Reporting Breaches. I agree that I shall promptly report to the Contracting Officer any unauthorized disclosure that I have knowledge of whether or not I am personally involved. I also understand that my anonymity will be preserved to the extent possible when reporting such violations.
Reporting Breaches. Organization shall report to Hospital each breach that is made by Organization that is not specifically permitted by this Agreement. Organization shall report to Hospital any security incident of which it becomes aware. For purposes of this Agreement, “Security Incident” means the attempted or successful unauthorized access, use or disclosure, modification, or destruction of information, or interference with the system operations in Hospital IT system. Organization shall notify Hospital’s Privacy Official by telephone call on or before the day immediately following the first day on which Organization knows of such breach. Organization shall provide a full written report to Hospital’s Privacy Official within five (5) days of verbal notice. Organization shall include the following in the written report: Detailed information about the breach, immediate remedial action to stop the breach, and names and contact information of individuals whose PHI has been or is reasonably believed to have been subject to the breach. For reference purposes, as of the date of this Agreement, Hospital’s Privacy Officer is Xxxx Xxxxxx, telephone number 000-000-0000.
Reporting Breaches. BCBSNE will report to THE PLAN any “Breach” of “Unsecured Protected Health Information” as these terms are defined by HIPAA and any implementing regulations not permitted in writing by THE PLAN, or by this Agreement, of which it becomes aware. BCBSNE will make the report to THE PLAN within 30 days after BCBSNE learns of such Breach.
Reporting Breaches. Third Party Payer shall report to Healthcare Organization each Breach that is made by Third Party Payer that is not specifically permitted by this Agreement. Third Party Payer shall report to Healthcare Organization any security incident of which it becomes aware. For purposes of this Agreement, “Security Incident” means the attempted or successful unauthorized access, use or disclosure, modification, or destruction of information, or interference with the system operations in Healthcare Organization IT system. Third Party Payer shall notify Healthcare Organization’s Privacy Official by telephone call immediately following the first day on which Third Party Payer knows of such Breach. Third Party Payer shall provide a full written report to Healthcare Organization’s Privacy Official within five (5) days of verbal notice. Third Party Payer shall include the following in the written report: Detailed information about the Breach, immediate remedial action to stop the Breach, and names and contact information of individuals whose PHI has been or is reasonably believed to have been subject to the Breach. For reference purposes, as of the date of this Agreement, Healthcare Organization’s Privacy Officer is (Insert Name), telephone number (Insert Phone Number).
Reporting Breaches. Organization shall report to CHI Health each Breach that is made by Organization that is not specifically permitted by this Agreement. Organization shall report to CHI Health any security incident of which it becomes aware. For purposes of this Agreement, “Security Incident” means the attempted or successful unauthorized access, use or disclosure, modification, or destruction of information, or interference with the system operations in CHI Health’s IT system. Organization shall notify CHI Health’s Privacy Official by telephone call immediately following the first day on which Organization knows of such Breach. Organization shall provide a full written report to CHI Health’s Privacy Official within five (5) days of verbal notice. Organization shall include the following in the written report: Detailed information about the Breach, immediate remedial action to stop the Breach, and names and contact information of individuals whose PHI has been, or is reasonably believed to have been subject to the Breach. For reference purposes, as of the date of this Agreement, CHI Health’s Privacy Officer is Xxxxxx Xxxxx, telephone number 000-000-0000.
Reporting Breaches. Community Partner shall report to TDC any Breach that is made by Community Partner that is not specifically permitted by this Agreement. Community Partner shall report to TDC any security incident of which it becomes aware. For purposes of this Agreement, “Security Incident” means the attempted or successful unauthorized access, use or disclosure, modification, or destruction of information, or interference with the system operations in TDC’s IT system. Community Partner shall notify TDC’s Privacy Official by telephone call immediately following the first day on which Community Partner knows of such Breach. Community Partner shall provide a full written report to TDC’s Privacy Official within five (5) days of verbal notice. Community Partner shall include the following in the written report: detailed information about the Breach, immediate remedial action to stop the Breach, and names and contact information of individuals whose PHI has been, or is reasonably believed to have been subject to the Breach. For reference purposes, as of the date of this Agreement, TDC’s Privacy Officer is Xxx Xxxxxxxx, Executive Director, telephone number, 000-000-0000.
Reporting Breaches. All members of staff have an obligation to report actual or potential data protection compliance failures. This allows us to: • Investigate the failure and take remedial steps if necessary • Maintain a register of compliance failures • Notify the Supervisory Authority of any compliance failures that are material either in their own right or as part of a pattern of failures Under the GDPR, the Managing Director is legally obliged to notify the Supervisory Authority within 72 hours of the data breach (Article 33). Individuals have to be notified if adverse impact is determined (Article 34). In addition, Cloud Made Simple must notify any affected clients without undue delay after becoming aware of a personal data breach (Article 33). However, Cloud Made Simple does not have to notify the data subjects if anonymized data is breached. Specifically, the notice to data subjects is not required if the data controller has implemented pseudonymisation techniques like encryption along with adequate technical and organizational protection measures to the personal data affected by the data breach (Article 34).
Reporting Breaches. Organization shall report to St. Alexius Medical Center each Breach that is made by Organization that is not specifically permitted by this Agreement. Organization shall report to St. Alexius Medical Center any security incident of which it becomes aware. For purposes of this Agreement, “Security Incident” means the attempted or successful unauthorized access, use or disclosure, modification, or destruction of information, or interference with the system operations in St. Alexius Medical Center’s IT system. Organization shall notify St. Alexius Medical Center’s Privacy Official by telephone call immediately following the first day on which Organization knows of such Breach. Organization shall provide a full written report to St. Alexius Medical Center’s Privacy Official within five (5) days of verbal notice. Organization shall include the following in the written report: Detailed information about the Breach, immediate remedial action to stop the Breach, and names and contact information of individuals whose PHI has been, or is reasonably believed to have been subject to the Breach. For reference purposes, as of the date of this Agreement, St. Alexius Medical Center’s Privacy Officer is Xxxxxx Xxxxx, telephone number 000-000-0000.
Reporting Breaches. Community Partner shall report to Hospital each Breach that is made by Community Partner that is not specifically permitted by this Agreement. Community Partner shall report to Hospital any security incident of which it becomes aware. For purposes of this Agreement, “Security Incident” means the attempted or successful unauthorized access, use or disclosure, modification, or destruction of information, or interference with the system operations in Hospital IT system. Community Partner shall notify Hospital’s Privacy Official by telephone call immediately following the first day on which Community Partner knows of such Breach. Community Partner shall provide a full written report to Hospital’s Privacy Official within five (5) days of verbal notice. Community Partner shall include the following in the written report: Detailed information about the Breach, immediate remedial action to stop the Breach, and names and contact information of individuals who’s PHI has been, or is reasonably believed to have been subject to the Breach. For reference purposes, as of the date of this Agreement, Hospital’s Privacy Officer is Xxxxx Xxxxx, telephone number, 000-000-0000.
Reporting Breaches. Business Associate shall report promptly to Covered Entity any unauthorized acquisition, access, Use or Disclosure of PHI in violation of HIPAA, [State] Confidentiality Law, [State]’s Notice of Risk to Personal Data Act of which it becomes aware. Such report shall be made without unreasonable delay but in no event later than twenty (20) calendar days after discovery by Business Associate of such Breach. Each report of a Breach shall include, to the extent possible, the following information: (i) a description of the facts pertaining to the Breach, including, without limitation, the date of the Breach and the date of discovery of the Breach, (ii) a description of the PHI involved in the Breach, (iii) the names of the individuals who committed or were involved in the Breach, (iv) the names of the unauthorized individuals or entities to whom PHI has been Disclosed, (v) a description of the action taken or proposed by the Business Associate to mitigate the financial, reputational or other harm to the individual who is the subject of the Breach, and (vi) provide such other information as Covered Entity may reasonably request, including, without limitation, the information, data and documentation required by Covered Entity to timely comply with HIPAA.
