My WebLink
|
Help
|
About
|
Sign Out
Home
Browse
Search
Res 2018-113/approving a contract between the City and the Texas Department of State Health Services, Vital Statistics Unit, for the provision of on-line vital statistic computer services for the City
San-Marcos
>
City Clerk
>
03 Resolutions
>
2010's
>
2018
>
Res 2018-113/approving a contract between the City and the Texas Department of State Health Services, Vital Statistics Unit, for the provision of on-line vital statistic computer services for the City
Metadata
Thumbnails
Annotations
Entry Properties
Last modified
11/15/2018 3:23:20 PM
Creation date
6/28/2018 4:13:05 PM
Metadata
Fields
Template:
City Clerk
City Clerk - Document
Resolutions
City Clerk - Type
Contract
Number
2018-113
Date
6/19/2018
There are no annotations on this page.
Document management portal powered by Laserfiche WebLink 9 © 1998-2015
Laserfiche.
All rights reserved.
/
18
PDF
Print
Pages to print
Enter page numbers and/or page ranges separated by commas. For example, 1,3,5-12.
After downloading, print the document using a PDF reader (e.g. Adobe Reader).
Show annotations
View images
View plain text
System Agency Contract No.HHSREV 100001023 <br />Confidential Information and will provide the updated document to System Agency. System Agency also <br />reserves the right to request updates as needed to satisfy state and federal monitoring requirements. 45 <br />CFR 164.306 <br />(R) Contractor will establish, implement and maintain any and all appropriate procedural, <br />administrative, physical and technical safeguards to preserve and maintain the confidentiality, integrity, <br />and availability of the Confidential Information, and with respect to PHI, as described in the HIPAA <br />Privacy and Security Regulations, or other applicable laws or regulations relating to Confidential <br />Information, to prevent any unauthorized use or disclosure of Confidential Information as long as <br />Contractor has such Confidential Information in its actual or constructive possession. 45 CFR 164.308 <br />(administrative safeguards); 164.310 (physical safeguards); 164.312 (technical safeguards); <br />164.530(c)(privacy safeguards) <br />(S) Contractor will designate and identify, subject to System Agency approval, a Person or <br />Persons, as Privacy Official 45 CFR 164.530(a)(1) and Information Security Official, each of whom is <br />authorized to act on behalf of Contractor and is responsible for the development and implementation of <br />the privacy and security requirements in this DUA. Contractor will provide name and current address, <br />phone number and e-mail address for such designated officials to System Agency upon execution of this <br />DUA and prior to any change. 45 CFR 164.308(a)(2) <br />(T) Contractor represents and warrants that its Authorized Users each have a demonstrated <br />need to know and have access to Confidential Information solely to the minimum extent necessary to <br />accomplish the Authorized Purpose pursuant to this DUA and the Base Contract, and further, that each <br />has agreed in writing to be bound by the disclosure and use limitations pertaining to the Confidential <br />Information contained in this DUA. 45 CFR 164.502; 164.514(d) <br />(U) Contractor and its Subcontractors will maintain an updated, complete, accurate and <br />numbered list of Authorized Users, their signatures, titles and the date they agreed to be bound by the <br />terms of this DUA, at all times and supply it to System Agency, as directed, upon request. <br />(V) Contractor will implement, update as necessary, and document reasonable and <br />appropriate policies and procedures for privacy, security and Breach of Confidential Information and an <br />incident response plan for an Event or Breach, to comply with the privacy, security and breach notice <br />requirements of this DUA prior to conducting work under the DUA. 45 CFR 164.308; 164.316; <br />164.514(d); 164.530(1)(1) <br />(V) Contractor will produce copies of its information security and privacy policies and <br />procedures and records relating to the use or disclosure of Confidential Information received from, <br />created by, or received, used or disclosed by Contractor on behalf of System Agency for System <br />Agency's review and approval within 30 days of execution of this DUA and upon request by System <br />Agency the following business day or other agreed upon time frame. 45 CFR 164.308; 164.514(d) <br />(X) Contractor will make available to System Agency any information System Agency requires <br />to fulfill System Agency's obligations to provide access to, or copies of, PHI in accordance with HIPAA and <br />other applicable laws and regulations relating to Confidential Information. Contractor will provide such <br />information in a time and manner reasonably agreed upon or as designated by the Secretary, or other federal <br />or state law. 45 CFR 164.504(e)(2)(i)a) <br />(Y) Contractor will only conduct secure transmissions of Confidential Information whether in <br />paper, oral or electronic form. A secure transmission of electronic Confidential Information in motion <br />includes secure File Transfer Protocol (SFTP) or Encryption at an appropriate level or otherwise protected <br />as required by rule, regulation or law. System Agency Confidential Information at rest requires <br />Encryption unless there is adequate administrative, technical, and physical security, or as otherwise <br />System Agency Data Use Agreement V.8.3 HIPAA Omnibus Compliant April 1, 2015 <br />Page 5 of 11 <br />
The URL can be used to link to this page
Your browser does not support the video tag.