5 Must-Have Provisions in a Data Recovery Contract
When computers or other equipment used to store health data suffer flood, fire, or storm damage, an electronic data restoration company can often save the day. But to ensure they do so in a way that's compliant with privacy laws, the American Health Information Management Association says contracts should ensure the company:
- Does not use or disclose information and uses safeguards to prevent use or disclosure of the information.
- Reports any inappropriate use or disclosure of the information of which it becomes aware.
- Ensures that subcontractors or agents with access to the information agree to the same terms.
- Indemnifies the healthcare facility from loss due to unauthorized disclosure.
- Returns the information at the termination of the contract or provision of a certificate of its destruction and assurance that the contractor retains no copies.
The contract should also detail what methods will be used to recover the data and how long it will take to return the information and/or equipment. And don't forget a termination clause that goes into effect if the business partner violates any material term of the contract.
Read more about health information disaster planning on AHIMA's web site.
- Antibiotic Overuse a 'Huge Threat' to Patient Safety, Says CDC
- CFO Exchange: Smartphones Poised to Disrupt Healthcare, Says Topol
- Consumerism Drives Healthcare Branding, Rebranding Efforts
- 3 Traits Personality Assessments Can't Reveal
- PA Ranks See 'Phenomenal Growth,' Lack of Diversity
- CHS Hacked, 4.5M Patient Records Compromised
- Business Roundup: M&A Activity Down Slightly in First Half of 2014
- CFO Exchange: Healthcare Leaders Share 5 Innovative Ideas
- Large Employers Trimming Healthcare Spending
- CNO on Hospital Redesign: 'You Can't Over-Communicate'