My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
2023-047
CBCC
>
Official Documents
>
2020's
>
2023
>
2023-047
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
3/9/2023 12:21:44 PM
Creation date
3/2/2023 3:08:23 PM
Metadata
Fields
Template:
Official Documents
Official Document Type
Agreement
Approved Date
02/21/2023
Control Number
2023-047
Agenda Item Number
12.D.2.
Entity Name
Everside Health, LLC
Subject
Everside Client Agreement for Employee Clinic
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
40
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
such third party to immediately notify Everside of any breaches of confidentiality of the PHI, <br />to the extent it has obtained knowledge of such breach. <br />c. Prohibited Uses and Disclosures. Business Associate shall not use or disclose PHI to a health <br />plan for payment or health care operations purposes if the patient has requested this special <br />restriction, and has paid out of pocket in full for the health care item or service to which the <br />PHI solely relates. Everside shall not directly or indirectly receive remuneration in exchange <br />for PHI, except with the prior written consent or authorization of the Individual; however, this <br />prohibition shall not affect payment by Client to Everside for services pursuant to the <br />Agreement. Business Associate shall not use or disclose Genetic Information for underwriting <br />purposes in violation of HIPAA. <br />d. Appropriate Safeguards. Business Associate shall develop, implement, maintain, and use <br />appropriate safeguards as are necessary to prevent the use or disclosure of the PHI other than <br />as permitted by the Agreement or this BAA, and to implement administrative, physical and <br />technical safeguards as required by the Privacy and Security Rule in order to protect the <br />confidentiality, integrity, and availability of PHI that Everside creates, receives, maintains, or <br />transmits, to the same extent as if Everside were a client. <br />e. Business Associate's Agents. Business Associate shall ensure that any agents, including <br />subcontractors, to whom it provides PHI, agree, in writing, to the same restrictions and <br />conditions that apply to Business Associate with respect to such PHI. Business Associate shall <br />implement and maintain sanctions against agents and subcontractors that violate such <br />restrictions and conditions and shall mitigate the effects of any such violation. <br />f. Designated Record Set. If Business Associate maintains a designated record set on behalf of <br />Client, Everside shall make such information available to Client for inspection and copying <br />within thirty (30) days of a request by Client to enable Client to fulfill its obligations under the <br />Privacy and Security Rule. If Business Associate maintains an Electronic Health Record on <br />behalf of Client, Business Associate shall provide such information in electronic format to <br />enable Client to fulfill its obligations under HIPAA. Likewise, within thirty (30) days of receipt <br />of a request from Client for an amendment of PHI or a record about an individual contained in <br />a Designated Record Set, Business Associate or its agents or subcontractors shall make such <br />PHI available to Client for amendment. If any individual requests an amendment of PHI <br />directly from Business Associate or its agents or subcontractors, and the PHI is originally <br />received from Client, Business Associate will notify Client in writing within thirty (30) days <br />of the request. Any approval or denial of amendment of PHI maintained by Business Associate <br />or its agents or subcontractors shall be the responsibility of Client. Upon approval of Client, <br />Business Associate shall appropriately amend the PHI maintained by it, or any of its agents or <br />subcontractors. <br />g. Accounting Rights. Within thirty (30) days of notice by Client of a request for an accounting <br />of disclosures of PHI from an Individual under 45 CFR § 164.528, Business Associate and its <br />agents or subcontractors shall make available to Client the information required for Client to <br />provide an accounting of disclosures in order to enable Client to fulfill its obligations under the <br />Privacy and Security Rule. Business Associate will not be obligated to record or otherwise <br />account for disclosures of Client's PHI if Client need not account for such disclosures. <br />Business Associate shall maintain the disclosure information for at least 6 years following the <br />date of the accountable disclosure under this Section of the BAA. In the case of a direct request <br />2022 LYcrsidc IIcahh. I I C. All rights resoved. Conlidcnlial. <br />25 <br />
The URL can be used to link to this page
Your browser does not support the video tag.