Security of PHI. Agency is solely responsible for maintaining data security policies and procedures, consistent with those of the City that will adequately safeguard the City Data and the System. Upon request, Agency will provide such security policies and procedures to the City. The City may examine annually, or in response to a security or privacy incident, Agency’s facilities, computers, privacy and security policies and procedures and related records as may be necessary to be assured that Agency is in compliance with the terms of this Agreement, and as applicable HIPAA, the HITECH Act, and other federal and state privacy and security laws and regulations. Such examination will occur at a mutually acceptable time agreed upon by the parties but no later than ten (10) business days of Agency’s receipt of the request.
Appears in 5 contracts
Samples: Business Associate Agreement, Grant Agreement, www.stoplhhdownsize.com
