Laserfiche WebLink
(OMB) Circular or regulation; and <br />(6) Comply with the Omnibus Crime Control and Safe Streets Act of 1968; Title VI of the Civil <br />Rights Act of 1964; Section 504 of the Rehabilitation Act of 1973; Title II of the Americans with <br />Disabilities Act of 1990; Title IX of the Education Amendments of 1972; The Age Discrimination <br />Act of 1975; and The Department of Justice Non -Discrimination Regulations at 28 CFR Part 42, <br />Subparts C, D, E, and G, and 28 CFR Parts 35 and 39. (Go to www.ojp.tisdoi.gov/ocrl for <br />additional information and access to the aforementioned Federal laws and regulations.) <br />b. Single Audit Act Compliance. If the Contractor is a subrecipient under a Program Agreement and <br />expends $750,000 or more in federal awards from any and/or all sources in any fiscal year, the <br />Contractor shall procure and pay for a single audit or a program -specific audit for that fiscal year. <br />Upon completion of each audit, the Contractor shall: <br />(1) Submit to the DSHS contact person, listed on the first page of the Program Agreement, the <br />data collection form and reporting package specified in 2 CFR Part 200, Subpart F, reports <br />required by the program -specific audit guide (if applicable), and a copy of any management <br />letters issued by the auditor; <br />(2) Follow-up and develop corrective action for all audit findings, in accordance with 2 CFR Part <br />200, Subpart F; prepare a "Summary Schedule of Prior Audit Findings" reporting the status of all <br />audit findings included in the prior audit's schedule of findings and questioned costs. <br />HIPAA Compliance <br />Preamble: This section of the Contract is the Business Associate Agreement as required by HIPAA. <br />14. Definitions. <br />a. "Business Associate," as used in this Contract, means the "Contractor" and generally has the same <br />meaning as the term "business associate" at 45 CFR 160.103. Any reference to Business <br />Associate in this Contract includes Business Associate's employees, agents, officers, <br />Subcontractors, third party contractors, volunteers, or directors. <br />b. "Business Associate Agreement" means this HIPAA Compliance section of the Contract and <br />includes the Business Associate provisions required by the U.S. Department of Health and Human <br />Services, Office for Civil Rights. <br />c. "Breach" means the acquisition, access, use, or disclosure of Protected Health Information in a <br />manner not permitted under the HIPAA Privacy Rule which compromises the security or privacy of <br />the Protected Health Information, with the exclusions and exceptions listed in 45 CFR 164.402. <br />d. "Covered Entity" means DSHS, a Covered Entity as defined at 45 CFR 160.103, in its conduct of <br />covered functions by its health care components. <br />e. "Designated Record Set" means a group of records maintained by or for a Covered Entity, that is: <br />the medical and billing records about Individuals maintained by or for a covered health care <br />provider; the enrollment, payment, claims adjudication, and case or medical management record <br />systems maintained by or for a health plan; or Used in whole or part by or for the Covered Entity to <br />make decisions about Individuals. <br />f. "Electronic Protected Health Information (EPHI)" means Protected Health Information that is <br />transmitted by electronic media or maintained in any medium described in the definition of <br />electronic media at 45 CFR 160.103. <br />DSHS Central Contract Services <br />1644CS Prevention Services - County (6-26-2015) Page 24 <br />