Browse
Search
Agenda - 02-05-2008-4j
OrangeCountyNC
>
Board of County Commissioners
>
BOCC Agendas
>
2000's
>
2008
>
Agenda - 02-05-2008
>
Agenda - 02-05-2008-4j
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
9/1/2008 10:01:08 PM
Creation date
8/28/2008 9:35:33 AM
Metadata
Fields
Template:
BOCC
Date
2/5/2008
Document Type
Agenda
Agenda Item
4j
Document Relationships
2008-003 Health Dept - Ginger Mann Adopt a child care Dental Screening Project Coordinator
(Linked From)
Path:
\Board of County Commissioners\Contracts and Agreements\General Contracts and Agreements\2000's\2008
Minutes - 20080205
(Linked To)
Path:
\Board of County Commissioners\Minutes - Approved\2000's\2008
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
10
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
3 <br />(iii) implement appropriate safeguards to prevent use or disclosure of <br />protected health information other than as permitted or required by this Agreement; <br />(iv) permit the Secretary of Health and Human Services to audit Business <br />Associate's records and practices related to use and disclosure of protected health <br />information to ensure Covered Entity's compliance with the terms of the HIPAA Security <br />and Privacy Rule; <br />(v) report to Covered Entity any use or disclosure of protected health <br />information which is not in compliance with the terms of this Agreement of which it <br />becomes aware; <br />(vi) report to Covered Entity any Security Incident of which it becomes aware. <br />For purposes of this Agreement, "Security Incident" means the attempted or successful <br />unauthorized access, use disclosure, modification, or destruction of information or <br />interference with system operations in an information system; and <br />(vii) mitigate, to the extent practicable, any harmful effect that is known to <br />Business Associate of a use or disclosure of protected health information by Business <br />Associate in violation of the requirements of this Agreement. <br />(b) Notwithstanding the prohibitions set forth in this Agreement or the Arrangement <br />Agreement, Business, Associate may use and disclose protected health information as follows: <br />(i) if necessary, for the proper management and administration of Business <br />Associate or to carry out the legal responsibilities of Business Associate, provided that <br />as to any such disclosure, the following requirements are met: <br />(A) the disclosure is required by law; or <br />(B) Business Associate obtains reasonable assurances from the <br />person to whom the information is disclosed that it will be held confidentially and <br />used or further disclosed only as required by law or for the purpose for which it <br />was disclosed to the person, and the person notifies Business Associate of any <br />instances of which it is aware in which.the confidentiality of the information has <br />been breached; <br />(ii) for data aggregation services, if such services are to be provided by <br />Business Associate for the health care operations of Covered Entity pursuant to any <br />agreements between the Parties evidencing their business relationship. <br />III. AVAILABILITY OF PROTECTED HEALTH INFORMATION <br />Business Associate shall: <br />(a) at the request of Covered Entity, provide access to protected health information in a <br />designated record set to Covered Entity or, as directed by Covered Entity, to an individual, in a time <br />and manner sufficient to permit Covered Entity to comply with the requirements of 45 CFR 164.524. <br />(b) at the request of Covered Entity or an individual, make any amendment(s) to protected <br />health information in a designated record set that are directed by or agreed to by Covered Entity, in a <br />time and manner sufficient to permit Covered Entity to comply with the requirements of 45 CFR <br />164.526. <br />(c) document disclosures of protected health information and information related to such <br />disclosures in a manner sufficient to permit Covered Entity to respond to a request by an individual for <br />an accounting of disclosures of protected health information in accordance with 45 CFR 164.528 and <br />provide such documentation to Covered Entity or an individual as directed by Covered Entity. <br />2
The URL can be used to link to this page
Your browser does not support the video tag.