Impermissible Use or Disclosure definition

Impermissible Use or Disclosure means the acquisition, access, use, or disclosure of Protected Health Information in a manner not permitted under HIPAA that may or may not compromise the security or privacy of the Protected Health Information.
View Source

Examples of Impermissible Use or Disclosure in a sentence

  • Associate will cooperate with CE to mitigate the effects on any Breach, Security Incident, or Impermissible Use or Disclosure.

  • If a Breach, Security Incident, Impermissible Use or Disclosure occurs, and the PHI is under the control of the Associate or its subcontractor or its agent, the Associate must notify the affected individuals and is responsible for paying the costs associated with the Breach, Security Incident, Impermissible Use or Disclosure and subsequent notification to affected individuals.

  • The Associate will cooperate with the CE in sending out any notification relating to a Breach, Security Incident, or Impermissible Use or Disclosure.

  • During the term of the Contract or this Addendum, Associate must notify CE in writing within twenty-four (24) hours of any suspected or actual Breach, Security Incident, or Impermissible Use or Disclosure.

  • Without unreasonable delay and, in any event, no more than five (5) business days after discovery, Business Associate shall notify Covered Entity of any Impermissible Use or Disclosure, and shall commence conducting a preliminary risk assessment in order to determine if the Impermissible Use or Disclosure is a violation of any applicable federal or state laws or regulations.

  • An Impermissible Use or Disclosure shall be treated as discovered by Business Associate as of the first day on which such Impermissible Use or Disclosure is known to the Business Associate, or by exercising reasonable diligence would have been known to the Business Associate.

  • For all reporting obligations under this BAA, the parties acknowledge that, because Practice Sense does not know the nature of PHI contained in any of your Content, it will not be possible for Practice Sense to provide information about identities of Individuals who may have been affected or a description of the type of information that may have been subject to a Security Incident, an Impermissible Use or Disclosure, or a Breach.

  • For all reporting obligations under this BAA, the parties acknowledge that, because Business Associate does not know the details of PHI contained in any of Customer Forms, there will be no obligation on the Business Associate to provide information about the identities of the Individuals who may have been affected, or a description of the type of information that may have been subject to a Security Incident, Impermissible Use or Disclosure, or Breach.

  • For all reporting obligations under HIPAA and this BAA, the parties acknowledge that because Aptible does not know the nature of PHI contained in your properly configured Dedicated Environments, it is not possible for Aptible to provide information about the identities of individuals who may have been affected, or a description of the type of information that may have been subject to a Breach, Security Incident, or Impermissible Use or Disclosure.

  • Vendor shall report to Customer in writing any (i) actual Impermissible Use or Disclosure or (ii) Security Incident involving Electronic PHI, other than an Unsuccessful Security Incident that involves an actual or suspected impermissible use or disclosure of PHI, within 30 days of Vendor’s discovery thereof.