13.1. Purpose:
To ensure appropriate tools, processes and procedures are in place to detect report and manage incidents and breach of protected PHI within the NABIDH Platform and for participating organizations. To establish roles and responsibilities for individuals and HealthCare Facilities that have access to NABIDH managed PHI in order to prevent such breach within the NABIDH Platform.
13.2. Scope/ Applicability:
13.2.1. The scope of this document is the implementation of breach management for the NABIDH platform among DHA licensed healthcare providers in the Emirate of Dubai.
13.2.2. This policy applies to NABIDH, and to all individuals and Healthcare facilities that have access to NABIDH managed PHI, including:
13.2.3. DHA and their Business Associates or any subcontractors, who is responsible for oversight of NABIDH platform.
13.2.4. Public Health and their Business Associates or any subcontractors who is responsible for exchange of PHI.
13.2.5. NABIDH and their Business Associates or any subcontractors who is responsible for exchange of PHI.
13.2.6 Healthcare Facilities or Their Business Associates or any subcontractors who is responsible for submission, collection and use of PHI.
13.2.7. Subject of Care or the Subject of Care Agent who is responsible for providing appropriate consent to their PHI.