Who can see the information in my Electronic Health Record?
Only authorized members of your health care team can view and/or contribute to your electronic health information. Authorized health care providers may include physicians, specialists, family doctors, nurse practitioners, nurses, emergency room clinicians and specialists in clinics, hospitals, public health units, long-term care facilities and community care access centres. All health care organizations and clinicians view personal health information in accordance with Ontario’s health privacy law (Personal Health Information Protection Act, 2004).
How is my health information used and protected?
Your personal health information is made available to participating health care providers and organizations for the purpose of providing health care and treatment. All clinicians and health care organizations handle personal health information securely and confidentially, in accordance with Ontario’s health privacy law (Personal Health Information Protection Act, 2004), as well as other applicable laws, and stringent security and privacy policies and practices.
Does eHealth Ontario collect, use and disclose personal health information (PHI)?
eHealth Ontario's primary function is to provide information technology services to Ontario's health care sector. When it does so, eHealth Ontario does not collect, use or disclose PHI. eHealth Ontario also provides some services to the same health care providers in the capacity of their agent. Examples include implementing patient consent directives and facilitating response to patients' requests for access to their EHR data. When it does so, these services can entail a use of the PHI by eHealth Ontario on behalf of a health care provider.
I don’t want my doctor to have access to all my medical files – what can I do?
You can block access to all or any of your records in the electronic health record. Learn more.
How does eHealth Ontario protect my PHI?
eHealth Ontario implements a range of administrative, physical and technical safeguards to protect PHI. These include a policy that requires completion of a privacy impact assessment on any new initiative that involves PHI, mechanisms to limit access and detect, investigate and report unauthorized collection, as well as annual privacy training of all personnel.
How will I know if someone looks at my record when they shouldn’t have?
eHealth Ontario and all participating organizations adhere to rigorous privacy standards, policies and procedures to ensure your personal health information is accessed only by authorized health care providers. Access to health records is monitored and reviewed on a regular basis. If an audit indicates your health records were inappropriately accessed, this will be investigated immediately and you will be notified.
If you suspect someone has inappropriately accessed your electronic health records were inappropriately accessed, please contact us or your health care provider.
Where do I go with questions and concerns?
Contact us for questions or complaints regarding eHealth Ontario’s privacy practices.
My information is incomplete, inaccurate or out of date, how do I have it corrected?
Contact the health care professional who provided you care. Or, if you are unsure of who to contact, get in touch with eHealth Ontario.
P.O. Box 148
Or complete our EHR access and correction request form
We will send a response within 30 days of receiving your request.