Response and Reporting Sample Clauses

Response and Reporting. The user of any information technology device connected to or housing ePHI will report any suspected or known Security Incident promptly to the Security Officer, who will log all pertinent information regarding a Security Incident including date, time, people contacted, and ePHI applications or repositories affected. The Security Officer will promptly notify the Privacy Officer in the event of any such reports, and cooperate to address and resolve all such issues in compliance with HIPAA. The Security Officer and the Privacy Officer shall cooperate to mitigate, to the extent practicable, harmful effects of Security Incidents that are known to the Company, and document Security Incidents and their outcomes, and as appropriate if the Security Incident constitutes a reportable data breach in violation of HIPAA Privacy Rules, and in accordance with HIPAA Breach Notification rules.