Orange County NC Website
Browse       Search
and compliance reviews, permit access to information, and cooperate with any complaints, as required by <br />law. <br />(g) Business Associate shall report to Covered Entity (see Attachment A) any use or disclosure of <br />Protected Health Information that is not in compliance with the terms of this Agreement, as well as any <br />successful or pattern of unsuccessful Security Incident(s) and /or Breach(es) of unsecured Protected Health <br />Information, of which it becomes aware, without unreasonable delay. Security Incidents and Breaches shall <br />be treated as discovered by Business Associate as of the first day on which such Security Incident or Breach <br />is known to Business Associate or, by exercising reasonable diligence, would have been known to Business <br />Associate. For purposes of this Agreement, "Security Incident" means the attempted or successful <br />unauthorized access, use, disclosure, modification, or destruction of information or interference with system <br />operations in an information system. As to any Breach(es) of unsecured Protected Health Information, such <br />notification shall contain the elements required by 45 C.F.R. § 164.410. <br />IV. AVAILABILITY OF PI -11 <br />(a) Business Associate agrees to make available Protected Health InfOrmatimi in a Designated Record <br />Set to Covered Entity to the extent and in the manner required by Section 164.524 of the HIPAA Security <br />and Privacy Rule. <br />(b) Business Associate agrees to make available Protected Health Information in a Designated Record <br />Set to Covered Entity for amendment and to incorporate any amendments to Protected Health Information in <br />accordance with the requirements of Section 164.526 of the HIPAA Security and Privacy Rule and at the <br />direction of Covered Entity. <br />(c) Business Associate agrees to nnaimain and male available the information required for Covered <br />Entity to provide an accounting of disclosures, as required by Section 161.528 of tlic 141PAA Security and <br />Privacy Rule. <br />(d) Business Associate agrees to comply with any requests by Covered Entity for restriction on certain <br />disclosures of Protected Health Information pursuant to Section 164.522 of the HIPAA Security and Privacy <br />Rule to which Covered Entity has agreed and of which Business Associate is notified by Covered Entity. <br />(e) In the event an Individual makes a request under this Section IV directly to Business Associate, <br />Business Associate will noti[ }r Covered Entity in writing of such request so that Covered Entity may respond <br />to such request. <br />V. TERMINATION <br />This Agreement shall be effective as of the date first set forth above and shall terminate upon the earlier of (i) <br />the termination of all agreements between the parties, and (ii) the termination by either party for cause as <br />provided herein. Notwithstanding anything in this Agreement to the contrary, each party shall have the right <br />to terminate this Agreement and the Arrangement Agreement immediately if such party determines that the <br />other party has violated any material term of this Agreement and the other party has not cured the breach or <br />ended the violation within thirty (30) days of receipt of written notification of such violation from the <br />notifying party. Notwithstanding anything in this Agreement to the contrary, Business Associate shall have <br />the right to terminate this Agreement and the Arrangement Agreement immediately if Covered Entity agrees <br />to restrictions on the use or disclosure of Protected Health Information that materially affect Business <br />Associate's ability to perform or the cost of Business Associate's performance under this Agreement or the <br />Arrangement Agreement. <br />{00102384.DOCX} <br />