Compliance with HIPAA. To the extent applicable to this Agreement, the Affiliated Hospital agrees to comply with the Health Insurance Portability and Accountability Act of 1996, as codified at 42 U.S.C. Section 1320d, et seq. (“HIPAA"), and any current and future regulations promulgated thereunder, including, without limitation, the federal privacy regulations contained in 45 C.F.R. Parts 160 and 164 (the "Federal Privacy Regulations"), the federal security standards contained in 45 C.F.R. Parts 160, 162, and 164 (the “Federal Security Regulations"), and the federal standards for electronic transactions contained in 45 C.F.R. Parts 160 and 162 (the "Federal Electronic Transaction Regulations"), all as amended from time to time, and all collectively referred to herein as "HIPAA Requirements.” The Affiliated Hospital agrees not to use or further disclose any Protected Health Information (as defined in the Federal Privacy Regulations) or EPHI (as defined in the Federal Security Regulations), other than as permitted by the HIPAA Requirements and the terms of the Agreement. In addition, the Affiliated Hospital agrees to comply with any state laws and regulations that govern or pertain to the confidentiality, privacy, security of, and electronic transactions pertaining to, health care information. As and to the extend required by law, upon the written request of the Secretary of Health and Human Services, the Comptroller General or any of their duly authorized representatives, the Affiliated Hospital shall make available those contracts, books, documents and records necessary to verify the nature and extent of the costs of providing services under this Agreement. Such inspection shall be available for up to four (4) years after rendering of such services. The Affiliated Hospital will also indemnify and hold the Governmental Entity harmless if any amount of reimbursement is denied or disallowed because of the Affiliated Hospital's failure to comply with the obligations set forth in this section. Such indemnity shall include, but not be limited to, the amount of reimbursement denied, plus any interest, penalties and legal costs. If the Affiliated Hospital carries out any of the duties of this Agreement through a subcontract with a value of $10,000.00 or more over a twelve
Compliance with HIPAA. You shall comply with the privacy and security requirements of HIPAA. Compliance with HIPAA includes the following:
Compliance with HIPAA. It is understood and agreed that Institution, as a covered entity under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), may not use or disclose protected health information (“PHI”), as defined in HIPAA and its implementing regulations, for purposes other than treatment, payment, or health care operations without first obtaining authorization from the individual concerned. Institution agrees to obtain authorization from individuals enrolled in the Study which permits disclosure to and use of PHI by Sponsor for purposes of conducting and overseeing the trial. Sponsor agrees that it shall not disclose PHI to any person or entity except as permitted by the HIPAA authorization
Compliance with HIPAA. To the extent applicable, Vendor will comply with all applicable privacy, security and confidentiality requirements, including the Health Insurance Portability and Accountability Act of 1996 including all pertinent regulations, including without limitation the Privacy, Security, Breach Notification, and Enforcement Rules, codified at 45 C.F.R. Parts 160 and 164, as amended by the Health Information Technology for Economic and Clinical Health Act, and as may be further amended in the future (“HIPAA”) and Maryland law governing the confidentiality of patient information and medical records.
Compliance with HIPAA. To the extent that and for so long as (i) any Credit Party is a “covered entity” as defined in 45 C.F.R. § 160.103, (ii) any Credit Party and/or its business and operations are subject to or covered by the HIPAA Administrative Requirements codified at 45 C.F.R. Parts 160 & 162 (the “Transactions Rule”) and/or the HIPAA Security and Privacy Requirements codified at 45 C.F.R. Parts 160 & 164 (the “Privacy and Security Rules”), or (iii) any Credit Party sponsors any “group health plans” as defined in 45 C.F.R. § 160.103, such Credit Party has: (x) completed, or will complete on or before any applicable compliance date, surveys, audits, inventories, reviews, analyses and/or assessments, including risk assessments, (collectively “Assessments”) of all areas of its business and operations subject to HIPAA and/or that could reasonably be expected to be adversely affected by the failure of such Credit Party to be HIPAA Compliant (as defined below) to the extent that such Credit Party reasonably believes that these Assessments are appropriate or required for such Credit Party to be HIPAA Compliant; (y) developed, or will develop on or before any applicable compliance date, a detailed plan and time line for becoming HIPAA Compliant (a “HIPAA Compliance Plan”); and (z) implemented, or will implement on or before any applicable compliance date, those provisions of its HIPAA Compliance Plan necessary to ensure that such Credit Party is HIPAA Compliant; provided, however, that subsections (x), (y) and (z) of this Section 4.21 as they relate to the Transactions Rule shall not apply to Medcare for the period beginning on the date of this Agreement and continuing until the later to occur (and including such date) of (1) October 15, 2003 and (2) such other date as may be adopt by the U.S. Department of Health and Human Services (“HHS”) as the compliance deadline for the Transactions Rule (including any extensions of such deadline adopted by HHS). For purposes of this Agreement, “HIPAA Compliant” shall mean that such Credit Party (1) is, or on or before any applicable compliance date, including any extensions of such date adopted by HHS, will be, in full compliance with any and all of the applicable requirements of HIPAA, including all requirements of the Transactions Rule and the Privacy and Security Rules and (2) is not subject to, and could not reasonably be expected to become subject to, any civil or criminal penalty or any investigation, claim or process that could reaso...
Compliance with HIPAA. The Contractor shall comply with all applicable requirements of the federal Health Insurance Portability and Accountability Act, 42 U.S.C. § 1320 et seq. (“HIPAA ”) and its implementing regulations, including 45 CFR Parts 160 and 164. The Contractor also agrees to comply with, to the extent applicable, the Maryland Confidentiality of Medical Records Act (“MCMRA”), §§ 4-301 et seq., Health General Article,
Compliance with HIPAA. Any ambiguity in this Agreement will be resolved in favor of a meaning that permits the Parties to comply with their respective obligations under HIPAA.
Compliance with HIPAA. In performing any services hereunder, Accuray may receive from Customer patient healthcare, billing, or other confidential patient information ("Patient Information"). Patient Information, as the term is used herein, includes all "Protected Health Information," as that term is defined in 45 CFR 164.501. Customer shall identify to Accuray in writing all such information when Customer provides such information to Accuray, and Accuray shall use Patient Information so identified by Customer only as necessary to provide the services to Customer as set forth herein. Accuray shall comply with all federal laws, rules and regulations relating to the confidentiality of Patient Information, including the applicable provisions of the privacy regulations promulgated pursuant to Health Insurance Portability and Accountability Act of 1996 ("HIPAA").
Compliance with HIPAA. PROVIDER shall adopt and implement policies and procedures relating to the use or disclosure of individually identifiable health information, including but not limited to policies and procedures required by the privacy regulations promulgated under the Health Insurance Portability and Accountability Act of 1996, as amended.
Compliance with HIPAA. Customer shall not request or cause Business Associate to make a Use or Disclosure of PHI in a manner that does not comply with HIPAA or this BAA.
