Reporting Unauthorized Uses and Disclosures Sample Clauses

Reporting Unauthorized Uses and Disclosures. Business Associate shall report to Covered Entity, without unreasonable delay, and in no cases later than [insert number] calendar days from discovery of the breach, any use or disclosure of PHI not permitted by this Business Associate Agreement of which Business Associate becomes aware, including without limitation any security incident involving electronic PHI and any breach of unsecured PHI as required by 45 C.F.R. § 164.410 [Reference: 45 C.F.R. §§ 164.314(a)(2)(C) & 164.504(e)(2)(ii)(C)].84 85Without limiting the generality of the foregoing:
Sample 1Sample 2Sample 3See All (6)
AutoNDA by SimpleDocs
Reporting Unauthorized Uses and Disclosures. Business Associate shall report to Covered Entity, without unreasonable delay, and in accordance with the deadlines provided below, any use or disclosure of PHI not permitted by this BAA of which Business Associate becomes aware, including any use or disclosure involving PHI and any Breach of Privacy or Security as defined herein. Without limiting the generality of the foregoing:
Sample 1Sample 2See All (4)
Reporting Unauthorized Uses and Disclosures. Business Associate will promptly report in writing to the Covered Entity any unauthorized use or disclosure of Protected Health Information of which Business Associate becomes aware, and in no event later than three (3) business days after discovery of such unauthorized use or disclosure, Security Incident, or Breach of Unsecured Protected Health Information. This obligation to report includes any unauthorized acquisition, access, use, modification, manipulation, destruction or disclosure, even where the Business Associate has determined that such acquisition, access, use, modification, manipulation, destruction or disclosure does not compromise the security or privacy of such Protected Health Information, unless exempted under 45 C.F.R. 164.402(2). Business Associate agrees that if any of its employees, agents, subcontractors, and representatives violate the terms of this section, such employees, agents, subcontractors, and representative shall receive training on Business Associate’s procedures for compliance with the Privacy Rule, Security Rule and the HITECH Act, or shall be sanctioned or prevented from accessing any Protected Health Information.
Sample 1Sample 2Sample 3
Reporting Unauthorized Uses and Disclosures a. Business Associate agrees to notify Covered Entity of any breach, or security incident involving PHI of which it becomes aware, including any access to, or use or disclosure of PHI not permitted by this Exhibit. Such notification will be made immediately after discovery and will include, to the extent possible, the identification of each individual whose PHI has been, or is reasonably believed by the Business Associate to have been, accessed, acquired, used or disclosed, a description of the PHI involved, the nature of the unauthorized access, use or disclosure, the date of occurrence, and a description of any remedial action taken or proposed to be taken by Business Associate. Business Associate will also provide to Covered Entity any other available information that the Covered Entity is required to include in its notification to the individual under Section 164.404(c) at the time of the initial report or within three (3) days of the information becoming available.
Sample 1Sample 2
Reporting Unauthorized Uses and Disclosures. Business Associate shall report to County any and all unauthorized uses or disclosures of PHI made by the Business Associate or by any third party of the Business Associate within five (5) days from the date the Business Associate becomes aware of the violation. In addition, Business Associate shall report to County any sanction or remedial action taken or proposed to be taken with regard to the unauthorized use or disclosure and will cooperate with County in mitigating any harmful effects of such use or disclosure.
Sample 1
Reporting Unauthorized Uses and Disclosures. CBIASC will report to Covered Business within five (5) days any use or disclosure of PHI not provided for by this Agreement of which it becomes aware, and CBIASC also agrees to report to Covered Business any Security Incident within five (5) days of its becoming aware of a Security Incident. A "
Sample 1
Reporting Unauthorized Uses and Disclosures. Business Associate shall report to Covered Entity, within [ten (10)] business days, any use or disclosure of PHI not permitted by this Business Associate Contract of which Business Associate becomes aware, including without limitation any security incident involving electronic PHI and any breach of unsecured PHI as required by 45 C.F.R. § 164.410 [Reference: 45 C.F.R. §§ 164.314(a)(2)(C) & 164.504(e)(2)(ii)(C)]. Without limiting the generality of the foregoing:
Sample 1
AutoNDA by SimpleDocs
Reporting Unauthorized Uses and Disclosures. Business Associate will promptly report in writing to the Covered Entity any use or disclosure of Protected Health Information not provided for under this Agreement, of which Business Associate becomes aware, and in no event later than three (3) business days after first learning of any such use or disclosure, or of any “Breach” or “Unsecured Protected Health Information” as such terms are defined in the HITECH Act. This obligation to report includes any unauthorized acquisition, access, use or disclosure, even where the Business Associate has determined that such acquisition, access, use or disclosure does not compromise the security or privacy of such Protected Health Information, unless such acquisition, access, use or disclosure is otherwise permitted under 45 C.F.R. 164.402(2). Business Associate agrees that if any of its employees, agents, subcontractors, and representatives use or disclose Protected Health Information received from, or created or received on behalf of, the Covered Entity or any derivative De-identified Information in a manner not provided for in this Agreement, Business Associate shall ensure that such employees, agents, subcontractors, and representative shall receive training on Business Associate’s procedures for compliance with the Privacy Rule and the HITECH Act, or shall be sanctioned or prevented from accessing any Protected Health Information Business Associate receives from, or creates or receives on behalf of, the Covered Entity. Continued use of Protected Health Information in a manner contrary to the terms of this Agreement will constitute a material breach of this Agreement.
Sample 1
Reporting Unauthorized Uses and Disclosures. Business Associate shall report to Redwood MedNet, within [five (5)] business days, any use or disclosure of PHI not permitted by this Business Associate Contract of which Business Associate becomes aware, including without limitation any security incident involving electronic PHI and any breach of unsecured PHI as required by 45 C.F.R. § 164.410 [Reference: 45 C.F.R. §§ 164.314(a)(2)(C) & 164.504(e)(2)(ii)(C)]. Without limiting the generality of the foregoing:
Sample 1

Related to Reporting Unauthorized Uses and Disclosures

  • Permitted Uses and Disclosures i. Business Associate shall use and disclose PHI only to accomplish Business Associate’s obligations under the Contract.

  • Permitted Uses and Disclosures of Protected Health Information Business Associate:

  • Uses and Disclosures Pursuant to the terms of this Agreement, Contractor may receive from the Exchange Protected Health Information and/or Personally Identifiable Information in connection with Contractor Exchange Functions that is protected under applicable Federal and State laws and regulations. Contractor shall not use or disclose such Protected Health Information or Personally Identifiable Information obtained in connection with Contractor Exchange Functions other than as is expressly permitted under the Exchange Requirements and only to the extent necessary to perform the functions called for within this Agreement.

  • Permitted Uses and Disclosures of PHI 2.1 Unless otherwise limited herein, Business Associate may:

  • Permitted Uses and Disclosures of Phi by Business Associate Except as otherwise indicated in this Agreement, Business Associate may use or disclose PHI, inclusive of de-identified data derived from such PHI, only to perform functions, activities or services specified in this Agreement on behalf of DHCS, provided that such use or disclosure would not violate HIPAA or other applicable laws if done by DHCS.

  • Permitted Uses and Disclosures by Business Associate 1. Business Associate may only use or disclose protected health information as necessary to perform the services as outlined in the underlying agreement.

  • Prohibited Uses and Disclosures BA shall not use or disclose PHI other than as permitted or required by the Contract and Addendum, or as required by law. BA shall not use or disclose Protected Information for fundraising or marketing purposes. BA shall not disclose Protected Information to a health plan for payment or health care operation purposes if the patient has requested this special restriction, and has paid out of pocket in full for the health care item or service to which the PHI solely relates [42 U.S.C. Section 17935(a) and 45 C.F.R. Section 164.522(a)(vi)]. BA shall not directly or indirectly receive remuneration in exchange for Protected Information, except with the prior written consent of CE and as permitted by the HITECH Act, 42 U.S.C. Section 17935(d)(2), and the HIPAA regulations, 45 C.F.R. Section 164.502(a)(5)(ii); however, this prohibition shall not affect payment by CE to BA for services provided pursuant to the Contract.

  • Use and Disclosure of Confidential Information Notwithstanding anything to the contrary contained in this Agreement, and in addition to and not in lieu of other provisions in this Agreement:

  • Use and Disclosure of Protected Health Information The Business Associate must not use or further disclose protected health information other than as permitted or required by the Contract or as required by law. The Business Associate must not use or further disclose protected health information in a manner that would violate the requirements of HIPAA Regulations.

  • Permitted Uses and Disclosure by Business Associate (1) General Use and Disclosure Provisions Except as otherwise limited in this Section of the Contract, Business Associate may use or disclose PHI to perform functions, activities, or services for, or on behalf of, Covered Entity as specified in this Contract, provided that such use or disclosure would not violate the HIPAA Standards if done by Covered Entity or the minimum necessary policies and procedures of the Covered Entity.

Time is Money Join Law Insider Premium to draft better contracts faster.