Notice to CDPH Sample Clauses
The "Notice to CDPH" clause requires a party to formally notify the California Department of Public Health (CDPH) about specific events, actions, or changes relevant to a contract or regulatory obligation. Typically, this involves providing written notice within a set timeframe if certain conditions occur, such as breaches of contract, changes in key personnel, or incidents affecting compliance. The core function of this clause is to ensure that CDPH remains informed about significant developments, thereby promoting transparency and enabling timely oversight or intervention when necessary.
Notice to CDPH. (1) To notify CDPH immediately by telephone call plus email or fax upon the discovery of a breach of unsecured PHI or PI in electronic media or in any other media if the PHI or PI was, or is reasonably believed to have been, accessed or acquired by an unauthorized person, or upon the discovery of a suspected security incident that involves data provided to CDPH by the Social Security Administration.
(2) To notify CDPH within 24 hours by email or fax of the discovery of any suspected security incident, intrusion or unauthorized access, use or disclosure of PHI or PI in violation of the Agreement and this Addendum, or potential loss of confidential data affecting the Agreement. A breach shall be treated as discovered by Business Associate as of the first day on which the breach is known, or by exercising reasonable diligence would have been known, to any person (other than the person committing the breach) who is an employee, officer or other agent of Business Associate.
Notice to CDPH. (1) To notify CDPH immediately by telephone call plus email or fax upon the discovery of a breach of unsecured PHI or PI in electronic media or in any other media if the PHI or PI was, or is reasonably believed to have been, accessed or acquired by an unauthorized person, or upon the discovery of a suspected security incident that involves data provided to CDPH by the
(2) To notify CDPH within 24 hours by email or fax of the discovery of any suspected security incident, intrusion or unauthorized access, use or disclosure of PHI or PI in violation of the Agreement and this Addendum, or potential loss of confidential data affecting the Agreement. A breach shall be treated as discovered by Business Associate as of the first day on which the breach is known, or by exercising reasonable diligence would have been known, to any person (other than the person committing the breach) who is an employee, officer or other agent of Business Associate.
Notice to CDPH. (1) To notify CDPH immediately by telephone call plus email or fax upon the discovery of a breach of unsecured PHI or PI in electronic media or in any other media if the PHI or PI was, or is reasonably believed to have been, accessed or acquired by an unauthorized person, or upon the discovery of a suspected security incident that involves data provided to CDPH by the Social Security Administration.
(2) To notify CDPH within 24 hours by email or fax of the discovery of any suspected security incident, intrusion or unauthorized access, use or disclosure of PHI or PI in violation of the Agreement and this Addendum, or potential loss of confidential data affecting the Agreement. A breach shall be treated as discovered by Business Associate as of the first day on which the breach is known, or by exercising reasonable diligence would have been known, to any person (other than the person committing the breach) who is an employee, officer or other agent of Business Associate. Notice shall be provided to the CDPH Program Contract Manager, the CDPH Privacy Officer and the CDPH Information Security Officer. If the incident occurs after business hours or on a weekend or holiday and involves electronic PHI, notice shall be provided by calling the CDPH ITSD Service Desk. Notice shall be made using the “CDPH Privacy Incident Report” form, including all information known at the time. Business Associate shall use the most current version of this form, which is posted on the CDPH Privacy Office website (▇▇▇.▇▇▇▇.▇▇.▇▇▇). Upon discovery of a breach or suspected security incident, intrusion or unauthorized access, use or disclosure of PHI or PI, Business Associate shall take:
a. Prompt corrective action to mitigate any risks or damages involved with the breach and to protect the operating environment; and
b. Any action pertaining to such unauthorized disclosure required by applicable Federal and State laws and regulations.