Common use of Reporting of Breach of Privacy Obligations Clause in Contracts

Reporting of Breach of Privacy Obligations. Business Associate will provide written notice to whichever of the Recipient or its Subsidiary for which the relevant PHI was created or from which the relevant PHI was received of any use or disclosure of PHI that is neither permitted by this Addendum nor given prior written approval by Recipient or the relevant Subsidiary promptly after Business Associate learns of such non-permitted use or disclosure. Business Associate’s report will at least: (i) Identify the nature of the non-permitted use or disclosure; (ii) Identify the PHI used or disclosed; (iii) Identify who made the non-permitted use or received the non-permitted disclosure; (iv) Identify what corrective action Business Associate took or will take to prevent further non-permitted uses or disclosures; (v) Identify what Business Associate did or will do to mitigate any deleterious effect of the non-permitted use or disclosure; and (vi) Provide such other information, including a written report, as Recipient or the relevant Subsidiary may reasonably request.

Reporting of Breach of Privacy Obligations. Business Associate will provide written notice to whichever the members of the Recipient or its Subsidiary Genworth Group for which the relevant PHI was created or from which the relevant PHI was received of any use or disclosure of PHI that is neither permitted by this Addendum nor given prior written approval by Recipient or the relevant Subsidiary applicable member of the Genworth Group promptly after Business Associate learns of such non-permitted use or disclosure. Business Associate’s report will at least: (i) Identify the nature of the non-permitted use or disclosure; (ii) Identify the PHI used or disclosed; (iii) Identify who made the non-permitted use or received the non-permitted disclosure; (iv) Identify what corrective action Business Associate took or will take to prevent further non-permitted uses or disclosures; (v) Identify what Business Associate did or will do to mitigate any deleterious effect of the non-permitted use or disclosure; and (vi) Provide such other information, including a written report, as Recipient or the relevant Subsidiary applicable member of the Genworth Group may reasonably request.

Reporting of Breach of Privacy Obligations. Business Associate will provide written notice to whichever of the Recipient or its Subsidiary or Affiliate for which the relevant PHI was created or from which the relevant PHI was received of any use or disclosure of PHI that is neither permitted by this Addendum nor given prior written approval by Recipient or the relevant Subsidiary or Affiliate promptly after Business Associate learns of such non-permitted use or disclosure. Business Associate’s report will at least: (i) Identify the nature of the non-permitted use or disclosure; (ii) Identify the PHI used or disclosed; (iii) Identify who made the non-permitted use or received the non-permitted disclosure; (iv) Identify what corrective action Business Associate took or will take to prevent further non-permitted uses or disclosures; (v) Identify what Business Associate did or will do to mitigate any deleterious effect of the non-permitted use or disclosure; and (vi) Provide such other information, including a written report, as Recipient or the relevant Subsidiary or Affiliate may reasonably request.

Reporting of Breach of Privacy Obligations. Business Associate will provide written notice to whichever the members of the Recipient or its Subsidiary Genworth Group for which the relevant PHI was created or from which the relevant PHI was received of any use or disclosure of PHI that is neither permitted by this Addendum nor given prior written approval by Recipient or the relevant Subsidiary applicable member of the Genworth Group promptly after Business Associate learns of such non-permitted use or disclosure. Business Associate’s report will at least: (i) 1. Identify the nature of the non-permitted use or disclosure; (ii) 2. Identify the PHI used or disclosed; (iii) 3. Identify who made the non-permitted use or received the non-permitted disclosure; (iv) 4. Identify what corrective action Business Associate took or will take to prevent further non-permitted uses or disclosures; (v) 5. Identify what Business Associate did or will do to mitigate any deleterious effect of the non-permitted use or disclosure; and (vi) 6. Provide such other information, including a written report, as Recipient or the relevant Subsidiary applicable member of the Genworth Group may reasonably request.