Browse
Search
2008-061 Health - NC Department of Health and Human Services (2)
OrangeCountyNC
>
Board of County Commissioners
>
Contracts and Agreements
>
General Contracts and Agreements
>
2000's
>
2008
>
2008-061 Health - NC Department of Health and Human Services (2)
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
4/27/2011 2:02:44 PM
Creation date
5/13/2010 12:11:09 PM
Metadata
Fields
Template:
BOCC
Date
3/27/2007
Meeting Type
Regular Meeting
Document Type
Contract
Agenda Item
5g
Document Relationships
Agenda - 03-27-2007-5g
(Linked To)
Path:
\Board of County Commissioners\BOCC Agendas\2000's\2007\Agenda - 03-27-2007
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
15
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
Consolidstcd ApeemeM - Final <br />Page 16 of 18 <br />• h. "Security Incident" shall have the same meaning as the term "security incident" in 45 CFR 164.304. <br />i. Unless otherwise defined in this Agreement, terms used herein shall have the same meaning as those terms have <br />in the Privacy and Security Rules. <br />3. OBLIGATIONS OF BUSINESS ASSOCIATE <br />a. Business Associate agrees to not use or disclose electronic protected health information or other protected health <br />information other than as permitted or required by this Agreement or as required by law. <br />b. Business Associate agrees to implement administrative, physical, and technical safeguards that reasonably and <br />appropriately protect the confidentiality, integrity, and availability of the electronic protected health information <br />and other protected health information that it creates, receives, maintains, or transmits on behalf of a Covered <br />Entity, as required by the Privacy and Security Rules. <br />c. Business Associate agrees to mitigate, to the extent practicable, any harmful effect that is known tv Business <br />Associate of a use or disclosure of electronic protected health information or other protected health information <br />by a Business Associate in violation of the requirements of this Agreement. <br />d. Business Associate agrees to report to Covered Entity (i) any use or disclosure of electronic protected health <br />information or other protected health information not provided for by this Agreement of which it becomes aware <br />and (ii) any security incident of which it becomes aware. <br />e. Business Associate agrees to ensure that any agent, including a subcontractor, to whom it provides electronic <br />protected health information and/or other protected health information received from, or created or received by <br />• Business Associate on behalf of Covered Entity (i) agrees to be bound by the same restrictions and conditions <br />that apply through this Agreement to Business Associate with respect to such information, and (ri) agrees to <br />implement reasonable and appropriate safeguards to protect such information. <br />f. Business Associate agrees to provide access, at the request of Covered Entity, to electronic protected health <br />information and other protected health information in a Designated Record Set to a Covered Entity or, as <br />directed by a Covered Entity, to an individual in order to meet the requirements under 45 CFR 164.524. <br />g. Business Associate agrees, at the request of a Covered Entity, to make any amendment(s) to electronic protected <br />health information and other protected health information in a Designated Record Set that a Covered Entity <br />directs or agrees to pursuant to 45 CFR 164.526. <br />h. Unless otherwise prohibited by law, Business Associate agrees to make internal practices, books, and records, <br />including policies and procedures concerning electronic protected health information and other protected health <br />information, relating to the use and disclosure of electronic protected health information and other protected <br />health information received from, or created or received by Business Associate on behalf of, Covered Entity <br />available to the Covered Entity, or to the Secretary, in a time and manner designated by the Secretary, for <br />purposes of the Secretary determining Covered Entity's compliance with the Privacy and Security Rules. <br />i. Business Associate agrees to document such disclosures of electronic protected health information and other <br />protected health information related to such disclosures as would be required for Covered Entity to respond to a <br />request by an individual for an accounting of disclosures of electronic protected health information and other <br />protected health information in accordance with 45 CFR 164.528, and to provide this information to Covered <br />Entity or an individual to permit such a response. <br />• <br />
The URL can be used to link to this page
Your browser does not support the video tag.