Security Rule Obligations Sample Clauses

Security Rule Obligations. The following provisions of this section apply to the extent that Business Associate creates, receives, maintains or transmits Electronic PHI on behalf of Covered Entity. 17.1 Business Associate shall implement and use administrative, physical, and technical safeguards in compliance with 45 CFR sections 164.308, 164.310, and 164.312 with respect to the Electronic PHI that it creates, receives, maintains or transmits on behalf of Covered Entity. Business Associate shall identify in writing upon request from Covered Entity all of the safeguards that it uses to protect such Electronic PHI. 17.2 Business Associate shall ensure that any Agent and Subcontractor to whom it provides Electronic PHI agrees in a written agreement to implement and use administrative, physical, and technical safeguards that reasonably and appropriately protect the Confidentiality, Integrity and Availability of the Electronic PHI. Business Associate must enter into this written agreement before any use or disclosure of Electronic PHI by such Agent or Subcontractor. The written agreement must identify Covered Entity as a direct and intended third party beneficiary with the right to enforce any breach of the agreement concerning the use or disclosure of Electronic PHI. Business Associate shall provide a copy of the written agreement to Covered Entity upon request. Business Associate may not make any disclosure of Electronic PHI to any Agent or Subcontractor without the prior written consent of Covered Entity. 17.3 Business Associate shall report in writing to Covered Entity any Security Incident pertaining to such Electronic PHI (whether involving Business Associate or an Agent or Subcontractor). Business Associate shall provide this written report as soon as it becomes aware of any such Security Incident, and in no case later than two (2) business days after it becomes aware of the incident. Business Associate shall provide Covered Entity with the information necessary for Covered Entity to investigate any such Security Incident. 17.4 Business Associate shall comply with any reasonable policies and procedures Covered Entity implements to obtain compliance under the Security Rule.
Sample 1Sample 2Sample 3See All (246)
Security Rule Obligations. Business Associate acknowledges that 45 C.F.R. §§ 164.308, 164.310, 164.312 and 164.316 apply to Business Associate in the same manner that such sections apply to covered entities, and are incorporated into this Agreement by reference. The additional requirements of the HITECH Act that relate to security and that apply to covered entities also apply to Business Associate and are incorporated into this Agreement by reference. Business Associate agrees to implement the technical safeguards provided in guidance issued annually by the Secretary of the U.S. Department of Health and Human Services (“HHS”) for carrying out the obligations under the Code of Federal Regulation sections cited in this Section and the security standards in 45 C.F.R. Part 164 Subpart C.
Sample 1Sample 2
Security Rule Obligations. The following provisions of this section apply to the extent that Business Associate creates, receives, maintains or transmits Electronic PHI on behalf of Covered Entity. 17.1 Business Associate shall implement and use administrative, physical, and technical safeguards in compliance with 45 CFR sections 164.308, 164.310, and 164.312 with respect to the Electronic PHI that it creates, receives, maintains or transmits on behalf of Covered Entity. 17.2 Business Associate shall ensure that any Agent and Subcontractor to whom it provides Electronic PHI agrees in a written agreement to implement and use administrative, physical, and technical safeguards that reasonably and appropriately protect the Confidentiality, Integrity and Availability of the Electronic PHI. Business Associate must enter into this written agreement before any use or disclosure of Electronic PHI by such Agent or Subcontractor. The written agreement must identify Covered Entity as a direct and intended third party beneficiary with the right to enforce any breach of the agreement concerning the use or disclosure of Electronic PHI. Business Associate shall provide a copy of the written agreement to Covered Entity upon request. Business Associate may not make any disclosure of Electronic PHI to any Agent or Subcontractor without the prior written consent of Covered Entity. 17.3 Business Associate shall report in writing to Covered Entity any Security Incident pertaining to such Electronic PHI (whether involving Business Associate or an Agent or Subcontractor). Business Associate shall provide this written report as soon as it becomes aware of any such Security Incident, and in no case later than two (2) business days after it becomes aware of the incident. Business Associate shall provide Covered Entity with the information necessary for Covered Entity to investigate any such Security Incident.
Sample 1
Security Rule Obligations. The following provisions of this Section apply to the extent that Onpoint creates, receives, maintains or transmits Electronic PHI on behalf of Covered Entity. 17.1 Onpoint shall implement and use administrative, physical, and technical safeguards in compliance with 45 CFR sections 164.308, 164.310, and 164.312 with respect to the Electronic PHI that it creates, receives, maintains or transmits on behalf of Covered Entity. Upon request from Covered Entity, Onpoint shall provide Covered Entity an overview of its information security program which shall include available documentation regarding its security policies and procedures. 17.2 Onpoint shall ensure that any Agent and Subcontractor to whom it provides Electronic PHI agrees in a written agreement to implement and use administrative, physical, and technical safeguards that reasonably and appropriately protect the Confidentiality, Integrity and Availability of the Electronic PHI. Onpoint must enter into this written agreement before any use or disclosure of Electronic PHI by such Agent or Subcontractor. The written agreement must identify Covered Entity as a direct and intended third party beneficiary with the right to enforce any breach of the agreement concerning the use or disclosure of Electronic PHI. Onpoint shall provide a copy of the written agreement to Covered Entity upon Covered Entity’s request. Onpoint, in its sole discretion, may redact from such written agreement any confidential or proprietary information. Onpoint may not make any disclosure of Electronic PHI to any Agent or Subcontractor without the prior written consent of Covered Entity, which consent shall not be unreasonably withheld, conditioned or delayed. Notwithstanding the above, with respect to any Agent or Subcontractor engaged by Onpoint prior to the Effective Date, Onpoint’s contract with the Agent or Subcontractor is not required to identify Covered Entity as a direct and intended third party beneficiary with the right to enforce any breach of the agreement concerning the use or disclosure of Electronic PHI. However, if Onpoint renews or enters into a new contract with the Agent or Subcontractor after the Effective Date, it must identify Covered Entity as a third party beneficiary as required above, and must provide a copy of the written agreement upon Covered Entity’s request. With respect to any Agent or Subcontractor engaged by Onpoint prior to the Effective Date, as identified by Onpoint prior to the Effective Date, Cov...
Sample 1
Security Rule Obligations. In addition to complying with Covered Entity’s policies and procedures as provided in Section 2.3.14, Business Associate will comply with all aspects of the Security Rule and the HITECH Act, including (i) implementing Safeguards (including written policies and procedures) that reasonably and appropriately protect the confidentiality, integrity and availability of electronic PHI that it creates, receives, maintains, or transmits on behalf of Covered Entity as required by the Security Rule and the HITECH Act and (ii) developing and implementing all required policies and procedures.
Sample 1

Related to Security Rule Obligations

  • Security Documents (a) The Collateral Agreement and the Holdings Guarantee and Pledge Agreement are effective to create in favor of the Collateral Agent (for the benefit of the Secured Parties), in each case, a legal, valid and enforceable security interest in the Collateral described therein and proceeds thereof. As of the Closing Date, in the case of the Pledged Collateral described in the Collateral Agreement and the Holdings Guarantee and Pledge Agreement, when certificates or promissory notes, as applicable, representing such Pledged Collateral and required to be delivered under the applicable Security Document are delivered to the Collateral Agent, and in the case of the other Collateral described in the Collateral Agreement (other than the Intellectual Property), when financing statements and other filings specified in the Perfection Certificate are filed in the offices specified in the Perfection Certificate, the Collateral Agent (for the benefit of the Secured Parties) shall have a fully perfected Lien on, and security interest in, all right, title and interest of the Loan Parties in such Collateral and, subject to Section 9-315 of the New York Uniform Commercial Code, the proceeds thereof, as security for the Obligations to the extent perfection can be obtained by filing Uniform Commercial Code financing statements, in each case prior and superior in right to the Lien of any other person (except (x) Liens having priority by operation of law and (y) in the case of Collateral other than certificated securities and instruments of which the Collateral Agent has possession, Permitted Liens). (b) When the Collateral Agreement or an ancillary document thereunder is properly filed and recorded in the United States Patent and Trademark Office and the United States Copyright Office, and, with respect to Collateral in which a security interest cannot be perfected by such filings, upon the proper filing of the financing statements referred to in clause (a) above, the Collateral Agent (for the benefit of the Secured Parties) shall have a fully perfected Lien on, and security interest in, all right, title and interest of the Loan Parties thereunder in the United States Intellectual Property included in the Collateral (but, in the case of the United States registered copyrights included in the Collateral, only to the extent such United States registered copyrights are listed in such ancillary document filed with the United States Copyright Office) listed in such ancillary document, in each case prior and superior in right to the Lien of any other person, except for Permitted Liens (it being understood that subsequent recordings in the United States Patent and Trademark Office and the United States Copyright Office may be necessary to perfect a Lien on registered trademarks and patents, trademark and patent applications and registered copyrights acquired by the Loan Parties after the Closing Date). (c) The Mortgages, if any, executed and delivered on the Closing Date are, and the Mortgages executed and delivered after the Closing Date pursuant to Section 5.10 shall be, effective to create in favor of the Collateral Agent (for the benefit of the Secured Parties) legal, valid and enforceable Liens on all of the Loan Parties’ rights, titles and interests in and to the Mortgaged Property thereunder and the proceeds thereof, and when such Mortgages are filed or recorded in the proper real estate filing or recording offices, and all relevant mortgage taxes and recording charges are duly paid, the Collateral Agent (for the benefit of the Secured Parties) shall have valid Liens with record notice to third parties on, and security interests in, all rights, titles and interests of the Loan Parties in such Mortgaged Property and, to the extent applicable, subject to Section 9-315 of the Uniform Commercial Code, the proceeds thereof, in each case prior and superior in right to the Lien of any other person, except for Permitted Liens. (d) Notwithstanding anything herein (including this Section 3.17) or in any other Loan Document to the contrary, (i) each of the parties hereto acknowledges and agrees that licensing by the Gaming Authorities may be required to enforce and/or exercise or foreclose upon certain security interests and such enforcement and/or exercise or foreclosure may be otherwise limited by the Gaming Laws and (ii) neither the Borrower nor any other Loan Party makes any representation or warranty as to the effects of perfection or non-perfection, the priority or the enforceability of any pledge of or security interest in any Equity Interests of any Foreign Subsidiary, or as to the rights and remedies of the Agents or any Lender with respect thereto, under foreign law.