G/MI-Business-Associate-Agt-CmA/0.md

/Docs/G/MI-Business-Associate-Agt-CmA/0.md
Source views: Source JSON(ish) on GitHub (VSCode) Doc views: Document (&k=2.2.r00t): Visual Print Technical: OpenParameters Xray

BUSINESS ASSOCIATE AGREEMENT
For purposes of this Agreement:

“Breach” shall have the meaning given to such term in 45 C.F.R. § 164.402.
“Designated Record Set” shall have the meaning given to such term in 45 C.F.R. § 164.501.
“Electronic Protected Health Information” or “ePHI” shall mean PHI transmitted by or maintained in Electronic Media, as defined in 45 C.F.R. 160.103.
“Individual” shall have the same meaning given to such term in 45 C.F.R. § 160.103 and shall include a person who qualifies as a personal representative in accordance with 45 C.F.R. § 164.502(g).
“Protected Health Information” or “PHI” shall have the meaning given to such term in 45 C.F.R. § 160.103, limited to the information created, received, maintained or transmitted by Business Associate from or on behalf of Covered Entity. PHI includes, without limitation, ePHI.
“Privacy Rule” shall mean the Standards for Privacy of Individually Identifiable Health Information published in 45 C.F.R. Parts 160 and 164, Subparts A and E.
“Required by Law” shall have the meaning given to such term in 45 C.F.R. § 164.103.
“Secretary” shall mean the Secretary of the Department of Health and Human Services or his or her designee.
“Security Incident” shall have the meaning given to such term under the Security Rule at 45 C.F.R. § 164.304.
“Security Rule” shall mean the Security Standards at 45 C.F.R. Part 160 and Part 164, Subparts A and E.
“Subcontractor” shall have the meaning given to such term in45 C.F.R. § 160.103.
“Unsecured protected health information” shall have the meaning given to such term in 45 C.F.R. § 164.402.