My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
5.3. ERMUSR 02-09-2010
ElkRiver
>
City Government
>
Boards and Commissions
>
Utilities Commission
>
Packets
>
2003-2013
>
2010
>
02-09-2010
>
5.3. ERMUSR 02-09-2010
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
2/5/2010 4:08:14 PM
Creation date
2/5/2010 4:08:12 PM
Metadata
Fields
Template:
City Government
type
ERMUSR
date
2/9/2010
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
87
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
View images
View plain text
conditions. The Employer agrees to the following conditions, thereby allowing the <br />plan to disclose PHI to the Employer. The Employer agrees to: <br />(a) not use or further disclose PHI other than as permitted or required by the <br />plan document or as required by law; <br />(b) ensure that any agents, including a subcontractor, to whom the plan provides <br />PHI received from the plan agree to the same restrictions and conditions that <br />apply to the Employer with respect to such PHI; <br />(c) not use or disclose PHI for employment related actions and decision unless <br />authorized by an individual; <br />(d) not use or disclose PHI in connection with any other benefit or employee <br />benefit plan of the Employer unless authorized by an individual; <br />(e) report to the plan any PHI use or disclosure, that is inconsistent with the uses <br />or disclosures provided for, of which it becomes aware; <br />(f) make PHI available for amendment and incorporate any amendments to PHI <br />in accordance with HIPAA; <br />(g) make available the information required to provide an accounting of <br />disclosures; <br />(h) make internal practices, books and records relating to the use and disclosure <br />of PHI received from the plan available to the HHS Secretary for the purposes <br />of determining the plan's compliance with HIPAA; and <br />(i) if feasible, return or destroy all PHI received for the plan that the Employer <br />still maintains in any form, and retain no copies of such PHI when no longer <br />needed for the purpose for which disclosure was made (or if return or <br />destruction is not feasible, limit further uses and disclosures to those <br />purposes that make the return or destruction infeasible). <br />13.3 Employer's Obligations under Security Rules. If the Employer creates, receives, <br />maintains, or transmits ePHI (other than enrollment and disenrollment information <br />and Summary Health Information, which are not subject to these restrictions), the <br />Employer will: <br />(a) implement administrative, physical, and technical safeguards that reasonably <br />and appropriately protect the confidentiality, integrity, and availability of <br />ePHI; <br />(b) ensure that any agents, including subcontractors, who create, receive, <br />maintain, or transmit ePHI on behalf of the plan implement reasonable and <br />appropriate security measures to protect the ePHI; <br />(c) report to the plan any Security Incident of which it becomes aware;- and <br />(d) implement reasonable and appropriate security measures to ensure that only <br />those persons identified below have access to ePHI and that such access is <br />limited to the purposes identified below. <br />41 <br />
The URL can be used to link to this page
Your browser does not support the video tag.