My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
25A - AGMT FOR FLEX SPENDING
Clerk
>
Agenda Packets / Staff Reports
>
City Council (2004 - Present)
>
2020
>
10/20/2020
>
25A - AGMT FOR FLEX SPENDING
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
10/14/2020 3:08:32 PM
Creation date
10/14/2020 3:02:14 PM
Metadata
Fields
Template:
City Clerk
Doc Type
Agenda Packet
Agency
Human Resources
Item #
25A
Date
10/20/2020
Destruction Year
2025
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
37
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
DocuSign Envelope ID: CFCE3443-EF374FD4-8DCD-D85D559F77AE <br />9. Compliance with State Law. <br />Except to the extent its obligation to do so is preempted by the provisions of HIPAA, including <br />provisions of the HITECH Act, Business Associate shall notify Covered Entity of any breach of <br />unencrypted data owned or licensed by Covered Entity, and maintained by Business Associate, <br />in accordance with applicable California law. 'Breach" for these specific purposes means <br />acquisition of unencrypted data by an unauthorized person, or the reasonable belief of such <br />acquisition, that compromises the security, confidentiality, or integrity of "personal <br />information" pertaining to California residents, as those terms are defined in California Civil <br />Code §§ 1798.82(g) and (h), respectively, subject however to the good faith exception to <br />"Breach" set forth in Civil Code § 1798.82(g). If the HIPAA Rules and the California Civil Code <br />provisions cited herein conflict regarding the degree of protection provided for Protected Health <br />Information, Business Associate shall comply with the more restrictive protection requirement. <br />10. Miscellaneous. <br />i) Ambiguity. Any ambiguity in this Agreement shall be resolved to permit the Parties to <br />comply with the HIPAA Rules. <br />ii) Regulatory References. A reference in this Agreement to a section in the HIPAA Rules <br />means the section as in effect or as amended. <br />iii) Notice to Covered Entity/Business Associate. All Notices required hereunder shall be in <br />writing and provided by electronic mail, and will be considered received as of the date of <br />the electronic transmission. Notices to the Covered Entity shall be sent to the daily contact <br />on file with the Business Associate. Notices to the Business Associate shall be sent to the <br />daily contact on file with the Covered Entity. Both Parties agree that they are responsible <br />for ensuring that such Notices are forwarded to the appropriate internal personnel for <br />handling. If additional information is needed to take action related to a Notice, a request <br />must be made in writing outlining all specific requirements and instructions and provided by <br />electronic mail. <br />iv) Governing Law. Interpretation and enforcement of this Agreement shall be governed by and <br />construed in accordance with the laws of the state of California to the extent they are not <br />preempted by the HIPAA Rules or other applicable federal law. <br />v) Severability. The invalidity or unenforceability of any provision of this Agreement shall not <br />affect the validity or enforceability of any other provision of this Agreement, which shall <br />remain in full force and effect. <br />vi) No Third Party Beneficiary. Nothing expressed or implied in this Agreement is intended to <br />confer, nor shall anything herein confer, upon any person other than the parties and the <br />/GaE <br />Document Generated on June 16, 2020 <br />City of Santa Ana Business Associate Agreement <br />Client Initials: <br />Page 13 <br />25A-36 <br />
The URL can be used to link to this page
Your browser does not support the video tag.