Common use of Breach of Security and Privacy Clause in Contracts

Breach of Security and Privacy. The Business Associate agrees to notify the Covered Entity’s Privacy Officer, as noted in Section H.45, to promptly notify Covered Entity of any Security Incident involving PHI of which it becomes aware and cooperate with Covered Entity in the investigation. Business Associate will report attempted but unsuccessful Security Incidents that do not result in any unauthorized access, use, disclosure, modification or destruction of PHI, or interference with an information system at Covered Entity's request. In addition, to the extent the information is available, the following information, to the extent available, shall be provided to the Covered Entity as soon as possible, but no later than fourteen (14) days after the Business Associate becomes aware of such security incident: a. Specify the nature of the unauthorized access, use or disclosure; b. Identify the PHI accessed, used or disclosed c. Identify the cause the security incident d. Identify the recipient(s) of the PHI e. Identify what corrective action took place or will take place to prevent further breaches f. Explain what was done or will be done to mitigate the harmful effect g. Provide any other relevant information Covered Entity may need about a breach.

Breach of Security and Privacy. The Business Associate agrees to promptly notify the Covered Entity’s Privacy Officer, as noted in Section H.45, to promptly notify Covered Entity of any Security Incident involving PHI of which it becomes aware and cooperate with the Covered Entity in the investigation. The Business Associate will report attempted but unsuccessful Security Incidents that do not result in any unauthorized access, use, disclosure, modification or destruction of PHI, or interference with an information system at the Covered Entity's request. In addition, to the extent the information is available, the following information, to the extent available, information shall be provided to the Covered Entity as soon as possible, but no later than fourteen (14) days after the Business Associate becomes aware of such security incident: a. Specify the nature of the unauthorized access, use or disclosure; b. Identify the PHI accessed, used or disclosed c. Identify the cause the security incident d. Identify the recipient(s) of the PHI e. Identify what corrective action took place or will take place to prevent further breaches f. Explain what was done or will be done to mitigate the harmful effect g. Provide any other relevant information Covered Entity may need about a breach.

Breach of Security and Privacy. The Business Associate Associate/QSO agrees to promptly notify the Covered Entity’s Privacy Officer, as noted in Section H.45, to promptly notify Covered Entity of any Security Incident involving PHI of which it becomes aware and cooperate with the Covered Entity in the investigation. The Business Associate Associate/QSO will report attempted but unsuccessful Security Incidents that do not result in any unauthorized access, use, disclosure, modification or destruction of PHI, or interference with an information system at the Covered Entity's request. In addition, to the extent the information is available, the following information, to the extent available, information shall be provided to the Covered Entity as soon as possible, but no later than fourteen (14) days after the Business Associate Associate/QSO becomes aware of such security incident: a. Specify the nature of the unauthorized access, use or disclosure; b. Identify the PHI accessed, used or disclosed; c. Identify the cause of the security incident; d. Identify the recipient(s) of the PHI; e. Identify what corrective action took place or will take place to prevent further breaches; f. Explain what was done or will be done to mitigate the harmful effect; and g. Provide any other relevant information the Covered Entity may need about a breach.

Breach of Security and Privacy. The Business Associate agrees to promptly notify the Covered Entity’s Privacy Officer, as noted in Section H.45, to promptly notify Covered Entity of any Security Incident involving PHI of which it becomes aware and cooperate with the Covered Entity in the investigation. The Business Associate will report attempted but unsuccessful Security Incidents that do not result in any unauthorized access, use, disclosure, modification or destruction of PHI, or interference with an information system at the Covered Entity's request. In addition, to the extent the information is available, the following information, to the extent available, information shall be provided to the Covered Entity as soon as possible, but no later than fourteen (14) days after the Business Associate becomes aware of such security incident: a. : Specify the nature of the unauthorized access, use or disclosure; b. ; Identify the PHI accessed, used or disclosed c. ; Identify the cause of the security incident d. ; Identify the recipient(s) of the PHI e. ; Identify what corrective action took place or will take place to prevent further breaches f. ; Explain what was done or will be done to mitigate the harmful effect g. ; and Provide any other relevant information the Covered Entity may need about a breach.

Breach of Security and Privacy. The Business Associate agrees to notify the Covered Entity’s Privacy Officer, as noted in Section H.45, to promptly notify Covered Entity of any Security Incident involving PHI of which it becomes aware and cooperate with Covered Entity in the investigation. Business Associate will report attempted but unsuccessful Security Incidents that do not result in any unauthorized access, use, disclosure, modification or destruction of PHI, or interference with an information system at Covered Entity's request. In addition, to the extent the information is available, the following information, to the extent available, shall be provided to the Covered Entity as soon as possible, but no later than fourteen (14) days after the Business Associate becomes aware of such security incident: a. : Specify the nature of the unauthorized access, use or disclosure; b. ; Identify the PHI accessed, used or disclosed c. disclosed Identify the cause the security incident d. incident Identify the recipient(s) of the PHI e. PHI Identify what corrective action took place or will take place to prevent further breaches f. breaches Explain what was done or will be done to mitigate the harmful effect g. effect Provide any other relevant information Covered Entity may need about a breach.