that a business associate includes a «subcontractor that creates, receives, maintains, or transmits protected health
information on behalf of the business associate.»
From the 2013 HIPAA Omnibus: that a business associate includes a «subcontractor that creates, receives, maintains, or transmits protected health
information on behalf of the business associate.»
(3) Business associate includes (iii) a subcontractor that creates, receives, maintains, or transmits protected health
information on behalf of the business associate.
Not exact matches
You should neither construe any
of the material contained herein as
business, financial, investment, hedging, trading, legal, regulatory, tax, or accounting advice nor make the
information on this website the basis for any investment decision made by you or
on your
behalf.
[22] Pollard also stole classified documents related to China
on behalf of his wife, who used the
information to advance her personal
business interests and kept them around the house, where they were discovered by investigating authorities when Pollard's espionage activity came to light.
In addition, Innovative Dining Group may disclose personally identifiable
information about you to other companies or individuals in the following circumstances: - Innovative Dining Group utilizes third party service providers to provide products, services or functions
on IDG's
behalf (such as sending emails or processing credit cards or fulfilling orders placed online) and asks these service providers to agree to maintain the confidentiality
of your personally identifiable
information and not to use your personally identifiable
information for any reason except to carry out the purpose (s) for which we retained them; - Innovative Dining Group needs to protect its legal rights (e.g., if Innovative Dining Group is trying to collect money you owe); - Innovative Dining Group must comply with applicable laws, regulations or legal or regulatory processes; - Innovative Dining Group has reason to believe that someone may be causing injury to someone or interfering with - In connection with a sale, merger, transfer, exchange or other disposition
of all or a portion
of the
business conducted by the web site.
Abby Eagle School
of Meditation does not lend or sell personal
information to other organisations for marketing purposes, however we may at times provide a mailing list to a third party organisation to mail correspondence to you or to a
business associate
on your
behalf.
We and service providers acting
on behalf of us and our
business partners may use the
information collected from or about you, including your use
of Tubi Services, to provide recommendations and advertisements
on the Tubi Services and elsewhere
on the web.
provide
information or offers to you that are related to the Tubi Services
on behalf of Tubi's
business partners.
Otherwise, except when such
business partners are acting
on our
behalf or when you have provided your
information as part
of a co-branded promotion, we will obtain your consent before we share your contact
information with them so that they may send you promotional
information about their products and services directly.
By using any product or service from eBook DesignWorks, The Client hereby acknowledges and consents that eBook DesignWorks may share such
information and data with any third party with whom the
Business has a contractual relationship to provide the requested product or service
on behalf of eBook DesignWorks.
(2) The terms and conditions
of payment, including the total
of all payments to be made by the consumer, whether to the credit repair
business or to some other person; (3) A complete and detailed description
of the services to be performed and the results to be achieved by the credit repair
business for or
on behalf of the consumer, including all guarantees and all promises
of full or partial refunds and a list
of the adverse
information appearing
on the consumer's credit report that the credit repair
business expects to have modified; (4) The principal
business address
of the credit repair
business and the name and address
of its agent in this State authorized to receive service
of process; and (5) One
of the following statements, as appropriate, in substantially the following form: a. «As required by North Carolina law, this credit repair
business has secured a bond by..........
A credit repair
business and its salespersons, agents, and representatives, and independent contractors who sell or attempt to sell the services
of a credit repair
business, shall not do any
of the following: (1) Charge or receive any money or other valuable consideration prior to full and complete performance
of the services that the credit repair
business has agreed to perform for or
on behalf of the consumer; (2) Charge or receive any money or other valuable consideration solely for referral
of the consumer to a retail seller or to any other credit grantor who will or may extend credit to the consumer, if the credit that is or will be extended to the consumer is upon substantially the same terms as those available to the general public; (3) Represent that it can directly or indirectly arrange for the removal
of derogatory credit
information from the consumer's credit report or otherwise improve the consumer's credit report or credit standing, provided, this shall not prevent truthful, unexaggerated statements about the consumer's rights under existing law regarding his credit history or regarding access to his credit file; (4) Make, or counsel or advise any consumer to make, any statement that is untrue or misleading and which is known or which by the exercise
of reasonable care should be known, to be untrue or misleading, to a consumer reporting agency or to any person who has extended credit to a consumer or to whom a consumer is applying for an extension
of credit, with respect to a consumer's creditworthiness, credit standing, or credit capacity; or (5) Make or use any untrue or misleading representations in the offer or sale
of the services
of a credit repair
business or engage, directly or indirectly, in any act, practice, or course
of business which operates or would operate as a fraud or deception upon any person in connection with the offer or sale
of the services
of a credit repair
business.
when companies or services providers that perform
business activities
on behalf of Htel Serviced Apartments require such
information (e.g., credit card processing, customer support services, market research administration or database management services)
Third parties such as Federated Media Publishing who assist Kill Screen in the management
of the Site may access and collect
information on behalf of Kill Screen through the Site, but they are not allowed to use this data for their own
business purposes separate from their relationship with Kill Screen.
When the buyer
of a firearm is a corporation, company, association, partnership, or other such
business entity, an officer authorized to act
on behalf of the
business must complete Section A
of the form with his or her personal
information, sign Section A, and attach a written statement, executed under penalties
of perjury, stating: (A) the firearm is being acquired for the use
of and will be the property
of that
business entity and (B) the name and address
of that
business entity.
Customer agrees that: (i) BigTime is not acting
on Customer's
behalf as a
Business Associate or subcontractor; (ii) the Service may not be used to store, maintain, process, or transmit protected health
information and (iii) the Service will not be used in any manner that would require BigTime or the Service to be compliant with the Health Insurance Portability and Accountability Act
of 1996, as amended and supplemented («HIPAA»).
Business associates are individuals or organizations that perform certain services involving the use
of protected health
information on behalf of a HIPAA - covered entity.
OCR's investigation uncovered that North Memorial's
business associate had access to its hospital database containing electronic protected health
information (e-PHI)
of more than 289,000 patients in order to perform payment and operations activities
on its
behalf.
He frequently represents
businesses in disputes involving non-competition agreements and in matters involving trade secrets or proprietary or confidential
information, Mr. Waldrop also handles commercial cases
on behalf of plaintiff
business or corporate interests.
Any attorneys who are communicating about health care
information on behalf of a client or even the «
business associate»
of a client themselves become
business associates under the act.
However, a device manufacturer that does not provide «health care» must be a
business associate
of a covered entity if that manufacturer receives or creates protected health
information in the performance
of functions or activities
on behalf of, or the provision
of specified services to, a covered entity.
(H) Make its internal practices, books, and records relating to the use and disclosure
of protected health
information received from, or created or received by the
business associate
on behalf of, the covered entity available to the Secretary for purposes
of determining the covered entity's compliance with this subpart; and
(D) Ensure that any agents, including a subcontractor, to whom it provides protected health
information received from, or created or received by the
business associate
on behalf of, the covered entity agrees to the same restrictions and conditions that apply to the
business associate with respect to such
information;
We note that there may be other instances in which a
business associate may combine or aggregate protected health
information received in its capacity as a
business associate
of different covered entities, such as when it is performing health care operations
on behalf of covered entities that participate in an organized health care arrangement.
Similarly, authorizations requested by a
business associate
on behalf of a covered entity to accomplish the disclosure
of protected health
information to that
business associate or covered entity as described in § 164.508 (e) must meet the requirements
of that provision.
For example, a
business associate performing a function under health care operations
on behalf of an organized health care arrangement would be permitted to combine or aggregate the protected health
information obtained from covered entities participating in the arrangement to the extent necessary to carry out the authorized activity and in conformance with its
business associate contracts.
A covered entity that is undertaking payment activities
on behalf of different covered entities also may use or disclose protected health
information obtained as a
business associate
of one covered entity when undertaking such activities as a
business associate
of another covered entity where the covered entities have authorized the activities and where they are necessary to secure payment for the entities.
(ii) If a
business associate is required by law to perform a function or activity
on behalf of a covered entity or to provide a service described in the definition
of business associate in § 160.103
of this subchapter to a covered entity, such covered entity may disclose protected health
information to the
business associate to the extent necessary to comply with the legal mandate without meeting the requirements
of this paragraph (e), provided that the covered entity attempts in good faith to obtain satisfactory assurances as required by paragraph (e)(3)(i)
of this section, and, if such attempt fails, documents the attempt and the reasons that such assurances can not be obtained.
The mere provision
of software to a covered entity would not appear to give rise to a
business associate relationship, although if the vendor needs access to the protected health
information of the covered entity to assist with data management or to perform functions or activities
on the covered entity's
behalf, the vendor would be a
business associate.
The group health plan is not required to have a
business associate contract with the plan sponsor to disclose the protected health
information or allow the plan sponsor to create protected health
information on its
behalf, if the conditions
of § 164.504 (e) are met.
A group health plan or health insurance issuer or HMO, or their
business associate
on their
behalf, may perform such analyses for an employer customer and provide the results in de-identified form to the customer, using integrated data received from other insurers, as long as protected health
information is not disclosed in violation
of this rule.
The changes clarify that the
business association occurs when the right to use or disclose the protected health
information belongs to the covered entity, and another person is using or disclosing the protected health
information (or creating, obtaining and using the protected health
information) to perform a function or activity
on behalf of the covered entity.
Response: As stated in § 164.504 (e)(2),
business associates are acting
on behalf of, or performing services for, the covered entity and may not, with two narrow exceptions, use or disclose protected health
information in a manner that would violate this rule if done by the covered entity.
Under the definition
of the term «health care component,» the
business office is part
of the health care component (in this hypothetical, the clinic) «to the extent that» it is performing covered functions
on behalf of the clinic involving the use or disclosure
of protected health
information that it receives from, creates or maintains for the clinic.
We proposed to define the term «
business partner» to mean, with respect to a covered entity, a person to whom the covered entity discloses protected health
information so that the person can carry out, assist with the performance
of, or perform
on behalf of, a function or activity for the covered entity.
These changes, however, do not permit a covered entity to disclose protected health
information to third parties for marketing (other than to a
business associate to make a marketing communication
on behalf of the covered entity) without authorization under § 164.508.
A covered entity may disclose protected health
information to a
business associate, consistent with the other requirements
of the final rule, as necessary to permit the
business associate to perform functions and activities for or
on behalf of the covered entity, or to provide the services specified in the
business associate definition to or for the covered entity.
(I) At termination
of the contract, if feasible, return or destroy all protected health
information received from, or created or received by the
business associate
on behalf of, the covered entity that the
business associate still maintains in any form and retain no copies
of such
information or, if such return or destruction is not feasible, extend the protections
of the contract to the
information and limit further uses and disclosures to those purposes that make the return or destruction
of the
information infeasible.
These changes mean that § 164.502 (e) requires a
business associate contract (or other arrangement, as applicable) not only when the covered entity discloses protected health
information to a
business associate, but also when the
business associate creates or receives protected health
information on behalf of the covered entity.
While we permit uses or disclosures
of protected health
information for a variety
of purposes,
business associate contracts or other arrangements are only required for those cases in which the covered entity is disclosing
information to someone or some organization that will use the
information on behalf of the covered entity, when the other person will be creating or obtaining protected health
information on behalf of the covered entity, or when the
business associate is providing the specified services to the covered entity and the provision
of those services involves the disclosure
of protected health
information by the covered entity to the
business associate.
For example, if a covered entity does not disclose or receive from its
business associate any protected health
information and no protected health
information is created or received by its
business associate
on behalf of the covered entity, then the
business associate requirements
of this rule do not apply.
For example, if a
business associate acts as the billing agent
of a health care provider, and discloses protected health
information on behalf of the hospital to health plans, the
business associate has no responsibility with respect to further uses or disclosures by the health plan.
Authorizations requested by a
business associate
on the covered entity's
behalf and that authorize the use or disclosure
of protected health
information by the covered entity or the
business associate must meet the requirements in § 164.508 (d).
(iv) in the context
of business process outsourcing, limitations
on the service provider's ability to develop «consolidated views»
of individuals, i.e. to link personal
information about the individuals from different sources that may well have been collected by or
on behalf of the customer for other or restricted purposes; and
If you do not want to receive such offers from us (including product or service offerings from us
on behalf of our agents, intermediaries and / or our
business partners) or do not want us to disclose your personal
information to our related and group companies and
business partners for marketing purposes, you can opt out at any time by calling us
on 1800 023 767.
We provide such
information to trusted
businesses or persons for the sole purpose
of processing personally identifying
information on our
behalf.
In previous days it had also announced a revamp
of its privacy settings, and said it would restrict the amount
of data exchanged with
businesses that collect
information on behalf of advertisers.
Market and provide
information about a brand, a product or service
on behalf of a
business organization.