Permitted Uses and Disclosures by Business Associate Sample Clauses

Permitted Uses and Disclosures by Business Associate. Except as otherwise limited by this Agreement, Business Associate may make any uses and disclosures of Protected Health Information necessary to perform its services to Covered Entity and otherwise meet its obligations under this Agreement, if such use or disclosure would not violate the Privacy Rule if done by Covered Entity. All other uses or disclosures by Business Associate not authorized by this Agreement or by specific instruction of Covered Entity are prohibited.

Permitted Uses and Disclosures by Business Associate. A. Business associate may only use or disclose protected health information as follows: 1. Necessary to perform the services set forth in Service Agreement. 2. Business associate may use or disclose protected health information as required by law. 3. Business Associate shall not request, use or disclose more than the minimum amount of PHI necessary to accomplish the purpose of the Use, Disclosure, or request, consistent with Covered Entity’s minimum necessary policies and procedures. 4. Business associate may not use or disclose protected health information in a manner that would violate Subpart E of 45 CFR Part 164 if done by Covered Entity except for the specific uses and disclosures set forth below. 5. Business associate may use protected health information for the proper management and administration of the Business Associate or to carry out the legal responsibilities of the Business Associate. 6. Business associate may disclose protected health information for the proper management and administration of Business Associate or to carry out the legal responsibilities of the Business Associate, provided the disclosures are required by law, or Business Associate obtains reasonable assurances from the person to whom the information is disclosed that the information will remain confidential and used or further disclosed only as required by law or for the purposes for which it was disclosed to the person, and the person notifies Business Associate of any instances of which it is aware in which the confidentiality of the information has been breached. 7. Business associate may provide data aggregation services relating to the health care operations of the Covered Entity only with the written consent of the Covered Entity. B. Provisions for Covered Entity to Inform Business Associate of Privacy Practices and Restrictions Covered entity shall notify Business Associate of any limitation(s) in the notice of privacy practices of Covered Entity under 45 CFR 164.520, to the extent that such limitation may affect Business Associate’s use or disclosure of protected health information. Covered entity shall notify Business Associate of any changes in, or revocation of, the permission by an individual to use or disclose his or her protected health information, to the extent that such changes may affect Business Associate’s use or disclosure of protected health information. Covered entity shall notify Business Associate of any restriction on the use or disclosure of protec...

Permitted Uses and Disclosures by Business Associate. Business Associate may only use or disclose PHI to perform functions, activities, or services for, or on behalf of, the Covered Entity as specified in: Contract # , dated , (known as “the Contract”) between the parties, provided that such use or disclosure does not violate the policies and procedures of all HIPAA rules.

Permitted Uses and Disclosures by Business Associate a. BA may only use or disclose PHI for the following purposes: 1) BA may use or disclose PHI as required by law. 2) BA agrees to make uses and disclosures and requests for PHI consistent with CE’s minimum necessary policies and procedures. 3) BA may not use or disclose PHI in a manner that would violate Subpart E of 45 C.F.R. Part 164 if done by CE, except for the specific uses and disclosures set out below. 4) BA may disclose PHI for the proper management and administration of BA or to carry out the legal responsibilities of BA, provided the disclosures are required by law, or BA obtains reasonable assurances from the person to whom the information is disclosed that the information will remain confidential and used or further disclosed only as required by law or for the purposes for which it was disclosed to the person, and the person notified BA of any instances of which it is aware in which the confidentiality of the information has been breached. 5) BA may provide data aggregation services related to the health care operations of CE.

Permitted Uses and Disclosures by Business Associate a. Except as otherwise limited to this Agreement, Business Associate may use or disclose PHI to perform functions, activities, or services for, or on behalf of, Covered Entity as specified in the Service Arrangement, provided that such use or disclosure would not violate the Privacy Rule if done by Covered Entity or the minimum necessary policies and procedures of Covered Entity required by 45 C.F.R. §164.514(d). b. Except as otherwise limited in this Agreement, Business Associate may use PHI for the proper management and administration of the Business Associate or to carry out the legal responsibilities of the Business Associate. c. Except as otherwise limited in this Agreement, Business Associate may disclose PHI for the proper management and administration of the Business Associate, provided that disclosures are Required By Law, or Business Associate obtains reasonable assurances from the person to whom the information is disclosed that it will remain confidential and used or further disclosed only as Required By Law or for the purpose for which it was disclosed to the person, and the person notifies the Business Associate of any instances of which it is aware in which the confidentiality of the information has been breached. d. Except as otherwise limited in this Agreement, Business Associate may use PHI to provide Data Aggregation services to Covered Entity as permitted by 45 C.F.R. §164.504 (e)(2)(i)(B). e. Business Associate may use PHI to report violations of law to appropriate Federal and State authorities, consistent with 45 C.F.R. §164.502(j)(1).

Permitted Uses and Disclosures by Business Associate. 1. Business Associate may only use or disclose protected health information as necessary to perform the services as outlined in the underlying agreement. 2. Business Associate is not authorized to use protected health information to de-identify the information in accordance with 45 CFR 164.514(a)-(c). 3. Business Associate may use or disclose protected health information as required by law. 4. Business Associate agrees to make uses and disclosures and requests for protected health information consistent with Covered Entity’s minimum necessary policies and procedures. Business Associate may not use or disclose protected health information in a manner that would violate Subpart E of 45 CFR Part 164 if done by Covered Entity except for the specific used and disclosures set forth below: a) Business Associate may disclose protected health information for the proper management and administration of Business Associate or to carry out the legal responsibilities of the Business Associate, provided the disclosures are required by law, or Business Associate obtains reasonable assurances from the person to whom the information is disclosed that the information will remain confidential and used or further disclosed only as required by law or for the purposes for which it was disclosed to the person, and the person notifies Business Associate of any instances of which it is aware in which the confidentiality of the information has been breached. b) Business Associate may provide data aggregation services relating to the health care operations of the Covered Entity.

Permitted Uses and Disclosures by Business Associate. Business Associate may only use and disclose PHI as necessary to perform Services set forth in any agreement, provided that such use or disclosure would not violate the Privacy Rule if done by Covered Entity, except for the specific uses and disclosures set forth in Subsections (1) through (4) below:

Permitted Uses and Disclosures by Business Associate a. Business Associate may only Use or Disclose Protected Health Information as necessary to perform the Agreement(s). b. Business Associate may Use or Disclose Protected Health Information as required by law. c. Business Associate agrees to make Uses and Disclosures and requests for Protected Health Information consistent with Covered Entity’s Minimum Necessary policies and procedures. d. Business Associate may not Use or Disclose Protected Health Information in a manner that would violate Subpart E of 45 CFR Part 164 if done by Covered Entity.

Permitted Uses and Disclosures by Business Associate. 4.1 Except as otherwise limited in this Agreement, Business Associate may use or disclose PHI to perform functions, activities, or services for, or on behalf of, Covered Entity as specified in Service Contract(s), provided that such use or disclosure would not violate the Privacy and Security Rule, if done by Covered Entity. Business Associate’s disclosure of PHI shall be subject to the limited data set and minimum necessary requirements of Section 13405(b) of Public Law 111-5, [designated as 42 U.S.C. 13735(b)] 4.2 Except as otherwise limited in this Agreement, Business Associate may use PHI as required for Business Associate's proper management and administration or to carry out the legal responsibilities of the Business Associate. 4.3 Except as otherwise limited in this Agreement, Business Associate may disclose PHI for the proper management and administration of the Business Associate, provided that disclosures are Required By Law, or provided that, if Business Associate discloses any PHI to a third party for such a purpose, Business Associate shall enter into a written agreement with such third party requiring the third party to: (a) maintain the confidentiality, integrity, and availability of PHI and not to use or further disclose such information except as Required By Law or for the purpose for which it was disclosed, and (b) notify Business Associate of any instances in which it becomes aware in which the confidentiality, integrity, and/or availability of the PHI is breached immediately upon becoming aware. 4.4 Except as otherwise limited in this Agreement, Business Associate may use PHI to provide data aggregation services to Covered Entity as permitted by 42 CFR § 164.504(e)(2)(i)(B). 4.5 Business Associate may use PHI to report violations of law to appropriate Federal and State Authorities consistent with 45 CFR 164.502(j)(1). 4.6 Business Associate shall not use or disclose PHI that is Genetic Information for underwriting purposes. Moreover, the sale, marketing or the sharing for commercial use or any purpose construed by Covered Entity as the sale, marketing or commercial use of member’s personal or financial information with affiliates, even if such sharing would be permitted by federal or state laws, is prohibited. 4.7 Business Associate shall enter into written agreements that are substantially similar to this Business Associate Agreements with any Subcontractor or agent which Business Associate provides access to Protected Health Informati...

Permitted Uses and Disclosures by Business Associate. (a) The Business Associate may only use or disclose PHI as necessary to perform the services set forth in the Agreement or as required by law. The Business Associate is not permitted to de-identify PHI under DoD HIPAA issuances or the corresponding 45 CFR 164.514(a)-(c), nor is it permitted to use or disclose de-identified PHI, except as provided by the Agreement or directed by the Covered Entity. (b) The Business Associate agrees to use, disclose and request PHI only in accordance with the HIPAA Privacy Rule “minimum necessary” standard and corresponding DHA policies and procedures as stated in the DoD HIPAA Issuances. (c) The Business Associate shall not use or disclose PHI in a manner that would violate the DoD HIPAA Issuances or HIPAA Privacy Rules if done by the Covered Entity, except uses and disclosures for the Business Associate’s own management and administration and legal responsibilities or for data aggregation services as set forth in the following three paragraphs. (d) Except as otherwise limited in the Agreement, the Business Associate may use PHI for the proper management and administration of the Business Associate or to carry out the legal responsibilities of the Business Associate. The foregoing authority to use PHI does not apply to disclosure of PHI, which is covered in the next paragraph. (e) Except as otherwise limited in the Agreement, the Business Associate may disclose PHI for the proper management and administration of the Business Associate or to carry out the legal responsibilities of the Business Associate, provided that disclosures are required by law, or the Business Associate obtains reasonable assurances from the person to whom the PHI is disclosed that it will remain confidential and used or further disclosed only as required by law or for the purposes for which it was disclosed to the person, and the person notifies the Business Associate of any instances of which it is aware in which the confidentiality of the information has been breached. (f) Except as otherwise limited in the Agreement, the Business Associate may use PHI to provide Data Aggregation services relating to the Covered Entity’s health care operations.