Data Breach Notification and Obligations. 10.1 The Data Breach or potential compromise of Data shared under this Contract must be reported to the HCA Privacy Officer at XxxxxxxXxxxxxx@xxx.xx.xxx within one (1) business day of discovery.
Data Breach Notification and Obligations. 11.1. The Breach or potential compromise of Data shared under this DSA must be reported to the HCA Privacy Officer at XxxxxxxXxxxxxx@xxx.xx.xxx within one (1) business day of discovery.
Data Breach Notification and Obligations. The Breach or potential compromise of Data shared under this Contract must be reported to the HCA Privacy Officer at XxxxxxxXxxxxxx@xxx.xx.xxx within one (1) business day of discovery. If the Breach or potential compromise of Data includes PHI, and the Contractor does not have full details, it will report what information it has within one (1) business day of discovery and provide full details within fifteen (15) business days of discovery. To the extent possible, these reports must include the following: The identification of each individual whose PHI has been or may have been improperly accessed, acquired, used, or disclosed; The nature of the unauthorized Use or disclosure, including a brief description of what happened, the date of the event(s), and the date of discovery; A description of the types of PHI involved; The investigative and remedial actions the Contractor or its Subcontractor took or will take to prevent and mitigate harmful effects and protect against recurrence; Any details necessary for a determination of the potential harm to Clients whose PHI is believed to have been Used or disclosed and the steps those Clients should take to protect themselves; and Any other information HCA reasonably requests. The Contractor must also take actions to mitigate the risk of loss and comply with any notification or other requirements imposed by law or HCA including but not limited to 45 C.F.R. Part 164 Subpart D; RCW 42.56.590; RCW 19.255.010; or WAC 000-00-000. If notification must, in the sole judgement of HCA, must be made Contractor will further cooperate and facilitate notification to necessary individuals, to the U.S. Department of Health and Human Services (DHHS) Secretary, and to the media. At HCA’s discretion, Contractor may be required to directly perform notification requirements, or if HCA elects to perform the notifications, Contractor must reimburse HCA for all costs associated with notification(s). Contractor is responsible for all costs incurred in connection with a security incident privacy Breach, or potential compromise of Data, including: Computer forensics assistance to assess the impact of a Data Breach, determine root cause, and help determine whether and the extent to which notification must be provided to comply with Breach notification laws; Notification and call center services for individuals affected by a security incident or privacy Breach, including fraud prevention, credit monitoring, and identify theft assistance; and R...
Data Breach Notification and Obligations. The Breach of Data shared under this Agreement must be reported to the HCA Privacy Officer at XxxxxxxXxxxxxx@xxx.xx.xxx within five (5) business days of discovery. The Receiving Party must also take all reasonable actions to mitigate the risk of loss and comply with any notification or other requirements imposed by applicable law or reasonably requested by HCA in order to meet its regulatory obligations.
Data Breach Notification and Obligations
