Browse
Search
2024-625-E-IT Dept-Catalis Courts and Land Records-AIMS- Diversion, Pre-Trial and Specialty Court software and support
OrangeCountyNC
>
Board of County Commissioners
>
Contracts and Agreements
>
General Contracts and Agreements
>
2020's
>
2024
>
2024-625-E-IT Dept-Catalis Courts and Land Records-AIMS- Diversion, Pre-Trial and Specialty Court software and support
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
11/19/2024 2:38:22 PM
Creation date
11/19/2024 2:38:09 PM
Metadata
Fields
Template:
Contract
Date
10/4/2024
Contract Starting Date
10/4/2024
Contract Ending Date
10/21/2024
Contract Document Type
Contract
Amount
$6,151.00
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
23
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
3 <br />April 2016 <br />(e) Mitigation of Breach. Business Associate agrees to mitigate, to the extent practicable, any <br />harmful effect that is known to Business Associate of a use or disclosure of Protected Health Information <br />by Business Associate in violation of the requirements of this Agreement, as well as to provide complete <br />cooperation to Covered Entity should Covered Entity elect to review or investigate such noncompliance or <br />Security Incident. Business Associate shall cooperate in Covered Entity’s breach analysis and/or r isk <br />assessment, if requested. Furthermore, Business Associate shall cooperate with Covered Entity in the event <br />that Covered Entity determines that any third parties must be notified of a Breach, provided that Business <br />Associate shall not provide any such notification except at the direction of Covered Entity. <br /> <br />(f) Breach Reporting. Business Associate shall report in writing to Covered Entity’s Privacy <br />Officer (see Exhibit A), any use or disclosure of Protected Health Information that is not in complianc e <br />with the terms of this Agreement, as well as any Security Incident and any actual or suspected Breach, of <br />which it becomes aware, without unreasonable delay, and in no event later than forty-eight (48) hours of <br />such discovery. For purposes of this Agreement, “Security Incident” means the attempted or successful <br />unauthorized access, use, disclosure, modification, or destruction of information or interference with system <br />operations in an information system. Such notification shall contain the elements req uired by 45 C.F.R. § <br />164.410. <br /> <br />(g) Compliance. To the extent applicable, Business Associate will comply with (i) Covered <br />Entity’s Notice of Privacy Practices; (ii) any limitations to which Covered Entity has agreed in regard to an <br />Individual’s permission to use or disclose his or her Protected Health Information; and (iii) any restrictions <br />to the use or disclosure of Protected Health Information to which Covered Entity has agreed or is required <br />to agree. <br /> <br />(h) Government Access. Business Associate will make its internal practices, books and <br />records available to the Secretary of the Department of Health and Human Services for purposes of <br />determining compliance with the terms of the HIPAA Security and Privacy Rule, and, at the request of the <br />Secretary, will comply with any investigations and compliance reviews, permit access to information, and <br />cooperate with any complaints, as Required by Law. Without unreasonable delay and, in any event, no <br />more than 48 hours of receipt of the request or notification, Business Associate will notify Covered Entity <br />in writing of any request by any governmental entity, or its designee, to review Business assessment of any <br />kind. <br /> <br />(i) Electronic Transactions. If Business Associate conducts any Standard Transactions for or <br />on behalf of Covered Entity, Business Associate shall comply with the requirements under the Electronic <br />Transaction Rule. <br /> <br />(j) Identity Theft. Business Associate shall implement Identity Theft Monitoring Policies and <br />Procedures to protect any patient information that may be breached by the Business Associate to the extent <br />applicable under the Federal Trade Commission’s Red Flag Rules. <br /> <br />(k) HITECH Compliance. Business Associate shall: <br /> <br />A. Not receive, directly or indirectly, any impermissible remuneration in exchange <br />for Protected Health Information or Electronic Protected Health Information, <br />except as permitted by HITECH § 13405(d) or the HIPPA Regulations; <br />B. Comply with the marketing and other restrictions applicable to Business <br />Associates contained in HITECH § 13406 and the HIPPA Regulations; <br /> <br />C. To the extent required under HITECH § 13404, fully comply with the applicable <br />requirements of 45 CFR 164.502(e)(2) for each use and disclosure of Protected <br />Health Information; <br /> <br />Docusign Envelope ID: 3883A566-6F8F-47D6-BDA9-1822B3D6218C
The URL can be used to link to this page
Your browser does not support the video tag.