Internal Practices, Policies and Procedures. Except as otherwise specified herein, Business Associate shall make available its internal practices, policies and procedures relating to the use and disclosure of PHI, received from or on behalf of Covered Entity to the Secretary or his or her agents for the purpose of determining Covered Entity’s compliance with the HIPAA Rules, or any other health oversight agency, or to Covered Entity. Records requested that are not protected by an applicable legal privilege will be made available in the time and manner specified by Covered Entity or the Secretary.
Internal Practices, Policies and Procedures. Except as otherwise specified herein, CA-CIB shall make available its internal practices, policies and procedures relating to the use and disclosure of PHI, received from or on behalf of CHS Entity, to the Secretary or his or her agents for the purpose of determining CHS Entity’s compliance with the HIPAA Rules, or any other health oversight agency, or to CHS Entity. CA-CIB shall make requested records, that are not protected by an applicable legal privilege, available in the time and manner specified by CHS Entity or the Secretary.
Internal Practices, Policies and Procedures. Except as otherwise specified herein, BA shall make available its internal practices, policies and procedures relating to the use and disclosure of PHI, received from or on behalf of CE to the Secretary or his or her agents for the purpose of determining CE’s compliance with the HIPAA Rules, or any other health oversight agency, or to CE. Records requested that are not protected by an applicable legal privilege will be made available in the time and manner specified by CE or the Secretary.
Internal Practices, Policies and Procedures. Except as otherwise specified herein, Business Associate shall make available its internal practices, books, records, policies and procedures relating to the use and disclosure of PHI or EPHI, documentation required by the Security Rule relating to safeguards, and documentation required by the Breach Notification Rule available to the Secretary or to the Covered Entity for the purpose of determining Covered Entity’s compliance with the Privacy Rule, Security Rule and Breach Notification Rule. Records requested that are not protected by an applicable legal privilege will be made available in the time and manner specified by Covered Entity or the Secretary.
Internal Practices, Policies and Procedures. Business Associate agrees to make internal practices, books, and records, relating to the use and disclosure of Protected Health Information received from, or created or received by Business Associate on behalf of, Covered Entity available to the Covered Entity, or to the Secretary or its designee for purposes determining Covered Entity's compliance with the HIPAA Rules.
Internal Practices, Policies and Procedures. Except as otherwise specified herein, Business Associate shall make available its internal practices, policies and procedures relating to the use and disclosure of PHI received from or on behalf of Covered Entity to the Secretary or his or her agents for the purpose of determining Covered Entity's compliance with the Privacy Rule. Records requested that are not protected by an applicable legal privilege will be made available in the time and manner specified by Covered Entity or the Secretary. If it is necessary for Business Associate to invoke and defend the attorney-client privilege, Covered Entity shall agree to pay the cost for such defense.
Internal Practices, Policies and Procedures. Except as otherwise specified herein, Business Associate shall make available its internal practices, policies and procedures relating to the use and disclosure of PHI, received from or on behalf of Covered Entity to Covered Entity and to the Secretary or his or her agents for the purpose of determining Covered Entity’s compliance with the HIPAA Rules, or any other health oversight agency, or to Covered Entity, or Business Associate’s compliance with this Agreement. Records requested that are not protected by an applicable legal privilege will be made available in the time and manner specified by Covered Entity or the Secretary.
Internal Practices, Policies and Procedures. Except as otherwise specified herein, Business Associate shall make available information regarding Business Associate’s internal practices, policies and procedures relating to the use and disclosure of PHI to Covered Entity upon request and to HHS or its authorized agents for the purpose of determining Covered Entity’s and/or Business Associate’s compliance with the HIPAA Regulations. Records requested that are not protected by an applicable legal privilege will be made available in the time and manner specified by HHS or its authorized agents. To the extent permitted by law, Business Associate shall promptly notify Covered Entity in writing regarding any requests for such information received from HHS or its authorized agents.
Internal Practices, Policies and Procedures. Except as otherwise specified herein, MH shall make available its internal practices, policies, and procedures relating to the use and disclosure of PHI received from or on behalf of Customer, to the Secretary of the Department of Health and Human Services or his or her agents for the purpose of determining Customer’s and MH’s compliance with HIPAA. Nothing in this Section will waive any applicable privilege or protection, including with respect to trade secrets and confidential commercial information.
Internal Practices, Policies and Procedures. Except as otherwise specified herein, Business Associate shall make available its internal practices, policies and procedures relating to the Use and Disclosure of PHI received from or on behalf of Covered Entity to the Secretary or his or her agents for the purpose of determining Covered Entity’s compliance with the HIPAA Rules, or any other health oversight agency. Records requested that are not protected by an applicable legal privilege will be made available in the time and manner specified by the applicable health oversight agency, or the Secretary. Business Associate shall provide Covered with a copy of any and all documents or other items, including but not limited to, policies or procedural documentation, books and records provided to the Secretary in connection with a review pertaining to Covered Entity and/or Business Associate, concurrently with providing such documentation to the Secretary.
