Orange County NC Website
Browse       Search
Agreement, as well as any Security Incident, of which it becomes aware within forty-eight (48) <br />hours of such discovery. For purposes of this Agreement, "Security Incident" means the <br />attempted or successful unauthorized access, use, disclosure, modification, or destruction of <br />information or interference with system operations in an information system. In addition, <br />Business Associate agrees to mitigate, to the extent practicable, any harmful effect that is <br />known to Business Associate of a use or disclosure of Protected Health Information by Business <br />Associate in violation of the requirements of this Agreement, as well as to provide complete <br />cooperation to Covered Entity should Covered Entity elect to review or investigate such <br />noncompliance or Security Incident. Business Associate shall indemnify and hold harmless <br />Covered Entity for any injury or damages arising from any noncompliance or Security Incident <br />attributable to the negligence of Business Associate, including the failure to execute the terms of <br />this Agreement. <br />AVAILABILITY OF PHI <br />Business Associate agrees to make available Protected Health Information to the extent and in <br />the manner required by Section 164.524 of the HIPAA Security and Privacy Rule. Business <br />Associate agrees to make Protected Health Information available for amendment and <br />incorporate any amendments to Protected Health Information in accordance with the <br />requirements of Section 164.526 of the HIPAA Security and Privacy Rule. In addition, Business <br />Associate agrees to make Protected Health Information available for purposes of accounting of <br />disclosures, as required by Section 164.528 of the HIPAA Security and Privacy Rule (see <br />Section II(a)(ii) above). <br />IV. TERMINATION <br />Notwithstanding anything in this Agreement to the contrary, Covered Entity shall have the right <br />to terminate this Agreement and the Arrangement Agreement immediately if Covered Entity <br />determines that Business Associate has violated any material term of this Agreement. If <br />Covered Entity reasonably believes that Business Associate will violate a material term of this <br />Agreement and, where practicable, Covered Entity gives written notice to Business Associate of <br />such belief within a reasonable time after forming such belief, and Business Associate fails to <br />provide adequate written assurances to Covered Entity that it will not breach the cited term of <br />this Agreement within a reasonable period of time given the specific circumstances, but in any <br />event, before the threatened breach is to occur, then Covered Entity shall have the right to <br />terminate this Agreement and the Arrangement Agreement immediately. <br />V. MISCELLANEOUS <br />Except as expressly stated herein or the HIPAA Security and Privacy Rule, the parties to this <br />Agreement do not intend to create any rights in any third parties. The obligations of Business <br />Associate under this Agreement shall survive the expiration, termination, or cancellation of this <br />Agreement, the Arrangement Agreement and/or the business relationship of the parties, and <br />shall continue to bind Business Associate, its agents, employees, contractors, successors, and <br />assigns as set forth herein. <br />This Agreement may be amended or modified only in a writing signed by the Parties. <br />No Party may assign its respective rights and obligations under this Agreement without <br />the prior written consent of the other Party. None of the provisions of this Agreement are <br />intended to create, nor will they be deemed to create any relationship between the <br />