Skip to main content


Privacy Impact Assessment (PIA) Register

We are required by the Privacy (Australian Government Agencies – Governance) APP Code 2017 (Cth) (the Code) to conduct a Privacy Impact Assessment (PIA) for projects with a high privacy risk.

A project may be a high privacy risk if we consider that the project involves any new or changed ways of handling personal information that are likely to have a significant impact on the privacy of individuals.

We are required by the Code to maintain a register of the PIAs it conducts. We have listed all PIAs conducted by us since we commenced operations on 1 July 2016.

Privacy Impact Assessments

We have conducted the following PIAs:

Subject of PIA Date PIA completed
My Health Record – National Opt-out Model Implementation 03/07/2017
My Health Record – Data Linkage Project (project did not proceed) 17/08/2018
Service Registration Assistant – Secure Messaging 23/07/2019
My Health Record – Data Quality Assessment


ADHA - My Health Record Applications Project - Privacy Impact Assessment 15/04/2020

ADHA - My Health Record Mobile Applications Project - Privacy Impact Assessment

Jurisdiction connection to MHR mobile gateway - PoC 24/01/2022
My Health Record Mobile Vendor Changes 23/09/2022
Data Centre Rehosting Project  17/09/2021
COVID-19 Dashboard (Phase 1) Privacy Impact Assessment  03/08/2022
Data Analytics Infrastructure Proof of Concept project to prepare and de-identify My Health Record data for research or public health purposes  16/12/2022

Last updated: 07 March 2023

Electronic Prescribing Conformance Register

A register of conforming software products has been created to ensure that software developers are creating software that is conformant to government legislation, and for healthcare providers and vendors to understand which software companies are conformant. Find out more on My Health Record.

A register of conforming software products

This register will be used for the following stakeholders:

  • Open prescription delivery services will be able to integrate into systems, this allows for vendors to connect into the operations of the electronic prescribing environment.
  • Health care providers will be able to make decisions on which electronic prescribing software they use, based on whether the software is conformant to legislation.
  • Regulators will also be able to see and understand which software is conformant and follows government legislation.

Conformant Software Register

ePIP Conformance Register

Managed by the Digital Health Agency on behalf of the Australian healthcare community, it provides a register of medical software products and organisations that meet the requirements of the Practice Incentives Program (PIP) eHealth Incentive.

Last updated: 10 November 2021

HI Service Conformance Register

A register of software products that conform to the HI Service Conformance Profile and are permitted to connect to the HI Service.

Last updated: 26 September 2023

Secure Messaging Conformance Register

A register of conformant software products.

Last updated: 3 December 2021

Gifts and Benefits Register

From 18 October 2019, the Australian Public Service Commission (APSC) requires all agency heads to publicly disclose all gifts and benefits accepted and valued at over $AUD100 (excluding GST) in a specified format, including publication of all giver’s names and organisations.

Last updated: 23 January 2023