Notification to Covered Entity Clause Samples
The "Notification to Covered Entity" clause requires one party, typically a business associate, to promptly inform the covered entity if certain events occur, such as a data breach, unauthorized access, or other incidents involving protected information. In practice, this means the business associate must notify the covered entity within a specified timeframe and provide relevant details about the incident, enabling the covered entity to take appropriate action, such as notifying affected individuals or regulatory authorities. This clause ensures timely communication and helps the covered entity fulfill its legal and regulatory obligations regarding the protection of sensitive information.
Notification to Covered Entity. If, after completing such risk assessment, Business Associate concludes that there was an ARRA Breach, Business Associate shall notify the Covered Entity of the ARRA Breach as soon as reasonably possible, and in all cases within five
Notification to Covered Entity. Agree to notify the designated Privacy Officer of CE of any instances of which it is aware in which the PHI is used or disclosed for a purpose that is not otherwise provided for in this Agreement or for a purpose not expressly permitted by the HIPAA Rules within 72 hours of discovery of the improper use or disclosure. The determination as to whether a use or disclosure for a purpose not provided for by this Agreement is a Breach within the meaning of 45 C.F.R. § 164.402 shall be determined by the CE using the criteria determined in 45 C.F.R. § 164.402 (2)(i)-(iv) after BA notifies CE of the use or disclosure of the PHI;
Notification to Covered Entity. Separate and apart from any Security Incident reporting requirement imposed on Business Associate, Business Associate will be required to provide Covered Entity's Privacy Officer with written notification of any Breach within ten (10) business days of the date Business Associate determines a Breach of Unsecured PHI has occurred.
Notification to Covered Entity. BUSINESS ASSOCIATE will notify COVERED ENTITY of any unauthorized acquisition, access, use, or disclosure (collectively “Breach”) of PHI as soon as practical, but no later than twenty-four (24) hours following discovery of any such use or disclosure of PHI not provided for or allowed by this Agreement. This includes breaches of unsecured PHI and any Security Incident of which BUSINESS ASSOCIATE becomes aware. When BUSINESS ASSOCIATE reports a Breach or Security Incident to COVERED ENTITY, the report shall include (i) identification of each Individual whose PHI has been, or is reasonably believed by BUSINESS ASSOCIATE to have been, accessed, acquired, used, or disclosed; (ii) the nature and extent of the PHI involved in the Security Incident or Breach; (iii) the names, if known, of any individuals or entities that used or received the PHI; and (iv) the steps taken by BUSINESS ASSOCIATE to mitigate any harmful effects resulting from the Security Incident or unauthorized use or disclosure. In the event COVERED ENTITY makes notifications of the reported Breach or Security Incident to individuals, the media, and/or the Secretary, BUSINESS ASSOCIATE will pay all costs and expenses arising out of such notifications.
Notification to Covered Entity. ACO shall, following the discovery of a HIPAA Breach of Unsecured PHI, notify Covered Entity of such HIPAA Breach without unreasonable delay and in no event later than ten (10) days after discovery of the HIPAA Breach. ACO’s notice shall include, to the extent possible, the identification of each Individual whose Unsecured PHI has been, or that ACO reasonably believes has been, acquired, accessed, used or disclosed during the HIPAA Breach and provide as much of the information specified in 45 C.F.R. ,§ 164.404(c) as is available to ACO at the time of its notice, and promptly thereafter as such information may become available to ACO.
Notification to Covered Entity. Agree to notify the designated Privacy BUSINESS ASSOCIATE AGREEMENT