Previous: Discussion Form »

Question: Australian Health Information Security Requirements

Dec 9, 2011

This report of a breach of personal health information has been doing the rounds lately - it’s a very well written, from a great blog, and it’s deservedly getting a lot of attention. I sent it to several contacts in Australian commercial vendors, and one of them came back to me with a question:

What best practice standards, and applicable regulations do I need to aware of here in Australia?

I don’t know the answer to this. Here’s some references:

• There’s a list ofAustralian Information Security Standards
• Office of the Australian Information Commissioner(andhere, about healthcare identifiers)
• Some HIV specific information

Much of the information in that list or elsewhere on the internet is specifically about the new healthcare identifiers, and the question is much wider than that. I don’t think this is a good answer, and I suspect that most of the vendors don’t have anything better.

Have I missed anything? references?