My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
2025/04/09 Council Agenda Packet
>
Council Agenda Packets
>
2025
>
2025/04/09 Council Agenda Packet
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
4/10/2025 8:32:47 AM
Creation date
4/10/2025 8:30:23 AM
Metadata
Fields
Template:
Council Agenda Packet
Date
4/9/2025
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
109
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
Download electronic document
View images
View plain text
<br /> <br />10 <br /> <br />EXHIBIT B <br /> <br />BUSINESS ASSOCIATE AGREEMENT (“BAA”) <br /> <br />1. DEFINITIONS <br /> <br /> (a) “Breach” shall mean, as defined in 45 C.F.R. § 164.402, the acquisition, access, <br />use or disclosure of Unsecured Protected Health Information in a manner not permitted by the <br />HIPAA Requirements that compromises the security or privacy of that Protected Health <br />Information. <br /> <br /> (b) “Security Incident” shall mean, as defined in 45 C.F.R. § 164.304, the attempted <br />or successful unauthorized access, use, disclosure, modification, or destruction of information <br />or interference with system operations in an information system. <br /> <br /> (c) All other capitalized terms used in this BAA shall have the meanings set forth in <br />the applicable definitions under the HIPAA Requirements. <br /> <br />2. GENERAL TERMS <br /> <br /> (a) In the event of an inconsistency between the provisions of this BAA and a term <br />in HIPAA (as these terms may be expressly amended from time to time by the HHS or as a result <br />of interpretations by HHS, a court, or another regulatory agency with authorit y over the <br />parties), the interpretation of HHS, such court or regulatory agency shall prevail. <br /> <br /> (b) Where provisions of this BAA are different from those mandated by the HIPAA <br />Requirements, but are nonetheless permitted by the HIPAA Requirements, the provisions of <br />this BAA shall control. <br /> <br /> (c) Except as expressly provided in the HIPAA Requirements or this BAA, this <br />BAA does not create any rights in third parties. <br /> <br />3. SPECIFIC REQUIREMENTS <br /> <br /> (a) Subcontractors. Business Associate agrees that as required by the HIPAA <br />Requirements, Business Associate shall enter into a written agreement with all Business <br />Associate Subcontractors that: (i) requires them to comply with the Privacy and Security Rule <br />provisions of this BAA in the same manner as required of Business Associate, and (ii) notifies <br />such Business Associate Subcontractors that they shall incur liability under the HIPAA <br />Requirements for non-compliance with such provisions. Accordingly, Bu siness Associate shall <br />ensure that all Business Associate Subcontractors agree in writing to the same privacy and <br />security restrictions, conditions and requirements that apply to Business Associate with respect <br />to Protected Health Information. <br />
The URL can be used to link to this page
Your browser does not support the video tag.