My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Agreement CPWI Prevention Services
>
Meetings
>
2019
>
11. November
>
2019-11-05 10:00 AM - Commissioners' Agenda
>
Agreement CPWI Prevention Services
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
12/3/2019 9:19:52 AM
Creation date
12/3/2019 9:18:36 AM
Metadata
Fields
Template:
Meeting
Date
11/5/2019
Meeting title
Commissioners' Agenda
Location
Commissioners' Auditorium
Address
205 West 5th Room 109 - Ellensburg
Meeting type
Regular
Meeting document type
Fully Executed Version
Supplemental fields
Alpha Order
h
Item
Request to Approve an Interagency Agreement between HCA and Kittitas County for CWPI Prevention Services
Order
8
Placement
Consent Agenda
Row ID
57663
Type
Agreement
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
92
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
k. "Protected Health Information (PHI)" means individually identifiable health information <br />created, received, maintained or transmitted by Business Associate on behalf of a <br />health care component of the Covered Entity that relates to the provision of health care <br />to an Individual; the past, present, or future physical or mental health or condition of an <br />Individual; or the past, present, or future payment for provision of health care to an <br />Individual. 45 CFR 160.103. PHI includes demographic information that identifies the <br />Individual or about which there is reasonable basis to believe can be used to identify <br />the Individual. 45 CFR 160.103. PHI is information transmitted or held in any form or <br />medium and includes EPHI. 45 CFR 160.103. PHI does not include education records <br />covered by the Family Educational Rights and Privacy Act, as amended, 20 USCA <br />1232g(a)(4)(B)(iv) or employment records held by a Covered Entity in its role as <br />employer. <br />I. "Security Incident" means the attempted or successful unauthorized access, use, <br />disclosure, modification or destruction of information or interference with system <br />operations in an information system. <br />m. "Subcontractor'' as used in this HI PAA Compliance section of the Contract (in addition <br />to its definition in the General Terms and Conditions) means a Business Associate that <br />creates, receives, maintains, or transmits Protected Health Information on behalf of <br />another Business Associate. <br />n. "Use" includes the sharing, employment, application, utilization, examination, or <br />analysis, of PHI within an entity that maintains such information. <br />2. Compliance. Business Associate shall perform all Contract duties, activities and tasks in <br />compliance with HIPAA, the HIPAA Rules, and all attendant regulations as promulgated by <br />the U.S. Department of Health and Human Services, Office of Civil Rights. <br />3. Use and Disclosure of PHI. Business Associate is limited to the following permitted and <br />required uses or disclosures of PHI: <br />a. Duty to Protect PHI. Business Associate shall protect PHI from, and shall use <br />appropriate safeguards, and comply with Subpart C of 45 CFR Part 164 (Security <br />Standards for the Protection of Electronic Protected Health Information) with respect to <br />EPHI, to prevent the unauthorized Use or disclosure of PHI other than as provided for <br />in this Contract or as required by law, for as long as the PHI is within its possession and <br />control, even after the termination or expiration of this Contract. <br />b. Minimum Necessary Standard. Business Associate shall apply the HIPAA Minimum <br />Necessary standard to any Use or disclosure of PHI necessary to achieve the purposes <br />of this Contract. See 45 CFR 164.514 (d)(2) through (d)(5). <br />c. Disclosure as Part of the Provision of Services. Business Associate shall only Use or <br />disclose PHI as necessary to perform the services specified in this Contract or as <br />required by law, and shall not Use or disclose such PHI in any manner that would <br />violate Subpart E of 45 CFR Part 164 (Privacy of Individually Identifiable Health <br />Information) if done by Covered Entity, except for the specific uses and disclosures set <br />forth below. <br />Washington State <br />Health Care Authority Page 54 of90 HCA Contract No. K3924
The URL can be used to link to this page
Your browser does not support the video tag.