Legal compliance

HeartAI has a responsibility and obligation to follow state and federal laws, policies, regulations, and compliance standards. For HeartAI deployments within South Australian Government organisations, this further includes the policies of those organisations. HeartAI is committed to understanding and following these responsibilities and obligations to ensure a rigorous, secure, and ethical engagement with the South Australian health system.

The following policies are central to HeartAI deployments within South Australian Government health system organisations:

• The Privacy Act 1988, and,
• The Health Care Act 2008, and,
• The Australian Privacy Principles, and,
• The South Australian Information Classification System, and,
• The Information Classification System Policy Directive.

HeartAI must follow and implement these and any other relevant policies. Should a HeartAI policy contradict any of these obligations, the South Australian Government, state, or federal policy will take precedence.

Policy

1. In relation HeartAI compliance:
   1.1. HeartAI must understand and follow mandated SA Health, SA Government, state, and federal laws, policies, regulations, and compliance standards. If any HeartAI policy contradicts these obligations, the governmental policy will take precedence. HeartAI administrators will resolve policy deficits by approved modification or extension to HeartAI policy.
   1.2. This policy must be understood and agreed to by HeartAI administrators and developers before the approval of access to HeartAI platform components.