Healthcare

Organisations who operate within the Australian healthcare industry face a unique set of privacy and cyber security challenges.

These include the need to comply with such frameworks as the Australian Privacy Principles (APPs), the My Health Records Act 2012, and the Australian Cyber Security Centre (ACSC) Essential 8.

Australian Privacy Principles (APPs):

The APPs are a set of principles that form part of the Privacy Act 1988 (Cth) and regulate the handling of personal information by Australian government agencies and private sector organisations. The APPs aim to protect the privacy of individuals by establishing rules for the collection, use, storage, and disclosure of personal information.

Compliance with the APPs is mandatory for covered organisations and breaches of the APPs can result in significant penalties and reputational damage.

Synergy Compliance can assist your organisation to conform to the APPs by implementing a range of measures to protect this personal information from cyber threats.

  • Conduct a Privacy Impact Assessment
  • Develop a Privacy Management Plan including policies and procedures
  • Implement Security Controls
  • Conduct regular privacy audits and assessments
  • Implement Technical and Organisational Security Controls
  • Staff training and awareness
  • Assist with incident response

Our goal is to help you build trust with your customers and stakeholders by demonstrating your commitment to privacy and data protection.

My Health Records Act 2012:

The My Health Record system contains an online summary of a person’s health information, designed to be controlled by the individual, and can be accessed securely by healthcare providers.
The system is governed by the My Health Records Act 2012 to protect the sensitive health information of Australians. You are required to comply with this act if your organisation utilises the system.
Our team of experienced professionals can assess the risks associated with collecting, using, and disclosing health records to ensure compliance with the My Health Records Act 2012.

  • Conduct a risk assessment
  • Develop policies and procedures
  • Implement security controls
  • Provide staff training and awareness
  • Conduct regular audits and assessments


Our goal is to help you focus on providing quality care to your patients, knowing that their sensitive health information is secure and compliant with the relevant regulations and guidelines.

The Australian Cyber Security Centre has developed a minimum recommended standard to improve information security practices, known as the Essential Eight

  • The eight strategies include:
  • Application whitelisting
  • Patch applications and operating systems
  • Configure Microsoft Office macro settings
  • User application hardening
  • Restrict administrative privileges
  • Patch operating systems
  • Multi-factor authentication
  • Daily backups of important data

Synergy Compliance has extensive experience helping organisations of all sizes to implement the Essential Eight framework. Our team of experts will work with you to assess your current security posture, identify areas of vulnerability, and implement effective security controls to protect against cyber threats.