My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
2025-125
CBCC
>
Official Documents
>
2020's
>
2025
>
2025-125
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
6/23/2025 10:25:09 AM
Creation date
6/23/2025 10:16:29 AM
Metadata
Fields
Template:
Official Documents
Official Document Type
Amendment
Approved Date
06/03/2025
Control Number
2025-125
Agenda Item Number
13.D.1.
Entity Name
Blue Cross and Blue Shield of Florida, Inc.
Subject
Amendment No. 1 to Administrative Services Agreement
Document Relationships
2025-126
(Cover Page)
Path:
\Official Documents\2020's\2025
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
29
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
A TRUE COPY <br />CERTIFICATION ON LAST PAGE <br />RYAN L. BUTLER, CLERK <br />2.3.4. For BCBSF's proper management and administration or to carry out BCBSF's <br />legal responsibilities. Disclosure of PHI for BCBSF's proper management and <br />administration or to carry out BCBSF's legal responsibilities is permitted only <br />if (i) the Disclosure is Required by Law, or (ii) before the Disclosure, BCBSF <br />obtains from the entity to which the Disclosure is to be made reasonable <br />assurance, evidenced by written contract, that the entity will (1) hold PHI in <br />confidence, (2) Use or further Disclose PHI only for the purposes for which <br />BCBSF disclosed it to the entity or as Required by Law; and (3) notify BCBSF <br />of any instance of which the entity becomes aware in which the confidentiality <br />of any PHI was Breached. <br />2.3.5. To create De -Identified Health Information in conformance with 45 C.F.R. § <br />164.514(b). BCBSF may use and disclose De -Identified Health Information <br />for any purpose, including after any termination of the Agreement and this <br />BAA. <br />2.3.6. To create a Limited Data Set. <br />2.4. Minimum Necessary. BCBSF, in the performance of services under the <br />Agreement, will make reasonable efforts to comply with the minimum necessary <br />standard for PHI under HIPAA. <br />2.5. Disclosure to BCBSF's Subcontractors. BCBSF may disclose PHI to a <br />Subcontractor. BCBSF will require each Subcontractor and agent to which BCBSF <br />disclose PHI to provide reasonable assurance, evidenced by written contract, that <br />such Subcontractor or agent will comply with the similar but no less restrictive <br />privacy and security obligations with respect to PHI as this BAA applies to BCBSF. <br />2.6. Reporting Non -Permitted Use or Disclosure and Security Incidents. <br />2.6.1. Privacy Breach. BCBSF will report to the Plan within ten (10) calendar days <br />any use or disclosure of PHI of which BCBSF becomes aware that is not <br />permitted by this BAA and that constitutes a Breach of Unsecured PHI. The <br />Plan hereby delegates to BCBSF (i) the responsibility for determining whether <br />any use or disclosure of Protected Health Information under this BAA <br />constitutes a Breach of Unsecured PHI, and (ii) the implementation of <br />notification and reporting obligations associated with a Breach of Unsecured <br />PHI in accordance with relevant legal requirements. <br />2.6.2. Security Incidents. BCBSF will report to the Plan within ten (10) calendar days <br />any incident of which BCBSF becomes aware that is (a) a successful <br />unauthorized access, use or disclosure of EPHI; or (b) a successful major (i) <br />19 <br />
The URL can be used to link to this page
Your browser does not support the video tag.