INRS Support Services Privacy Policy

Overview

INRS Support Services (INRSSS) is committed to complying with all current State and Federal Privacy legislation (including Health Records Act 2001 (Vic), Privacy and Data Protection Act 2014 (Vic), Disability Act 2006 (Vic), Charter of Human Rights and Responsibilities Act 2006 (Vic), Equal Opportunity Act 2010 (Vic), Privacy Act 1988 (Cth), Disability Discrimination Act 1992 (Cth) and National Disability Insurance Scheme Act 2013 (Cth)) and the privacy provisions of all applicable legislation.

The information we record and store should only allow us to deliver our NDIS registered services, that is: Support Coordination, Specialist Behaviour Support and Therapy (as per your position description/ role).

For up to date information on applicable Acts, please consult with the Quality Systems Manager, who will provide relevant information and resources.

This privacy policy covers all personal information we gather and hold about participants, that is, information, or an opinion about an individual whose identity is apparent, or can be reasonably ascertained, from that information or opinion.  This includes information we have collected from people through our office, over the phone and over the internet.

Collecting information

When we collect personal information from an individual, we will ensure that we do so in a fair manner and that we let the individual know where and how to contact our organisation.  We will only collect information that is necessary for us to be able to do our job.  This information must also be accurate and correct.

We will advise individuals of the purpose for which their personal information is collected.

If we collect sensitive information, we will treat it with the utmost security and confidentiality.  We will ensure that it is not collected for any purposes other than those for which we have obtained the individual’s consent, unless the law requires otherwise, or other exceptional circumstances apply as detailed under the relevant Act.

Where an individual chooses not to provide requested information, we will advise that individual of what consequences this non-disclosure may have.  For example, withholding certain information may limit our ability to provide relevant information or services to individuals.

Disclosing Information

We will only disclose personal information in accordance with the appropriate Act.

This means that personal information may be disclosed:

For the purposes for which we have advised that we are collecting it, and for related purposes that the individual would reasonably expect,

Where we have the consent of the individual to do so, as required by law, or under other circumstances where permitted under the Act (e.g.: if there is a warrant from the courts).

In the course of our business activities, we may need to disclose some of your personal information to relevant staff.

Please ensure that you refer to the disclosure statement (and related documents) in these instances.

Unauthorised Disclosure or Access

INRSSS is committed to protecting the privacy of individuals, we will view unauthorised disclosure of, or access to, personal information by our employees or contractors, as a serious breach of this policy.  Appropriate action (which may include disciplinary or legal action) will be taken in such cases.

Access to Personal Information

Individuals will be able to access their personal information upon request.  However, INRSSS may occasionally need to deny access to information in accordance with the exemptions contained in the Act (e.g.: if we believe that accessing the information would reasonably cause undue harm to the person described).

Security

Our goal is to protect the personal information collected by the INRSSS and its associations. Personal information will be managed confidentially and securely and destroyed appropriately when no longer required (note there are timelines that apply to how long information is to be held/ stored – see your manager, the Director or the Quality Systems Manager).

INRSSS management will monitor and implement appropriate technical advances or management processes, to safeguard personal information.

Data Quality

We will take all reasonable steps to ensure that the data we collect, use or disclose is accurate, complete and up to date, and has been obtained directly from individuals or other reputable sources.

If you find inaccurate information, please ensure that it is updated and correct.

Privacy Inquiries

Privacy related enquiries or concerns can be directed to the INRSSS administration email address at: admin@inrssupportservices.com.au

Availability and Review of Policy

We will make our Privacy Policy available upon request.

This policy will be reviewed from time to time and any amendments will be incorporated into the updated policy.