HIPAA Security Rule. With regard to its use and/or disclosure of PHI, Business Associate shall, at its own expense: 2.13.1 implement administrative, physical, and technical safeguards that reasonably and appropriately protect the confidentiality, integrity, and availability of the PHI that Business Associate creates, receives, maintains, or transmits on behalf of Covered Entity or its affiliates and at a minimum comply with those applicable safeguards in 45 CFR Section 164; 2.13.2 ensure that Agent and any and all of Business Associate’s other subcontractors or agents to whom the Business Associate provides PHI agree in writing to implement reasonable and appropriate safeguards consistent with the requirements of 2.12.1, above, to protect such PHI; and 2.13.3 report promptly to Covered Entity any Security Incident (as defined in 45 CFR Section 164.304) relating to PHI created, received, maintained or transmitted in regards to Covered Entity, of which Business Associate becomes aware, subject to the limitations in Section 2.11 above.
Appears in 13 contracts
Samples: Participating Physician Practice Agreement, Participating Physician Practice Agreement, Participating Physician Practice Agreement