Discovery and Notification of Breach. Contractor shall notify County immediately by telephone call and email upon the discovery of a breach (or suspected breach) of privacy or security of PHI, PI, and/or PII in electronic, paper, spoken or in any other media, if the PHI, PI, and/or PII was not securely transmitted, or is reasonably believed to have been, accessed, acquired by an unauthorized person, or upon the discovery of a suspected privacy or security incident that involves data provided to County by the Social Security Administration or involving County PHI, PI, and/or PII; or by email within twenty- four (24) hours of the discovery of any suspected security incident, intrusion, or unauthorized use or disclosure of PHI, PI, and/or PII in violation of this agreement or the Business Associate Agreement, or potential loss of confidential data affecting this agreement. A breach shall be treated as discovered by Contractor as of the first day on which the breach is known, or by exercising reasonable diligence, would have been known, to any person (other than the person committing the breach) who is an employee, officer, or other agent of Contractor. Notification shall be provided to the KernBHRS Contract Manager, the KernBHRS Privacy & Corporate Office, and the KernBHRS Information Security Officer. If the incident occurs after business hours or on a weekend or holiday and involves electronic PHI, PI, and/or PII, notification shall be provided by calling the KernBHRS Information Security Officer at (000) 000-0000. Alternately, contact the KernBHRS Information Technology Services Division (ITSD) Help Desk at 000-000-0000. Upon discovery of a breach or suspected security incident, intrusion or unauthorized access, use, or disclosure of PHI, PI, and/or PII, Contractor shall take: 1) Prompt corrective action to mitigate any risks or damages involved with the breach and to protect the Contractor’s operating environment and information confidentiality and security requirements. 2) Any action pertaining to such unauthorized disclosure required by applicable federal and state laws and regulations.
Appears in 2 contracts
Samples: Professional Services, Professional Services
Discovery and Notification of Breach. Contractor The District shall notify County COUNTY immediately by telephone call and plus email or fax upon the discovery of a breach (or suspected breach) of privacy or security of PHI, PI, PI and/or PII in electronic, paper, spoken electronic media or in any other media, if the PHI, PI, PI and/or PII was not securely transmittedwas, or is reasonably believed to have been, accesseda c c e s s e d , acquired by an unauthorized person, or upon the discovery of a suspected privacy or security incident that involves data provided to County COUNTY by the Social Security Administration or involving County COUNTY PHI, PI, PI and/or PII; or by email within twenty- twenty-four (24) hours by email or fax of the discovery of any suspected security incident, intrusion, intrusion or unauthorized use or disclosure of PHI, PI, PI and/or PII in violation of this agreement or the Business Associate Agreement, or potential loss of confidential data affecting this agreement. A breach shall be treated as discovered by Contractor District as of the first day on which the breach is known, or by exercising reasonable diligence, would have been known, to any person (other than the person committing the breach) who is an employee, officer, officer or other agent of ContractorDistrict.
1. Notification shall be provided to the KernBHRS Xxxx BHRS Contract Manager, the KernBHRS Privacy & Corporate Office, Officer and the KernBHRS Information Security Officer. If the incident occurs after business hours or on a weekend or holiday and involves electronic PHI, PI, PI and/or PII, notification shall be provided by calling the KernBHRS Information Security Officer at (000) 000-0000. Alternately, contact the KernBHRS Information Technology Services Division (ITSD) Help Desk at 000661-000-0000868- 6740. Upon discovery of a breach or suspected security incident, intrusion or unauthorized access, use, use or disclosure of PHI, PI, PI and/or PII, Contractor District shall take:
1) : • Prompt corrective action to mitigate any risks or damages involved with the breach and to protect the ContractorDistrict’s operating environment and information confidentiality and security requirements.
2) . • Any action pertaining to such unauthorized disclosure required by applicable federal and state laws and regulations.
Appears in 1 contract
Samples: Memorandum of Understanding
Discovery and Notification of Breach. Contractor shall notify County immediately by telephone call and email upon the discovery of a breach (or suspected breach) of privacy or security of PHI, PI, and/or PII in electronic, paper, spoken or in any other media, if the PHI, PI, and/or PII was not securely transmitted, or is reasonably believed to have been, accesseda c c e s s e d , acquired by an unauthorized person, or upon the discovery of a suspected privacy or p r i v a c y o r security incident that involves data provided to County by the Social Security Administration or involving County PHI, PI, and/or PII; or by email b y e m a i l within twenty- twenty-four (24) hours of the discovery of any suspected security incident, intrusion, or unauthorized use or disclosure of PHI, PI, and/or PII in violation of this agreement or the Business Associate Agreement, or potential loss of confidential data affecting this agreement. A breach shall be treated as discovered by Contractor as of the first day on which the breach is known, or by exercising reasonable diligence, would have been known, to any person (other than the person committing the breach) who is an employee, officer, or other agent of Contractor. Notification shall be provided to the KernBHRS Xxxx BHRS Contract Manager, the KernBHRS Privacy & Corporate Office, and the KernBHRS Information Security Officer. If the incident occurs after business hours or on a weekend or holiday and involves electronic PHI, PI, and/or PII, notification shall be provided by calling the KernBHRS Information Security Officer at (000) 000-0000. Alternately, contact the KernBHRS Information Technology Services Division (ITSD) Help Desk at 000-000-0000. Upon discovery of a breach or suspected security incident, intrusion or unauthorized access, use, or disclosure of PHI, PI, and/or PII, Contractor shall take:
1) . Prompt corrective action to mitigate any risks or damages involved with the breach and to protect the Contractor’s operating environment and information confidentiality and security requirements.
2) . Any action pertaining to such unauthorized disclosure required by applicable federal and state laws and regulations.
Appears in 1 contract
Samples: Professional Services