Breach Notification Requirements and Security Incidents Sample Clauses

Breach Notification Requirements and Security Incidents. Each QHIN shall comply with the HIPAA Rules as if they apply to EHI, including but not limited to the Breach notification requirements applicable to Business Associates pursuant to 45 CFR Part 164 Subpart D regardless of whether it is a Business Associate; provided, however, that if the QHIN is a Covered Entity, it shall comply with the Breach reporting requirements that apply to Covered Entities in addition to providing the notices required below. Each QHIN further shall notify, in writing, the RCE and the following to the extent that they are affected by the Breach: other QHINs, Participants, Participant Members, and Individuals with whom the QHIN has a Direct Relationship. Such notice shall be provided without unreasonable delay in accordance with this Section and Applicable Law. Whenever possible, early notification of Discovery of the Breach is advisable in order to allow other affected parties to satisfy their reporting obligations. Each QHIN shall implement commercially reasonable policies and procedures to address security incidents as defined at 45 CFR §164.304 and shall identify, if possible, and respond to suspected or known security incidents, and shall mitigate, to the extent reasonably practicable, any harmful effects of any security incidents that are suspected by or known to the QHIN. Each QHIN shall document any suspected or known security incidents and its outcomes and maintain a copy of such documentation. The foregoing does not modify or replace any obligation that a QHIN may have under the FTC Rule with respect to a breach of security as defined in the FTC Rule if applicable.
Sample 1Sample 2
AutoNDA by SimpleDocs
Breach Notification Requirements and Security Incidents. Each Participant Member shall comply with the Breach notification requirements applicable to Business Associates pursuant to 45 CFR Part 164 Subpart D, regardless of whether it is a Business Associate; provided, however, that if the Participant Member is a Covered Entity, it shall comply with the Breach reporting requirements that apply to Covered Entities in addition to providing the notices required below. Each Participant Member further shall notify, in writing, the Participant and the following to the extent that they are affected by the Breach: other Participant Members, and Individuals with whom the Participant Member has a Direct Relationship. Such notice shall be provided without unreasonable delay in accordance with this Section and Applicable Law. Whenever possible, early notification of Discovery of the Breach is advisable in order to allow other affected parties to satisfy their reporting obligations. Each Participant Member shall implement commercially reasonable policies and procedures to address security incidents as defined at 45 CFR §164.304. Each Participant Member shall identify, if possible, and respond to suspected or known security incidents, shall mitigate, to the extent reasonably practicable, any harmful effects of any security incidents that are suspected by or known to the Participant Member, and shall document and maintain a copy of such documentation of any suspected or known security incidents and its outcomes. The foregoing does not modify or replace any obligation that a Participant Member may have under the FTC Rule with respect to a breach of security as defined in the FTC Rule if applicable.
Sample 1Sample 2

Related to Breach Notification Requirements and Security Incidents

  • Notification Requirements 1. If the Family Leave is foreseeable, the employee must provide the agency/department with thirty (30) calendar days notice of his or her intent to take Family Leave.

  • Certification Requirements The applicant will provide Vista Laboratories, Inc. with all product information for the evaluation of the product to be certified and warrant that the information provided is accurate and complete so that Vista Labs may perform the services requested. If the product was tested at an external laboratory, the applicant must provide the complete test report to Vista Labs. If the external testing facility is not ISO 17025 accredited, or does not have the proper scope, Vista Labs must determine if the test report can be used for certification activities. The applicant’s information is used to perform a product review and evaluation to determine the product’s compliance to the specific certification requested. Throughout the process, the client agrees to make claims regarding certification consistent with the scope of certification. The applicant agrees to supply the required number of product samples, to be determined by Vista Labs, to the laboratory for testing, measurement, and evaluation purposes. The client understands that certain tests may damage or destroy the sample and acknowledge that Vista Labs is not responsible for such damages. Samples will be returned only upon request by the applicant and at the applicant’s expense, after the completion of certification. Samples will be disposed of after six months if not requested for return by applicant. The product is ineligible for certification if it has been modified by the client after testing or certification. Changes to the product must be approved by Vista Laboratories. Vista Labs reserves the right to re- evaluate the product as a result of information that raises questions concerning the conformance of the product. Certified products maintain fulfilment of product requirements if the certification applies to ongoing production. If the client provides copies of the certification documents to other parties, the documents are reproduced in their entirety, or as specified in the certification scheme. In making reference to its product certification in media, such as brochures or advertisement, the client complies with the requirements of the Vista Labs or as specified by the certification scheme. The client complies with any requirements that may be prescribed in the certification scheme relating to the use of marks of conformity, and on all product correspondences and product related information. Vista Labs reserves the right to revise or withdraw the requirements as required in order to maintain conformance with FCC rules and regulations governing the product. The product may continue with certification and receive certification upon demonstration of compliance with the revised requirements, to the satisfaction of Vista Laboratories.

  • Documentation Requirements (a) An employee must apply for personal leave in writing in the form required by the CEO as soon as it is reasonably practicable for the employee to make the application.

  • Submission Requirements The Contractor shall submit inventory disposal schedules to the Plant Clearance Officer no later than—

  • Data Submission Requirements As part of its registration and sponsorship of Registered Names in the Registry TLD, Registrar shall submit to the Registry System complete data as required by technical specifications of the Registry System that are made available to Registrar from time to time. Registrar hereby grants Registry Operator a non-exclusive, royalty free, non-transferable, limited license to such data for propagation of and the provision of authorized access to the TLD zone files and as otherwise required for Registry Operator to meet its obligations to ICANN and/or for Registry Operator’s operation of the Registry TLD.

  • Application Requirements This application shall contain, as a minimum, a sketch showing the location of proposed facilities; a description, sketch, manufacturer’s brochure, etc. of the proposed facilities; and a description of the operation proposed. (11-28-90) 101. -- 199. (RESERVED)‌ 200. OPERATIONAL AGREEMENT.‌‌

  • Notification Requirement Through and up to the conclusion of the Non-Competition Period, Executive shall give notice to the Company of each new business activity he plans to undertake, at least seven (7) days prior to beginning any such activity. Such notice shall state the name and address of the Person for whom such activity is undertaken and the nature of Executive’s business relationship(s) and position(s) with such Person.

  • Publication Requirements Those seeking to include renderings of more than 10 images from the UND Biometrics Database in reports, papers, and other documents to be published or released must first obtain approval in writing from the UND Principal Investigator. In no case should the face images be used in a way that could cause the original subject embarrassment or mental anguish.

  • GRADUATION REQUIREMENTS I understand that in order to graduate from the program and to receive a certificate of completion, diploma or degree I must successfully complete the required number of scheduled clock hours as specified in the catalog and on the Enrollment Agreement, pass all written and practical examinations with a minimum score of 80%, and complete all required clinical hours and satisfy all financial obligations to the College. Initial

  • Admission and Graduation Requirements A. The receiving institution’s admission and program admission requirements apply to both direct entry students and to students who transfer under this agreement.

Time is Money Join Law Insider Premium to draft better contracts faster.