After I wrote about Intelicares monitoring service I thought it might be an idea to reach out to Intelicare and actually ask some of the questions I had posed in the post. So yesterday I sent them a list of questions. I wasn’t sure how long it would take them to answer, however I was pleasantly surprised to find an email from Jason Waller, the CEO of Intelicare, in my inbox this morning. With his permission I have included his answers (in bold) with the list of questions (in italics) I sent below.
- When a subject leaves the service what happens to the data collected on them?
- We keep our data segregated by type in discrete databases so that we can easily separate personal details from the behavioural data. Consequently, when a service is cancelled, the behavioural data is anonymised and stored. However, the data is owned by the individual so if they requested deletion, that is what we would do.
- Do you intend to use the data gathered to supply “insights” to third parties (ie not just to clients using your service)?
- We believe there may be opportunities in the future to make anonymised behavioural data available for clinical research, with prior permission of the client.
- Given you are actively looking at devices that track heart rates from a distance (Investor Presentation) what steps are you taking to ensure the data you gather is safe?
- We have extensive security architecture in place to protect health and other personal data. We recently engaged an independent security consultant to review our data protection. Security across InteliCare was found to be well managed and aligned with industry best practice and has been assessed to pose a Low risk from a management/procedural security perspective. It was also determined that the company has demonstrated full compliance with the thirteen (13) Australian Privacy Principals (APPs) which are regulated by the Office of the Australian Information Commissioner (OAIC). Additionally, we conduct ongoing automatic penetration testing to identify vulnerabilities.
- Yes, here. We also have extensive internal data protection policies and frameworks.
- When a new service is activated do you require active consent from the person being monitored?
- Yes, and this must be obtained by the carer or family who are the users of the app.
Thanks to Jason Waller for the quick response.