This Privacy Statement outlines how the Office of the Independent Review Officer (IRO) manages your personal information and health information (referred to collectively as ‘personal information’). We do this in accordance with the privacy principles contained in the Privacy and Personal Information Protection Act 1998 and the Health Records and Information Privacy Act 2002.
What the IRO does
The roles of the Independent Review Officer include:
- helping injured workers and persons injured in motor vehicle accidents to find solutions to complaints about insurers
- providing funding to lawyers to assist workers pursue their compensation entitlements.
Why we collect your personal information
We collect personal information to assist us perform these roles including to:
- respond to information requests, answer enquiries and resolve complaints
- assess eligibility for legal funding
- plan and report on our services.
If we collect your personal information for another purpose, we will tell you about this at the time we collect the information.
How we collect your personal information
Personal information may be collected in a number of ways including:
- directly from you when you make a complaint about an insurer or make an enquiry about a claim or entitlements
- from your lawyer when they seek a grant of funding to assist you and at any time while the grant is open
- from your insurer
- from a third party as part of the legal funding process.
The personal information you provide to us is voluntary, however if it is not provided we may not be able to assist you with your complaint and your lawyer may be ineligible to receive a grant of funding on your behalf.
The types of personal information we collect
The main types of personal information we collect include:
- name, address, date of birth and contact details
- information about your injury, treatment and health circumstances
- information about your working arrangements and income.
How we keep your personal information safe
The IRO stores all information electronically and is a paperless office. All files have unique identifiers and are protected by passwords. Only authorised persons are able to access your personal information.
Access to your personal information
You are entitled to seek access to your personal or health information held by the IRO. Where this information has been provided to the IRO by your lawyer, insurer or another third party, we will ask that you request the third party to provide access to the information in the first instance.
Accuracy and alteration of your personal information
You can request alterations to your personal information if your details change.
When we disclose personal information
We may disclose your personal information to third parties to:
- resolve complaints, or for another purpose where you have given consent, or that you were previously made aware of
- if we are asked to share information with other organisations or government agencies according to law
- to otherwise comply with our legal obligations.
We may disclose your personal information to the State Insurance Regulatory Authority (SIRA) to enable SIRA and us to perform our legislative functions.
If you have a complaint about privacy
You can contact us if you have a complaint about how we have handled your personal information. We aim to resolve complaints quickly and fairly.
Our website provides information on how to make a complaint.
For further information
The IRO is an independent office and agency within the Department of Customer Service (DCS) cluster. The IRO has adopted the DCS Privacy Management Plan (PMP) for application to the agency.
For more information about how the IRO adheres to privacy law please refer to this PMP.
For general information about your right to privacy and the Privacy and Personal Information Protection Act 1998, you can also visit The Office of the Privacy Commissioner website.