RESPONSIBILITIES OF THE PARTIES WITH RESPECT TO PROTECTED HEALTH INFORMATION. 2.1 Responsibilities of the Business Associate. With respect to its use and/or disclosure of Protected Health Information, the Business Associate hereby agrees to do the following:
RESPONSIBILITIES OF THE PARTIES WITH RESPECT TO PROTECTED HEALTH INFORMATION. Responsibilities of the Business Associate. With regard to its use and/or disclosure of Protected Health Information, the Business Associate hereby agrees to do the following: Shall use and disclose the Protected Health Information only in the amount minimally necessary to perform the services of the Contract, provided that such use or disclosure would not violate the Privacy and Security Regulations if done by the Covered Entity. Shall immediately report to the designated Privacy Officer of the Covered Entity, in writing, any use and/or disclosure of the Protected Health Information that is not permitted or required by this Agreement of which Business Associate. Establish procedures for mitigating, to the greatest extent possible, any deleterious effects from any improper use and/or disclosure of Protected Health Information that the Business Associate reports to the Covered Entity. Use appropriate administrative, technical and physical safeguards to maintain the privacy and security of the Protected Health Information and to prevent uses and/or disclosures of such Protected Health Information other than as provided for in this Agreement. Require all of its subcontractors and agents that receive or use, or have access to, Protected Health Information under this Agreement to agree, in writing, to adhere to the same restrictions and conditions on the use and/or disclosure of Protected Health Information that apply to the Business Associate pursuant to this Agreement. Make available all records, books, agreements, policies and procedures relating to the use and/or disclosure of Protected Health Information to the Secretary of Health and Human Services for purposes of determining the Covered Entity’s compliance with the Privacy Regulation. Upon prior written request, make available during normal business hours at Business Associate’s offices all records, books, agreements, policies and procedures relating to the use and/or disclosure of Protected Health Information to the Covered Entity to determine the Business Associate’s compliance with the terms of this Agreement. Upon Covered Entity’s request, Business Associate shall provide to Covered Entity an accounting of each Disclosure of PHI made by Business Associate or its employees, agents, representatives, or subcontractors. Business Associate shall implement a process that allows for an accounting to be collected and maintained for any Disclosure of PHI for which Covered Entity is required to maintain. The i...
RESPONSIBILITIES OF THE PARTIES WITH RESPECT TO PROTECTED HEALTH INFORMATION. (a) Responsibilities of Covered Entity. With regard to the use and/or disclosure of Protected Health Information by the Business Associate, Covered Entity hereby agrees:
RESPONSIBILITIES OF THE PARTIES WITH RESPECT TO PROTECTED HEALTH INFORMATION. 3.1 Responsibilities of Contractor. Contractor hereby agrees to:
RESPONSIBILITIES OF THE PARTIES WITH RESPECT TO PROTECTED HEALTH INFORMATION. 2.1 Responsibilities of the Business Associate. With regard to its use and/or disclosure of PHI, the Business Associate hereby agrees to do the following: use and/or disclose the PHI only as permitted or required by this BAC or as otherwise required by law. report to the designated Privacy Officer and/or Security Officer of the Covered Entity, in writing, any use and/or disclosure of the PHI that is not permitted or required by this BAC of which Business Associate becomes aware, including breaches of unsecured PHI and any security incident of which it becomes aware, within _10_ days of the Business Associate’s discovery of such unauthorized use and/or disclosure. To the extent possible, the Business Associate should provide the Covered Entity with the identification of each individual affected by the breach as well as any information required to be provided by the Covered Entity in its notification to affected individuals. Business Associates shall comply with all regulations issued by HHS and applicable state agencies regarding breach notification to Covered Entities. Business Associates agrees to document such disclosures of PHI and information related to such disclosures as would be required for Covered Entity to respond to a request by an Individual for an accounting of disclosures of PHI in accordance with 45 CFR § 164.528. establish procedures for a mutually satisfactory resolution, regarding any deleterious effects from any improper use and/or disclosure of PHI that the Business Associate reports to the Covered Entity. use commercially reasonable efforts to maintain the security of the PHI and to prevent unauthorized use and/or disclosure of such PHI. require all of its subcontractors and agents that receive or use, or have access to, PHI under this BAC to agree, in writing, to adhere to the same restrictions and conditions on the use and/or disclosure of PHI that apply to the Business Associate pursuant to section 2 of this BAC, as well as to have the subcontractors and agents require of their subcontractors and agents who receive, use, or have access to PHI the same restrictions and conditions as agreed to by them with the Business Associate. make available all internal practices, records, books, agreements, policies, procedures and PHI relating to the use and/or disclosure of PHI received from, or created or received by Business Associate, on behalf of Covered Entity, available to Covered Entity or to the Secretary of HHS in a prompt and commerci...
RESPONSIBILITIES OF THE PARTIES WITH RESPECT TO PROTECTED HEALTH INFORMATION
