Access of Individuals to Protected Health Information Sample Clauses

Access of Individuals to Protected Health Information. Individuals have certain rights regarding inspection and copying of their PHI that is contained in a Designated Record Set held by a Covered Entity. A Covered Entity that is a Business Associate of the AGO may ask the AGO to help it comply with its obligations to make PHI in a Designated Record Set held by the AGO available for inspection and copying. All such requests (“Access Requests”) must be made in writing. The AGO will immediately forward all Access Requests to the AGO’s Privacy Officer. If a Business Associate of the AGO asks the AGO to copy the requested PHI, the AGO’s Privacy Officer will first determine whether the AGO has any requested records in a Designated Record Set. If the AGO has such records, then within 14 days of receiving the Access Request, the AGO will provide the requested PHI available to the Business Associate in accordance with 45 C.F.R. §164.524, unless the PHI is subject to the attorney-client privilege, the work-product doctrine, or state or federal laws that are not preempted by the HIPAA Rules. PHI will be sent to a Business Associate via secure email. If the PHI cannot be sent via secure email, the AGO will consult with its Privacy Officer to determine another appropriate means of delivery. If a Business Associate of the AGO asks the AGO to provide the requested PHI to the individual requestor, the AGO may, in its sole discretion, agree to such a request. If it agrees, then within 20 days of receiving an Access Request, the AGO will provide the requested PHI directly to the individual in accordance with 45 C.F.R. §164.524, unless the PHI is subject to the attorney-client privilege, the work-product doctrine, or state or federal laws that are not preempted by the HIPAA Rules. If it does not agree, the AGO will provide the PHI to the Business Associate as discussed in the immediately preceding paragraph. PHI sent to an individual pursuant to this Policy will be sent via secure email. If the PHI cannot be sent via secure email, the AGO will consult with its Privacy Officer to determine another appropriate means of delivery. The AGO may, in its discretion, charge a Business Associate or an Individual a reasonable, cost-based fee for the production of PHI in accordance with 45 C.F.R. §164.524(c)(4). If an individual or a Covered Entity that is a Business Associate of the AGO asks the AGO to allow an individual access to PHI in a Designated Record Set held by the AGO, the AGO will provide the PHI to the Business Associate and al...
Sample 1Sample 2Sample 3See All (4)
AutoNDA by SimpleDocs

Related to Access of Individuals to Protected Health Information

  • Access to Protected Health Information 7.1 To the extent Covered Entity determines that Protected Health Information is maintained by Business Associate or its agents or Subcontractors in a Designated Record Set, Business Associate shall, within two (2) business days after receipt of a request from Covered Entity, make the Protected Health Information specified by Covered Entity available to the Individual(s) identified by Covered Entity as being entitled to access and shall provide such Individuals(s) or other person(s) designated by Covered Entity with a copy the specified Protected Health Information, in order for Covered Entity to meet the requirements of 45 C.F.R. § 164.524.

  • Data Protection and Privacy: Protected Health Information Party shall maintain the privacy and security of all individually identifiable health information acquired by or provided to it as a part of the performance of this Agreement. Party shall follow federal and state law relating to privacy and security of individually identifiable health information as applicable, including the Health Insurance Portability and Accountability Act (HIPAA) and its federal regulations.

  • Protected Health Information “Protected Health Information” shall have the same meaning as the term “protected health information” in Section 160.103 and is limited to the information created or received by Contractor from or on behalf of County.

  • Amendment of Protected Health Information 8.1 To the extent Covered Entity determines that any Protected Health Information is maintained by Business Associate or its agents or Subcontractors in a Designated Record Set, Business Associate shall, within ten (10) business days after receipt of a written request from Covered Entity, make any amendments to such Protected Health Information that are requested by Covered Entity, in order for Covered Entity to meet the requirements of 45 C.F.R. § 164.526.

  • Electronic Protected Health Information “Electronic Protected Health Information” means individually identifiable health information that is transmitted by or maintained in electronic media.

  • Permitted Uses and Disclosures of Protected Health Information Business Associate:

  • Unsecured Protected Health Information “Unsecured Protected Health Information” shall have the same meaning as the term “unsecured protected health information” in 45 CFR § 164.402.

  • Health Information System i. As required by 42 CFR 438.242(a), the MCP shall maintain a health information system that collects, analyzes, integrates, and reports data. The system shall provide information on areas including, but not limited to, utilization, grievances and appeals, and MCP membership terminations for other than loss of Medicaid eligibility.

  • Use and Disclosure of Protected Health Information The Business Associate must not use or further disclose protected health information other than as permitted or required by the Contract or as required by law. The Business Associate must not use or further disclose protected health information in a manner that would violate the requirements of HIPAA Regulations.

  • Access to Protected Information If BA maintains a designated record set on behalf of CE, BA shall make Protected Information maintained by BA or its agents or subcontractors in Designated Record Sets available to CE for inspection and copying within five (5) days of a request by CE to enable CE to fulfill its obligations under state law [Health and Safety Code Section 123110] and the Privacy Rule, including, but not limited to, 45 C.F.R. Section 164.524 [45 C.F.R. Section 164.504(e)(2)(ii)(E)]. If BA maintains Protected Information in electronic format, BA shall provide such information in electronic format as necessary to enable CE to fulfill its obligations under the HITECH Act and HIPAA Regulations, including, but not limited to, 42 U.S.C. Section 17935(e) and 45 C.F.R. Section 164.524.

Time is Money Join Law Insider Premium to draft better contracts faster.