Common use of Safeguards of PHI Clause in Contracts

Safeguards of PHI. Business Associate must use appropriate safeguards with respect to PHI that it creates, receives, maintains, or transmits on behalf of the City to prevent the use or disclosure of PHI other than as provided for in this Business Associate Agreement. The safeguards must reasonably protect PHI from any intentional or unintentional use or disclosure in violation of HIPAA privacy regulations (45 CFR Part 164, subpart E) and must limit incidental uses or disclosures made pursuant to an otherwise permitted or required use or disclosure. The safeguards must also reasonably and appropriately protect the confidentiality, integrity, and availability of PHI that Business Associate creates, receives, maintains, or transmits on the City’s behalf as required by the HIPAA security regulations (45 CFR Part 164, subpart C). Where applicable, Business Associate must use appropriate safeguards and comply with the HIPAA security regulations (45 CFR Part 164, subpart C) with respect to electronic protected health information, to prevent the use or disclosure of PHI other than as provided for by this Business Associate Agreement. Where feasible, PHI will not leave the City’s facilities and will be accessed under the supervision of City employees.

Safeguards of PHI. Business Associate must use appropriate safeguards with respect to PHI that it creates, receives, maintains, or transmits on behalf of the City to prevent the use or disclosure of PHI other than as provided for in this Business Associate Agreement. The safeguards must reasonably protect PHI from any intentional or unintentional use or disclosure in violation of HIPAA privacy regulations (45 CFR Part 164, subpart E) and must limit incidental uses or disclosures made pursuant to an a use or disclosure otherwise permitted or required use or disclosureby this Agreement. The safeguards must also reasonably and appropriately protect the confidentiality, integrity, and availability of PHI that Business Associate creates, receives, maintains, or transmits on the City’s behalf as required by the HIPAA security regulations (45 CFR Part 164, subpart C). Where applicable, Business Associate must use appropriate safeguards and comply with the HIPAA security regulations (45 CFR Part 164, subpart C) with respect to electronic protected health information, to prevent the use or disclosure of PHI other than as provided for by this Business Associate Agreement. Where feasible, PHI will not leave the City’s facilities and will be accessed under the supervision of City employees.