Privacy and Security Auditing. Entity agrees to implement a privacy and security program, including periodic audits of the usage of the System and Data, in order to ensure that the usage of the System and Data by Entity, its Authorized Users, and any other persons who obtain access to the System or Data through Entity or its Authorized Users, is appropriate, necessary and in compliance with the terms of this Agreement, the Minimum Necessary Standard, and applicable law. Entity shall provide a report of the results of such audits to SCHS at SCHS’ request.
Privacy and Security Auditing. Upon reasonable notice, User agrees to provide to St. Xxxxxxx copies of policies, procedures, training materials or other documentation of measures taken by User or any User-Enabled Third Party to ensure the privacy and security of PHI and proper use of the System. In the event St. Xxxxxxx determines that any of these materials are inadequate, User agrees to cooperate with St. Xxxxxxx to develop and document adequate materials. User acknowledges and agrees that St. Xxxxxxx xxx conduct unannounced electronic audits of the usage of the System and PHI in order to ensure that such usage is appropriate, necessary, and in compliance with the terms of this Agreement and applicable law.