Implement Safeguards. Business Associate agrees to implement administrative, physical, and technical safeguards that reasonably and appropriately protect the confidentiality, in- tegrity, and availability of the ePHI that it creates, receives, maintains, has access to, or transmits on behalf of Covered Entity. In accordance with §§ 164.306, .308, .310, and .312 of the HIPAA Regulations, Business Associate shall: (i) implement written policies, procedures and practices to provide the foregoing safeguards and furnish copies of same to Covered Entity, or permit Covered En- tity’s access thereto, within 10 business days of Covered Entity’s written request therefor; (ii) within 10 business days of execution of this Agreement, provide to Covered Entity’s Privacy Officer in writing the name of, and contact information for, Business Associate’s designated HIPAA Security Officer; (iii) comply with the HHS Office for Civil Rights’ Guidance on Risk Analysis Requirements under the HIPAA Security Rule, and any modifications thereto, originally posted on the HHS/OCR Website on July 14, 2010.
Appears in 6 contracts
Samples: Consulting Services Agreement, Business Associate Agreement, Business Associate Agreement
Implement Safeguards. Business Associate agrees to implement administrative, physical, and technical safeguards that reasonably and appropriately protect the confidentiality, in- tegrityintegrity, and availability of the ePHI that it creates, receives, maintains, has access to, or transmits on behalf of Covered Entity. In accordance with §§ 164.306, .308, .310, and .312 of the HIPAA Regulations, Business Associate shall:
(i) implement written policies, procedures and practices to provide the foregoing safeguards and furnish copies of same to Covered Entity, or permit Covered En- tityEntity’s access thereto, within 10 business days of Covered Co- vered Entity’s written request therefor;
(ii) within 10 business days of execution of this BA Agreement, provide to Covered Entity’s Privacy Officer in writing the name of, and contact information for, Business Associate’s designated HIPAA Security Officer;
(iii) comply with the HHS Office for Civil Rights’ Guidance on Risk Analysis Requirements under the HIPAA Security Rule, and any modifications thereto, originally posted on the HHS/OCR Website on July 14, 2010.
Appears in 1 contract
Samples: Dsrip Master Services Agreement