5 Must-Have Provisions in a Data Recovery Contract
When computers or other equipment used to store health data suffer flood, fire, or storm damage, an electronic data restoration company can often save the day. But to ensure they do so in a way that's compliant with privacy laws, the American Health Information Management Association says contracts should ensure the company:
- Does not use or disclose information and uses safeguards to prevent use or disclosure of the information.
- Reports any inappropriate use or disclosure of the information of which it becomes aware.
- Ensures that subcontractors or agents with access to the information agree to the same terms.
- Indemnifies the healthcare facility from loss due to unauthorized disclosure.
- Returns the information at the termination of the contract or provision of a certificate of its destruction and assurance that the contractor retains no copies.
The contract should also detail what methods will be used to recover the data and how long it will take to return the information and/or equipment. And don't forget a termination clause that goes into effect if the business partner violates any material term of the contract.
Read more about health information disaster planning on AHIMA's web site.
- FDA hopes hospitals will switch to newly regulated pharmacies
- CMS Sets 2014 Pay Rates for Hospital Outpatient and Physician Services
- New G-Codes to Pay Doctors for Broad Array of Non-Face-to-Face Care
- States Rejecting Medicaid Expansion Forgo Billions in Federal Funds
- Why You Should Involve Patients in Nursing Handoffs
- Not-for-Profit Hospitals Find Opportunity Amid Uncertainty
- Substance Abuse Resurfaces Among Anesthesiologists in Training
- Douglas Hawthorne—A Chance to Do Something Big
- Safety Net Executives Renew Call to Preserve DSH Payments
- The Most Polarizing Topics in Healthcare IT