IAHPC Data Protection Policy

The International Association for Hospice and Palliative Care (IAHPC) must restrict access to confidential and sensitive data to protect it from being lost or compromised, and thereby adversely impacting our members, donors, officers, directors and subscribers, through penalties for non-compliance and reputational damage. The organization must, at the same time, ensure users can access data as required to work effectively.

This document describes the IAHPC Data Protection Policy, lists the Principles, Action Steps and Scope of the Policy. It is not anticipated that this policy can eliminate all malicious data theft or breaches. Rather, its primary objective is to increase user awareness, avoid accidental loss scenarios, and outline the requirements to prevent data breaches.

The IAHPC collects information in a transparent way and only with the full cooperation and knowledge of interested parties. Once this information is available to us, the following rules apply.

Scope

In scope

This data security policy applies to all data pertaining to IAHPC members, donors and funders, as well as personal data, or other IAHPC data defined as sensitive by the IAHPC data classification policy (contact information, bank account and credit card numbers, etc.). It therefore applies to every server, database and IT system that handles such data, including any device regularly used for email, web access or other work-related tasks. Every user who interacts with IAHPC is subject to this policy.

Out of scope

Information that is classified as Public is not subject to this policy. IAHPC management has discretion to exclude other data from the policy based on specific business needs.

Underlying principles

Data will be:

Accurate and up-to-date.
Collected fairly and for lawful purposes only.
Processed by the IAHPC within its legal boundaries.
Protected against any unauthorized or illegal access by internal or external parties.

Data will not be:

Communicated informally.
Transferred to organizations, states or countries that lack adequate data protection policies.
Shared with any party other than the ones agreed upon by the data’s owner.

In addition to how it handles the data, the IAHPC has direct obligations toward the people to whom the data belongs. Specifically, it must:

Advise them about what data of theirs is being collected.
Inform them about how it will be processed.
Inform them about who has access to their data.
Provide for exceptions such as lost, corrupted or compromised data.
Allow them to request that we modify, erase, reduce or correct data that has been collected.

Commitment

To protect personal data the IAHPC commits to:

Restrict and monitor access to sensitive data.
Develop transparent data collection procedures.
Build secure networks to protect online data.
Establish clear procedures for reporting privacy breaches or data misuse.
Establish data protection practices (document shredding, secure locks, data encryption, frequent backups, access authorization etc.)

Our data protection provisions are published on the IAHPC website.

Process

The IAHPC shall provide all staff members with access to the information they need to carry out their responsibilities as effectively and efficiently as possible.

General

Each staff member shall be identified either by a unique username and email address to ensure proper identification.
The use of shared identities is permitted only where appropriate, such as service or general accounts (i.e. [email protected] )
User access records may be made available as evidence for security incident investigations.
Access shall be granted based on the principle of least privilege, which means that each program and user will be granted the fewest privileges necessary to complete their tasks.

Access control authorization

The Executive Director and/or the Webmaster shall give access to IAHPC resources, accounts, email service and other platforms.

Requirements for password length, complexity and expiration are stated in the IAHPC password policy.

Application and information access

All IAHPC members as well as officers and directors shall be granted access to the data and applications required for their jobs.
IAHPC staff shall access to data and systems only if there is a job-related need and with approval from the Executive Director.

Access to confidential, restricted information

Access to data classified as ‘Confidential’ or ‘Restricted’ shall be limited to authorized persons whose job responsibilities require it.

Reporting

The IAHPC webmaster and the Executive Director will produce and handle incident reports. High-priority incidents discovered by the webmaster or any other officer shall be discussed with the Executive Director at the earliest possible moment.

Ownership and responsibilities

The webmaster provides administrative support for the implementation, oversight and coordination of security procedures and systems with respect to specific information resources. Everyone who has access to information resources, such as officers, members, consultants, and volunteers is considered a ‘user’.

Enforcement

Any user found in violation of this policy is subject to disciplinary action, up to and including termination of employment, membership or affiliation with the IAHPC.

This Policy will be revised and approved annually by the IAHPC Board of Directors.

This Holiday Season

Help us to help others: IAHPC's annual fundraiser!

How your gift supports the IAHPC mission

Achieved: $24,941 Goal: $30,000

83%

Education

Your gift funds the operational costs of our online courses taught by globally recognized experts who volunteer their time and provide educational resources relevant to palliative care topics. It also supports scholarships that enable palliative care workers to attend educational events and congresses, and allows us to maintain Pallipedia, the free, live, online dictionary.

Support now Read more

The goal of this pillar is to implement strategies, resources and tools that will improve the competencies of the global workforce for appropriate palliative care delivery. We have two programs under this pillar plus many other resources for our members.

Scholarship Program

Your membership helps us produce, and enables access for those with fewer resources, to the following:

Palliative Care in Neurological Conditions
Comprehensive Basic Pain Assessment and Management
Advanced Pain Assessment and Management
Comprehensive Symptom Assessment and Management
Advocacy for global, regional, and national advocacy for palliative care
Pallipedia: Free, online palliative care dictionary
Special Issue on Assisted Dying Practices by several authors
Some Notes for Physicians Contemplating a Career in Palliative and Person-Centered Care by Eduardo Bruera, MD
Euthanasia and Physician Assisted Suicide: Are they clinically necessary or desirable? by Dr. Roger Woodruff
How to Help our Patients in their Terminal Phase by Wilson Astudillo A. and Carmen Mendinueta A.
Cómo Ayudar a un Enfermo Terminal by Wilson Astudillo A. and Carmen Mendinueta A.
Palliative Care in the Developing World - Principles and Practice by Eduardo Bruera, Liliana De Lima, Roberto Wenk and William Farr

Advocacy

Your gift enables us to build and strengthen the partnerships that accelerate global, regional, and national advocacy for palliative care. We advocate for its integration into primary health care under universal health coverage and effective access to essential palliative care medicines and packages for people of all ages. Your gift supports our work to prepare delegates and participate in technical consultation meetings of the relevant UN organizations.

Support now Read more

The goal this pillar is the integration of palliative care into primary health care within the spectrum of universal coverage to improve access to adequate care for patients in need. We offer the following to our members:

Online Advocacy Course
Mentoring for advocacy to develop palliative care in your country
A chance to join IAHPC delegations to UN and WHO meetings
National association collaboration with IAHPC advocacy initiatives
A chance to apply for the Leadership Development Program (LEAD)

Your membership helps us produce and enables free access to the following resources:

IAHPC Advocacy Policy Briefs
Palliative Care Advocacy Why Does It Matter?
Documents on Human Rights and Access to Medicines and Care

Research

Your gift enables us to continue doing research that provides guidance and recommendations for action, based on responses from the global palliative care community. Such research includes our recent evaluation of the impact of euthanasia and assisted dying practices on palliative care workers and the use of essential medicines for palliative care. It also supports the costs of publications focused on research relevant to palliative care.

Support now Read more

The goal of this pillar is to design and implement projects that lead to the integration of palliative care into health policies, resolutions, and key documents. Our studies help us provide guidance and recommendations, and take action based on the responses from the global palliative care community.

Your membership enables you to participate in IAHPC projects such as the:

Global Palliative Care Database
Consensus-based definition of palliative care
Clinical use of tramadol
Opioid Price Watch
IAHPC List of Essential Practices in Palliative Care in English and Spanish
IAHPC Opioid Essential Prescription Package
IAHPC List of Essential Medicines for Palliative Care (in multiple languages)

Information dissemination

Your gift enables us to continue our in-depth reporting and book reviews in Pallinews, as well as media campaigns that raise awareness about the need to increase access to care and support for patients and families.

Support now Read more

The goal of this pillar is to create and publish positive stories and focused messaging, to support and advance the global palliative care movement.

Your membership allows us to make the following resources available free of charge to the palliative care community:

Support us now

Donate online using a credit card, PayPal, or walle

Donate Now

We are a small organization that allocates over 80% of our budget to mission driven programs and to the maintenance of our free website. We need operational funding to continue the work.

Give a gift, get a gift

IAHPC members: When you gift a 2-year membership to a colleague in a low- or middle-income country, we extend your membership by 6 months.

Support a colleague now