Information security in general practice
Information backup
Last revised: 21 Apr 2023
It is critical that you have a primary contact for your practice’s backup and recovery plan and have a written agreement clearly outlining their role and accountabilities. This role is a key responsibility. You must ensure that the designated person has the required skills, including the ability to navigate and minimise the impact a data loss or backup failure will have on your practice. This staff member may also be responsible for performing and/or monitoring the daily backup and recovery of data.
Alternatively, your practice may contract a third-party IT company to manage your backup and recovery processes. This option requires a written agreement that outlines the third-party organisation’s roles and accountabilities.
If you decide to employ the services of an external IT provider, there are several questions to consider in order to choose the right one to suit your practice needs:
Refer to the checklist in the ‘Contracts’ chapter of the RACGP’s Guide for hardware and software requirements in general practice for further information on reviewing contracts and service-level agreements with external IT providers.
When considering different types of backups for your practice, it is essential to consult with a trusted and validated IT professional about your specific, unique requirements. Once you have selected a suitable IT provider, you may wish to ask them questions such as:
Advertising