5 Must-Have Provisions in a Data Recovery Contract
When computers or other equipment used to store health data suffer flood, fire, or storm damage, an electronic data restoration company can often save the day. But to ensure they do so in a way that's compliant with privacy laws, the American Health Information Management Association says contracts should ensure the company:
- Does not use or disclose information and uses safeguards to prevent use or disclosure of the information.
- Reports any inappropriate use or disclosure of the information of which it becomes aware.
- Ensures that subcontractors or agents with access to the information agree to the same terms.
- Indemnifies the healthcare facility from loss due to unauthorized disclosure.
- Returns the information at the termination of the contract or provision of a certificate of its destruction and assurance that the contractor retains no copies.
The contract should also detail what methods will be used to recover the data and how long it will take to return the information and/or equipment. And don't forget a termination clause that goes into effect if the business partner violates any material term of the contract.
Read more about health information disaster planning on AHIMA's web site.
- Ebola: Health Officials Try to Quell Front Line Fears
- Reducing Readmissions Starts with Better Collaboration
- Ebola: A New Normal in Dallas
- Partners HealthCare M&A Deal Under Scrutiny
- Readmissions: No Quick Fix to Costly Hospital Challenge
- How Educated Nurses Save Money
- 'Overtreatment' Debate Circles Back to Lung Cancer Screening
- Health Literacy Month Gets a Boost from Payers
- How Top-Ranked MA Plans Earn Their Stars
- Defensive Medicine Still Prevalent Despite Tort Reform