The URL can be used to link to this page

Browse Search

Home My WebLink About20260790 Resolution Approve Agreement to Provide Mental Health and Behavioral Health Services, and HIPAA Business Associate Agreement, and Authorize Chair to Sign — North Range Behavioral Health Whereas, the Board of County Commissioners of Weld County, Colorado, pursuant to Colorado statute and the Weld County Home Rule Charter, is vested with the authority of administering the affairs of Weld County, Colorado, and Whereas, the Board has been presented with an Agreement to Provide Mental Health and Behavioral Health Services and a HIPAA Business Associate Agreement between the County of Weld, State of Colorado, by and through the Board of County Commissioners of Weld County, on behalf of the Department of Public Health and Environment, and North Range Behavioral Health, commencing April 1 , 2026, and ending March 30, 2027, with further terms and conditions being as stated in said agreements, and Whereas, after review, the Board deems it advisable to approve said agreements, copies of which are attached hereto and incorporated herein by reference. Now, therefore, be it resolved by the Board of County Commissioners of Weld County, Colorado, that the Mental Health and Behavioral Health Services Agreement and the HIPAA Business Associate Agreement between the County of Weld, State of Colorado, by and through the Board of County Commissioners of Weld County, on behalf of the Department of Public Health and Environment, and North Range Behavioral Health, be, and hereby are, approved. Be it further resolved by the Board that the Chair be, and hereby is, authorized to sign said agreements. The Board of County Commissioners of Weld County, Colorado, approved the above and foregoing Resolution, on motion duly made and seconded, by the following vote on the 8th day of April, A.D., 2026, nunc pro tunc April 1 , 2026: [Insert Resolution Attestation Block Post Meeting] 2026-0790 HL0059 :. � , 1 1 , Memorandum 86 TO: Scott James, Chair Board of County Commissioners COUNTY, CO FROM: Jason Chessher DATE: 03/31/2026 SUBJECT: North Range MOU The Weld County Department of Public Health & Environment (WCDPHE) developed an agreement with North Range Behavioral Health to embed a North Range employee with WCDPHE outreach activities to provide mental and behavioral health navigation and services. This program has been fully funded by a grant from The Weld Trust. A work session was held on March 30, 2026 to discuss the agreement and the Board approved the program and placement of the agreement on a future agenda for formal consideration. I recommend approval of the agreement with North Range Behavioral Health to provide mental and behavioral health to WCDPHE clients. 2026-0790 BOCC STAFF USE Date Set: Time: BOARD OF COUNTY COMMISSIONERS WORK SESSION REQUEST WORK SESSION TITLE: North Range Behavioral Health MOU DEPARTMENT: Public Health & Environment DATE: March 11, 2026 PERSON REQUESTING: Jason Chessher EXTENSION: 2293 Has your Commissioner Coordinator/BOCC Chair approved the work session? ® Yes, Commissioner Coordinator ❑ Yes, Commissioner Chair Does this have Financial/Procurement or Human Resources/Administration impacts? ❑ Yes. Please see next question. ® No. Please move forward with WS request. If yes, have you discussed the impacts with Jennifer Oftelie and Jill Scott? ❑ Yes. Please move forward with WS request. ❑ No. Please reach out to them prior to WS request. Recommended length of time needed for discussion: ® 15 Minutes ❑ 30 Minutes ❑ Other(list time): In addition to yourself and the board, please list who should attend: Shaun May, Bill Fritz, Sonya Oster, Olivia Egen Brief description of the issue: ❑ Informational only ® Action needed Commissioner Maxey requested a work session to provide an overview of a proposed MOU with North Range Behavioral Health to embed behavioral health services and navigation with Health Department outreach. Options for the board: 1. Support the MOU & partnership. 2. Decline the MOU/partnership If the Board chooses option 1, the MOU will be placed on a future agenda for formal consideration. Recommendation to the board: Support the MOU. AGREEMENT TO PROVIDE MENTAL HEALTH AND BEHAVIORAL HEALTH SERVICES This Agreement to Provide Mental Health Services("Agreement") by and between North Range Behavioral Health,a Colorado nonprofit corporation with an address of 1300 North 17th Ave,Greeley,CO 80631 ("North Range") and the Board of Weld County Commissioners,on behalf of the Weld County Department of Public Health and Environment is entered into on April 15t, 2026. BACKGROUND INFORMATION A. Weld County Department of Public Health and Environment sees the need of community mental health and behavioral health services for its residents and would like to establish those services on their mobile unit. B. North Range Behavioral Health wishes to provide those services. Therefore, in consideration of mutual promises,covenants and agreements contained herein,Weld County Department of Public Health and Environment and North Range agree as follows: AGREEMENT 1. Term. The term of this Agreement shall begin on April 15i, 2026, and shall end on March 30th, 2027, unless otherwise terminated as provided herein. 2. Payment. No money will be exchanged between North Range and the Weld County Department of Public Health and Environment. 3. Responsibilities of Weld County Department of Public Health and Environment. During the term of this Agreement,Weld County Department of Public Health and Environment agrees to do the following: a. Identify individuals who are eligible for and in need of mental health and behavioral health services; b. Assure the appropriate releases of information for persons receiving mental health services, including but not limited to consents and/or authorizations required pursuant to the Health Insurance Portability and Accountability Act of 1996 ("HIPAA"),the Confidentiality of Alcohol and Drug Abuse Patient records (known as 42 CFR Part 2),and other state and federal regulations governing privacy of mental health substance use disorder patient records and services, are provided to North Range; c. Provide appropriate space at the identified locations to be used by North Range staff to provide mental health and behavioral health services,consultation, and psycho-education; d. Provide orientation to the provider of mental health and behavioral health services with respect to regulations and procedures at the sites and on mobile unit;and 4. Responsibilities of North Range. During the term of this Agreement, North Range agrees to do the following: e. Assign a provider of mental health and behavioral health services who has at least a Bachelor's degree in psychology, or a related field,to provide forty(40) hours per 1IPage week of direct mental health and behavioral health services or supports, consultation,case management,crisis management,and psycho-education to eligible youth and their families at designated mobile site. Services will include, but are not limited to: i. Clinical services to uninsured or underinsured students not qualified for other assistance to include assessment,treatment planning,and intervention in group, individual,or family modalities; ii. Group therapies and early intervention to youth who do not require formal mental health care, but who would benefit from early intervention in order to reduce the likelihood of their requiring mental health or substance use treatment in the future; iii. Case consultation with Weld County Department of Public Health and Environment staff to assist in improving understanding of childhood mental health,early symptom patterns, behavioral issues,and/or strategies for improving student success in the community; iv. Assessment of youth and family needs with collaborative case management and linkage to those services within the community; v. Provide parenting skill-building psycho-education to caregivers in order to facilitate better understanding of child development, behavior management, family communication skills,trauma, and resiliency in children; vi. Provide caregiver consultation and engagement to those referred by staff due to concerns regarding a youth's socio-emotional or behavioral presentation; vii. Provide staff and community training around agreed upon mental health topics, including Youth-Mental Health First Aid. f. Assure that appropriate releases of information are obtained for students receiving behavioral health services including but not limited to consents and/or authorizations required pursuant to the Health Insurance Portability and Accountability Act("HIPAA");the Confidentiality of Alcohol and Drug Abuse Patient records (42 CFR Part 2); and g. Maintain appropriate clinical records in the electronic health record of North Range for all clients who are provided direct services,consultations,evaluations and referrals h. Provide the assigned provider with a cell phone and laptop for use,to be encrypted per North Range technology policies and procedures. 5. Background Checks. North Range warrants that it has complied with the provisions of Colorado Revised Statute 22-32-122(1.5),and that North Range has caused to be performed a criminal background check for any person providing services under this Agreement, including any subcontractor or agent of North Range, if the person provides direct services to youth, including but not limited to transportation, instruction,or food services. The background checks required by this paragraph shall be required for only those persons who have regular, but not incidental, contact with youth at least once a month. The results of such background check will be made 2I available to Weld County Department of Public Health and Environment upon request. 6. Protection of Confidential Information. Both parties agree to comply with all applicable federal and state laws and/or regulations regarding the security and confidentiality of health information and records, including but not limited to HIPAA. The obligation of the parties hereto, including their employees,to protect confidential information shall survive the termination of this Agreement. 7. Relationship to Parties. Nothing herein shall create or be construed as creating a partnership,joint venture or agency relationship between the parties and no party shall have the authority to bind the other in any respect. The staff providing behavioral health services hereunder shall be and at all times remain employees of North Range and not employees of Weld County Department of Public Health and Environment. Accordingly, North Range shall have sole responsibility for paying the salary, including benefits, of the provider of behavioral health services hereunder, including payment of all required withholdings,and North Range shall maintain such malpractice,general liability,workers'compensation and unemployment insurance coverage as are required by the State of Colorado. North Range shall have sole responsibility and authority for controlling, directing and supervising the performance and details of the provider(s)'services, including the time and manner in which the provider(s) render the services to be performed under this Agreement. Each party shall furnish a certificate of insurance to the other party upon request. North Range shall give Weld County Department of Public Health and Environment timely notification in writing of any and all pending or threatened claims against North Range and/or Weld County Department of Public Health and Environment hereunder. 8. Indemnification. North Range shall defend and indemnify and hold harmless the Weld County Department of Public Health and Environment and its directors, officers,and employees against all third party allegations, claims,actions, suits,demands,damages, liabilities,obligations, losses, settlements,judgments,costs and expenses(including without limitation attorneys'fees and costs) which arise out of, relate to or result from any act or omission of North Range or its employees. 9. Termination. Either party may terminate this Agreement without cause upon giving thirty(30) days written notice to the other party. Either party may terminate this Agreement without notice in the event that the continuation of the services and/or obligations hereunder would be detrimental to the health,welfare,or safety of youth or North Range personnel. 10. Dispute Resolution. The parties agree to attempt in good faith to resolve disagreements concerning the implementation of this Agreement first through informal discussions between parties who disagree. If such discussions do not resolve the disagreement,each party shall submit a statement concerning the disagreement and his/her position with respect thereto to his/her immediate supervisor,and the two supervisors shall meet and attempt to resolve the disagreement. In the event a resolution cannot be reached,either party may terminate this Agreement pursuant to paragraph 9 above. 11. Miscellaneous Provisions. i. No Third-Party Beneficiaries. This Agreement shall not confer any rights or remedies upon anyone other than the Parties and their respective successors and permitted transferees or assigns. j. Entire Agreement. This Agreement contains all of the conditions,terms, and provisions hereof and constitutes the entire understanding of the parties and all prior representations, understandings,and discussions of the parties relating to the 3IPage subject matter hereof are merged herein and are superseded by this Agreement. k. Amendment. This Agreement may be modified or amended only by a writing signed by both parties hereto. I. Notice. Any notice required or permitted under this Agreement shall be in writing and shall be effective upon personal delivery,subject to verification of service or acknowledgment of receipt or three(3)days after mailing,when sent by certified mail, postage prepaid to the following: If to North Range: North Range Behavioral Health Kim Collins,Chief Executive Officer 1300 North 17th Avenue Greeley, CO 80631 If to Weld County Department of Public Health and Environment: Weld County Dept. of Public Health and Environment Shaun May, Division Director 1555 N. 17th Ave Greeley,CO 80634 The parties may rely on the addresses set forth above unless notified in writing of a change. m. Invalidity. If any provision of this Agreement is determined by a court of competent jurisdiction to be unenforceable or invalid for any reason,the remainder of this Agreement shall remain in effect unless otherwise terminated by one or both parties in accordance with the terms set forth herein. n. Constitution. Nothing herein shall constitute an obligation of Weld County Department of Public Health and Environment in violation of Article X,Section 20 of the Constitution of the State of Colorado. Specifically,all obligations of Weld County Department of Public Health and Environment which extend beyond the current fiscal year are subject to appropriation,and failure to appropriate funds shall be a defense to any claim against Weld County Department of Public Health and Environment hereunder. o. Binding Effect;Assignment. This Agreement shall be binding upon the parties hereto,their successors and permitted assigns. Neither party may assign its rights, duties,or obligations hereunder without express written consent of the other party. p. Governing Law. This Agreement is executed in the City of Greeley,Weld County, Colorado,and it shall be interpreted under the laws of the State of Colorado. q. Non-Waiver. The parties hereto understand and agree that the County is relying on, and does not waive or intend to waive by any provision of this Contract, the monetary limitations or any other immunities, rights, benefits,and protections, provided by the Colorado Governmental Immunity Act§§24-10-101 et seq., as from time to time amended, or otherwise available to the County, its subsidiary, associated and/or affiliated entities, successors, or assigns; or its elected officials, employees,agents,and volunteers. Signatures follow on page 5 of this Agreement. 4I IN WITNESS WHEREOF,the parties hereto have executed this Agreement on the dates set forth below: NORTH RANGE BEHAVIORAL HEALTH March 13, 2026 By: Date: Kim Collins Chief Executive Officer Attest: CellA % `'"'l'a Board of County Commissioners By: Cler to Boarit � W d County,Colorado Mk Uk Deputy Clerk to the Board, \\� 0 ott K.lames,Chair Ara 0 8 2326 5I = HIPAA Business Associate Agreement The Board of Weld County Commissioners, on behalf of the Weld County Department of Public Health and Environment acknowledges that it is a "Business Associate" of North Range Behavioral Health ("Covered Entity") as defined by the standards for Privacy of Individually Identifiable Health Information under the Health Insurance Portability and Accountability Act of 1996 ("HIPAA"), as amended by Sections 13400 through 13424 of the Health Information Technology for Economic Clinical Health Act(the"HITECH Act"),which was enacted as part of the American Recovery and Reinvestment Act of 2009 ("ARRA"). In accordance with the terms set forth in the "Business Associate Agreement" the parties hereto shall use reasonable best efforts to protect the privacy of Protected Health Information. 1. Terms and Terminology. 1.1. Covered Entity shall generally have the same meaning as the term "Covered Entity" at 45 C.F.R. § 160.103, and in reference to the party to this Agreement, shall mean North Range Behavioral Health. 1.2. Business Associate. "Business Associate"shall generally have the same meaning as the term "Business Associate" at 45 C.F.R. § 160.103, and in reference to the party to this Agreement, shall mean The Board of Weld County Commissioners, on behalf of the Weld County Department of Public Health and Environment. 1.3. Patient. "Patient"means a patient of"Covered Entity". 1.4. Terms. Terms used,but not defined,in this Privacy Agreement shall have the same meaning as those terms in the Privacy Rule or the Security Rule. 1.5. Privacy Rule. "Privacy Rule" shall mean the standards for Privacy of Individually Identifiable Health Information contained in 45 CFR Parts 160 and 164, Subparts A and E. 1.6. Protected Health Information. "Protected Health Information" and/or "PHP" means information, whether oral or recorded in any form or medium, including demographic information, that: (i) relates to the past, present or future physical or mental health or condition of an individual, the provision of health care to an individual, or the past, present or future payment for the provision of health care to an individual; (ii) identifies the individual, or for which there is a reasonable basis for believing that the information can be used to identify the individual; and(iii)is received by Business Associate from or on behalf of"Covered Entity", or is created by Business Associate for "Covered Entity", or is made accessible to Business Associate by "Covered Entity". PHI includes, without limitation, "Electronic Protected Health Information"and/or"EPHI,"as that term is defined at 45 CFR§ 160.103. 1.7. Patient Record. "Patient Record" means any item, collection, or grouping of information that includes Protected Health Information that is maintained, collected, used, or distributed by "Covered Entity". 1.8. Services Agreement. "Services Agreement" means the Agreement to provide Mental Health and Behavioral Health Services by and between Practice and Business Associate having an effective date of April 1,2026,to which Business Associate Agreement is attached. 1.9. Person. "Person"means any legal entity or individual. Page 1 of 8 Updated 03/05/2026 1.10. Security Rule. "Security Rule" means the Security Standards for the Protection of Electronic Protected Health Information contained in 45 CFR Parts 160 and 164, Subparts A and C. 1.11. Personal Health Records. "Personal Health Records"means electronic records of personal health information, regardless of whether the information has been created or received by "Covered Entity", health plan, employer, or health care clearinghouse, in order to distinguish it from individually identifiable health information that is created or received by"Covered Entity", health plan, employer, or health care clearinghouse. Personal Health Records includes the kinds of records managed, shared and controlled by or primarily for the Patient, but not records managed by or primarily for commercial enterprises,such as life insurance companies. 1.12. Unsecured Protected Health Information. "Unsecured Protected Health Information" and/or"Unsecured PHI"means information that is not secured through the use of a technology or methodology identified by the Secretary of the U.S. Department of Health and Human Services (Secretary) to render the Protected Health Information unusable, unreadable and undecipherable to unauthorized users. 2. Business Associate's Obligations. 2.1. Business Associate Subject to Same Standards and Same Penalties as "Covered Entity". Business Associate will comply with the use and disclosure provisions of the Confidentiality of Alcohol and Drug Abuse Patient Records,42 C.F.R. Part 2; and the HIPAA Privacy Rule and the security standards regarding administrative, physical and technical safeguards of the Security Rule. As set forth in the HITECH Act, Business Associate will be subject to civil and criminal penalties for violation of the Privacy Rule or the Security Rule. 2.2. Permitted Uses and Disclosures. Business Associate shall use or disclose PHI solely as necessary to perform the services set forth in the Services Agreement, and as permitted or required by this Privacy Agreement or as required by law. 2.3. Safeguards. Business Associate shall use appropriate privacy and security measures to prevent the use or disclosure of PHI other than as permitted under this Privacy Agreement. Such measures shall include, but not be limited to: (i) implementing and maintaining appropriate administrative, physical, and technical safeguards that reasonably and appropriately protect the confidentiality, integrity, and availability of any EPHI that it creates, receives, maintains, or transmits on behalf of"Covered Entity",as required by the Privacy Rule and Security Rule; and (ii)taking measures to ensure compliance with standards and implementation specifications with respect to the administrative, physical, and technical safeguards, as required by 42 C.F.R. Part 2 and 45 C.F.R. §§ 164.308, 164.310, 164.312,and 164.316. 2.4. Mitigation. If Business Associate uses or discloses PHI in a manner other than as permitted under this Privacy Agreement, Business Associate shall use its reasonable best efforts to mitigate the effects of the use or disclosure. These efforts shall include,but are not be limited to,ensuring that the improper use of PHI is discontinued immediately, seeking return or destruction of the improperly disclosed PHI, and ensuring that any person to whom PHI was improperly disclosed will not redisclose such information. Page 2 of 8 Updated 03/05/2026 2.5. Duty to Report. Business Associate shall immediately notify"Covered Entity"of any use or disclosure of PHI of which Business Associate is aware that is not expressly authorized under this Privacy Agreement, whether made by Business Associate, its employees, representatives, agents, or subcontractors. Business Associate shall also immediately notify "Covered Entity" of any attempted or successful unauthorized access, use, disclosure, modification, or destruction of information, or interference with the system operations in an information system. Business Associate shall provide in such notice the remedial or other actions taken to correct the unauthorized use or disclosure. 2.6. Agents. Business Associate will ensure that any of its employees, agents, subcontractors, or other third parties with which Business Associate does business are aware of and are bound to abide by Business Associate's obligations to 42 C.F.R. Part 2 and HIPAA under this Privacy Agreement. 2.7. Access to Patient Record. Business Associate understands that a Patient has the right to access the PHI in its Patient Record in accordance with 42 C.F.R Part 2 and HIPAA 45 C.F.R. § 164.524. To provide Patients with access to Patient Records held by Business Associate, Business Associate agrees to provide access to, or copies of, any Patient Record upon request by "Covered Entity". "Covered Entity" shall request access by giving at least 48 hours notice by facsimile,telephone,or electronic mail. Business Associate may charge"Covered Entity"for the reasonable costs of copying only if"Covered Entity" is allowed under state and federal law to recoup such costs from the Patient. 2.8. Amendments to Patient Record. Business Associate understands that a Patient may have the right to amend the PHI in its Patient Record. To provide Patients with the ability to amend PHI in Patient Records held by Business Associate, Business Associate agrees to make amendments to any Patient Record upon request of "Covered Entity". Business Associate shall make such amendment within 30 days of the written request of"Covered Entity". 2.9. Duty to Document Disclosures. a. Business Associate will document each disclosure it makes of PHI to any other person, including"Covered Entity". The documentation shall include: i. The date of the disclosure; ii. The name of the person receiving the PHI, and, if known, the address of such person;and iii. A brief statement of the purpose of the disclosure or,instead of such statement,a copy of the request for disclosure. b. Notwithstanding Section 2.9(a), Business Associate is not required to document the following disclosures: i. Unless otherwise required by Section 2.10, disclosures made for the purpose of, or incidental to,carrying out treatment,payment,or health care operations; ii. Disclosures made prior to April 14,2003; iii. Disclosures made to provide the Patient with access to its PHI under Section 2.7; Page 3 of 8 Updated 03/05/2026 iv. Disclosures made pursuant to a Patient's written authorization; v. Disclosures required by law for national security or intelligence purposes; vi. Disclosures to correctional institutions or law enforcement officials having lawful custody of a Patient; vii. Disclosures made as part of a limited data set; viii. Disclosures made to persons involved in the individual's care;and ix. Disclosures made for notification purposes such as in an emergency. 2.10. Accounting of Disclosures. Business Associate understands that a Patient has the right to an accounting of disclosures of PHI. To provide Patients with such an accounting, Business Associate will make available the documentation Business Associate has collected in accordance with Section 2.9 upon written request of"Covered Entity". Business Associate shall provide the accounting within 30 days of receipt of"Covered Entity's"request. If disclosures were made by Business Associate through the use of an electronic health record, the Patient has the right to receive an accounting of disclosures of personal health records made by Business Associate for treatment,payment,and health care operations during the previous 3 years. 2.11. Minimum Necessary. Business Associate represents and warrants that it will use and disclose PHI in accordance with the Privacy Rule's"minimum necessary"standards. 2.12. Other Uses and Disclosures. Business Associate will not use or disclose Protected Health Information in any manner that would not be permissible under the Privacy Rule or the Security Rule if used or disclosed by"Covered Entity". 2.13. Books and Records and Internal Practices. Business Associate agrees to make all internal practices, books, and records relating to the use and disclosure of PHI available to "Covered Entity" or to the Secretary of the U.S. Department of Health and Human Services (the "Secretary"), in a time and manner designated by "Covered Entity" or the Secretary for the purposes of the Secretary determining"Covered Entity's"compliance with the Privacy Rule and the Security Rule. 2.14. Business Associate's Obligations Regarding Unsecured Protected Health Information. Business Associate shall comply with the following obligations that relate to Unsecured PHI. a. Notification of "Covered Entity". Business Associate will notify "Covered Entity" of any Patient whose Unsecured PHI has been, or is reasonably believed by Business Associate to have been, inappropriately accessed, disclosed, or used. Such notification shall include the names and contact information of the Patients involved and shall be made without unreasonable delay, but in no case later than 30 days following discovery of such breach,unless delayed for law enforcement purposes. b. Notification of Patient. Business Associate will notify the Patient by first class mail or by e-mail (if the Patient has indicated a preference to receive information by e-mail) of any breaches of Unsecured PHI as soon as possible, but in any event, no later than 60 days Page 4 of 8 Updated 03/05/2026 following the discovery of the breach. Business Associate will obtain"Covered Entity's" approval of the form and content of the written notification before its issuance. c. Posting Notice of Breach. In the event the breach involves 10 or more Patients whose contact information is out of date, Business Associate will post a notice of the breach on the home page of its website or in a major print or broadcast media. Business Associate will obtain "Covered Entity's" approval of the form and content of the written notice before its posting. d. Contacting Media Outlets. If a breach involves more than 500 Patients in a single state or jurisdiction, Business Associate will send a notice to prominent media outlets. Business Associate will obtain "Covered Entity's" approval of the form and content of the written notice before its issuance to the media outlets. e. Notice to the Secretary. If a breach involves more than 500 Patients,Business Associate will immediately notify the Secretary. Business Associate will obtain"Covered Entity's" approval of the form and content of the written notice before its issuance. f. Contents of Notice. The notices required under this Section shall include the following: i. A brief description of the breach,including the date of the breach and the date of its discovery,if known; ii. A description of the types of Unsecured PHI involved in the breach; iii. Steps the Patient should take to protect himself/herself from potential harm resulting from the breach; iv. A brief description of actions Business Associate is taking to investigate the breach,mitigate losses,and protect against further breaches; and v. Contact information, including a toll-free telephone number, e-mail address, website or postal address to permit Patient to ask questions or obtain additional information. g. Annual Report to Secretary and Maintenance of Log. Business Associate will submit an annual report to the Secretary of a breach that involved less than 500 Patients during the year and will maintain a written log of breaches involving less than 500 Patients. 3. Obligations of"Covered Entity". 3.1. Notice of Privacy Practices. To the extent that such limitation or restriction may affect Business Associate's use or disclosure of PHI,"Covered Entity"shall provide Business Associate with a copy of its Notice of Privacy Practices,and notify Business Associate of: a. Any limitation(s)in its Notice of Privacy Practices; b. Any changes in,or revocation of,permission by a Patient to use or disclose PHI;and c. Any restriction to the use or disclosure of PHI to which "Covered Entity"has agreed, to the extent that such restriction may affect Business Associate's use or disclosure of PHI. Page 5 of 8 Updated 03/05/2026 3.2. Permissible Requests. "Covered Entity" shall not request Business Associate to use or disclose PHI in any manner that would not be permissible under the Privacy Rule if used or disclosed by"Covered Entity". 4. Term and Termination. 4.1. Term. The Term of this Privacy Agreement shall be effective as of the effective date of the Services Agreement and shall continue in effect until all obligations of the parties have been met, unless terminated by mutual agreement of the parties or as provided in Section 4.2. 4.2. Termination for Cause. "Covered Entity"may immediately terminate this Privacy Agreement and the Services Agreement if,after providing Business Associate written notice of the existence of a material breach of this Privacy Agreement,Business Associate fails to,or is unable to,cure the breach upon mutually agreeable terms within ten(10)days. 4.3. Effect of Termination. a. Except as provided in Section 4.3(b),upon expiration or termination of the Services Agreement for any reason,Business Associate shall return or destroy all PHI,including PHI that is in the possession of subcontractor or agents of Business Associate. Business Associate shall retain no copies of PHI. b. To the extent that it is not feasible for Business Associate to return or destroy all PHI, then i. Business Associate's obligations under this Privacy Agreement shall continue for as long as Business Associate maintains such PHI; and ii. Business Associate's further uses and disclosures of PHI shall be limited to those purposes that make it not feasible for Business Associate to return or destroy the information for as long as Business Associate maintains such PHI. 5. Miscellaneous Provisions. 5.1. Notice. Notices,requests,and other communications that are required to be in writing must be personally delivered,mailed by prepaid certified mail,return receipt requested,or sent by overnight carrier,and must be addressed as follows. Such notice shall be effective upon being mailed or personally delivered. If to"Covered Entity": NORTH RANGE BEHAVIORAL HEALTH Attn:Kimberly Collins 1300 N. 17th Avenue Greeley,CO 80631 If to Business Associate: Weld County Department of Public Health and Environment Attn: Shaun May 1555 N. 17th Ave Greeley,CO 80631 Page 6 of 8 Updated 03/05/2026 t , 5.2. Mutual Representation and Warranty. Business Associate and"Covered Entity"each represents and warrants to the other that all of its employees,agents,representatives,and members of its work force,whose services may be used to fulfill obligations under this Business Associate Agreement and/or the Services Agreement,are or shall be appropriately informed of the terms of this Business Associate Agreement and are under legal obligation to fully comply with all provisions of this Business Associate Agreement. 5.3. Business Associate Warranty. To the extent required by law or regulations,Business Associate warrants that it has implemented a Red Flags Program in accordance with the Federal Trade Commission's Identity Theft Prevention Red Flags Rule, 16 CFR§ 681.1 et seq.,or that it agrees to comply with"Covered Entity's"Red Flags Program. 5.4. No Third Party Beneficiaries. Nothing express or implied in this Business Associates Agreement is intended to confer, or shall confer,any rights,remedies,or liabilities upon any person other than Business Associate and"Covered Entity". 5.5. Effect of Assignment. This Business Associate Agreement shall be binding upon and shall inure to the benefit of Business Associate and"Covered Entity"and their respective transferees, successors and assigns,except that Business Associate shall not have the right to assign or transfer this Privacy Agreement,or Business Associate's rights and obligations hereunder, without"Covered Entity's"prior written consent. Upon assignment or transfer of this Business Associate Agreement,Business Associate shall return or destroy all PHI in accordance with the terms set forth in Section 4.3. 5.6. Regulatory References. A reference in this Privacy Agreement to a section in the Privacy Rule or the Security Rule or a term defined in the Privacy Rule or the Security Rule means the section or definition as in effect or as amended. 5.7. Amendment. Business Associate and"Covered Entity"agree to take such action to amend this Business Associates Agreement as is necessary for"Covered Entity"to comply with the requirements of the Privacy Rule and the Security Rule. 5.8. Survival. The respective rights and obligations of Business Associate under this Business Associates Agreement shall survive the termination of this Business Associates Agreement and the Services Agreement. 5.9. Interpretation. Any ambiguity in this Business Associates Agreement shall be resolved to permit"Covered Entity"to comply with the Privacy Rule and the Security Rule. 5.10. Captions and Headings. The captions and headings in this Business Associates Agreement are included for convenience and reference only,and shall in no way be held or deemed to define, limit,describe,explain,modify,amplify or add to the interpretation,construction or meaning of, or the scope or intent of,this Business Associates Agreement. [Signature Page Follows] Page 7 of 8 Updated 03/05/2026 IN WITNESS WHEREOF, "Covered Entity"and Business Associate have executed or caused the execution of this Privacy Agreement as of the dates set forth below: "Covered Entity": NORTH RANGE BEHAVIORAL HEALTH Y Kimberly Collins Its: Chief Executive Officer Date: April 2, 2026 Business Associate: Board of County Commissioners Weld County, Colorado dosuelmeimir ott K. James, Chair �,� 08 �� I j % Attest: .� r•4J Q, 1861 • sue Clerk to the Board `11 By: W1M afr / an �l, (uN ,� eputy Clerk to the Bo..�. Page 8 of 8 Updated 03/05/2026 20LCo °ICA0 —a ___........1,41 NORTRAN-01 DONNA A4''ORO CERTIFICATE OF LIABILITY INSURANCE DATE(M �� 3/26/2026YYY) THIS CERTIFICATE IS ISSUED AS A MATTER OF INFORMATION ONLY AND CONFERS NO RIGHTS UPON THE CERTIFICATE HOLDER.THIS CERTIFICATE DOES NOT AFFIRMATIVELY OR NEGATIVELY AMEND, EXTEND OR ALTER THE COVERAGE AFFORDED BY THE POLICIES BELOW. THIS CERTIFICATE OF INSURANCE DOES NOT CONSTITUTE A CONTRACT BETWEEN THE ISSUING INSURER(S),AUTHORIZED REPRESENTATIVE OR PRODUCER,AND THE CERTIFICATE HOLDER. IMPORTANT: If the certificate holder is an ADDITIONAL INSURED,the policy(ies)must have ADDITIONAL INSURED provisions or be endorsed. If SUBROGATION IS WAIVED, subject to the terms and conditions of the policy,certain policies may require an endorsement. A statement on this certificate does not confer rights to the certificate holder in lieu of such endorsement(s). PRODUCER ;CONTACT Donna Birleffi Renaissance Insurance Group PHONE (970)297-7710 F°X PO Box 478 (A/C,No,Ext): (A/C,No): _ Windsor,CO 80550 teDA4lkss:donna@team-rig.com INSURER(S)AFFORDING COVERAGE NAIC S INSURER A:Philadelphia Ins.Company INSURED INSURER B:Pinnacol Assurance 41190 North Range Behavioral Health INSURER C:Lloyds of London Underwriters 1300 N 17th Avenue INSURERD: Greeley,CO 80631 INSURER E: INSURER F: COVERAGES CERTIFICATE NUMBER: REVISION NUMBER: THIS IS TO CERTIFY THAT THE POLICIES OF INSURANCE LISTED BELOW HAVE BEEN ISSUED TO THE INSURED NAMED ABOVE FOR THE POLICY PERIOD INDICATED. NOTWITHSTANDING ANY REQUIREMENT, TERM OR CONDITION OF ANY CONTRACT OR OTHER DOCUMENT WITH RESPECT TO WHICH THIS CERTIFICATE MAY BE ISSUED OR MAY PERTAIN, THE INSURANCE AFFORDED BY THE POLICIES DESCRIBED HEREIN IS SUBJECT TO ALL THE TERMS, EXCLUSIONS AND CONDITIONS OF SUCH POLICIES.LIMITS SHOWN MAY HAVE BEEN REDUCED BY PAID CLAIMS. INSR TYPE OF INSURANCE ADDL SUBR POLICY NUMBER POLICY EFF POLICY EXP LIMITS LTR INSD WVD (MWDDIYYYYI IMMIDD/YYYYI A X COMMERCIAL GENERAL LIABILITY EACH OCCURRENCE $ 1,000,000 CLAIMS-MADE X OCCUR PHPK2570291-013 7/1/2025 7/1/2026 DAMAGETORENTED 1,000,000 PREMISES(Ea occurrence) $ X Professional Liab MED EXP(Any one person) $ 20,000 PERSONAL&ADV INJURY $ 1,000,000 GEN'L AGGREGATE LIMIT APPLIES PER: GENERAL AGGREGATE $ 3,000,000 POLICY ja X LOC PRODUCTS-COMP/OP AGG $ 3,000,000 OTHER Empl Benefits $ 1,000,000 COMBINED SINGLE LIMIT 1,000,000 A AUTOMOBILE LIABILITY (Ea accident) $ X ANY AUTO PHPK2570291-013 7/1/2025 7/1/2026 BODILY INJURY(Per person) $ OWNED SCHEDULED AUTOSR ONLY _ AUTOS BODILY INJURYp (Per accident) $ AUTOS ONLY _ NON-OWNEDUOS (Perr acEcident)SAGE $ $ A X UMBRELLA LIAB X OCCUR EACH OCCURRENCE $ 2,000,000 EXCESS LAB CLAIMS-MADE PHUB869863-013 7/1/2025 7/1/2026 AGGREGATE $ 2,000,000 DED X RETENTION$ 10,000 $ B WORKERS COMPENSATION X STATUTE OTH- ER AND EMPLOYERS'LIABILITY 4044331 7/1/2025 7/1/2026 1,000,000 ANY PROPRIETOR/PARTNER/EXECUTIVE Y/N E.L.EACH ACCIDENT $ OFFICERIMEMBER EXCLUDED? N N/A (Mandatory in NH) E.L.DISEASE-EA EMPLOYEE,$ 1,000,000 If yes,describe under 1,000,000 DESCRIPTION OF OPERATIONS below E.L.DISEASE-POLICY LIMIT $ C Privacy/ ES00940406188 7/1/2025 7/1/2026 Cyber Liability 5,000,000 A HIPAA PHSD1807067-018 7/1/2025 7/1/2026 Violation 250,000 DESCRIPTION OF OPERATIONS/LOCATIONS/VEHICLES (ACORD 101,Additional Remarks Schedule,may be attached if more space is required) CERTIFICATE HOLDER CANCELLATION SHOULD ANY OF THE ABOVE DESCRIBED POLICIES BE CANCELLED BEFORE Weld CountyHealth Department THE EXPIRATION DATE THEREOF, NOTICE WILL BE DELIVERED IN P ACCORDANCE WITH THE POLICY PROVISIONS. 1555 North 17th Ave Greeley,CO 80631 AUTHORIZED� REPRESENTATIVEPRES (� ED ACORD 25(2016/03) ©1988-2015 ACORD CORPORATION. All rights reserved. The ACORD name and logo are registered marks of ACORD Contract Form Entity Information Entity Name* Entity ID* New Entity? Please use the job NORTH RANGE BEHAVIORAL SUP-8661 aid linked here to add a HEALTH 0 supplier in Workday. Contract Name* Contract ID Parent Contract ID NORTH RANGE BEHAVIORAL HEALTH MOU 1 051 7 Requires Board Approval Contract Status Contract Lead* YES CTB REVIEW BFRITZ Department Project# Contract Lead Email bfritz@weld.gov;Health- Contracts@weld.gov Contract Description* NORTH RANGE BEHAVIORAL HEALTH MOU Contract Description 2 Contract Type* Department Requested BOCC Agenda Due Date AGREEMENT HEALTH Date* 04/02/2026 04/06/2026 Amount* Department Email $0.00 CM-Health@weld.gov Will a work session with BOCC be required?* HAD Renewable* Department Head Email NO CM-Health- Does Contract require Purchasing Dept. to be DeptHead@weld.gov included?* Automatic Renewal NO County Attorney Grant GENERAL COUNTY IGA ATTORNEY EMAIL County Attorney Email CM- COUNTYATTORNEY@WEL D.GOV If this is a renewal enter previous Contract ID If this is part of a MSA enter MSA Contract ID Note: the Previous Contract Number and Master Services Agreement Number should be left blank if those contracts are not in OnBase Contract Dates Effective Date Review Date* Renewal Date 02/01 /2027 Termination Notice Period Expiration Date* Committed Delivery Date 03/30/2027 Contact Information Contact Info Contact Name Contact Type Contact Email Contact Phone 1 Contact Phone 2 Purchasing Purchasing Approver Purchasing Approved Date Approval Process Department Head Finance Approver Legal Counsel JASON CHESSHER CHRIS D'OVIDIO BYRON HOWELL DH Approved Date Finance Approved Date Legal Counsel Approved Date 03/31 /2026 04/01 /2026 04/01 /2026 Final Approval BOCC Approved Doc ID# AG 040826 BOCC Signed Date Originator BOCC Agenda Date BFRITZ 04/08/2026 Hello