Data Breach Notification and Mitigation Sample Clauses

Data Breach Notification and Mitigation. Business Associate agrees to promptly notify Covered Entity of any “Breach” of “Unsecured PHI” as those terms are defined by 45 C.F.R. §164.402 (hereinafter a “Data Breach”). The Parties acknowledge and agree that 45 C.F.R. §164.404, as described below in this Section, governs the determination of the date of a Data Breach. Business Associate shall, following the discovery of a Data Breach, promptly notify Covered Entity and in no event later than five (5) calendar days after Business Associate discovers such Data Breach, unless Business Associate is prevented from doing so by 45 C.F.R. §164.412 concerning law enforcement investigations. For purposes of reporting a Data Breach to Covered Entity, the discovery of a Data Breach shall occur as of the first day on which such Data Breach is known to Business Associate or, by exercising reasonable diligence, would have been known to Business Associate. Business Associate shall be considered to have had knowledge of a Data Breach if the Data Breach is known, or by exercising reasonable diligence would have been known, to any person (other than the person committing the Data Breach) who is an employee, officer or other agent of Business Associate. No later than five (5) calendar days following a Data Breach, Business Associate shall provide Covered Entity with sufficient information to permit Covered Entity to comply with the Data Breach notification requirements set forth at 45 C.F.R. §164.400 et seq. Specifically, if the following information is known to (or can be reasonably obtained by) Business Associate, Business Associate shall provide Covered Entity with: (i) contact information for Individuals who were or who may have been impacted by the Data Breach (e.g., first and last name, mailing address, street address, phone number, email address); (ii) a brief description of the circumstances of the Data Breach, including the date of the Data Breach, date of discovery, and number of Individuals affected by the Data Breach; (iii) a description of the types of unsecured PHI involved in the Data Breach (e.g., names, social security number, date of birth, address(es), account numbers of any type, disability codes, diagnosis and/or billing codes and similar information); (iv) a brief description of what the Business Associate has done or is doing to investigate the Data Breach, mitigate harm to the Individual impacted by the Data Breach, and protect against future Data Breaches; and (v) appoint a liaison and provide c...
Sample 1Sample 2Sample 3See All (4)
AutoNDA by SimpleDocs
Data Breach Notification and Mitigation. Business Associate agrees to notify Covered Entity of any Breach of Unsecured PHI promptly upon learning of the Breach. Business Associate’s notice to Covered Entity shall include such information as required by the HIPAA Regulations to be provided by a Business Associate in the event of a Breach.
Sample 1Sample 2Sample 3
Data Breach Notification and Mitigation. 8.1 HIPAA Data Breach Notification and Mitigation. (Business Associate) agrees to implement reasonable systems for the discovery and prompt reporting to (Company Name) of any “breach” of “unsecured PHI” as those terms are defined by 45 C.F.R. § 164.402. Specifically, a breach is an unauthorized acquisition, access, use or disclosure of unsecured PHI, including ePHI, which compromises the security or privacy of the PHI/ePHI. A breach is presumed to have occurred unless there is low probability that the PHI has been compromised based on a risk assessment of at least the factors listed in 45 C.F.R. § 164.402(2)(i)-(iv) (hereinafter a “HIPAA Breach”). The parties acknowledge and agree that 45 C.F.R. § 164.404, as described below in this Section 8.1, governs the determination of the date of discovery of a HIPAA Breach. In addition to the foregoing and notwithstanding anything to the contrary herein, (Business Associate) will also comply with applicable state law, including without limitation, Section 521 Texas Business and Commerce Code, as amended by HB 300 (82nd Legislature), or such other laws or regulations as may later be amended or adopted. In the event of any conflict between this Section 8.1, the Confidentiality Requirements, Section 521 of the Texas Business and Commerce Code, and any other later amended or adopted laws or regulations, the most stringent requirements shall govern.
Sample 1
Data Breach Notification and Mitigation. 8.1 Business Associate agrees to implement reasonable systems for the discovery and prompt reporting of any “breach” of “unsecured PHI” as those terms are defined by 45 C.F.R. § 164.402 or any “breach” of unencrypted “personal information” as those terms are defined by § 501.171, F.S. (collectively referred to as a “HIPAA Breach”). Business Associate will, following the discovery of a HIPAA Breach, notify Covered Entity promptly and in no event later than five (5) business days after Business Associate discovers such HIPAA Breach, unless Business Associate is prevented from doing so by 45 C.F.R. § 164.412 concerning law enforcement investigations. For purposes of reporting a HIPAA Breach to Covered Entity, the discovery of a HIPAA Breach shall occur as of the first day on which such HIPAA Breach is known to the Business Associate or Business Associate has made determination of a breach of security or has reason to believe a breach occurred. No later than seven (7) business days following a HIPAA Breach, Business Associate shall provide Covered Entity with sufficient information to permit Covered Entity to comply with the HIPAA Breach notification requirements set forth at 45 C.F.R. § 164.400 et. Seq. as well as the notification requirements of § 501.171, F.S. Following a HIPAA Breach, Business Associate will have a continuing duty to inform Covered Entity of new information learned by Business Associate regarding the HIPAA Breach.
Sample 1
Data Breach Notification and Mitigation. The obligations in this Section shall survive termination of this BAA and shall continue as long as Business Associate maintains PHI.
Sample 1
Data Breach Notification and Mitigation 
Sample 1Sample 2Sample 3See All (28)

Related to Data Breach Notification and Mitigation

  • Notification of Breach / Compliance Reports The Adviser shall notify the Trust immediately upon detection of (i) any material failure to manage any Fund in accordance with its investment objectives and policies or any applicable law; or (ii) any material breach of any of the Funds’ or the Adviser’s policies, guidelines or procedures. In addition, the Adviser shall provide a quarterly report regarding each Fund’s compliance with its investment objectives and policies, applicable law, including, but not limited to the 1940 Act and Subchapter M of the Code, as applicable, and the Fund’s policies, guidelines or procedures as applicable to the Adviser’s obligations under this Agreement. The Adviser agrees to correct any such failure promptly and to take any action that the Board may reasonably request in connection with any such breach. Upon request, the Adviser shall also provide the officers of the Trust with supporting certifications in connection with such certifications of Fund financial statements and disclosure controls pursuant to the Xxxxxxxx-Xxxxx Act. The Adviser will promptly notify the Trust in the event (i) the Adviser is served or otherwise receives notice of any action, suit, proceeding, inquiry or investigation, at law or in equity, before or by any court, public board, or body, involving the affairs of the Trust (excluding class action suits in which a Fund is a member of the plaintiff class by reason of the Fund’s ownership of shares in the defendant) or the compliance by the Adviser with the federal or state securities laws or (ii) an actual change in control of the Adviser resulting in an “assignment” (as defined in the 0000 Xxx) has occurred or is otherwise proposed to occur.

  • Investigation and Prevention DST shall reasonably assist Fund in investigating of any such unauthorized access and shall use commercially reasonable efforts to: (A) cooperate with Fund in its efforts to comply with statutory notice or other legal obligations applicable to Fund or its clients arising out of unauthorized access and to seek injunctive or other equitable relief; (B) cooperate with Fund in litigation and investigations against third parties reasonably necessary to protect its proprietary rights; and (C) take reasonable actions necessary to mitigate loss from any such authorized access.

  • PROCEDURE FOR NOTIFICATION AND APPLICATION FOR INDEMNIFICATION (a) Indemnitee agrees to notify promptly the Company in writing upon being served with any summons, citation, subpoena, complaint, indictment, information or other document relating to any Proceeding, claim, issue or matter therein which may be subject to indemnification, hold harmless or exoneration rights, or advancement of Expenses covered hereunder. The failure of Indemnitee to so notify the Company shall not relieve the Company of any obligation which it may have to Indemnitee under this Agreement, or otherwise.

  • Procedure for Notification and Defense of Claim (a) Indemnitee shall notify the Company in writing of any matter with respect to which Indemnitee intends to seek indemnification or advancement of Expenses hereunder as soon as reasonably practicable following the receipt by Indemnitee of written notice thereof. The written notification to the Company shall include a description of the nature of the Proceeding and the facts underlying the Proceeding. To obtain indemnification under this Agreement, Indemnitee shall submit to the Company a written request, including therein or therewith such documentation and information as is reasonably available to Indemnitee and is reasonably necessary to determine whether and to what extent Indemnitee is entitled to indemnification following the final disposition of such Proceeding. The omission by Indemnitee to notify the Company hereunder will not relieve the Company from any liability which it may have to Indemnitee hereunder or otherwise than under this Agreement, and any delay in so notifying the Company shall not constitute a waiver by Indemnitee of any rights under this Agreement. The Secretary of the Company shall, promptly upon receipt of such a request for indemnification, advise the Board in writing that Indemnitee has requested indemnification.

  • Post-Termination Cooperation Following any termination of this Agreement, all Parties shall thereafter cooperate fully and work diligently in good faith to achieve an orderly resolution of all matters resulting from such termination.

  • Notification of Breach During the term of this Agreement:

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!