Page 81 - Privacy_Program
P. 81
DP170B.8c (c) the request for access is made by the participant’s personal representative
and direct service staff or manager has determined, in the exercise of
professional judgment, that the provision of access to such personal
representative is reasonably likely to cause substantial harm to the individual or
another person.
Employees and DP170B.9 The organization will accommodate reasonable requests of participants to
others with Access amend or correct their PHI stored by the organization.
to PHI, with their
Manager and the
Director of
Information
Technology, Privacy
and Data Security
Director of Information DP170B.10 The organization will record the reasons for the amendment to or correction of
Technology, Privacy and this information and the resolution of the request.
Data Security
Employees and Others DP170B.11 A participant’s request for amendment may be denied if the requested PHI:
with Access to PHI
DP170B.11a (a) was not created by the organization;
DP170B.11b (b) would not be available for inspection under the requirements for individual
rights to access PHI; or
DP170B.11c (c) is accurate and complete.
Employees and Others DP170B.12 The time period for the action by the organization will be extended by no more
with Access to PHI than 30 days.
Employees and others DP170B.13 The organization will notify participants of the outcome of their requests.
with Access to PHI, with
their Manager and the
Director of Information
Technology, Privacy
and Data Security
Employees and others DP170B.14 In the event that another covered entity notifies the organization of an
with Access to PHI, with amendment to a participant’s PHI, the organization will amend the respective
their Manager and the information by, at minimum, identifying the affected information in the
Director of Information designated record set and appending or otherwise providing a link to the
Technology, Privacy location of the amendment.
and Data Security
GES CONFIDENTIAL 77
