Contracts: Difference between revisions

Jump to navigation Jump to search
67 bytes removed ,  October 6, 2020
m
no edit summary
No edit summary
mNo edit summary
Line 23: Line 23:
Policy No.: '''8009'''<br />
Policy No.: '''8009'''<br />
Effective Date: '''11/01/06'''<br />
Effective Date: '''11/01/06'''<br />
Revised Date: '''10/30/18'''<br />
Revised Date: '''10/06/20'''<br />
Reviewed: '''10/30/18'''<br />
Reviewed: '''10/06/20'''<br />
<br />
<br />
<big>'''Contracts Policy'''</big>
<big>'''Contracts Policy'''</big>
Line 47: Line 47:
When UNMC is expending funds: 402-559-5400, [mailto:contracts@unmc.edu contracts@unmc.edu], https://info.unmc.edu/procurement/procurement/contracts/index.html  
When UNMC is expending funds: 402-559-5400, [mailto:contracts@unmc.edu contracts@unmc.edu], https://info.unmc.edu/procurement/procurement/contracts/index.html  


When UNMC is receiving revenue: 402-559-5200, [mailto:alamer@unmc.edu Amy Lamer] and copy [mailto:skraftmann@unmc.edu Assistant Vice Chancellor for Business and Finance]  
When UNMC is receiving revenue: 402-559-5200, [mailto:alamer@unmc.edu Amy Lamer] and copy [mailto:jeffrey.miller@unmc.edu Assistant Vice Chancellor for Business and Finance]  
|-
|-
| ACADEMIC AGREEMENTS || Academic Affairs, 402-559-5130, https://www.unmc.edu/academicaffairs/compliance/affiliation-agreements.html, https://www.unmc.edu/academicaffairs/, https://www.unmc.edu/academicaffairs/about/index.html
| ACADEMIC AGREEMENTS || Academic Affairs, 402-559-5130, https://www.unmc.edu/academicaffairs/compliance/affiliation-agreements.html, https://www.unmc.edu/academicaffairs/, https://www.unmc.edu/academicaffairs/about/index.html
Line 74: Line 74:
==Protected Student Financial Information (PSFI)==
==Protected Student Financial Information (PSFI)==
[https://nebraska.edu/-/media/unca/docs/offices-and-policies/policies/executive-memorandum/university-of-nebraska-information-security-plan.pdf University of Nebraska Executive Memorandum No. 26] describes protections of Student Financial Information required under Gramm Leach Bliley Act (GLBA), and protection of credit card information received in the course of business. When an activity requires use of protected financial information under Executive Memorandum No. 26, a GLBA Addendum must be added to the contract (the Addendum is attached as an exhibit to Memorandum 26).
[https://nebraska.edu/-/media/unca/docs/offices-and-policies/policies/executive-memorandum/university-of-nebraska-information-security-plan.pdf University of Nebraska Executive Memorandum No. 26] describes protections of Student Financial Information required under Gramm Leach Bliley Act (GLBA), and protection of credit card information received in the course of business. When an activity requires use of protected financial information under Executive Memorandum No. 26, a GLBA Addendum must be added to the contract (the Addendum is attached as an exhibit to Memorandum 26).
==Business Associate Agreement==
==Business Associate Agreement/Addendum==
A business associate relationship exists when a person/entity outside of the ACE performs a function or activity on behalf of the ACE that requires them to use or disclose protected health information (PHI) in order to perform the function. If a business associate relationship exists with no written contract, a business associate agreement must be signed. If there is an existing contract with the business associate, a business associate addendum must be added.  The [https://www.unmc.edu/hipaa/forms/index.html Business Associate Agreement template] can be located at https://www.unmc.edu/hipaa/forms/index.html. Refer to the [https://www.unmc.edu/hipaa/forms/docs/wedi-ba-decision-tree-v2.pdf Business Associate Decision Tree] as needed. All Business Associates are required to implement all HIPAA Security Rule Safeguards. In the event that a vendor cannot meet a specific requirement of the [https://wiki.unmc.edu/index.php/Business_Associate_Agreements_and_Addendums_Procedures Business Associate Agreement or Addendum Procedure], an exception can only be approved by the University’s Office of the Vice President and General Counsel.
A business associate relationship exists when a person/entity outside of the ACE performs a function or activity on behalf of the ACE that requires them to use or disclose protected health information (PHI) in order to perform the function. If a business associate relationship exists with no written contract, a business associate agreement must be signed. If there is an existing contract with the business associate, a business associate addendum must be added.  The [https://www.unmc.edu/hipaa/forms/index.html Business Associate Agreement template] can be located at https://www.unmc.edu/hipaa/forms/index.html. Refer to the [https://www.unmc.edu/hipaa/forms/docs/wedi-ba-decision-tree-v2.pdf Business Associate Decision Tree] as needed. All Business Associates are required to implement all HIPAA Security Rule Safeguards. In the event that a vendor cannot meet a specific requirement of the [[Business Associate Agreement or Addendums Procedure]], an exception can only be approved by the University’s Office of the Vice President and General Counsel.
==Additional Information==
==Additional Information==
*[mailto:sarah.glodencarlson@unmc.edu Chief Compliance Officer]
*[mailto:sarah.glodencarlson@unmc.edu Chief Compliance Officer]
*[mailto:skraftmann@unmc.edu Assistant Vice Chancellor for Business and Finance]
*[mailto:jeffrey.miller@unmc.edu Assistant Vice Chancellor for Business and Finance]
*[[Business Associate Agreements and Addendums Procedures]]
*[[Business Associate Agreements and Addendums Procedures]]
*[https://www.unmc.edu/hipaa/forms/index.html Business Associate Agreement template]  
*[https://www.unmc.edu/hipaa/forms/index.html Business Associate Agreement template]  

Navigation menu