Document Feedback - Review and Comment

Step 1 of 4: Comment on Document

How to make a comment?

1. Use this Protected Document to open a comment box for your chosen Section, Part, Heading or clause.

2. Type your feedback into the comments box and then click "save comment" button located in the lower-right of the comment box.

3. Do not open more than one comment box at the same time.

4. When you have finished making comments proceed to the next stage by clicking on the "Continue to Step 2" button at the very bottom of this page.


Important Information

During the comment process you are connected to a database. Like internet banking, the session that connects you to the database may time-out due to inactivity. If you do not have JavaScript running you will receive a message to advise you of the length of time before the time-out. If you have JavaScript enabled, the time-out is lengthy and should not cause difficulty, however you should note the following tips to avoid losing your comments or corrupting your entries:

  1. DO NOT jump between web pages/applications while logging comments.

  2. DO NOT log comments for more than one document at a time. Complete and submit all comments for one document before commenting on another.

  3. DO NOT leave your submission half way through. If you need to take a break, submit your current set of comments. The system will email you a copy of your comments so you can identify where you were up to and add to them later.

  4. DO NOT exit from the interface until you have completed all three stages of the submission process.


Privacy Policy

Section 1 - Purpose and Scope

(1) The purpose of this Policy is to set out the University's framework for protecting personal and health information.

(2) This Policy applies to all personal and health information held by the University.

Top of Page

Section 2 - Definitions

(3) Data Breach or Privacy Data Breach means unauthorised access or disclosure of personal information, or loss of personal information.

(4) Health information has the meaning set out in section 6 of the HRIPA; that is, a type of personal information that relates specifically to an individual's health. 

(5) Health Privacy Principles means the principles set out in Schedule 1 of the HRIPA.

(6) HRIPA means the Health Records and Information Privacy Act 2002.

(7) Information Protection Principles means the principles set out in Part 2 Division 1 of the PPIPA.

(8) Personal information has the meaning set out in section 4 of the PPIPA; that is, information or an opinion about an individual whose identity is apparent, or can reasonably be ascertained from the information or opinion, irrespective of whether the information is recorded in a material form or not, and including information or an opinion forming part of a database.

(9) Plan means the University's Privacy Management Plan.

(10) PPIPA means the Privacy and Personal Information Protection Act 1998.

Top of Page

Section 3 - Policy Statement

(11) The University will collect, store, provide access to, use and disclose personal and health information in accordance with the PPIPA, the HRIPA and, where applicable, the Privacy Act 1988 (Cth) and the European Union General Data Protection Regulation 2016 (GDPR)

(12) This Policy is supported by:

  1. the Privacy Management Plan
  2. the Privacy Data Breach Response Process; and
  3. the guidelines and information on the University's Privacy and Personal Information webpage.

Privacy Management Plan

(13) The University's Privacy Management Plan sets out how the University complies with the Information Protection Principles and Health Privacy Principles.

(14) The Plan also contains information on how to make a complaint about an alleged breach of privacy, and how to seek internal review of that decision.

(15) The University's Privacy Contact Officer, together with the Legal Office, will keep the Plan current.

(16) The Privacy Contact Officer, or the relevant University Work Unit responsible for the release of personal or health information as set out in the Plan, will respond promptly to applications for access to personal information.


(17) The University will provide regular and ongoing training to University staff about the University's privacy obligations.  This training will include:

  1. maintaining a Privacy and Personal Information webpage with up to date information about privacy issues; and
  2. providing online or face-to-face training to staff on their privacy obligations on both a regular and as needed basis.

Staff responsibilities

(18) All staff must comply with, and implement, the Information Protection Principles, the Health Information Principles, this Policy and the Plan, and ensure staff under their supervision, or students under their direction, are made aware of their obligations under these principles, the Policy and the Plan.

(19) Staff must undertake a risk analysis for any new activities or projects that deal with the collection, use or disclosure of personal or health information to assess whether they have the potential to impact on an individual's privacy and, if so, how they will be managed in accordance with the Plan.

(20) Staff, students and affiliates are to report any breach of the Plan to the Privacy Contact Officer, including any instances of accidental collection, misuse, disclosure or destruction of personal or health information.

Data Breaches

(21) All actual or suspected Privacy Data Breaches must be dealt with in accordance with the University's Privacy Data Breach Response Process.

Top of Page

Section 4 - Procedures

(22) Nil.

Top of Page

Section 5 - Guidelines

(23) Nil.