Safeguarding PHI. The Business Associate shall develop, implement, maintain and use appropriate administrative, technical and physical safeguards to prevent the improper use or disclosure of any PHI that is created, received, maintained or transmitted on behalf of the Covered Entity for any purpose other than those expressly permitted under the Agreement. Business Associate agrees to comply with Subpart C of 45 C.F.R. Part 164 with respect to Electronic Protected Health Information. Business Associate must secure all Electronic Protected Health Information by technological means that render such information unusable, unreadable, or indecipherable to unauthorized individuals. Destruction of Protected Health Information on paper, film or other hard copy media must involve either shredding or otherwise destroying the PHI so that it cannot be read or reconstructed. Should any employee or subcontractor of Business Associate have direct, authorized access to computer systems of Covered Entity that contain PHI, Business Associate shall immediately notify Covered Entity of any change of such personal in order for Covered Entity to disable the previously authorized access.
Appears in 6 contracts
Samples: Services Agreement, Services Agreement, Services Agreement
