Reporting of Disclosures. The MCOP agrees to promptly report to ODM any inappropriate use or disclosure of PHI that is not in accordance with this Agreement or applicable law, including a breach of unsecured PHI as required at 45 CFR 164.410 and any security incident the MCOP has knowledge of or reasonably should have knowledge of under the circumstances.
Reporting of Disclosures. Business Associate shall report to Covered Entity any use or disclosure of PHI not provided for by this Addendum of which Business Associate becomes aware. In addition, from and after execution of this Addendum, Business Associate shall report to Covered Entity any Security Incident of which it becomes aware.
Reporting of Disclosures. Business Associate shall report to the Covered Entity any use or disclosure of the Covered Entity’s PHI in violation of this BA Statement or as required by law of which the Business Associate is aware, including Breaches of Unsecured PHI as required by 45 CFR §164.410, and agrees to mitigate, to the extent practicable, any harmful effect that is known to Business Associate of a use or disclosure of the Covered Entity’s PHI by Business Associate in violation of this BA Statement. Business Associate’s Agents. Business Associate shall ensure that any agents, including subcontractors, to whom it provides PHI received from (or created or received by Business Associate on behalf of) the Covered Entity agree to be bound to by restrictions and conditions on the use or disclosure of PHI that are no less protective that those that apply to Business Associate with respect to such PHI. Business Associate represents that in the event of a disclosure of PHI to any third party, the information disclosed shall be in a limited data set if practicable and in all other cases the minimum amount of PHI necessary to accomplish the intended purpose of the use, disclosure or request.
Reporting of Disclosures. The MCO must promptly report to ODM any inappropriate use or disclosure of PHI not in accordance with this Agreement or applicable law, including a breach of unsecured PHI as required by 45 CFR 164.410 and any security incident the MCO has knowledge of or reasonably should have knowledge of under the circumstances. If the MCO determines, pursuant to 45 CFR 164.402, that any inappropriate use or disclosure of PHI does not require breach notification, then the MCO must make any documentation related to such determination available to ODM upon request. In addition, as specified in Appendix P, Chart of Deliverables, the MCO must submit an annual report (Protected Health Information Breach Report) to ODM regarding the number of breaches of PHI and specify the number of breaches that were reported to Health and Human Services as required by 45 CFR 164.408(b) and (c).
Reporting of Disclosures. Business Associate shall report to the Covered Entity any use or disclosure of the Covered Entity’s PHI in violation of this BA Statement or as required by law of which the Business Associate is aware, including Breaches of Unsecured PHI as required by 45 CFR §164.410, and agrees to mitigate, to the extent practicable, any harmful effect that is known to Business Associate of a use or disclosure of the Covered Entity’s PHI by Business Associate in violation of this BA Statement.
Reporting of Disclosures. Vendorname agrees to promptly report to ODM any inappropriate use or disclosure of PHI that is not in accordance with this Agreement or applicable law, including breaches of unsecured protected health information as required at 45 CFR 164.410 and any security incident Vendorname has knowledge of or reasonably should have knowledge of under the circumstances. Further, Vendorname shall report to ODM the following:
a. Any use or disclosure of PHI which is not in compliance with the terms of this Agreement or applicable law of which it becomes aware; and
b. Any security incident of which it becomes aware. For purposes of this Agreement, “security incident” means the unauthorized access, use, disclosure, modification, or destruction of information or interference with system operations in an information system. As soon as is practical following of discovery of a reportable security incident, Vendorname shall notify ODM of the existence and nature of the incident as understood at that time. Vendorname shall immediately investigate the incident and within 24 hours of discovery shall provide ODM, in writing, a report describing the status and any results of Vendorname’s investigation. Reporting and other communications made to ODM under this section must be made to ODM’s HIPAA privacy officer and Office of Legal Counsel at: XxxxxxxXxxxxx@xxxxxxxx.xxxx.xxx and Xxxxxxxx@xxxxxxxx.xxxx.xxx
Reporting of Disclosures. Data Recipient shall notify Data Provider in writing within five (5) working days of its discovery of any use or disclosure of the LDS information not permitted by the Agreement of which Data Recipient, its employees or agents become aware. Data Recipient further agrees to mitigate, to the extent feasible and allowable by law, any harmful effect that is known or becomes known to Data Recipient that arises from a use or disclosure of the LDS by Data Recipient or its agents in violation of this Agreement or the Privacy Rule.
Reporting of Disclosures. On a quarterly basis, Business Associate shall report to the Covered Entity any use or disclosure of the Covered Entity’s PHI in violation of this BA Statement or as required by law of which the Business Associate is aware, provided that any Breaches of Unsecured PHI shall be proactively reported as set forth in Section 43.B.11, below, and as required by 45 CFR §164.410, and agrees to mitigate, to the extent practicable, any harmful effect that is known to Business Associate of a use or disclosure of the Covered Entity’s PHI by Business Associate in violation of this BA Statement. Business Associate’s Agents. Business Associate shall ensure that any agents, including subcontractors, to whom it provides PHI received from (or created or received by Business Associate on behalf of) the Covered Entity agree to be bound to by restrictions and conditions on the use or disclosure of PHI that are no less protective that those that apply to Business Associate with respect to such PHI. Business Associate represents that in the event of a disclosure of PHI to any third party, the information disclosed shall be in a limited data set if practicable and in all other cases the minimum amount of PHI necessary to accomplish the intended purpose of the use, disclosure or request.
Reporting of Disclosures. Data Recipient shall notify the UCLA Health System Chief Privacy Officer (and if the LDS Information is to be used for research purposes, the IRB) in writing within five (5) working days of its discovery of any use or disclosure of the LDS Information not permitted by this Agreement of which Data Recipient, or employees or agents under the supervision of Data Recipient become aware. The Chief Privacy Officer shall take (i) prompt corrective action to cure any deficiencies and (ii) any action pertaining to such unauthorized disclosure required by applicable federal and state laws and regulations.
Reporting of Disclosures i. The OhioRISE Plan must promptly report to ODM any inappropriate use or disclosure of PHI not in accordance with this Agreement or applicable law, including a breach of unsecured PHI as required by 45 CFR 164.410 and any security incident of which the OhioRISE Plan has knowledge or reasonably should have knowledge under the circumstances. If the OhioRISE Plan determines, pursuant to 45 CFR 164.402, that any inappropriate use or disclosure of PHI does not require breach notification, then the OhioRISE Plan shall make any documentation related to such determination available to ODM upon request. In addition, as specified in Appendix P, Chart of Deliverables, the OhioRISE Plan must submit an annual report (Protected Health Information Breach Report) to ODM regarding the number of breaches of PHI and specify how many breaches were reported to U.S. Department of Health and Human Services as required by 45 CFR 164.408(b) and (c).
