Purpose

This policy relates to requirements to ensure personal information regarding all participants and employees is handled in a manner that is consistent with the Australian Privacy Principles.

Scope

All Employees, Board of Directors, Members & Volunteers.

References

Privacy Act 1998
Privacy and Personal Information Protection Act 1998 (NSW)
Multitask Confidentiality agreement
Multitask Confidentiality for staff policy
Multitask Code of Conduct and Ethics
IT – MT Password Policy

Procedure

Collecting personal Information
Personal information is collected on participants and employees. This includes but is not limited to: Name & Address, Date of Birth, Medical Practitioner Details, current health status, medical history, some financial information, health insurance details, details of family members and person we may need to contact in an emergency.

1. Using and disclosing Personal Information
Personal information may be shared with third parties after consent is given by the individual, guardian or person responsible. For reporting to funding bodies, some participants de-identified information is provided to government agencies.
Multitask may disclose personal information to law enforcement agencies, government agencies, courts or external advisers where permitted or required by law.

2. Individuals right of access
Individuals have the right to review the information that may be recorded on digitally or on hardcopy.

Storage and security of personal information

Multitask will endeavor to take all reasonable steps to keep secure any personal information recorded, and to keep this information accurate and up to date. The information is stored on secure servers if in digital format, or in locked areas if in hardcopy. Multitask employees are obliged to respect the confidentiality of any personal information held by Multitask. A confidentiality clause is included in all Multitask employment contracts which is signed upon commencement of employment.