Covered Entity Obligations Clause Samples

Covered Entity Obligations. 3.1 If deemed applicable by Covered Entity, Covered Entity shall: 3.1.1 provide Business Associate a copy of its Notice of Privacy Practices (“Notice”) in accordance with 45 C.F.R. 164.520 (“Notice of Privacy Practices”) as well as any changes to such Notice; 3.1.2 provide Business Associate with any changes in, or revocation of, authorizations by Individuals relating to the use and/or disclosure of PHI, if such changes affect Business Associate’s permitted or required uses and/or disclosures; 3.1.3 notify Business Associate of any restriction to the use and/or disclosure of PHI to which Covered Entity has agreed in accordance with 45 C.F.R. 164.522, to the extent that such restriction may affect Business Associate’s use or disclosure of protected health information; 3.1.4 notify Business Associate of any amendment to PHI to which Covered Entity has agreed that affects a Designated Record Set maintained by Business Associate; and 3.1.5 if Business Associate maintains a Designated Record Set, provide Business Associate with a copy of Covered Entity’s policies and procedures related to an Individual’s right to: access PHI; request an amendment to PHI; request confidential communications of PHI; or request an accounting of disclosures of PHI.

Covered Entity Obligations. Covered Entity shall notify Business Associate of: 6.1. Any limitations in Covered Entity’s notice of privacy practices to the extent that such limitation may affect Business Associate’s Use or Disclosure of PHI; 6.2. Any changes in, or revocation of, permission by the individual to Use or Disclose PHI, to the extent that such changes may affect Business Associate’s Use or Disclosure of PHI; and 6.3. Any restriction to the Use or Disclosure of PHI that Covered Entity has agreed to provide to the individual, to the extent that such restriction may affect the Business Associate’s Use or Disclosure of PHI.

Covered Entity Obligations. To the extent that Business Associate is to carry out any of Covered Entity’s obligations that are regulated by HIPAA, Business Associate shall comply with the HIPAA requirements that apply to the Covered Entity in the performance of such obligation.

Covered Entity Obligations. To the extent that Contractor is to carry out one or more of Covered Entity obligations under the Privacy Rule, Contractor shall comply with the requirements of the Privacy Rule that apply to a Covered Entity in the performance of the obligations.

Covered Entity Obligations. With regard to the use and/or disclosure of PHI by the Business Associate, the Covered Entity hereby agrees to: 2.4.1 Provide the Business Associate a copy of the notice of privacy practices that the Covered Entity provides to Individuals pursuant to 45 C.F.R. § 164.520 by attaching it to this Addendum (Attachment A), and inform the Business Associate of any changes in the form of the notice; 2.4.2 Inform the Business Associate of any changes in, or withdrawal of, the authorization provided to the Covered Entity by Individuals whose PHI may be used and/or disclosed by Business Associate under the Underlying Agreement pursuant to 45 C.F.R. § 164.508; and 2.4.3 Notify the Business Associate, in writing and in a timely manner, of any restrictions on the use and/or disclosure of PHI agreed to by the Covered Entity in accordance with 45

Covered Entity Obligations. 4.1 Client shall not request Outcomes to use or disclose Protected Health Information in any manner that would not be permissible under the Privacy Rule if done by Client. 4.2 Client shall notify Business Associate of any restriction to the use or disclosure of PHI that Client has agreed to in accordance with 45 C.F.R. § 164.522, or as mandated pursuant to Section 13405(c) of HITECH, to the extent that such restriction may affect Business Associate’s use or disclosure of PHI.

Covered Entity Obligations. A. Owner shall notify IAC of any limitation(s) in the notice of privacy practices of Owner under 45 CFR 164.520, to the extent that such limitation may affect IAC’s use or disclosure of protected health information. B. Owner shall notify IAC of any changes in, or revocation of, the permission by an individual to use or disclose his or her protected health information, to the extent that such changes may affect IAC’s use or disclosure of protected health information. C. Owner shall notify IAC of any restriction on the use or disclosure of protected health information that Owner has agreed to or is required to abide by under 45 CFR 164.522, to the extent that such restriction may affect IAC’s use or disclosure of protected health information.

Covered Entity Obligations. 4.1 Covered Entity will notify Business Associate of any limitation(s) in the Notice of Privacy Practices of Covered Entity, to the extent that such limitation may affect Business Associate’s use or disclosure of PHI. 4.2 Covered Entity will notify Business Associate of any restriction on the use or disclosure of PHI that Covered Entity has agreed to or is required to abide by under the HIPAA Privacy Rule, to the extent that such restriction may affect Business Associate’s use or disclosure of PHI. 4.3 Covered Entity will not request Business Associate to use or disclose PHI in any manner that would not be permissible under the HIPAA Rules if done by Covered Entity, except for use or disclosure of PHI for management and administration and legal responsibilities of Business Associate. 4.4 Covered Entity shall only disclose to Business Associate the minimum amount of PHI necessary to accomplish the provision of the Services, and shall not request Business Associate to use or further disclose PHI other than as minimally necessary to perform the Services. Covered Entity shall communicate its minimum necessary policies and procedures in writing to Business Associate prior to disclosing any PHI to Business Associate, and shall promptly notify Business Associate in writing of any changes to such policies and procedures. 4.5 Notwithstanding any permissive disclosure of Sensitive Data to Business Associate which might otherwise be exempt from Section 4.4, above, Covered Entity shall never disclose Sensitive Data to Business Associate, except as expressly agreed in writing, which writing must document and articulate an agreed necessity and purpose for sharing of Sensitive Data with Business Associate or any other entities, including other health care providers, to whom such Sensitive Data is to be disclosed.

Covered Entity Obligations i. To the extent that Covered Entity has agreed to further limitations on uses and disclosures of PHI, Covered Entity shall notify Business Associate of such additional restrictions, including any limitation(s) in Covered Entity’s notice of privacy practices that are produced in accordance with 45 C.F.R. § 164.520 (as well as any changes to that notice), to the extent that such limitation(s) may affect Business Associate’s use or disclosure of PHI. ii. Covered Entity shall promptly provide Business Associate with any changes in, or revocation of, permission by an Individual to use or disclose PHI, to the extent that such changes affect Business Associate’s use or disclosure of PHI. iii. Covered Entity shall promptly notify Business Associate of any restriction to the use or disclosure of PHI that Covered Entity has agreed to in accordance with 45 C.F.R. § 164.522, to the extent that such restriction may affect Business Associate’s use or disclosure of PHI. iv. Covered Entity shall provide Business Associate only the Minimum Necessary amount of PHI for Business Associate to accomplish the intended purpose of the disclosure.