Skip navigation.

» Privacy obligations

The Privacy Act 1993 imposes restrictions and responsibilities on organisations in relation to collecting and using information about individuals in or outside the organisation, such as members, employees, volunteers, and clients and users. These responsibilities also apply to volunteers working outside an organisational structure.

There are also specific requirements you need to meet if you collect health information about identifiable individuals, such as health or medical histories or information about disabilities.

Answer the following questions to find out if your organisation meets or could meet the requirements for a trust or charitable trust board. If you answer any of the questions with “No” or “Unsure”, make it a priority to find out the relevant information as soon as possible.

Yes Unsure
/No
Does your organisation comply with the 12 privacy principles?

Learn more: Privacy
Do you have procedures for:

  • collecting information?
  • storing information and keeping it secure?
  • ensuring the information you hold is accurate?
  • using information?
  • disclosing information?
  • complying with requests for information?

Learn more: Privacy
Does your organisation have a privacy officer?

Learn more: Privacy
If your organisation collects health information, do you understand your obligations under the Health Information Privacy Code?

Learn more: Privacy


Remember to print this checklist out once you've completed it.

1