Common use of PROCEDURES AND DOCUMENTATION Clause in Contracts

PROCEDURES AND DOCUMENTATION. A. Privacy Officer a. Acquiring and maintaining current knowledge of applicable state and federal privacy laws and regulations b. Creating, reviewing, and revising written policies and procedures regarding compliance with HIPAA and HITECH; c. Participating in the creation of a risk assessment regarding the AGO’s HIPAA and HITECH concerns; d. Creating, selecting, or recommending training materials and establishing a schedule for HIPAA and HITECH training to AGO personnel; e. Reporting regarding the AGO’s compliance with HIPAA and HITECH. f. Drafting, reviewing, revising, negotiating, and implementing (or assisting in the negotiation and implementation) of Business Associate agreements or Subcontractor agreements, when necessary; g. Working with the AGO’s Information Technology Section on issues regarding compliance with HIPAA and HITECH; h. In consultation with the AGO’s Internal Audit Section, developing a schedule and criteria for auditing the AGO for HIPAA and HITECH compliance. The AGO’s Internal Audit Section shall be responsible for conducting audits of the AGO for compliance with HIPAA and HITECH; i. Directing or performing the investigation, reporting, and mitigation of harm related to any Breach of Unsecured PHI;