My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
CONEXIS
Clerk
>
Contracts / Agreements
>
C
>
CONEXIS
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
2/10/2016 7:20:11 AM
Creation date
1/24/2014 2:30:18 PM
Metadata
Fields
Template:
Contracts
Company Name
CONEXIS
Contract #
N-2014-003
Agency
Personnel Services
Expiration Date
12/31/2016
Insurance Exp Date
1/1/2016
Destruction Year
2012
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
19
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
N. <br />CONEXIS <br />human rosovrc viuf <br />"Security Incident" will have the same meaning as the term "security incident" in 45 CFR § 164.304 <br />"Security Rule" will mean the Security Standards for the Protection of Electronic Protected Health Information in 45 CFR <br />§ 164.302 at seq. <br />"Unsecured Protected Health Information" or "Unsecured PHI" will have the same meaning as the term "Unsecured <br />Protected Health Information" in 45 C.F.R. 164.402. <br />II. Confidentiality <br />At all times, both during and after the termination of its relationship with the Employer for any reason, CONEXIS will not <br />use or disclose PHI in any manner whatsoever, except as otherwise permitted by this Addendum. <br />III. Permitted Uses and Disclosures of Business Associate. <br />(a) Except as otherwise limited in this Addendum, CONEXIS may use or disclose PHI, provided that such use or <br />disclosure of PHI would not violate the Privacy Rule, as follows: (a) as permitted or required in this Addendum and in the <br />Agreement; (b) as otherwise permitted by the Privacy Rule; (c) as Required by Law; (d) for the proper management and <br />administration of CONEXIS; (e) to fulfill any present or future legal responsibilities of CONEXIS; (f) for Data Aggregation <br />services to the Plan (as defined in 45 CFR § 164.501); or (g) any use and disclosure of PHI that has been de -identified in <br />accordance with 45 CFR § 164.514. <br />(b) CONEXIS agrees to document any disclosures of PHI and the information related to such disclosures to respond <br />to an accounting of disclosures of PHI if requested by the Plan in accordance with 45 CFR §164.528, and to provide such <br />documentation to the Plan as it may request from time to time. <br />(c) In the event that CONEXIS maintains PHI in a Designated Record Set, CONEXIS agrees to provide access to <br />such PHI that it maintains in a Designated Record Set to the Individual to whom the PHI relates in accordance with 45 <br />CFR § 164.524. Furthermore, at the reasonable request of the Plan, CONEXIS agrees to make amendments to PHI that <br />it maintains in a Designated Record Set as directed by the Plan and to reasonably incorporate any amendments to PHI in <br />accordance with 45 CFR § 164.526. <br />(d) CONEXIS may disclose PHI to its agents or subcontractors with a bona fide need to know such PHI, but only if, <br />prior to such disclosure, such agents or subcontractors provide reasonable assurances that they will agree to substantially <br />the same restrictions and conditions that apply to CONEXIS with respect to such PHI, including electronic PHI. <br />(e) CONEXIS may disclose the PHI revealed to it by the Plan if and to the extent that such disclosure is required by <br />law or court order or as otherwise permitted by law. Further, CONEXIS agrees to make its internal practices, books, and <br />records, including policies and procedures, relating to the use and disclosure of PHI received from, or created or received <br />by CONEXIS on behalf of the Plan available to the Secretary, as requested by the Plan or designated by the Secretary, <br />for purposes of the Secretary determining the Plan's compliance with the Privacy Rule. <br />(f) In accordance with 45 CFR §164.520, and to the extent that such a limitation may affect the Business <br />Associate's use or disclosure of PHI, Employer, acting on behalf of the Plan, agrees to notify CONEXIS of any <br />limitation(s) in the notice of privacy practices required by the Privacy Rules, including, without limitation, any changes in or <br />revocation of permission by an Individual to use or disclose PHI. Employer, acting on behalf of the Plan, also agrees to <br />notify CONEXIS of any restriction to the use or disclosure of PHI that Employer has agreed to in accordance with 45 CFR <br />§ 164.522, to the extent that such restriction may affect CONEXIS' use or disclosure of PHI. Employer acknowledges <br />and agrees that CONEXIS is not bound by any such restrictions that impact CONEXIS' use or disclosure of PHI to the <br />extent such restrictions are not otherwise required by the HIPAA Privacy Rules and CONEXIS has not consented to such <br />restrictions in advance. CONEXIS agrees not to unreasonably withhold consent. <br />(g) CONEXIS agrees to take steps to implement safeguards that reasonably and appropriately protect the <br />confidentiality, integrity and availability of electronic PHI maintained by CONEXIS on behalf of the Plan. CONEXIS will <br />report to the Plan's designated representative any use or disclosure of PHI otherwise than as provided by this <br />Agreement, including any Security Incident, as soon as reasonably possible of becoming aware of such use or <br />disclosure. As of the Compliance Date of 42 U.S.C. § 17931 and the regulations issued thereunder, CONEXIS agrees to <br />comply with the Security Rule requirements set forth in 45 C.F.R. §§ 164.308, 164.310, 164.312, and 164.316.ln addition, <br />CONEXIS hereby agrees that it shall report to the Plan's designated representative, without unreasonable delay, but not <br />CONEXIS Initials I ClienInitials <br />Direct Client Services Agreement 11 V9.0-040111 <br />
The URL can be used to link to this page
Your browser does not support the video tag.