health complies with internal policies and procedures that describe how data are to be shared to protect the privacy of individuals.

Who are the authorised recipients of your personal health information

Where the privacy requirements are met, personal health information or personal information may be shared with other government agencies, including the:

• NSW Centre for Health Record Linkage (CHeReL), which is part of NSW Health. A list of ACT Health data provided to this agency can be found on the NSW Health website.
• Australian Institute of Health and Welfare (AIHW).
• Australian Bureau of Statistics (ABS)
• National Health Funding Body
• Independent Health and Aged Care Pricing Authority.

Commonwealth agencies, including the AIHW and ABS are required to comply with the Privacy Act 1988(Cwth) and other legislation such as the Australian institute of Health and Welfare Act 1987 (Cwth),the Census and Statistics Act 1905(Cwth) and the Data Availability and Transparency Act  2022 (Cwth) which mandate adequate mechanisms to protect your privacy. Where ACT Health shares your information with above listed agencies for data linkage purposes, personal information is separated from content (clinical or service) information to maintain confidentiality. Synthetic/pseudo IDs are assigned for each person in linked datasets to keep identities protected.

Privacy online at ACT Health

You can find information about how personal information is managed on ACT Government websites and online facilities in our privacy policy.

Privacy and the Digital Health Record

Visit Digital Health Record for information on how privacy information is managed in the Digital Health Record.

Access to your information

Visit the Digital Health Record website for information about how you can request access to personal health information in your medical records.

Contact us

If you have any concerns about how ACT Health shares personal health information to other government departments or agencies, please contact the ACT Health Chief Health Data Officer.