Individual Access to PHI Clause Samples

The "Individual Access to PHI" clause grants individuals the right to access their own Protected Health Information (PHI) maintained by a covered entity or business associate. In practice, this means that upon request, individuals can review or obtain copies of their health records, billing information, or other personal health data held by healthcare providers or insurers, subject to certain exceptions and procedural requirements. This clause ensures transparency and empowers individuals to monitor, verify, and manage their own health information, addressing concerns about privacy and control over personal data.
Individual Access to PHI. Business Associate agrees to make available PHI in a Designated Record Set to an Individual or Individual’s designee, as necessary to satisfy Covered Entity’s obligations under 45 C.F.R. section 164.524. Business Associate shall do so solely by way of coordination with Covered Entity, and in the time and manner designated by Covered Entity.
View SourceView Similar (22)
Individual Access to PHI. If an Individual requests direct access to PHI in possession of the Business Associate which is maintained under its contract with DES, prior to disclosure of any PHI the Business Associate shall first consult in writing with the DES Covered Component's Privacy Officer or the DES Chief Privacy Officer. The Business Associate shall grant or deny access pursuant to written instructions from the DES Covered Component which are consistent with 45 C.F.R. §164.524 or other applicable law. Within 5 business days, the Business Associate shall notify the DES Covered Component's Privacy Officer or the DES Chief Privacy Officer in writing of the actions it has taken pursuant to the request for access and DES Covered Component's authorization.
View SourceView Similar (5)
Individual Access to PHI. If an Individual requests direct access to PHI in possession of the Business Associate which is maintained under its contract with ADCS, the Business Associate will identify the records maintained, collected, used or disseminated by their employees that will become the “Designated Record Set” and shall be considered the only protected health information records that individuals shall have the right to request access to under HIPAA.
View SourceView Similar (2)
Individual Access to PHI. To the extent NexHealth maintains PHI in a Designated Record Set(s), NexHealth will make available PHI in accordance with 45 C.F.R. § 164.524. To the extent applicable, NexHealth may also make PHI available to an Individual in connection with any of NexHealth’s individual access services.
View Source
Individual Access to PHI. The parties acknowledge that the services provided through the do not entail the creation, procurement, maintenance, administration or operation of Protected Health Information in Designated Record Sets by Wildcard Dental or by any other party on behalf of or for Client, that this Services BAA does not require Wildcard Dental to do so, and that Wildcard Dental has not done so and does not intend to do so. Wildcard Dental therefore has no obligation or ability to provide Individuals or the Client with access to or copies of Designated Record Sets as required by the Privacy Rule, or to amend them as required by the Privacy Rule. Any request for access to, copies or amendment of Designated Record sets of the Client therefore must be directed to and fulfilled by or at the direction of the Client.
View Source
Individual Access to PHI. If an Individual requests direct access to PHI in possession of the Business Associate which is maintained under its contract with DCS, the Business Associate will identify the records maintained, collected, used or disseminated by their employees that will become the “Designated Record Set” and shall be considered the only protected health information records that individuals shall have the right to request access to under HIPAA. The Business Associate will provide the records within 30 days. If the Business Associate denies the request, communication in writing to the DCS Privacy Officer will occur prior to the denial to the individual is made.
View Source
Individual Access to PHI. Business Associate agrees to provide individuals with access to their PHI in 5 a Designated Record Set as requested by NSMHA or as otherwise required to meet requirements of 6 HIPAA privacy standards including 45 CFR 164.524. 7
View Source

Related to Individual Access to PHI

  • Access to PHI Business Associate shall provide access to PHI in a Designated Record Set to Covered Entity or as directed by Covered Entity to an Individual to meet the requirements under 45 CFR § 164.524. Business Associate shall provide such access in the time and manner reasonably designated by Covered Entity. Within three (3) business days, Business Associate shall forward to Covered Entity for handling any request for access to PHI that Business Associate directly receives from an Individual.

  • Physical Access Control Unauthorized persons are prevented from gaining physical access to premises, buildings or rooms where data processing systems that process and/or use Personal Data are located.

  • System Access Control Data processing systems used to provide the Cloud Service must be prevented from being used without authorization.

  • System Access CUSTOMER agrees to provide to PROVIDER, at CUSTOMER’S expense, necessary access to the mainframe computer and related information technology systems (the “System”) on which CUSTOMER data is processed during the times (the “Service Hours”) specified in the PSAs, subject to reasonable downtime for utility outages, maintenance, performance difficulties and the like. In the event of a change in the Service Hours, CUSTOMER will provide PROVIDER with at least fifteen (15) calendar days written notice of such change.