We understand that you expect us to keep your patients’ personal details safe and secure, so we apply strong information security and privacy controls when handling their personal information.
We collect your patients’ personal information to assist you or their cardiac specialist with the interpretation and application of their ECG data.
We do not disclose your patients’ information to third parties and upon request we will destroy your data held by us. We store your patients’ health information with secure data storage providers in Australia.Where we provide information to third parties for reports and research purposes it will always be de-identified so that your personal information is not disclosed.
For further details on how we handle your personal information, please read our Privacy Policy located below. For any questions please contact us at [email protected].
PRIVACY POLICY
Alerte Digital Health Pte Ltd (we, our or us)owns and operates software as a service, known as Atrio, that collects and holds health data for Artificial Intelligence (AI) analytical purposes to help cardiologists analyse electrocardiograms (ECGs). This privacy policy applies to anyone who consents to have their personal health information uploaded and processed by Atrio (you or your).
This Privacy Policy sets out how we will treat the personal information uploaded into Atrio by your medical practitioner, so that you can make an informed decision about providing your consent for us to use it to provide our services to your cardiologist.
We are committed to collecting and handling your personal information in accordance with the Australian Privacy Principles contained in Schedule 1 of the Privacy Act 1988 and all applicable state legislation relating to health records and information (Law). We review our Privacy Policy regularly to ensure it is kept up-to-date.
This Privacy Policy explains:
If you have questions or suggestions on how we can improve this Privacy Policy,please contact us at [email protected].
Types of information we collect
In the process of conducting our business, we receive a range of personal information.For the purposes of this policy “personal information” is information or an opinion about an identified individual, or an individual who is reasonably identifiable. This information may include information:
We only receive personal information that is input, uploaded or transmitted to Atrio by your medical practitioners where they consider it reasonably necessary in order for them to receive the full benefit of Atrio to assist them to provide you with their services.
Much of the personal information we receive is sensitive because it relates to your health and well-being and requires a higher level of protection under the Law. We will only agree to receive your sensitive information when your medical practitioner has your consent and the information is reasonably necessary for us to provide our services to them.
How we receive your personal information
We will primarily receive your personal information from your medical practitioner with your informed consent so they can make use of our services. You may contact us to make enquiries about the use of your information and we may ask you to provide personal information such as:
Use or disclosure
We only receive personal information for purposes which are directly related to our functions or activities and only when it is necessary for or directly related to those purposes.
We receive and use your personal information through our web-based platform, Atrio . Atrio analyses your ECG data and uses AI to analyse the data and assist your cardiologist to diagnose and treat any heart conditions you may have. Atrio retrains and becomes more intelligent over time leading to more efficient and accurate performance. Your personal information helps us:
Organisations that we regularly share personal information with include third party providers of secure data storage providers. We take all reasonable measures to ensure that any such third parties we provide your personal information to treat your personal information in accordance with this Privacy Policy and otherwise in accordance with the Law.
We will not sell or provide your information to a third party for the purposes of direct marketing. Where we provide information to third parties for reports and research purposes it will always be de-identified so that your personal information is not disclosed.
Cross-border disclosure
We use data storage providers who are based in Australia however we may use overseas service providers to process your personal information if we reasonably believe that the overseas entity is subject to the same or similar privacy laws to those found in Australia, or you have otherwise consented to us disclosing your personal information to the overseas entity.
Security
We understand the importance of protecting your privacy. We take steps to protect the personal information we hold against loss, unauthorised access, use, modification or disclosure, and against other misuse. We enforce best practices and industry standards in implementing security procedures. We engage with ongoing third-party security audits and penetration testing to ensure our systems are continuously tested and improved.
We will permanently de-identify or destroy any of your information which is in our possession or control and which is no longer needed for the purpose for which it was collected provided there is no reason at Law or otherwise to retain the information.To prevent unauthorised access or disclosure and ensure the accuracy and proper use of your personal information we also ensure that all personnel or staff engaged to use Atrio are made aware of the contents of this Privacy Policy and any additional policies and procedures relating to the use protection and disclosure of personal information which we may introduce from time to time.
While we take all reasonable steps to ensure that your personal information is protected from misuse, interference or loss, no method of transmission over the internet, or method of electronic storage, is 100% secure. If a data breach occurs, and there is a real risk of harm to you as a result of such breach, we will notify you as soon as possible.
In addition to the measures we take to protect your personal information, we advise our medical practitioner clients to ensure that they keep secret and regularly change any access passwords to their Atrio accounts and always logout of any secure pages.
Access and Correction
Your medical practitioner can update your personal information at any time via their account on Atrio. If requested by you, we will take such steps as are reasonable in the circumstances to ensure that your personal information is accurate, up-to-date, complete and relevant.
Upon your written request we will provide you with a copy of your personal information that we hold, unless there is a legitimate reason under the Law, not to do so.
We will take reasonable steps to correct your personal information if we are satisfied that it is inaccurate, out-of-date, incomplete, irrelevant or misleading. This extends to third parties that we have provided your personal information to unless it is impracticable or unlawful to do so.
Making a Complaint
If you have a concern or complaint relating to our handling of your personal information or any breaches of the Law, please send a written note to [email protected], outlining the nature of the complaint. We will endeavour to respond to your complaint within 30 days of receipt. If unresolved, you may submit your complaint to the Office of the Australian Information Commissioner.
