Laserfiche WebLink
<br />U(/~~/~UUJ ~~;~u rnh ~u~ UI~ V,~Y <br /> <br />INSURANCE NOI REQUIRED <br />WORK MAY PROCEED <br />CLERK OF COUNCIL <br />DATE: 7-p>-07 <br /> <br />N-2007 -077 <br /> <br />mPAA BUSINESS ASSOCIATE AGREEMENT <br /> <br />This Agreement is entered into between Employer, acting on behalf of the Plan (the "Plan(s)"), <br />and ProcessWorks, Inc., ("Business Associate"). The parties intend to use this Amendment to satisfy <br />the Business Associate contract requirements in the regulations at 45 CPR l64.502(e) and 164.504(e), <br />issued under the Health Insurance Portability and Accountability Act of 1996 ("HIPAA"). <br /> <br />1. Definitions <br /> <br />Terms used but not otherwise defined in this Agreement shall have the same meaning as those <br />tenus in 45 CPR 160.103 and 164.501. Notwithstanding the above: <br />''Covered Entity" shall mean the group health plan; <br />''Individual'' shall have the same meaning as the teem '~ndividual" in 45 CPR 160.103 and shall <br />include a person who qualifies as a personal representative in accordance with 45 CPR <br />l64.502(g); <br />''Privacy Rule" shall mean the Standards for Privacy of Individually Identifiable Health <br />Information at 45 CPR part 160 and part 164, subparts A and E; <br />"Protected Health Infonnation" shall have the same meaning as the term "protected health <br />information" in 45 CPR 160.103, limited to the information created or received by Business <br />Associate from or on behalf of Covered Entity; <br />"Required By Law" shall have the same meaning as the term "required by law" in 45 CPR <br /> <br />"S~~~~~ ,~~-;~ th~,~ecretary of tpe u.~,:"n,ep~~i;r;'~J~tli~d ~~an ~ices ~~ <br />his de\<e: ,'I(:Ii! { '\ ,(1;'" '\,,'~ . ~ ~~ 'J'fJ; if'. '\1;, ~l~ If .~ '1': :~ <br />"Security~. dden~. ~ sh~1 ha.f$1fi. e. sU... : .' mtllrlri~ias.. . .' . . is~(im'itl'i m~Mjt" 10.;' 5f" '.F.W"l"".... <br />164 3~. '." ft\ ... ~\ I. ~. ~ ~~.. '1f;..- gr-1f :w, rJ. riJ1 ," .~.t.:. ~~ <br />~ . .;iJt: '0;;" ~ 'l';" 1:'~' 1- "- "",.- Y,i.;" \,7'>-'" <br />"Security''ifUle'' siih' m~tthe s;cGnty"stan&rcfs!ia m~eme~tati~id;,dillcati~ns 1f43"Ck <br />;, !, . r~J~ and ~~ l~:. ~ubp~ C; a~d: .. <br />/.J.. \ f'~pt~8'jIsj~~o~~ r.!a~~llSj~lf>isha11 mean the final regulations issued by HHS <br />concemmg standard transactions an,fcode s~ts under the AdmiIristration Simplification <br />provisions ofHIPAA, 45 CPR part 160 and Part 162. <br /> <br />2. Obligations and Activities of Business Associate <br /> <br />(a) Business Associate agrees to not use or further disclose Protected Health Information other than as <br />permitted or required by Section 3.0 of this Agreement, or as Required by Law. <br /> <br />(b) Business Associate agrees to use appropriate safeguards to prevent use or disclosure of the <br />Protected Health Information other than as provided for by this Agreement. Business Associate <br />will implement administrative, physical, and technical safeguards that reasonably and <br />appropriately prOlect the confidentiality, integrity, and availability of electronic Protected Health <br />Information that it creates. receives, maintains, or transmits on behalf of Covered Entity as <br />required by the Security Rule. <br /> <br />(c) Business Associate agrees to mitigate, to the extent practicable, any harmful effect that is known <br />to Business Associate of a use or disclosure of Protected Health Information by Business <br />Associate in violation of the requirements of this Agreement. <br /> <br />(d) Business Associate agrees to report to Covered Entity any use dr disclosure of the Protected <br />Health Information not provided for by this Agreement of which it becomes aware and/or any <br />Security Incident of which it becomes aware. <br /> <br />Page 1 <br />