To Covered Entity Sample Clauses

To Covered Entity. The Business Associate will report to the Covered Entity, within ten business days of discovery, any use or disclosure of Protected Health Information not provided for in this Contract of which the Business Associate is aware. The Business Associate will report to the Covered Entity, within two (2) business days of discovery, any Security Incident of which the Business Associate is aware. The day the breach is discovered will be considered the first business day of the incident reporting period. A violation of this paragraph shall be a material violation of this Contract. Such notice shall include the identification of each individual whose unsecured Protected Health Information has been, or is reasonably believed by the Business Associate to have been, accessed, acquired, or disclosed during such breach.

To Covered Entity. The Business Associate will report to the Covered Entity, within ten (10) business days of discovery, any use or disclosure of Protected Health Information not provided for in this Contract of which the Business Associate is aware. The Business Associate will report to the Covered Entity, within twenty-four (24) hours of discovery, any Security Incident of which the Business Associate is aware. A violation of this paragraph shall be a material violation of this Contract. Such notice shall include the identification of each individual whose unsecured Protected Health Information has been, or is reasonably believed by the Business Associate to have been, accessed, acquired, or disclosed during such breach.

To Covered Entity. The Business Associate will report to the Covered Entity and the County’s Privacy Officer, within (2) business days of discovery, any use or disclosure of PHI or PI not provided for in this Agreement of which the Business Associate is aware. The Business Associate will report to the Covered Entity and the County’s Privacy Officer within twenty-four (24) hours of discovery, any Security Incident of which the Business Associate is aware. A violation of this paragraph shall be a material violation of this Agreement. Such notice shall include the identification of each individual whose unsecured PHI and PI has been, or is reasonably believed by the Business Associate to have been, accessed, acquired, or disclosed during such breach. Title: Orange County’s Privacy Officer, Health Services Department Telephone:(▇▇▇)▇▇▇-▇▇▇▇ Fax:(▇▇▇)▇▇▇-▇▇▇▇ Address: ▇▇▇▇ ▇. ▇. ▇▇▇▇▇▇▇▇ ▇▇▇▇▇▇, ▇▇▇▇▇▇▇, ▇▇ ▇▇▇▇▇ E-Mail:▇▇▇▇▇▇▇.▇▇▇▇▇▇▇@▇▇▇▇.▇▇▇

To Covered Entity. To Business Associate:

To Covered Entity. The Business Associate will report to the Covered Entity and the County’s Privacy Officer, within (2) business days of discovery, any use or disclosure of PHI or PI not provided for in this Agreement of which the Business Associate is aware. The Business Associate will report to the Covered Entity and the County’s Privacy Officer within twenty-four (24) hours of discovery, any Security Incident of which the Business Associate is aware. A violation of this paragraph shall be a material violation of this Agreement. Such notice shall include the identification of each individual whose unsecured PHI and PI has been, or is reasonably believed by the Business Associate to have been, accessed, acquired, or disclosed during such breach. Title: Orange County’s Privacy Officer, Health Services Department Telephone:(▇▇▇)▇▇▇-▇▇▇▇ Fax:(▇▇▇)▇▇▇-▇▇▇▇ Address: 2002 A. E. Michigan Street, Orlando, FL 32806 E-Mail:▇▇▇▇▇▇▇.▇▇▇▇▇▇▇@▇▇▇▇.▇▇▇

To Covered Entity. The Business Associate will report to the Covered Entity and the County’s Privacy Officer, within (2) business days of discovery, any use or disclosure of PHI or PI not provided for in this Agreement of which the Business Associate is aware. The Business Associate will report to the Covered Entity and the County’s Privacy Officer within twenty-four (24) hours of discovery, any Security Incident of which the Business Associate is aware. A violation of this paragraph shall be a material violation of this Agreement. Such notice shall include the identification of each individual whose unsecured PHI and PI has been, or is reasonably believed by the Business Associate to have been, accessed, acquired, or disclosed during such breach. Title: Orange County’s Privacy Officer, Health Services Department Telephone: (▇▇▇ )▇▇▇-▇▇▇▇ Fax: (▇▇▇) ▇▇▇-▇▇▇▇ Address: ▇▇▇▇ ▇. ▇. ▇▇▇▇▇▇▇▇ ▇▇▇▇▇▇, ▇▇▇▇▇▇▇, ▇▇ ▇▇▇▇▇ E-Mail: ▇▇▇▇▇▇▇.▇▇▇▇▇▇▇@▇▇▇▇.▇▇▇ 1.34.1 Reports of Security Incidents shall include a detailed description of each Incident, at a minimum to include the date of the Incident, the nature of the Incident, the information involved, whether the information was accessed, disclosed, used, modified, destroyed, etc., and the identities of the individual(s) and their relationship to the Business Associate, a description of the Business’s response to each Incident, and the name and title of the individual the Covered Entity should contact for additional information. 1.34.2 Business Associate will conduct such further investigation as is reasonably required by the Covered Entity and promptly advise the Covered Entity of additional information pertinent to the Incident. 1.34.3 Business Associate will cooperate with Covered Entity in conducting any required risk analysis related to such Security Incident(s). 1.34.4 Business Associate will cooperate with Covered Entity in complying with any applicable notification requirements pursuant to the Breach Notification Rule and/or pursuant to Florida law (including but not limited to §§ 501.171 and 817.5681, Florida Statutes), and in taking steps determined by Covered Entity to be necessary to mitigate any potential harm caused by a Security Incident. Business Associate will pay and/or reimburse Covered Entity for any reasonable expenses Covered Entity incurs in notifying individuals of, and /or mitigating potential harm caused by a Security Incident caused by Business Associate and/or its subcontractors or agents.