Access Control
Providers and consumers will need to be assured that personal health information is adequately protected within HealthConnect and that there are stringent controls over who has access to what information. The high standard of HealthConnect would be compromised if inadequate access controls were not provided.
Work has been undertaken to develop access controls that:
- limit access to authorised users;
- establish governance structures to oversee user authorisation;
- promote strict access rules and safeguards, which provide auditing and monitoring mechanisms to prevent unauthorised access, use or disclosure of data held within HealthConnect; and
- govern secondary uses of data.