Coastal Dental Care (CDC) appreciates the importance of privacy and is committed to the management of your personal and health information in a way which upholds your privacy rights.
The Privacy Act 1988 (Privacy Act) has 13 Australian Privacy Principles (APP) relating to the handling of personal information. Personal information is any information or an opinion that identifies you or could identify you, and includes information about your health. Unless indicated otherwise:
This Policy outlines how we manage your information.
Coastal Dental Care will always endeavour to advise patients about their rights and the way our practice operates. Part of the process of providing this information to patients and/or carers is providing access to our practice Charter of Patient Rights.
All staff will assist patients to understand their patient rights and the way our practice operates. It is the responsibility of staff to proactively identify those patients who may be ‘at risk’ of not understanding their healthcare rights and to consult the dental practitioner if further guidance is needed.
You can read the full version of the Charter of Healthcare Rights here:
We manage your information for the primary purpose of delivering dental services to you, and a related purpose of carrying on our business.
The types of information that we collect include:
We collect your information in a number of ways, including when you:
We may also collect your information from third parties such as other dental practitioners who are treating or have previously treated you, other health practitioners, health insurance providers, Medicare, and government bodies. In particular circumstances, we may collect your information from a legal guardian or other person who has the authority to do so.
We will use and disclose your information in the following ways:
We may disclose your information to parties that are associated with our provision of dental services including: our employees; other health service providers which are involved with your dental treatment; professional advisors (e.g. lawyers, insurers, accountants, dental specialists); IT service providers; emergency contacts; government bodies; and other third parties with your consent (express or implied). It is unlikely that we will disclose your information to overseas recipients.
We may use your information for the purpose of providing you with material about our services (direct marketing material). Please contact us (refer to CDC Contact Details in this Policy) if you do not wish to receive direct marketing material.
The practices we adopt to protect and secure your information depend on the type of information we collect and how we collect your information. For example, your health information collected in hard copy is scanned into your electronic patient file, and the hard copy is then destroyed. When we collect and update information about your medical and dental history using a laminated form, we scan the information into your electronic patient file and we then remove your information from the form. Your health information collected through an online form is secured by an SSL certificate, which is designed to prevent unauthorised third party access. With respect to our database that stores all patient files, each dental practitioner and employee has an individual username and password, with different access levels, and this creates an audit trail that can be tracked by us in the event of unauthorised access, modification or disclosure.
We cannot guarantee the security of your information when you use our website and social media tools, as the internet is not a secure vehicle for transmitting information. If you have any concerns about disclosing your information over the internet but have an inquiry about our dental services, please contact us via e-mail, telephone, post or fax using the CDC Contact Details below.
You can request access to your information using the CDC Contact Details in this Policy. We may require you to provide the request in writing, as well as evidence verifying your identity or that you have authority to request access (e.g. legal guardian). We will provide you access to your information in the way that you request, unless it is unreasonable or unpractical to do so. Access may also be refused in particular situations set out in the APP, including where access would pose a risk to health and safety, the privacy of others and if refusal is permitted by a Court or Tribunal order. If accessed is refused, we may still be required to provide access to your information in another form which is reasonable and practical (e.g. providing a USB with your information as opposed to copies). We may charge you a reasonable fee for providing access to your information.
We will take reasonable steps to correct your information if it is inaccurate, incomplete, out-of-date, irrelevant or misleading (‘incorrect’). For example, we verbally check that your contact details are correct during each visit to our dental practice and we request an update from you about your medical history on at least a bi-annual basis. Despite the steps we take, your information can change between visits. As such, it is your responsibility to notify us of any changes to your information so that we can update our records.
You can request a correction to your information and for us to notify other service providers (e.g. external specialists and head office) about the corrections. The request can be made at our dental practices or using the CDC Contact Details in this Policy. We can only refuse a request if we are satisfied that your information is correct, or it is not practical or lawful to change your information.
There are a number of ways that you can contact us if you have any questions, concerns or a complaint about the matters covered in this Policy or how we handle your information. A matter includes if you disagree with a decision made by us concerning the privacy of your information, such as a refusal to correct or provide access to your information. Unless there are exceptional circumstances, we will take reasonable steps to respond to you within 30 days of receipt.
If you are not satisfied with our response to your complaint, you may contact the Office of the Australian Information Commissioner (https://www.oaic.gov.au)
Coastal Dental Care
Phone: (07) 5539 7400
Fax: (07) 5539 7499
Email: [email protected]
Post: PO Box 9074, Gold Coast Mail Centre QLD 9726
Head office: Suite 18 Level 8 Premion Place, 39 White Street, Southport QLD 4215