Provide Data in Compliance with Applicable Laws LEA shall provide Student Data for the purposes of obtaining the Services in compliance with all applicable federal, state, and local privacy laws, rules, and regulations, all as may be amended from time to time.
Governmental Access to Records BA shall make its internal practices, books and records relating to the use and disclosure of Protected Information available to CE and to the Secretary of the U.S. Department of Health and Human Services (the “Secretary”) for purposes of determining BA’s compliance with HIPAA [45 C.F.R. Section 164.504(A)(2)(ii)(I)]. BA shall provide CE a copy of any Protected Information and other documents and records that BA provides to the Secretary concurrently with providing such Protected Information to the Secretary.
Compliance with Data Privacy Laws The Company and its Subsidiaries are, and at all prior times were, in material compliance with all applicable state and federal data privacy and security laws and regulations, including, without limitation, HIPAA, and the Company and its Subsidiaries are in compliance with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) as applicable (collectively, the “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company and its Subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling, and analysis of Personal Data (the “Policies”). The Company and its Subsidiaries have, to the knowledge of the Company, at all times made all disclosures to users or customers required by applicable laws and regulatory rules or requirements, and none of such disclosures made or contained in any Policy have, to the knowledge of the Company, been inaccurate or in violation of any applicable laws and regulatory rules or requirements in any material respect. The Company further certifies that neither it nor any Subsidiary: (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation, or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposes any obligation or liability under any Privacy Law.
Litigation; Compliance with Laws (a) Except as set forth on Schedule 3.09, there are no actions, suits or proceedings at law or in equity or by or before any Governmental Authority now pending or, to the knowledge of Holdings or the Borrower, threatened against or affecting Holdings or the Borrower or any Subsidiary or any business, property or rights of any such person (i) that involve any Loan Document or the Transactions or (ii) as to which there is a reasonable possibility of an adverse determination and that, if adversely determined, could reasonably be expected, individually or in the aggregate, to result in a Material Adverse Effect.