Business Activities of the Business Associate. Unless otherwise limited herein, the Business Associate may:
Business Activities of the Business Associate. Unless otherwise limited herein and if such use or disclosure of PHI would not violate the Privacy or Security Rules if done by the Covered Entity, the Business Associate may:
Business Activities of the Business Associate. Unless otherwise limited herein and only if such use or disclosure of PHI would not violate the Privacy or Security Rules if done by UCMC, the Business Associate may:
Business Activities of the Business Associate. Unless otherwise limited herein, the Business Associate may use and disclose the Protected Health Information in its possession for its proper management and administration and to fulfill its present or future legal responsibilities provided such uses are permitted under state and federal confidentiality laws. The Business Associate represents to the Covered Entity that (a) any disclosure it makes will be required under applicable laws, or (b) the Business Associate will obtain reasonable written assurances from any person to whom the Protected Health Information will be disclosed that (i) the Protected Health Information will be held confidentially and used or further disclosed only as required by law or for the purpose for which it was disclosed to the person, and (ii) the person will notify the Business Associate within three (3) business days of any instances of which it is aware in which the confidentiality of the Protected Health Information has been breached. The Business Associate will notify the Covered Entity within three (3) business days of any instance of which it is aware in which the confidentiality of the Protected Health Information has been breached.
Business Activities of the Business Associate. Unless otherwise limited herein, the Business Associate may: Use the Protected Health Information in its possession for its proper management and administration and to fulfill any present or future legal responsibilities of the Business Associate provided that such uses are permitted under state and federal confidentiality laws. Disclose the Protected Health Information in its possession to third parties for the purpose of its proper management and administration or to fulfill any present or future legal responsibilities of the Business Associate, provided that the Business Associate represents to the Covered Entity, in writing, that (i) the disclosures are Required by Law, as that phrase is defined in 45 CFR §164.501 or (ii) the Business Associate has received from the third party written assurances regarding its confidential handling of such Protected Health Information as required under 45 CFR §164.504(e)(4), and the third party agrees in writing to notify Business Associate of any instances of which it becomes aware that the confidentiality of the information has been breached.
Business Activities of the Business Associate. Unless otherwise limited herein, the Business Associate may: Use the PHI in its possession for its proper management and administration and to fulfill any present or future legal responsibilities of the Business Associate provided that such uses are permitted under state and federal confidentiality laws. Disclose the PHI in its possession to third parties for the purpose of its proper management and administration or to fulfill any present or future legal responsibilities of the Business Associate, provided that the Business Associate represents to the Covered Entity, in writing, that (i) the disclosures are Required by Law, as that phrase is defined in 45 CFR §164.103 or (ii) the Business Associate has received from the third party written assurances regarding its confidential handling of such PHI as required under 45 CFR §164.504(e)(4), and the third party agrees in writing to notify Business Associate of any instances of which it becomes aware that the confidentiality of the information has been breached.
Business Activities of the Business Associate. Business Associate recognizes the sensitive and confidential nature of the PHI that it receives from Borrower and agrees that unless otherwise limited herein, the Business Associate:
Business Activities of the Business Associate. Unless otherwise limited herein, the Business Associate may: Use the Protected Health Information in its possession for its proper management and to fulfill any present or future legal responsibilities of the Business Associate provided that such uses are permitted under state and federal confidentiality. Disclose the Protected Health Information in its possession to third parties for the purpose of its proper management and administration or to fulfill any present of future legal responsibilities of the Business Associate, provided that the Business Associate represents to the Covered Entity, in writing, that (i) the disclosures are required by law, as provided for in 45 C.F.R. § 164.501 or (ii) the Business Associate has received from the third party written assurances regarding the confidential handling of such PHI as required under 45 C.F.R. § 164.504(e)(4). B3800967.1
Business Activities of the Business Associate. Business Associate may : (a) consistent with the subject limitations and requirements of the HIPAA Rules, use and disclose the Protected Health Information in its possession for its proper management and administration and to fulfill any present or future legal responsibilities of the Business Associate; (b) de-identify PHI and use or disclose information de-identified in accordance with the HIPAA Rules, and (c) use aggregated data of Covered Entity as combined with the aggregated data of other covered entities that Business Associate has in its possession through its capacity as a business associate to other covered entities to generate de-identified analysis, reports, guidelines, best practices and other materials which do not identify Covered Entity in any manner.
Business Activities of the Business Associate. Unless otherwise limited herein and if such use or disclosure of PHI would not violate the Privacy or Security Rules if done by the Covered Entity, the Business Associate may: use the PHI in its possession for its proper management and administration and to fulfill any present or future legal responsibilities of the Business Associate provided that such uses are permitted under state and federal confidentiality laws. disclose the PHI in its possession to third parties for the purpose of its proper management and administration or to fulfill any present or future legal responsibilities of the Business Associate, provided that the Business Associate represents to Covered Entity, in writing, that the disclosures are required by law, as provided for in 45 CFR § 103 or the Business Associate has received from the third party written assurances regarding its confidential handling of such PHI as required under 45 CFR § 164.504(e)(4) and § 164.314, and the third party notifies the Business Associate of any instances of which it is aware in which the confidentiality of the information has been breached. Business Associate may provide data aggregation services relating to the health care operations of the Covered Entity. Business Associate understands and agrees that its access to Protected Health Information stored in databases and information systems at the Covered Entity is subject to review and audit by the Covered Entity or agents of the State of New York at any time, that remote audits of such access may occur at any time, if remote access exists, that on-site audits of such access will be conducted during regular business hours, and that any review or audit may occur with or without prior notice by the Covered Entity. RESPONSIBILITIES OF THE PARTIES WITH RESPECT TO PHI Responsibilities of the Business Associate. With regard to its use and/or disclosure of PHI, the Business Associate hereby agrees to do the following: Not use or disclose PHI other than as permitted or required by the Agreement or as required by law; Use appropriate safeguards, and comply with Subpart C of 45 CFR Part 164 with respect to electronic PHI, to prevent use or disclosure of PHI other than as provided for by the Agreement; Report, in writing, to Covered Entity within five (5) business days any use or disclosure of PHI not provided for by the Agreement of which it becomes aware, including breaches of unsecured PHI as required at 45 CFR 164.410, and any security incident of whic...
