Breach Notification to Third Parties Sample Clauses

Breach Notification to Third Parties. (i) Where necessary or required by law, Contractor agrees to provide by mail or (if specifically requested by the Individual) e-mail, written notification to each affected Individual of any Breach of Unsecured PHI not provided for by the Agreement of which it becomes aware and/or any Security Incident of which it becomes aware. If current contact information is unavailable, notice may be provided on Contractor’s website, or major print or broadcast media (i.e. newspapers or television) in the geographic areas where the affected Individuals most likely reside. (ii) Where necessary or required by law, Contractor agrees to provide notice to prominent media outlets following the discovery of any Breach of Unsecured PHI not provided for by this Agreement of which it becomes aware and/or any Security Incident of which it becomes aware in which the PHI of more than 500 Individuals residing in the State or specific jurisdiction is, or is reasonably believed to have been accessed, acquired or disclosed during such Breach. If the Breach involves less than 500 Individuals, Contractor agrees to maintain a log of the Breach and to submit the log to HHS annually.
Sample 1
AutoNDA by SimpleDocs
Breach Notification to Third Parties. Business Associate will handle breach notifications to individuals, the United States Department of Health and Human Services Office for Civil Rights, and, where applicable, the media. Should such notification be necessary, Business Associate will ensure that Covered Entity will receive notice of the breach prior to such incident being reported.
Sample 1
Breach Notification to Third Parties. Covered Entity is responsible to notify third parties if a breach of Unsecured Protected Health Information occurs. Business Associate will notify Covered Entity as provided above.
Sample 1

Related to Breach Notification to Third Parties

  • Breach Notification a. In the event of a Breach of unsecured PHI or disclosure that compromises the privacy or security of PHI obtained from DSHS or involving DSHS clients, Business Associate will take all measures required by state or federal law. b. Business Associate will notify DSHS within one (1) business day by telephone and in writing of any acquisition, access, Use or disclosure of PHI not allowed by the provisions of this Contract or not authorized by HIPAA Rules or required by law of which it becomes aware which potentially compromises the security or privacy of the Protected Health Information as defined in 45 CFR 164.402 (Definitions). c. Business Associate will notify the DSHS Contact shown on the cover page of this Contract within one (1) business day by telephone or e-mail of any potential Breach of security or privacy of PHI by the Business Associate or its Subcontractors or agents. Business Associate will follow telephone or e-mail notification with a faxed or other written explanation of the Breach, to include the following: date and time of the Breach, date Breach was discovered, location and nature of the PHI, type of Breach, origination and destination of PHI, Business Associate unit and personnel associated with the Breach, detailed description of the Breach, anticipated mitigation steps, and the name, address, telephone number, fax number, and e-mail of the individual who is responsible as the primary point of contact. Business Associate will address communications to the DSHS Contact. Business Associate will coordinate and cooperate with DSHS to provide a copy of its investigation and other information requested by DSHS, including advance copies of any notifications required for DSHS review before disseminating and verification of the dates notifications were sent. d. If DSHS determines that Business Associate or its Subcontractor(s) or agent(s) is responsible for a Breach of unsecured PHI: (1) requiring notification of Individuals under 45 CFR § 164.404 (Notification to Individuals), Business Associate bears the responsibility and costs for notifying the affected Individuals and receiving and responding to those Individuals’ questions or requests for additional information; (2) requiring notification of the media under 45 CFR § 164.406 (Notification to the media), Business Associate bears the responsibility and costs for notifying the media and receiving and responding to media questions or requests for additional information; (3) requiring notification of the U.S. Department of Health and Human Services Secretary under 45 CFR § 164.408 (Notification to the Secretary), Business Associate bears the responsibility and costs for notifying the Secretary and receiving and responding to the Secretary’s questions or requests for additional information; and (4) DSHS will take appropriate remedial measures up to termination of this Contract.

  • Personal Data Breach Notification SAP will notify Customer without undue delay after becoming aware of any Personal Data Breach and provide reasonable information in its possession to assist Customer to meet Customer’s obligations to report a Personal Data Breach as required under Data Protection Law. SAP may provide such information in phases as it becomes available. Such notification shall not be interpreted or construed as an admission of fault or liability by SAP.

  • Liability to Third Parties The Member shall not be liable for the debts, obligations or liabilities of the Company, including under a judgment, decree or order of a court.

  • Handling Sensitive Personal Information and Breach Notification A. As part of its contract with HHSC Contractor may receive or create sensitive personal information, as section 521.002 of the Business and Commerce Code defines that phrase. Contractor must use appropriate safeguards to protect this sensitive personal information. These safeguards must include maintaining the sensitive personal information in a form that is unusable, unreadable, or indecipherable to unauthorized persons. Contractor may consult the “Guidance to Render Unsecured Protected Health Information Unusable, Unreadable, or Indecipherable to Unauthorized Individuals” issued by the U.S. Department of Health and Human Services to determine ways to meet this standard. B. Contractor must notify HHSC of any confirmed or suspected unauthorized acquisition, access, use or disclosure of sensitive personal information related to this Contract, including any breach of system security, as section 521.053 of the Business and Commerce Code defines that phrase. Contractor must submit a written report to HHSC as soon as possible but no later than 10 business days after discovering the unauthorized acquisition, access, use or disclosure. The written report must identify everyone whose sensitive personal information has been or is reasonably believed to have been compromised. C. Contractor must either disclose the unauthorized acquisition, access, use or disclosure to everyone whose sensitive personal information has been or is reasonably believed to have been compromised or pay the expenses associated with HHSC doing the disclosure if: 1. Contractor experiences a breach of system security involving information owned by HHSC for which disclosure or notification is required under section 521.053 of the Business and Commerce Code; or 2. Contractor experiences a breach of unsecured protected health information, as 45 C.F.R. §164.402 defines that phrase, and HHSC becomes responsible for doing the notification required by 45 C.F.R. §164.404. HHSC may, at its discretion, waive Contractor's payment of expenses associated with HHSC doing the disclosure.

  • Notice to Third Parties Licensee shall give written notice, prior to the first sale of Licensed Product, to any Third Party to which it sells Licensed Product of the restrictions contained in this Section 5, and Licensee shall use its best endeavors, without prejudice to any other provision of this Agreement, to ensure that such Third Parties will undertake to abide by the restrictions contained in this Section 5 and will assist the MPP and Pfizer in securing compliance with this Section 5 and the restrictions which it contemplates.

  • No Obligation to Third Parties The execution and delivery of this Agreement shall not be deemed to confer any rights upon, nor obligate either of the parties hereto to, any person or entity not a party to this Agreement.

  • Disclosure of Account Information to Third Parties We will disclose information to third parties about your account or the transfers you make:

  • Disclosure to Third Parties The Company shall have the right to disclose to third parties, in whatever manner the Company may determine, the fact that this Agreement has been executed, the names of the parties to this Agreement and the terms hereof.

  • Indemnification Related to Confidentiality of Materials The Contractor will protect, defend, indemnify, and hold harmless the Department for claims, costs, fines, and attorney’s fees arising from or relating to its designation of materials as trade secret or otherwise confidential.

  • Consent to Breach Not Waiver No term or provision of this Contract shall be deemed waived and no breach excused, unless such waiver or consent shall be in writing and signed by the party claimed to have waived or consented. Any consent by any party to, or waiver of, a breach by the other, whether express or implied, shall not constitute consent to, waiver of, or excuse for any other different or subsequent breach.

Draft better contracts in just 5 minutes Get the weekly Law Insider newsletter packed with expert videos, webinars, ebooks, and more!