News

On 21 August, the Victorian Ambulance Union Incorporated (VAU) became aware of a potential second serious breach of privacy at Ambulance Victoria (AV). This follows a previous breach of privacy in early May 2023 where confidential spreadsheets of pre-employment AOD screens for AV graduates were accessible on the AV intranet. AV only became aware of this privacy breach when informed by the VAU.

This follows a previous breach of privacy in early May 2023 where confidential spreadsheets of pre-employment AOD screens for AV graduates were accessible on the AV intranet. AV only became aware of this privacy breach when informed by the VAU.

Members informed the VAU that a significant amount of further information was accessible in SharePoint folders accessible through the AV intranet relating to:

• Resumes and applications for multiple AV positions including MICA SRU positions.
• Staff medical information including COVID test results.
• Managers’ notes.
• Management handover reports.
• HR information.
• Business cases.
• AV performance data.
• AV Symbolix reports (trends in use of AV medication).

The VAU has urgently contacted AV seeking that access to the information be immediately restricted or removed. Once again, AV only became aware of this breach when informed by the VAU. We have also requested AV put out an urgent communication to staff to advise of the breach.
AV have again displayed a stunning level of incompetence and negligence in protecting confidential staff information. Just three months ago AV informed staff that they are “committed to protecting the privacy of personal and health information, taking every step possible to make sure this does not happen again”.

This is a harmful and embarrassing failure to deliver on this commitment. More to follow.