Notification of Breach. During the term of this Agreement:
Notification of Breach. During the term of this Contract, Associate shall notify CE within five (5) business days of any suspected or actual breach of security, intrusion or unauthorized use or disclosure of Protected Information and/or any actual or suspected use or disclosure of data in violation of any applicable federal or state laws or regulations. Associate shall not initiate notification to affected individuals per the HIPAA Rules without prior notification and approval of CE. Information provided to CE shall include the identification of each individual whose unsecured PHI has been, or is reasonably believed to have been accessed, acquired or disclosed during the breach. Associate shall take (i) prompt corrective action to cure any such deficiencies and (ii) any action pertaining to such unauthorized disclosure required by applicable federal and state laws and regulations.
Notification of Breach. Apple will provide notification of any Breach as required by SOPPA and in accordance with applicable provisions of the ASM Agreement.
Notification of Breach. As soon as ARTC becomes aware of a breach by the Operator of any Safeworking Rules which occurs during or as a result of the use by the Operator of the Network (“Breach”) ARTC will give written notice to the Operator setting out:
(a) the time, place and a general description of the Breach;
(b) what, in ARTC’s opinion, caused the Breach and which person or persons were responsible for the Breach;
(c) the consequences, if any, of the Breach for operation of the Services or the use by other users of the Network;
(d) any proposed modification of its procedures which ARTC intends to make; and
(e) any Instruction requiring modification to the Operator’s procedures which ARTC considers that the Operator must make.
Notification of Breach. BA shall notify CE within 5 calendar days of any breach of Protected Information; any use or disclosure of Protected Information not permitted by the BAA; any Security Incident (except as otherwise provided below) related to Protected Information, and any use or disclosure of data in violation of any applicable federal or state laws by BA or its agents or subcontractors. The notification shall include, to the extent possible, the identification of each individual whose unsecured Protected Information has been, or is reasonably believed by the BA to have been, accessed, acquired, used, or disclosed, as well as any other available information that CE is required to include in notification to the individual, the media, the Secretary, and any other entity under the Breach Notification Rule and any other applicable state or federal laws, including, but not limited, to 45 C.F.R. Section 164.404 through 45 C.F.R. Section 164.408, at the time of the notification required by this paragraph or promptly thereafter as information becomes available. BA shall take (i) prompt corrective action to cure any deficiencies and (ii) any action pertaining to unauthorized uses or disclosures required by applicable federal and state laws. [42 U.S.C. Section 17921; 42 U.S.C. Section 17932; 45 C.F.R. 164.410; 45 C.F.R. Section 164.504(e)(2)(ii)(C); 45 C.F.R. Section 164.308(b)] o. Breach Pattern or Practice by Business Associate’s Subcontractors and Agents. Pursuant to 42 U.S.C. Section 17934(b) and 45 C.F.R. Section 164.504(e)(1)(iii), if the BA knows of a pattern of activity or practice of a subcontractor or agent that constitutes a material breach or violation of the subcontractor or agent’s obligations under the Contract or this BAA, the BA must take reasonable steps to cure the breach or end the violation. If the steps are unsuccessful, the BA must terminate the contractual arrangement with its subcontractor or agent, if feasible. BA shall provide written notice to CE of any pattern of activity or practice of a subcontractor or agent that BA believes constitutes a material breach or violation of the subcontractor or agent’s obligations under the Contract or this BAA within five (5) calendar days of discovery and shall meet with CE to discuss and attempt to resolve the problem as one of the reasonable steps to cure the breach or end the violation.
Notification of Breach. Unless stricter reporting requirements apply in accordance with federal or state laws or regulations, other provisions of the Contract, or this Exhibit “M”, BA shall notify CE within twenty-four (24) hours of any suspected or actual breach of security, intrusion or unauthorized use or disclosure of PHI of which BA becomes aware and/or any actual or suspected use or disclosure of data in violation of any applicable federal or state laws or regulations. Unless CE provides BA with written notice within 3 (three) business days that it will undertake such obligations on behalf of BA, BA shall take (i) prompt corrective action to cure any such deficiencies and (ii) any action pertaining to such unauthorized disclosure required by applicable federal and state laws and regulations. The parties agree that CE has the sole discretion to determine whether or not it will undertake such obligations on behalf of BA and that, if it does, CE has the right to require BA to pay for any or all costs associated therewith. BA shall provide notice to CE as set forth in paragraph 6.
Notification of Breach. The Seller will advise the Buyer and the Agent promptly, in reasonable detail, upon discovery of the occurrence of any material breach by the Seller of any of its representations, warranties and covenants contained herein.
Notification of Breach. During the term of the Agreement, Business Associate shall notify Covered Entity in writing within twenty-four (24) hours of any suspected or actual breach of security, intrusion, HIPAA Breach, and/or any actual or suspected use or Disclosure of data in violation of any applicable federal or state laws or regulations. This duty includes the reporting of any Security Incident, of which it becomes aware, affecting the Electronic PHI. Business Associate shall take (i) prompt corrective action to cure any such deficiencies and (ii) any action pertaining to such unauthorized use or Disclosure required by applicable federal and/or state laws and regulations. Business Associate shall investigate such breach of security, intrusion, and/or HIPAA Breach, and provide a written report of the investigation to Covered Entity’s HIPAA Privacy Officer or other designee that is in compliance with 45 C.F.R. section 164.410 and that includes the identification of each individual whose PHI has been breached. The report shall be delivered within fifteen (15) working days of the discovery of the breach or unauthorized use or Disclosure. Business Associate shall be responsible for any obligations under the HIPAA Regulations to notify individuals of such breach, unless Covered Entity agrees otherwise.
Notification of Breach. Business Associate shall notify Covered Entity within three (3) business days after it, or any of its employees or agents, reasonably suspects that a Breach of Unsecured PHI, may have occurred. Business Associate shall exercise reasonable diligence to become aware of whether a Breach of Unsecured PHI may have occurred and, except as stated to the contrary in this Section, shall otherwise comply with 45 CFR 164.410 in making the required notification to Covered Entity. Business Associate shall cooperate with Covered Entity in the determination as to whether a Breach of Unsecured PHI has occurred and whether notification to affected Individuals of the Breach of Unsecured PHI is required by 45 CFR 164.400 et seq., including continuously providing Covered Entity with additional information related to the suspected Breach as it becomes available. In the event that Covered Entity informs Business Associate that (i) Covered Entity has determined that the affected Individuals must be notified because a Breach of Unsecured PHI has occurred and (ii) Business Associate is in a better position to notify the affected Individuals of such Breach, Business Associate shall immediately provide the required notice (1) within the time frame defined by 45 CFR 164.404(b), (2) in a form and containing such information reasonably requested by Covered Entity, (3) containing the content specified in 45 CFR 164.404(c), and (4) using the method(s) prescribed by 45 CFR 164.404(d). In addition, in the event that Covered Entity indicates to Business Associate that Covered Entity will make the required notification, Business Associate shall promptly take all other actions reasonably requested by Covered Entity related to the obligation to provide a notification of a Breach of Unsecured PHI under 45 CFR 164.400 et seq. Business Associate shall indemnify and hold Covered Entity harmless from all liability, costs, expenses, claims or other damages that Covered Entity, its related corporations, or any of its or their directors, officers, agents, or employees, may sustain as a result of Business Associate’s breach of its obligations under this Section, including reasonable attorney’s fees and any criminal or civil penalties, fines or assessments levied against Covered Entity, as the result of acts or omissions of Business Associate, by a court or administrative agency having jurisdiction over the matter.
Notification of Breach. During the term of this BA Statement, Business Associate shall notify the Covered Entity following discovery and without unreasonable delay (but in no case later than 60 days) any Breach of Unsecured PHI. Business Associate shall take (i) prompt corrective action to cure any such deficiencies and (ii) any action pertaining to such unauthorized disclosure required by applicable federal and state laws and regulations. Safeguard of EPHI. The Business Associate will implement administrative, physical, and technical safeguards that reasonably and appropriately protect the confidentiality, integrity, and availability of the Electronic Protected Health Information that it creates, receives, maintains, or transmits on behalf of the Covered Entity.