Custodians are required under the Health Information Act (HIA) to protect individually identifying health information in their custody and control by making reasonable efforts to protect against any unauthorized access, collection, use, disclosure, or destruction. It is also required under the HIA that custodians implement safeguards to protect the security and confidentiality of records, including addressing the risks associated with electronic health records.
This policy is meant to outline the physical, administrative, and technical safeguards used within your practice to protect confidential health information and records.
Instructions to use
These instructions are meant to help you make this document your own and fulfill your obligations under the Health Information Act.
- Please read the document carefully and ensure that all sections are relevant to your clinic and make adjustments as required.
- There are highlighted sections throughout the document to assist you in customizing your information. Please review these sections and make them specific to your clinic’s practice.
- The sections that are not highlighted are recommended to be part of your policy to support compliance with the Health Information Act. Please make sure you read and understand these sections.
- Please remove all highlighting as you fill out the relevant section and ensure that your clinic name is entered throughout the document including the header.
It is important to communicate this policy with everyone in the clinic to ensure they are aware of it and follow the processes outlined in the Act.
Learn@AMA Training
Enrol your medical clinic in AMA's free privacy training tailored to physician, privacy officer and staff roles through Learn@AMA sign-up your whole community-based clinic team today!
Enrol Today!- Collection, Use, Disclosure and Disposal of Health Information Policy
- Password Policy
- Access to Health Information Policy
Developed by
