Browse
Search
2012-417 EMS - EMS Management & Consultants for Update Business Associate Agreement in ref to HIPAA
OrangeCountyNC
>
Board of County Commissioners
>
Contracts and Agreements
>
General Contracts and Agreements
>
2010's
>
2012
>
2012-417 EMS - EMS Management & Consultants for Update Business Associate Agreement in ref to HIPAA
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
1/8/2013 3:32:21 PM
Creation date
1/8/2013 3:32:18 PM
Metadata
Fields
Template:
BOCC
Date
1/4/2013
Meeting Type
Work Session
Document Type
Agreement
Agenda Item
Manager Signed
Document Relationships
2012-417 S EMS - EMS Management & Consultants for Update Business Associate Agreement in ref to HIPAA
(Linked From)
Path:
\Board of County Commissioners\Contracts and Agreements\Contract Routing Sheets\Routing Sheets\2012
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
11
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
"covered account" as defined in 16 C.F.R. § 681.1 (as applicable to Covered Entity as a "creditor" and <br /> therefore to Business Associate as a "service provider" providing any service to Covered Entity), <br /> Business Associate agrees to: (i) fully adopt and comply with the Red Flag Rules currently in effect and <br /> as may be promulgated in the future; (ii) adopt a Red Flag program that is compliant with federal <br /> regulations as promulgated in 16 C.F.R. § 681.1; and (iii) take all necessary and appropriate steps to <br /> ensure that its activities undertaken as a part of this Agreement are conducted in accordance with the Red <br /> Flag Rules and its Red Flag program, including, without limitation, ensuring the adoption of and <br /> continued compliance with reasonable policies and procedures designed to detect, prevent, and mitigate <br /> the risk of identity theft, detecting any Red Flag that may arise during the term of this Agreement, <br /> reporting any such Red Flag to Covered Entity, and taking any such further steps as may be necessary to <br /> prevent or mitigate identity theft. <br /> VIII. TERM AND TERMINATION <br /> a. Term. The Term of this Agreement shall be effective as of the date first written above, <br /> and shall terminate upon the later of the following events: (i) in accordance with Section VIII.c.,when all <br /> of the Protected Health Information provided by Covered Entity to Business Associate or created or <br /> received by Business Associate on behalf of Covered Entity is destroyed or returned to Covered Entity or, <br /> if such return or destruction is infeasible, when protections are extended to such information; or(ii)upon <br /> the expiration or termination of the last of the Agreements. <br /> b. Termination for Cause. Upon Covered Entity's knowledge of a material breach of this <br /> Agreement by Business Associate, Covered Entity shall have the right to immediately terminate this <br /> Agreement and the Agreements. If termination is not feasible, Covered Entity shall report such violation <br /> to the Secretary. <br /> C. Effect of Termination. <br /> I. Except as provided in paragraph 2. of this subsection, upon termination of this <br /> Agreement, the Agreements or upon request of Covered Entity, whichever occurs first, Business <br /> Associate shall within ten (10) days return or destroy all Protected Health Information received <br /> from Covered Entity, or created or received by Business Associate on behalf of Covered Entity. <br /> This provision shall apply to Protected Health Information that is in the possession of <br /> subcontractors or agents of Business Associate. Neither Business Associate nor its <br /> subcontractors or agents shall retain copies of the Protected Health Information. <br /> 2. In the event that Business Associate determines that returning or destroying the <br /> Protected Health Information is infeasible, Business Associate shall provide within ten(10) days <br /> to Covered Entity notification of the conditions that make return or destruction infeasible. Upon <br /> mutual agreement of the Parties that return or destruction of Protected Health Information is <br /> infeasible, Business Associate shall extend the protections of this Agreement to such Protected <br /> Health Information and limit further uses and disclosures of such Protected Health Information to <br /> those purposes that make the return or destruction infeasible, for so long as Business Associate <br /> maintains such Protected Health Information. <br /> IX. MISCELLANEOUS <br /> a. Indemnification. Business Associate shall indemnify and hold Covered Entity harmless <br /> from and against all claims, liabilities, judgments, fines, assessments, penalties, awards, or other <br /> expenses, of any kind or nature whatsoever, including, without limitations, attorneys' fees, expert witness <br /> fees, and costs of investigation, litigation or dispute resolution, relating to or arising out of any breach or <br /> 8 <br />
The URL can be used to link to this page
Your browser does not support the video tag.