Authorized Access to PHI. To the extent that Business Associate maintains PHI in a Designated Record Set and at the request of Covered Entity, Business Associate agrees to provide access to PHI in a Designated Record Set to Covered Entity or, as directed by Covered Entity, to an individual in order to meet the requirements under 45 C.F.R. § 164.524. If Business Associate maintains an Electronic Health Record, Business Associate shall provide such information in electronic format to enable Covered Entity to fulfill its obligations under the HITECH Act, including, but not limited to, 42 U.S.C. § 17935(e).
Authorized Access to PHI. At the request of Covered Entity and within ten (10) calendar days of such request, Business Associate shall make available to Covered Entity (or to the Individual at the direction of Covered Entity) for inspection and copying, any PHI about an Individual which Business Associate created or received for or from Covered Entity and that is in the custody or control of Business Associate as required by 45 C.F.R. § 164.524. To enable Covered Entity to fulfill its obligations that pertain to an Individual’s request for an electronic copy of his or her PHI that is used or maintained in an Electronic Health Record, to the extent Business Associate uses or maintains PHI in an Electronic Health Record, Business Associate shall provide Covered Entity with a copy of such information in electronic format, at Covered Entity’s expense, within five (5) calendar days of a request by Covered Entity.
Authorized Access to PHI
