Now It Will Be Very Interesting To See Just What This Audit Reveals.

I spotted this last week: OAIC to commence GP Privacy Audits 25 August 2021 The Office of the Australian Information Commissioner (OAIC) has announced its plan to audit General Practice clinics ’ compliance with My Health Record privacy obligations. The audits are being described by OAIC as ‘assessments’ and will focus on promoting good privacy practice. Under Rule 42(1) of the My Health Records Rule 2016, any healthcare provider organisation that uses the My Health Record System (in cluding GP clinics) must have a written access policy in place. That policy must ensure staff and contractors’ access to the MHR system is secure. The focus of OAIC’s assessments will be whether GP clinics have written access security policies in place and are complying with those policies. The assessments will focus on: how staff and contractors are granted access to the MHR system;how that access is controlled and monitored; andhow system risks are identified and managed. Failure to have a... This is the initial part of the post - read more by clicking on the title of the article. David.
Source: Australian Health Information Technology - Category: Information Technology Authors: Source Type: blogs