Privacy & Security

Privacy Policy

Guidelines for the Use of Virtual Care

Patients

  • For virtual care consultations, NLCHI considers consent to be implied. A specific program or your health care provider may require written consent.
  • The default setting for video recording is “off”. Sessions are not to be audio or video-recorded without your prior consent.
  • The names of all parties who are joining the session should be shared and identity confirmed (as applicable).
  • Participation in the appointment is voluntary and you may stop the appointment at any time.
  • You should take steps to ensure your personal computer, mobile device, home internet, or Wi-Fi connection is secure (i.e. password protected).
  • Please be aware of your surroundings and do not use virtual care technology in a public or unsecure environment (e.g. an airport, internet café, or open area).
  • Information that has been provided in order to schedule this appointment, such as your name and email address, may only be collected, used, or disclosed in accordance with legislation such as the Access to Information and Protection of Privacy Act, 2015 and the Personal Health Information Act.

Health Care Provider

  • For virtual care consultations, NLCHI considers consent to be implied. However, regulatory bodies may have different consent requirements. Please consult with your regulatory body for additional information.
  • Medical Records pertaining to a virtual care session must be kept to the same standards as in-person appointments.
  • Ensure that the default setting for video recording is set to “off”. Sessions are not to be audio or video recorded without prior patient consent.
  • Confirm accuracy of email address/cell number prior to sending session link.
  • Inform the patient of the following:
    • They should take steps to ensure that their personal computer, mobile device, home internet, or Wi-Fi connection is secure (i.e. password protected).
    • They should be aware of their surroundings and not use virtual care technology in a public or unsecure environment (e.g. an airport, internet café, or open area).
  • The names of all parties who are joining the session should be shared and identity confirmed (as applicable).
  • Professional standards for informing clients about the risks and benefits of care must be maintained.
  • Information that has been provided in order to schedule this appointment, such as the patients name and email address, may only be collected, used, or disclosed in accordance with legislation such as the Access to Information and Protection of Privacy Act, 2015 and the Personal Health Information Act.

 

Security Features of the Provincial Telehealth Solution

  • NLCHI places high priority on security and privacy for eHealth systems.
  • Telehealth infrastructure has been built from the ground up in compliance with security best practices, and located within established data centers within the province.
  • The Telehealth solution has undergone rigorous security and user testing.
  • Scheduled Telehealth meetings include one-time generated PIN codes for access.
  • The Telehealth solution vendor, Cisco, is the leader in the Gartner Magic Quadrant for Meeting Solutions.
  • Cisco has vertical industry programs that address regulatory and compliance requirements for various industries, such as healthcare, financial services, and the public sector.
  • Telehealth implements role-based user security.
  • Telehealth meetings are pre-configured to security best practice.
  • All Telehealth meetings and communications use approved encryption.