OBLIGATIONS AND ACTIVITIES OF CONTRACTOR AS BUSINESS ASSOCIATE 1. CONTRACTOR agrees not to use or further disclose PHI COUNTY discloses to CONTRACTOR other than as permitted or required by this Business Associate Contract or as required by law.
2. XXXXXXXXXX agrees to use appropriate safeguards, as provided for in this Business Associate Contract and the Agreement, to prevent use or disclosure of PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY other than as provided for by this Business Associate Contract.
3. XXXXXXXXXX agrees to comply with the HIPAA Security Rule at Subpart C of 45 CFR Part 164 with respect to electronic PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY.
4. CONTRACTOR agrees to mitigate, to the extent practicable, any harmful effect that is known to CONTRACTOR of a Use or Disclosure of PHI by CONTRACTOR in violation of the requirements of this Business Associate Contract.
5. XXXXXXXXXX agrees to report to COUNTY immediately any Use or Disclosure of PHI not provided for by this Business Associate Contract of which CONTRACTOR becomes aware. CONTRACTOR must report Breaches of Unsecured PHI in accordance with Paragraph E below and as required by 45 CFR § 164.410.
6. CONTRACTOR agrees to ensure that any Subcontractors that create, receive, maintain, or transmit PHI on behalf of CONTRACTOR agree to the same restrictions and conditions that apply through this Business Associate Contract to CONTRACTOR with respect to such information.
7. CONTRACTOR agrees to provide access, within fifteen (15) calendar days of receipt of a written request by COUNTY, to PHI in a Designated Record Set, to COUNTY or, as directed by COUNTY, to an Individual in order to meet the requirements under 45 CFR § 164.524. If CONTRACTOR maintains an Electronic Health Record with PHI, and an individual requests a copy of such information in an electronic format, CONTRACTOR shall provide such information in an electronic format.
8. CONTRACTOR agrees to make any amendment(s) to PHI in a Designated Record Set that COUNTY directs or agrees to pursuant to 45 CFR § 164.526 at the request of COUNTY or an Individual, within thirty (30) calendar days of receipt of said request by COUNTY. XXXXXXXXXX agrees to notify COUNTY in writing no later than ten (10) calendar days after said amendment is completed.
9. CONTRACTOR agrees to make internal practices, books, and records, including policies and procedures, relating to the use and disclosure of PHI received from, or created or received by CONTRACTOR on behalf of, COUNTY available to COUNTY and the Secretary in a time and manner as determined by COUNTY or as designated by the Secretary for purposes of the Secretary determining COUNTY’S compliance with the HIPAA Privacy Rule.
10. CONTRACTOR agrees to document any Disclosures of PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY, and to make information related to such Disclosures available as would be required for COUNTY to respond to a request by an Individual for an accounting of Disclosures of PHI in accordance with 45 CFR § 164.528.
11. CONTRACTOR agrees to provide COUNTY or an Individual, as directed by COUNTY, in a time and manner to be determined by COUNTY, that information collected in accordance with the Agreement, in order to permit COUNTY to respond to a request by an Individual for an accounting of Disclosures of PHI in accordance with 45 CFR § 164.528.
12. XXXXXXXXXX agrees that to the extent CONTRACTOR carries out COUNTY’s obligation under the HIPAA Privacy and/or Security rules CONTRACTOR will comply with the requirements of 45 CFR Part 164 that apply to COUNTY in the performance of such obligation.
13. If CONTRACTOR receives Social Security data from COUNTY provided to COUNTY by a state agency, upon request by COUNTY, CONTRACTOR shall provide COUNTY with a list of all employees, subcontractors and agents who have access to the Social Security data, including employees, agents, subcontractors and agents of its subcontractors.
14. CONTRACTOR will notify COUNTY if CONTRACTOR is named as a defendant in a criminal proceeding for a violation of HIPAA. COUNTY may terminate the Agreement, if CONTRACTOR is found guilty of a criminal violation in connection with HIPAA. COUNTY may terminate the Agreement, if a finding or stipulation that CONTRACTOR has violated any standard or requirement of the privacy or security provisions of HIPAA, or other security or privacy laws are made in any administrative or civil proceeding in which CONTRACTOR is a party or has been joined. COUNTY will consider the nature and seriousness of the violation in deciding whether or not to terminate the Agreement.
Organizational Expenses; Liabilities of the Holders (a) The Servicer shall pay organizational expenses of the Issuer as they may arise.
(b) No Certificateholder (including the Seller if the Seller becomes a Certificateholder) shall have any personal liability for any liability or obligation of the Issuer.
Formation or Acquisition of Subsidiaries Notwithstanding and without limiting the negative covenants contained in Sections 7.3 and 7.7 hereof, at the time that Borrower or any Guarantor forms any direct or indirect Subsidiary or acquires any direct or indirect Subsidiary after the Effective Date, Borrower and such Guarantor shall (a) cause such new Subsidiary to provide to Bank a joinder to this Agreement to become a co-borrower hereunder or a Guaranty to become a Guarantor hereunder, together with such appropriate financing statements and/or Control Agreements, all in form and substance satisfactory to Bank (including being sufficient to grant Bank a first priority Lien (subject to Permitted Liens) in and to the assets of such newly formed or acquired Subsidiary), (b) provide to Bank appropriate certificates and powers and financing statements, pledging all of the direct or beneficial ownership interest in such new Subsidiary, in form and substance satisfactory to Bank; and (c) provide to Bank all other documentation in form and substance satisfactory to Bank, including one or more opinions of counsel satisfactory to Bank, which in its opinion is appropriate with respect to the execution and delivery of the applicable documentation referred to above. Any document, agreement, or instrument executed or issued pursuant to this Section 6.13 shall be a Loan Document.
Opinion of Special Intellectual Property Counsel for the Company On the Closing Date, the Representative shall have received the opinion of Mxxxxx, Xxxxx & Bockius LLP, as special intellectual property counsel for the Company, dated the Closing Date and addressed to the Representative, in a form reasonably acceptable to the Representative.
Cooperation of Seller with a Reconstitution The Seller and the Purchaser agree that with respect to some or all of the Mortgage Loans, after the related Closing Date, on one or more dates (each, a "Reconstitution Date") at the Purchaser's sole option, the Purchaser may effect a sale (each, a "Reconstitution") of some or all of the Mortgage Loans then subject to this Agreement, without recourse, to:
(i) Fannie Mae under its Cash Purchase Program or MBS Program (Speciax Xxxxixxxg Option) (each, a "Fannie Mae Transfer"); or
(ii) Freddie Mac (the "Freddie Mxx Xxxnxxxr"); or
(iii) one or more third party purchasers in one or more Whole Loan Transfers; or
(iv) one or more trusts or other entities to be formed as part of one or more Securitization Transfers. The Seller, on behalf of itself and the Interim Servicer, agrees to execute in connection with any Agency Transfer, any and all pool purchase contracts, and/or agreements reasonably acceptable to the Seller and the Interim Servicer, if applicable, among the Purchaser, the Seller and/or the Interim Servicer, Fannie Mae or Freddie Mac (as the case may be) and any servicer in connxxxxxx xxxh a Whole Loan Transfer, a seller's warranties and servicing agreement or a participation and servicing agreement in form and substance reasonably acceptable to the parties, and in connection with a Securitization Transfer, an Assignment and Recognition Agreement substantially in the form attached hereto as Exhibit I (collectively, the agreements referred to herein as designated, the "Reconstitution Agreements"), together with an opinion of counsel with respect to such Reconstitution Agreements. With respect to each Whole Loan Transfer and each Securitization Transfer entered into by the Purchaser, the Seller, on behalf of itself and the Interim Servicer, agrees:
(1) to cooperate fully with the Purchaser and any prospective purchaser with respect to all reasonable requests and due diligence procedures;
(2) to execute, deliver and perform all Reconstitution Agreements reasonably required by the Purchaser (provided Seller and Interim Servicer, if applicable, shall be given adequate time to review and negotiate in good faith such agreements);
(3) to restate the representations and warranties set forth in Subsections 9.01 and 9.02 as of the Reconstitution Date or make the representations and warranties set forth in the related selling/servicing guide of the servicer or issuer, as the case may be, or such representations or warranties as may be required by any rating agency or prospective purchaser of the related securities or such Mortgage Loans in connection with such Reconstitution; provided, that the representations and warranties contained in Subsection 9.02(m) shall be made as of the related Closing Date; and provided, further, that the representation and warranty contained in Subsection 9.02
(a) (with respect to information regarding stated principal balances and due dates), (b), the first sentence of (c), (d), (f) (other than the fifth and the seventh sentences), the first sentence of (h), the first and last sentences of (p), the first sentence of (q), (r), the first two sentences of (w), (x), (ff), (hh), (ii) (other than the first and fourth sentences), (ll), (rr), (uu) and (ggg) shall be made only as of the related Transfer Date. Notwithstanding the provisos set forth in this clause (3), the Seller shall remain liable for any breaches following the date of its restatement of the representations and warranties set forth in Subsections 9.01 and 9.02 to the extent the actions of the Seller, Interim Servicer or any of their Affiliates contributed to such breaches;
(4) to deliver to Purchaser and any prospective purchaser within five (5) Business Days after written request by Purchaser or prospective purchaser, information, in form and substance satisfactory to Purchaser (provided with respect to (a) and (b) below only if the Mortgage Loans are 20% or more of the pool of assets included in such Securitization Transfer) and such prospective purchaser, with respect to each originator of the Mortgage Loans, required by Item 1110 of Regulation AB, which as of the date hereof requires the following information: (a) the originator's form of organization; and (b) to the extent material in the good faith judgment of the Purchaser, a description of the originator's origination program and how long the originator has been engaged in originating residential mortgage loans, which description must include a discussion of the originator's experience in originating mortgage loans of the same type as the Mortgage Loans and, if material in the good faith judgment of the Purchaser, information regarding the size and composition of the originator's origination portfolio as well as information that may be material, in the good faith judgment of the Purchaser, to an analysis of the performance of the Mortgage Loans, such as the originators' credit-granting or underwriting criteria for mortgage loans of the same type as the Mortgage Loans; and
(5) to deliver to the Purchaser and any prospective purchaser within five (5) Business Days after written request by the Purchaser, static pool information deliverable pursuant to Regulation AB relating to the mortgage loans that were originated by the Seller, which are of the same type as the Mortgage Loans, and (i) for the period during which such mortgage loans were serviced by the Seller or its agent, or (ii) were previously securitized and publicly offered by the Seller or its affiliate as the sponsor, or (iii) were included in static pool information provided by the Seller in connection with a public securitization of mortgage loans by the Seller or its affiliate, or (iv) such information as provided to the Seller by any third party purchaser or servicer (other than the Purchaser or a servicer designated by such Purchaser) together with indemnification therefor (collectively, the "Static Pool Information"). Such Static Pool Information shall be prepared by the Seller in accordance with the requirements of Regulation AB. To the extent that there is reasonably available to the Seller Static Pool Information with respect to more than one mortgage loan type, the Purchaser or any Depositor shall be entitled to specify whether some or all of such information shall be provided pursuant to clause (5) above. A vintage origination year represents mortgage loans originated during the same year. Such Static Pool Information shall be for the prior five years or for so long as the originator has been originating (in the case of data by vintage origination year) or securitizing (in the case of data by prior securitized pools) such mortgage loans, if originating for less than five years. The Static Pool Information for each vintage origination year or prior securitized pools, as applicable, shall be presented no less frequently than quarterly increments, to the extent material in the good faith judgment of the Purchaser, over the life of the mortgage loans included in the vintage origination year or prior securitized pool. The content of such Static Pool Information may be in the form customarily provided by the Seller, and need not be customized for the Purchaser or any assignee or designee thereof. The Seller and the Purchaser agree that either (i) the Seller shall provide all Static Pool Information, as described above, or (ii) solely with respect to the period of time prior to January 1, 2006, the Seller shall represent and warrant that it is unable without unreasonable effort or expense to provide Static Pool Information.
Delivery of Opinion of Counsel in Connection with Substitutions and Repurchases (a) Notwithstanding any contrary provision of this Agreement, no substitution pursuant to Section 2.02 or 2.03 shall be made more than 90 days after the Closing Date unless the Seller delivers to the Trustee an Opinion of Counsel, which Opinion of Counsel shall not be at the expense of either the Trustee or the Trust Fund, addressed to the Trustee, to the effect that such substitution will not (i) result in the imposition of the tax on "prohibited transactions" on the Trust Fund or contributions after the Startup Date, as defined in sections 860F(a)(2) and 860G(d) of the Code, respectively or (ii) cause any REMIC created under this Agreement to fail to qualify as a REMIC at any time that any Certificates are outstanding.
(b) Upon discovery by the Depositor, the Seller, the Master Servicer or the Trustee that any Mortgage Loan does not constitute a "qualified mortgage" within the meaning of section 860G(a)(3) of the Code, the party discovering such fact shall promptly (and in any event within five Business Days of discovery) give written notice thereof to the other parties. In connection therewith, the Trustee shall require the Seller, at the Seller's option, to either (i) substitute, if the conditions in Section 2.03(c) with respect to substitutions are satisfied, a Substitute Mortgage Loan for the affected Mortgage Loan, or (ii) repurchase the affected Mortgage Loan within 90 days of such discovery in the same manner as it would a Mortgage Loan for a breach of representation or warranty made pursuant to Section 2.03. The Trustee shall reconvey to the Seller the Mortgage Loan to be released pursuant hereto in the same manner, and on the same terms and conditions, as it would a Mortgage Loan repurchased for breach of a representation or warranty contained in Section 2.03.
Foreign-Owned Companies in Connection with Critical Infrastructure If Texas Government Code, Section 2274.0102(a)(1) (relating to prohibition on contracts with certain foreign-owned companies in connection with critical infrastructure) is applicable to this Contract, pursuant to Government Code Section 2274.0102, Contractor certifies that neither it nor its parent company, nor any affiliate of Contractor or its parent company, is: (1) majority owned or controlled by citizens or governmental entities of China, Iran, North Korea, Russia, or any other country designated by the Governor under Government Code Section 2274.0103, or (2) headquartered in any of those countries.
Respective Liabilities of the Depositor and the Servicer The Depositor and the Servicer shall each be liable in accordance herewith only to the extent of the obligations specifically and respectively imposed upon and undertaken by them herein.
Limitation on Out-of-State Litigation - Texas Business and Commerce Code § 272 This is a requirement of the TIPS Contract and is non-negotiable. Texas Business and Commerce Code § 272 prohibits a construction contract, or an agreement collateral to or affecting the construction contract, from containing a provision making the contract or agreement, or any conflict arising under the contract or agreement, subject to another state’s law, litigation in the courts of another state, or arbitration in another state. If included in Texas construction contracts, such provisions are voidable by a party obligated by the contract or agreement to perform the work. By submission of this proposal, Vendor acknowledges this law and if Vendor enters into a construction contract with a Texas TIPS Member under this procurement, Vendor certifies compliance.
Obligations and Activities of Business Associates (1) Business Associate agrees not to use or disclose PHI other than as permitted or required by this Section of the Contract or as Required by Law.
(2) Business Associate agrees to use and maintain appropriate safeguards and comply with applicable HIPAA Standards with respect to all PHI and to prevent use or disclosure of PHI other than as provided for in this Section of the Contract and in accordance with HIPAA Standards.
(3) Business Associate agrees to use administrative, physical and technical safeguards that reasonably and appropriately protect the confidentiality, integrity, and availability of electronic Protected Health Information that it creates, receives, maintains, or transmits on behalf of the Covered Entity.
(4) Business Associate agrees to mitigate, to the extent practicable, any harmful effect that is known to the Business Associate of a use or disclosure of PHI by Business Associate in violation of this Section of the Contract.
(5) Business Associate agrees to report to Covered Entity any use or disclosure of PHI not provided for by this Section of the Contract or any Security Incident of which it becomes aware.
(6) Business Associate agrees, in accordance with 45 C.F.R. 502(e)(1)(ii) and 164.308(d)(2), if applicable, to ensure that any subcontractors that create, receive, maintain or transmit PHI on behalf of the Business Associate, agree to the same restrictions, conditions, and requirements that apply to the business associate with respect to such information.
(7) Business Associate agrees to provide access (including inspection, obtaining a copy or both), at the request of the Covered Entity, and in the time and manner designated by the Covered Entity, to PHI in a Designated Record Set, to Covered Entity or, as directed by Covered Entity, to an Individual in order to meet the requirements under 45 C.F.R. § 164.524. Business Associate shall not charge any fees greater than the lesser of the amount charged by the Covered Entity to an Individual for such records; the amount permitted by state law; or the Business Associate’s actual cost of postage, labor and supplies for complying with the request.
(8) Business Associate agrees to make any amendments to PHI in a Designated Record Set that the Covered Entity directs or agrees to pursuant to 45 C.F.R. § 164.526 at the request of the Covered Entity, and in the time and manner designated by the Covered Entity.
(9) Business Associate agrees to make internal practices, books, and records, including policies and procedures and PHI, relating to the use and disclosure of PHI received from, or created, maintained, transmitted or received by, Business Associate on behalf of Covered Entity, available to Covered Entity or to the Secretary in a time and manner agreed to by the parties or designated by the Secretary, for purposes of the Secretary investigating or determining Covered Entity’s compliance with the HIPAA Standards.
(10) Business Associate agrees to document such disclosures of PHI and information related to such disclosures as would be required for Covered Entity to respond to a request by an Individual for an accounting of disclosures of PHI in accordance with 45 C.F.R. § 164.528 and section 13405 of the HITECH Act (42 U.S.C. § 17935) and any regulations promulgated thereunder.
(11) Business Associate agrees to provide to Covered Entity, in a time and manner designated by the Covered Entity, information collected in accordance with subsection (g)(10) of this Section of the Contract, to permit Covered Entity to respond to a request by an Individual for an accounting of disclosures of PHI in accordance with 45 C.F.R. § 164.528 and section 13405 of the HITECH Act (42 U.S.C. § 17935) and any regulations promulgated thereunder. Business Associate agrees at the Covered Entity’s direction to provide an accounting of disclosures of PHI directly to an individual in accordance with 45 C.F.R. § 164.528 and section 13405 of the HITECH Act (42 U.S.C. § 17935) and any regulations promulgated thereunder.
(12) Business Associate agrees to comply with any State or federal law that is more stringent than the Privacy Rule.
(13) Business Associate agrees to comply with the requirements of the HITECH Act relating to privacy and security that are applicable to the Covered Entity and with the requirements of 45 C.F.R. §§ 164.504(e), 164.308, 164.310, 164.312, and 164.316.
(14) In the event that an Individual requests that the Business Associate
(A) restrict disclosures of PHI;
(B) provide an accounting of disclosures of the Individual’s PHI;
(C) provide a copy of the Individual’s PHI in an Electronic Health Record; or
(D) amend PHI in the Individual’s Designated Record Set the Business Associate agrees to notify the Covered Entity, in writing, within five Days of the request.
(15) Business Associate agrees that it shall not, and shall ensure that its subcontractors do not, directly or indirectly, receive any remuneration in exchange for PHI of an Individual without
(A) the written approval of the Covered Entity, unless receipt of remuneration in exchange for PHI is expressly authorized by this Contract and
(B) the valid authorization of the Individual, except for the purposes provided under section 13405(d)(2) of the HITECH Act, (42 U.S.C. § 17935(d)(2)) and in any accompanying regulations.
(16) Obligations in the Event of a Breach.
(A) The Business Associate agrees that, following the discovery by the Business Associate or by a subcontractor of the Business Associate of any use or disclosure not provided for by this section of the Contract, any breach of Unsecured protected health information, or any Security Incident, it shall notify the Covered Entity of such Breach in accordance with Subpart D of Part 164 of Title 45 of the Code of Federal Regulations and this Section of the Contract.
(B) Such notification shall be provided by the Business Associate to the Covered Entity without unreasonable delay, and in no case later than 30 days after the Breach is discovered by the Business Associate, or a subcontractor of the Business Associate, except as otherwise instructed in writing by a law enforcement official pursuant to 45 C.F.R. 164.412. A Breach is considered discovered as of the first day on which it is, or reasonably should have been, known to the Business Associate or its subcontractor. The notification shall include the identification and last known address, phone number and email address of each Individual (or the next of kin of the individual if the Individual is deceased) whose Unsecured protected health information has been, or is reasonably believed by the Business Associate to have been, accessed, acquired, or disclosed during such Breach.
(C) The Business Associate agrees to include in the notification to the Covered Entity at least the following information:
1. A description of what happened, including the date of the Breach; the date of the discovery of the Breach; the unauthorized person, if known, who used the PHI or to whom it was disclosed; and whether the PHI was actually acquired or viewed.
2. A description of the types of Unsecured protected health information that were involved in the Breach (such as full name, Social Security number, date of birth, home address, account number, or disability code).
3. The steps the Business Associate recommends that Individual(s) take to protect themselves from potential harm resulting from the Breach.
4. A detailed description of what the Business Associate is doing or has done to investigate the Breach, to mitigate losses, and to protect against any further Breaches.
5. Whether a law enforcement official has advised the Business Associate, either verbally or in writing, that he or she has determined that notification or notice to Individuals or the posting required under 45 C.F.R.
