Agreement Definitions. Authorized Representative means an individual who acts on behalf of an applicant or beneficiary and meets the requirements set forth at 42 CFR 435.923. Breach means the compromise, unauthorized disclosure, unauthorized acquisition, unauthorized access, loss of control, or any similar terms or phrases that refer to situations where persons other than authorized users, for an other than authorized purpose have access to personally identifiable information whether physical or electronic. Federal Tax Information or FTI or Return information means information as defined under Section 6103(b)(2)(A) of the Internal Revenue Code and in Internal Revenue Service (IRS) Publication 1075, as any information collected or generated by the IRS with regard to any person’s liability or possible liability under the Internal Revenue Code. It includes, but is not limited to, information, including the tax return, which IRS obtained from any source or developed through any means that relates to the potential liability of any person under the Internal Revenue Code for any tax, penalty, interest, fine, forfeiture, other imposition or offense; information extracted from a return including names of dependents or the location of business, taxpayer’s name, address and identification number, information collected by the IRS about any person’s tax affairs whether a return was filed, under examination, or subject to other investigation or processing, including collection activities; and information contained on transcripts of accounts. Incident means a violation or imminent threat of violation of security policies, acceptable use policies, or standard security practices. This includes attempts (including both failed or successful) to gain unauthorized access to a system or its data, unwanted disruption, the unauthorized use of a system for the processing or storage of data; and change to system hardware, firmware, or software characteristics without the owner’s knowledge, instruction, or consent. Incidents include the loss of data through theft or device misplacement, loss or misplacement of hardcopy documents, and misrouting of mail, all of which may have the potential to put the data at risk of unauthorized access, use, disclosure, modification or destruction. Certain adverse events (e.g., floods, fires, electrical outages, excessive heat, etc.) can cause system crashes but are not considered PII or Personally Identifiable Information refers to information about an individual, (1) that can be used to distinguish or trace an individual’s identity, such as name, social security number, date and place of birth, mother’s maiden name, or biometric records; and (2) any other information that is linked or linkable to an individual, such as medical, educational, financial, and employment information. Examples of PII include, but are not limited to: Name, such as full name, maiden name, mother’s maiden name, or alias Personal identification number, such as social security number (SSN), passport number, driver’s license number, taxpayer identification number, or financial account or credit card number Address information, such as street address or email address Personal characteristics, including photographic image (especially of face or other identifying characteristic), fingerprints, handwriting, or other biometric data (e.g., retina scan, voice signature, facial geometry) Information about an individual that is linked or linkable to one of the above (e.g., date of birth, place of birth, race, religion, weight, activities, geographical indicators, employment information, medical information, education information, financial information). PII includes social security numbers and social security records. (1) is created or received by a health care provider, health plan such as DMAHS or a managed care organization, or health care clearinghouse; and (2) relates to the past, present, or future physical or mental health or condition of an individual; the provision of health care to an individual; or the past, present, or future payment for the provision of health care to an individual.
Appears in 1 contract
Sources: Memorandum of Understanding
Agreement Definitions. Authorized Representative means an individual who acts on behalf of an applicant or beneficiary and meets the requirements set forth at 42 CFR 435.923. Breach means the compromise, unauthorized disclosure, unauthorized acquisition, unauthorized access, loss of control, or any similar terms or phrases that refer to situations where persons other than authorized users, for an other than authorized purpose have access to personally identifiable information whether physical or electronic. Federal Tax Information or FTI or Return information means information as defined under Section 6103(b)(2)(A) of the Internal Revenue Code and in Internal Revenue Service (IRS) Publication 1075, as any information collected or generated by the IRS with regard to any person’s liability or possible liability under the Internal Revenue Code. It includes, but is not limited to, information, including the tax return, which IRS obtained from any source or developed through any means that relates to the potential liability of any person under the Internal Revenue Code for any tax, penalty, interest, fine, forfeiture, other imposition or offense; information extracted from a return including names of dependents or the location of business, taxpayer’s name, address and identification number, information collected by the IRS about any person’s tax affairs whether a return was filed, under examination, or subject to other investigation or processing, including collection activities; and information contained on transcripts of accounts. Incident means a violation or imminent threat of violation of security policies, acceptable use policies, or standard security practices. This includes attempts (including both failed or successful) to gain unauthorized access to a system or its data, unwanted disruption, the unauthorized use of a system for the processing or storage of data; and change to system hardware, firmware, or software characteristics without the owner’s knowledge, instruction, or consent. Incidents include the loss of data through theft or device misplacement, loss or misplacement of hardcopy documents, and misrouting of mail, all of which may have the potential to put the data at risk of unauthorized access, use, disclosure, modification or destruction. Certain adverse events (e.g., floods, fires, electrical outages, excessive heat, etc.) can cause system crashes but are not considered Incidents. An Incident becomes a Breach when there is loss of control, compromise, unauthorized disclosure, unauthorized acquisition, unauthorized access or any similar term referring to situations where persons other than authorized users and for an other than authorized purpose have access to personally identifiable information or personal health information, whether physical or electronic. PII or Personally Identifiable Information refers to information about an individual,
(1) that can be used to distinguish or trace an individual’s identity, such as name, social security number, date and place of birth, mother’s maiden name, or biometric records; and
(2) any other information that is linked or linkable to an individual, such as medical, educational, financial, and employment information. Examples of PII include, but are not limited to: Name, such as full name, maiden name, mother’s maiden name, or alias Personal identification number, such as social security number (SSN), passport number, driver’s license number, taxpayer identification number, or financial account or credit card number Address information, such as street address or email address Personal characteristics, including photographic image (especially of face or other identifying characteristic), fingerprints, handwriting, or other biometric data (e.g., retina scan, voice signature, facial geometry) Information about an individual that is linked or linkable to one of the above (e.g., date of birth, place of birth, race, religion, weight, activities, geographical indicators, employment information, medical information, education information, financial information). PII includes social security numbers and social security records.. Protected Health Information or PHI means any information, including genetic information, whether oral or recorded in any form or medium, that:
(1) is created or received by a health care provider, health plan such as DMAHS or a managed care organization, or health care clearinghouse; and
(2) relates to the past, present, or future physical or mental health or condition of an individual; the provision of health care to an individual; or the past, present, or future payment for the provision of health care to an individual.
Appears in 1 contract
Sources: Memorandum of Understanding
Agreement Definitions. Authorized Representative means an individual who acts on behalf of an applicant or beneficiary and meets the requirements set forth at 42 CFR 435.923. Breach means the compromise, unauthorized disclosure, unauthorized acquisition, unauthorized access, loss of control, or any similar terms or phrases that refer to situations where persons other than authorized users, for an other than authorized purpose have access to personally identifiable information whether physical or electronic. Federal Tax Information or FTI or Return information means information as defined under Section 6103(b)(2)(A) of the Internal Revenue Code and in Internal Revenue Service (IRS) Publication 1075, as any information collected or generated by the IRS with regard to any person’s liability or possible liability under the Internal Revenue Code. It includes, but is not limited to, information, including the tax return, which IRS obtained from any source or developed through any means that relates to the potential liability of any person under the Internal Revenue Code for any tax, penalty, interest, fine, forfeiture, other imposition or offense; information extracted from a return including names of dependents or the location of business, taxpayer’s name, address and identification number, information collected by the IRS about any person’s tax affairs whether a return was filed, under examination, or subject to other investigation or processing, including collection activities; and information contained on transcripts of accounts. Incident means a violation or imminent threat of violation of security policies, acceptable use policies, or standard security practices. This includes attempts (including both failed or successful) to gain unauthorized access to a system or its data, unwanted disruption, the unauthorized use of a system for the processing or storage of data; and change to system hardware, firmware, or software characteristics without the owner’s knowledge, instruction, or consent. Incidents include the loss of data through theft or device misplacement, loss or misplacement of hardcopy documents, and misrouting of misroutingof mail, all of which may have the potential to put the data at risk of unauthorized access, use, disclosure, modification or destruction. Certain adverse events (e.g., floods, fires, electrical outages, excessive heat, etc.) can cause system crashes but are not considered PII or Personally Identifiable Information refers to information about an individual,
(1) that can be used to distinguish or trace an individual’s identity, such as name, social security number, date and place of birth, mother’s maiden name, or biometric records; and
(2) any other information that is linked or linkable to an individual, such as medical, educational, financial, and employment information. Examples of PII include, but are not limited to: Name, such as full name, maiden name, mother’s maiden name, or alias Personal identification number, such as social security number (SSN), passport number, driver’s license number, taxpayer identification number, or financial account or credit card number Address information, such as street address or email address Personal characteristics, including photographic image (especially of face or other identifying characteristic), fingerprints, handwriting, or other biometric data (e.g., retina scan, voice signature, facial geometry) Information about an individual that is linked or linkable to one of the above (e.g., date of birth, place of birth, race, religion, weight, activities, geographical indicators, employment information, medical information, education information, financial information). PII includes social security numbers and social security records.
(1) is created or received by a health care provider, health plan such as DMAHS or a managed care organization, or health care clearinghouse; and
(2) relates to the past, present, or future physical or mental health or condition of an individual; the provision of health care to an individual; or the past, present, or future payment for the provision of health care to an individual.considered
Appears in 1 contract
Sources: Memorandum of Understanding
Agreement Definitions. Authorized Representative means an individual who acts on behalf of an applicant or beneficiary and meets the requirements set forth at 42 CFR 435.923. Breach means the compromise, unauthorized disclosure, unauthorized acquisition, unauthorized access, loss of control, or any similar terms or phrases that refer to situations where persons other than authorized users, for an other than authorized purpose have access to personally identifiable information whether physical or electronic. Federal Tax Information or FTI or Return information means information as defined under Section 6103(b)(2)(A) of the Internal Revenue Code and in Internal Revenue Service (IRS) Publication 1075, as any information collected or generated by the IRS with regard to any person’s liability or possible liability under the Internal Revenue Code. It includes, but is not limited to, information, including the tax return, which IRS obtained from any source or developed through any means that relates to the potential liability of any person under the Internal Revenue Code for any tax, penalty, interest, fine, forfeiture, other imposition or offense; information extracted from a return including names of dependents or the location of business, taxpayer’s name, address and identification number, information collected by the IRS about any person’s tax affairs whether a return was filed, under examination, or subject to other investigation or processing, including collection activities; and information contained on transcripts of accounts. Incident means a violation or imminent threat of violation of security policies, acceptable use policies, or standard security practices. This includes attempts (including both failed or successful) to gain unauthorized access to a system or its data, unwanted disruption, the unauthorized use of a system for the processing or storage of data; and change to system hardware, firmware, or software characteristics without the owner’s knowledge, instruction, or consent. Incidents include the loss of data through theft or device misplacement, loss or misplacement of hardcopy documents, and misrouting of mail, all of which may have the potential to put the data at risk of unauthorized access, use, disclosure, modification or destruction. Certain adverse events (e.g., floods, fires, electrical outages, excessive heat, etc.) can cause system crashes but are not considered PII or Personally Identifiable Information refers to information about an individual,
(1) that can be used to distinguish or trace an individual’s identity, such as name, social security number, date and place of birth, mother’s maiden name, or biometric records; and
(2) any other information that is linked or linkable to an individual, such as medical, educational, financial, and employment information. Examples of PII include, but are not limited to: Name, such as full name, maiden name, mother’s maiden name, or alias Personal identification number, such as social security number (SSN), passport number, driver’s license number, taxpayer identification number, or financial account or credit card number Address information, such as street address or email address Personal characteristics, including photographic image (especially of face or other identifying characteristic), fingerprints, handwriting, or other biometric data (e.g., retina scan, voice signature, facial geometry) Information about an individual that is linked or linkable to one of the above (e.g., date of birth, place of birth, race, religion, weight, activities, geographical indicators, employment information, medical information, education information, financial information). PII includes social security numbers and social security records.
(1) is created or received by a health care provider, health plan such as DMAHS or a managed care organization, or health care clearinghouse; and
(2) relates to the past, present, or future physical or mental health or condition of an individual; the provision of health care to an individual; or the past, present, or future payment for the provision of health care to an individual.considered
Appears in 1 contract
Sources: Memorandum of Understanding