Health Privacy – Australia

Course Description

Ensuring the integrity of sensitive health information

Product Description

Compliance with privacy laws is crucial to maintaining customer trust, particularly in the health sector where organisations are constantly under scrutiny for misuse or mishandling of sensitive information such as medical records. With data breaches on the rise, health service providers and other organisations are, now more than ever, prioritising the proper handling of personal and health information.

This course takes learners through the lifecycle of personal information, from collection, use and disclosure, storage, access and correction, and their privacy law obligations at each stage. We use accessible language and practical scenarios to explain and illustrate technical concepts in an engaging way. The introductory module summarises key concepts for front line staff. Subsequent modules explore the Health Privacy Principles (HPPs) in more detail. We also look at mandatory data breach reporting requirements and what to do when an incident arises.

Customer privacy is one of health sector organisations’ biggest operational risks, and this course features real-life cases highlighting the major industry concerns, what organisations are doing right and what they could be doing better

New Update!

We keep our training up to date so that you don’t have to worry about your compliance with the latest developments.

In December 2022 the Australian Government, in response to the Optus data breach and others, passed the Privacy Legislation Amendment (Enforcement and Other Measures) Act 2022, which introduced major financial penalties for both individuals and organisations in relation to privacy breaches. Some penalties are now 20 times as large as they were before – or more.

The new law also significantly expands the Australian Information Commissioner’s powers.

Our training reflects this new legislation.

Who should do this training?

This training is designed for staff at any level within an organisation that comes in contact with private information or could be at risk of breaching Australian privacy laws.

For more information on other GRC Solutions’ privacy training resources:

Australia

Privacy – Covering the Privacy Act and the Australian Privacy Principles

Privacy for Schools – Covering the Privacy Act and the Australian Privacy Principles as they apply to schools

Australia – Financial Services

Financial Services Privacy Training – covering the Privacy Act and the Australian Privacy Principles

Credit Reporting – covering the Credit Reporting Act

New Zealand

Privacy – New Zealand – covering privacy in New Zealand under the 2020 updates to the law

Europe

General Data Protection Regulation – covering the GDPR – which has global implications

Singapore

Data Protection Singapore – covering the Personal Data Protection Act 2012 and also the implications of the GDPR

Malaysia

Data Protection Malaysia – covering the Personal Data Protection Act 2010 and also the implications of the GDPR

California

California Consumer Privacy Act

Course Outline

  • Module 1: Introducing privacy
  • Module 2: Management and collection
  • Module 3: Use or disclosure
  • Module 4: Storage, access and correction
  • Module 5: Credit reporting obligations

Transparency International’s New Corruption Perceptions Index

Australia was ranked 13th on the 2022 Corruption Perceptions Index

Workplace Health & Safety – New Zealand

Course Description

Everyone who goes to work should come home from work safely. But hundreds of people are still seriously injured or die from work-related diseases in New Zealand every year.

Based on the Australian model work health and safetylaws, the new Health and Safety at Work (HSW) Act (2015) emphasises the role of safety leadership and management responsibility in identifying and eliminating risks to workers’ safety. It also highlights the need for people within a business to cooperate and collaborate with each other to reduce the number of workplace injuries and deaths.

Course Outline

  • Module 1: Health and safety at work
  • Module 2: Workers’ rights and obligations
  • Module 3: Duties of PCBUs
  • Module 4: Compliance and enforcement measures
  • Module 5: Duties of officers
  • Module 6: Health and Safety Representatives and Health and Safety Committees

Top Tips to Encourage Ethical Behaviour in the Workplace

The numerous scandals and fraudulent behaviour uncovered by the Royal Commission has led to an “ethics comeback” in the workplace.

Incident Management

Course Description

This course explores what an incident is and how to address it, from building an incident management register, to collecting and interpreting data within it. Depending on what kind of incident has taken place, different types of registers can be used to record the event. This information can then form the basis for making a targeted response, in which incident-related issues are escalated to the relevant people at the appropriate time.

Who is this training for?

This course applies to anyone in the workplace – including compliance and risk managers, senior management or other employees – who may be in a position to observe, record or respond to incidents within their organisation.

Course Outline

Module 1 : Defining Incident Management

• The objectives of incident management process

• The types of registers

• How Incident Management fits into the overall risk management framework

Module 2 : Incident Management Inputs

• Building an incident management register

• Linking risk causes, risk events and controls to incidents

Module 3 : Incident Management Processes

• Collecting incident-related information

• Aggregating incident data to produce summary data

Module 4 : Incident Management Outputs

• The types of reports

• Notification and escalation emails

• Using reports and taking action

The Future of Compliance Training

In this article, Thomas Fox, Compliance Evangelist based in Houston, TX, canvasses a number of strategies to make compliance training more effective by breaking out of the current reactive, box-ticking paradigm. One of the goals of compliance training is to evolve to be more respectful of the user’s time and intellect.

Ten Compliance Training Program Design Objectives

In this article, Thomas Fox, Compliance Evangelist based in Houston, TX, discusses the requirements for creating and managing an up-to-date, effective, and efficient compliance training program. The design of a compliance training program must be rigorous and utterly professional – there is no place for amateurism.

Key Risk Indicators (KRIs)

Course Description

Key Risk Indicators (KRIs) are observable and measurable information that can be used to

identify the symptoms and “red flags” created by risks. This course explores how to identify KRIs in your organisation, linking them to both the risks and the

controls necessary to contain them. It examines how to collect, score and find patterns in KRIs across different units in your organisation. And it looks at the steps employees can take to report and escalate issues about KRIs to the appropriate management or committees within the organisation.

Who is this training for?

This course applies to all organisations looking to manage risks in their business by identifying the “red flags” of risk and taking action.

Course Outline

Module 1 : Defining Key Risk Indicators (KRI’s)

• What are KRIs?

• Objectives of KRIs?

• Types of KRIs

• Identifying KRIs

Module 2 : KRI Inputs – Determining the parameters

• Assigning KRIs

• Setting frequency

• Determining thresholds

• Linking KRIs to risks and controls

Modeule 3 : KRI Processes – Collection, scoring and Aggregation

• Collecting KRIs

• Scoring KRIs

• Aggregating KRIs

Module 4 : KRI Outputs – Reporting and Follow-up Process

• Reporting KRIs

• Notifying and escalation issues relating to KRIs

• Using reports and taking action

Mental Health in the Workplace

Course Description

Mental Health in the Workplace

Understanding mental health for our professional and personal lives

1 in 5 Australians will experience a mental health condition in any year. 45% of Australians aged between 18 and 85 will experience a mental health condition in their lifetime. Mental health issues can impact our workplaces, and our workplaces can likewise impact people’s mental health.

The World Health Organisation offers a definition of mental health as a state of wellbeing in which we can realise our own abilities, work productively and contribute to our communities. While experiencing stress and a range of emotions are normal, there are times when we may find it difficult to shift out of a low mood or cope with regular stresses – and this may indicate the presence of mental health issues or a diagnosable condition.

Wherever we work, mental health is something we must prioritise and value. Employers are required to actively manage health and safety risks in the workplace. In some states and territories, this includes risks to mental health as well as physical health.

GRC Solutions offers this fully customisable course on Mental Health on the Workplace to help individuals understand and identify common mental health issues, to provide support to co-workers who may be experiencing mental health issues and to play their part in breaking down stigmas surrounding mental health.

Who is this training for?

This module is designed to be accessible for anyone in an organisation.

Mental health is important, no matter your role.

Course Outline

  • Defining mental health
  • Effects of poor mental health for individuals and society
  • Signs of mental health issues
  • Supporting people
  • Building a mentally healthy workplace

Third Party Risk

Course Description

This course guides you through the four steps associated with  handling  third  party  risk:  scoping,  risk  assessment,  due diligence and approval/post-approval risk mitigation.The  lessons covers  major  international  anti-corruption  laws,   including   the   US   Foreign   Corrupt   Practice   Act   (FCPA) and the UK Bribery Act. Jargon is kept to a minimum. Where possible, stories are used to paint a vivid picture.

Who is this training for?

Employees at all levels need to recognise the risks associated with third parties and how to identify them. This course guides staff through the four steps associated with handling third party risk.Management are trained to identify, minimise and handle corruption risks. General employees learn the role they play in ensuring that due diligence occurs.

Course Outline

Module 1 : Introducing Third Party Risk

   •The role of third party due diligence in your organisation’s ABC obligations

   •Scope of due diligence

   •Key corruption risk factors

   •Organisational benchmarks regarding third party risks

   •Assessing corruption risk as high, medium or low

Module 2 : Due Diligence and Approvals

   •The data collection process

   • Key aspects of third parties to research

   •Validating research• Monitoring third parties post-approvals

   •Supporting due diligence and anti-corruption processes

Module 3 : Due Diligence for Employees

   •The role of third party due diligence in your organisation’s ABC obligations

   •Key corruption risk factors

   •The due diligence process

   •Monitoring third parties post-approvals

   •The function of whistle-blower policies