Privacy & Security Policy Statement
DocScriber is serious about confidentiality and the security of your data. We are committed to upholding the highest standards of integrity, privacy and security. Strict confidentiality regarding the data of clients is fundamental to our operations. Our privacy policy describes the key measures incorporated in our procedures to ensure we remain complaint and adhere to the governing privacy bodies, including:
• New Zealand Information Privacy Principles contained within the Privacy Act 1993
• Australian Privacy Principles contained in the Privacy Act 1988 (Cth)
• The Privacy Electronic Communications Directive regulations 2003 (Australia)
• National Privacy Principles 9 (Australian Trans-border data flows
• The Data Privacy Act 2011 (Philippines)
• HIPAA (The Health Insurance Portability and Accountability Act 1996)
• HITECH (Health Information Technology for Economic and Clinical Health Act)
Measures taken to ensure a maximum level of data security and confidentiality
We do not have access to any of our client’s information systems or business-related information in any way whatsoever, unless the client opts to use our cloud-based document management system. Our client's recruited contractor is the only individual who is provided with access to the client's information systems and is trained and legally bound to comply with strict privacy and confidentiality procedures.
Should a client opt to use our data management platform for their contractor(s), all confidential related information is encrypted at each point of the data flow process using secure document management and data sharing software. Our system allows controlled, supervised and tracked access. Additional measures are implemented as per the Company's privacy and security procedure.
Personal health information is not retained on any individual workstation and all files are destroyed and removed from the contractors PC once the work is delivered.
Our workstations use the highest levels of virus protection and maximum configuration of applications and web browsers are implemented.
Where it is reasonably practicable, we will give our clients access to their personal information, delete the personal information if requested, and retain it only as necessary to provide our services to our clients.
All staff are trained in the company's data protection and breach procedure and understand the importance of good information handling and security practices.
Information Use and Disclosure
We use the information you provide us, for the sole purpose of delivering the highest quality service. We do not share this information with outside parties except to the extent necessary to provide our service.
• Internal Use. We use information you provide us to identify and recruit suitable contractors. We utilise your information to assign dedicated resources, and to set up our billing systems.
• Communications with you. Our Account Managers use contact information provided to respond to inquiries, or to follow up with specific reporting or billing issues.
• External use. We comply with all legal requirements to provide information, in support of law enforcement requests and court orders.
Platform Security
We use cloud-based document management systems incorporated with advanced military-standard AES-256 and RSA encryption software for confidential and personal related information files. Our system is certified for its robust security and data protection capabilities with access to all data using HTTPS-encrypted tunnels. Our platforms global data centres are built with custom-designed servers, running a highly advanced operating system for security and performance. Our cloud provider also has Perfect Forward Secrecy, which encrypts content as it moves between the servers and those of other companies.
Employee and Subcontractor Confidentiality Agreements
All employees of, and contractors to, DocScriber sign a non-disclosure agreement.
Our team are highly trained, and background checked. They are all familiar with the Company's Privacy Policy and are trained in any legal and individual client requirements that may apply.
Staff are located globally and are made aware that any deliberate, gross negligence or incompetent breach of the company’s privacy policy will result in instant dismissal and that they may be personally liable for any breaches of the company’s accepted standards of care and discretion.
Complaints or Concerns
Any complaints or concerns about the handling of client information will be treated with the highest priority and investigated immediately. Please contact us on info@docscriber.com
Careful adherence to these policies has ensured that there has never been a formal or informal complaint made about Allied Orbit handling of privacy.
We reserve the right to make amendments to this Privacy Policy at any time. We will post any changes to our Privacy Policy on our website.