OBLIGATIONS AND ACTIVITIES OF CONTRACTOR AS BUSINESS ASSOCIATE 1. CONTRACTOR agrees not to use or further disclose PHI COUNTY discloses to CONTRACTOR other than as permitted or required by this Business Associate Contract or as required by law.
2. XXXXXXXXXX agrees to use appropriate safeguards, as provided for in this Business Associate Contract and the Agreement, to prevent use or disclosure of PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY other than as provided for by this Business Associate Contract.
3. XXXXXXXXXX agrees to comply with the HIPAA Security Rule at Subpart C of 45 CFR Part 164 with respect to electronic PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY.
4. CONTRACTOR agrees to mitigate, to the extent practicable, any harmful effect that is known to CONTRACTOR of a Use or Disclosure of PHI by CONTRACTOR in violation of the requirements of this Business Associate Contract.
5. XXXXXXXXXX agrees to report to COUNTY immediately any Use or Disclosure of PHI not provided for by this Business Associate Contract of which CONTRACTOR becomes aware. CONTRACTOR must report Breaches of Unsecured PHI in accordance with Paragraph E below and as required by 45 CFR § 164.410.
6. CONTRACTOR agrees to ensure that any Subcontractors that create, receive, maintain, or transmit PHI on behalf of CONTRACTOR agree to the same restrictions and conditions that apply through this Business Associate Contract to CONTRACTOR with respect to such information.
7. CONTRACTOR agrees to provide access, within fifteen (15) calendar days of receipt of a written request by COUNTY, to PHI in a Designated Record Set, to COUNTY or, as directed by COUNTY, to an Individual in order to meet the requirements under 45 CFR § 164.524. If CONTRACTOR maintains an Electronic Health Record with PHI, and an individual requests a copy of such information in an electronic format, CONTRACTOR shall provide such information in an electronic format.
8. CONTRACTOR agrees to make any amendment(s) to PHI in a Designated Record Set that COUNTY directs or agrees to pursuant to 45 CFR § 164.526 at the request of COUNTY or an Individual, within thirty (30) calendar days of receipt of said request by COUNTY. XXXXXXXXXX agrees to notify COUNTY in writing no later than ten (10) calendar days after said amendment is completed.
9. CONTRACTOR agrees to make internal practices, books, and records, including policies and procedures, relating to the use and disclosure of PHI received from, or created or received by CONTRACTOR on behalf of, COUNTY available to COUNTY and the Secretary in a time and manner as determined by COUNTY or as designated by the Secretary for purposes of the Secretary determining COUNTY’S compliance with the HIPAA Privacy Rule.
10. CONTRACTOR agrees to document any Disclosures of PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY, and to make information related to such Disclosures available as would be required for COUNTY to respond to a request by an Individual for an accounting of Disclosures of PHI in accordance with 45 CFR § 164.528.
11. CONTRACTOR agrees to provide COUNTY or an Individual, as directed by COUNTY, in a time and manner to be determined by COUNTY, that information collected in accordance with the Agreement, in order to permit COUNTY to respond to a request by an Individual for an accounting of Disclosures of PHI in accordance with 45 CFR § 164.528.
12. XXXXXXXXXX agrees that to the extent CONTRACTOR carries out COUNTY’s obligation under the HIPAA Privacy and/or Security rules CONTRACTOR will comply with the requirements of 45 CFR Part 164 that apply to COUNTY in the performance of such obligation.
13. If CONTRACTOR receives Social Security data from COUNTY provided to COUNTY by a state agency, upon request by COUNTY, CONTRACTOR shall provide COUNTY with a list of all employees, subcontractors and agents who have access to the Social Security data, including employees, agents, subcontractors and agents of its subcontractors.
14. CONTRACTOR will notify COUNTY if CONTRACTOR is named as a defendant in a criminal proceeding for a violation of HIPAA. COUNTY may terminate the Agreement, if CONTRACTOR is found guilty of a criminal violation in connection with HIPAA. COUNTY may terminate the Agreement, if a finding or stipulation that CONTRACTOR has violated any standard or requirement of the privacy or security provisions of HIPAA, or other security or privacy laws are made in any administrative or civil proceeding in which CONTRACTOR is a party or has been joined. COUNTY will consider the nature and seriousness of the violation in deciding whether or not to terminate the Agreement.
Authorization Required Prior to Parallel Operation 2.2.1 The NYISO, in consultation with the Connecting Transmission Owner, shall use Reasonable Efforts to list applicable parallel Operating Requirements in Attachment 5 of this Agreement. Additionally, the NYISO, in consultation with the Connecting Transmission Owner, shall notify the Interconnection Customer of any changes to these requirements as soon as they are known. The NYISO and Connecting Transmission Owner shall make Reasonable Efforts to cooperate with the Interconnection Customer in meeting requirements necessary for the Interconnection Customer to commence parallel operations by the in-service date.
2.2.2 The Interconnection Customer shall not operate its Small Generating Facility in parallel with the New York State Transmission System or the Distribution System without prior written authorization of the NYISO. The NYISO, in consultation with the Connecting Transmission Owner, will provide such authorization once the NYISO receives notification that the Interconnection Customer has complied with all applicable parallel Operating Requirements. Such authorization shall not be unreasonably withheld, conditioned, or delayed.
Authorization; Validity of Agreement; Company Action The Company has all necessary corporate power and authority to execute and deliver this Agreement, to perform its obligations hereunder and, subject to the receipt of the Requisite Stockholder Approval, if applicable, to consummate the Transactions. The execution, delivery and performance by the Company of this Agreement, and the consummation by it of the Transactions, have been duly and validly authorized by the Company Board of Directors and no other corporate action on the part of the Company, pursuant to the DGCL or otherwise, is necessary to authorize the execution and delivery by the Company of this Agreement, and the consummation by it of the Transactions, subject, in the case of the Merger, to the adoption of this Agreement by the Requisite Stockholder Approval and the filing of the Certificate of Merger. This Agreement has been duly executed and delivered by the Company and, assuming due and valid authorization, execution and delivery hereof by Parent and Purchaser, is a valid and binding obligation of the Company enforceable against the Company in accordance with its terms, except that the enforcement hereof may be limited by (a) bankruptcy, insolvency, reorganization, moratorium or other similar Laws, now or hereafter in effect, relating to creditors’ rights generally and (b) general principles of equity (regardless of whether enforceability is considered in a proceeding in equity or at Law).
Corporate and Governmental Authorization; No Contravention The Borrower’s incurrence of Debt hereunder, and the execution, delivery and performance by the Borrower of this Agreement and the Notes, are within the corporate powers of the Borrower, have been duly authorized by all necessary corporate action, require no action by or in respect of, or filing with, any Governmental Authority (except such as has been obtained), do not contravene, or constitute a default under, any provision of applicable law or regulation or of the certificate of incorporation or by-laws of the Borrower or of any agreement, judgment, injunction, order, decree or other instrument binding upon the Borrower or any of its Subsidiaries, or result in the creation or imposition of any Lien on any asset of the Borrower or any of its Subsidiaries.
CERTIFICATION PROHIBITING DISCRIMINATION AGAINST FIREARM AND AMMUNITION INDUSTRIES (Texas law as of September 1, 2021) By submitting a proposal to this Solicitation, you certify that you agree, when it is applicable, to the following required by Texas law as of September 1, 2021: If (a) company is not a sole proprietorship; (b) company has at least ten (10) full-time employees; (c) this contract has a value of at least $100,000 that is paid wholly or partly from public funds; (d) the contract is not excepted under Tex. Gov’t Code § 2274.003 of SB 19 (87th leg.); and (e) governmental entity has determined that company is not a sole-source provider or governmental entity has not received any bids from a company that is able to provide this written verification, the following certification shall apply; otherwise, this certification is not required. Pursuant to Tex. Gov’t Code Ch. 2274 of SB 19 (87th session), the company hereby certifies and verifies that the company, or association, corporation, partnership, joint venture, limited partnership, limited liability partnership, or limited liability company, including a wholly owned subsidiary, majority-owned subsidiary parent company, or affiliate of these entities or associations, that exists to make a profit, does not have a practice, policy, guidance, or directive that discriminates against a firearm entity or firearm trade association and will not discriminate during the term of this contract against a firearm entity or firearm trade association. For purposes of this contract, “discriminate against a firearm entity or firearm trade association” shall mean, with respect to the entity or association, to: “
(1) refuse to engage in the trade of any goods or services with the entity or association based solely on its status as a firearm entity or firearm trade association; (2) refrain from continuing an existing business relationship with the entity or association based solely on its status as a firearm entity or firearm trade association; or (3) terminate an existing business relationship with the entity or association based solely on its status as a firearm entity or firearm trade association. See Tex. Gov’t Code § 2274.001(3) of SB 19. “Discrimination against a firearm entity or firearm trade association” does not include: “
(1) the established policies of a merchant, retail seller, or platform that restrict or prohibit the listing or selling of ammunition, firearms, or firearm accessories; and (2) a company’s refusal to engage in the trade of any goods or services, decision to refrain from continuing an existing business relationship, or decision to terminate an existing business relationship to comply with federal, state, or local law, policy, or regulations or a directive by a regulatory agency, or for any traditional business reason that is specific to the customer or potential customer and not based solely on an entity’s or association’s status as a firearm entity or firearm trade association.” See Tex. Gov’t Code § 2274.001(3) of SB 19.
Obligations and Activities of Business Associates (1) Business Associate agrees not to use or disclose PHI other than as permitted or required by this Section of the Contract or as Required by Law.
(2) Business Associate agrees to use and maintain appropriate safeguards and comply with applicable HIPAA Standards with respect to all PHI and to prevent use or disclosure of PHI other than as provided for in this Section of the Contract and in accordance with HIPAA Standards.
(3) Business Associate agrees to use administrative, physical and technical safeguards that reasonably and appropriately protect the confidentiality, integrity, and availability of electronic Protected Health Information that it creates, receives, maintains, or transmits on behalf of the Covered Entity.
(4) Business Associate agrees to mitigate, to the extent practicable, any harmful effect that is known to the Business Associate of a use or disclosure of PHI by Business Associate in violation of this Section of the Contract.
(5) Business Associate agrees to report to Covered Entity any use or disclosure of PHI not provided for by this Section of the Contract or any Security Incident of which it becomes aware.
(6) Business Associate agrees, in accordance with 45 C.F.R. 502(e)(1)(ii) and 164.308(d)(2), if applicable, to ensure that any subcontractors that create, receive, maintain or transmit PHI on behalf of the Business Associate, agree to the same restrictions, conditions, and requirements that apply to the business associate with respect to such information.
(7) Business Associate agrees to provide access (including inspection, obtaining a copy or both), at the request of the Covered Entity, and in the time and manner designated by the Covered Entity, to PHI in a Designated Record Set, to Covered Entity or, as directed by Covered Entity, to an Individual in order to meet the requirements under 45 C.F.R. § 164.524. Business Associate shall not charge any fees greater than the lesser of the amount charged by the Covered Entity to an Individual for such records; the amount permitted by state law; or the Business Associate’s actual cost of postage, labor and supplies for complying with the request.
(8) Business Associate agrees to make any amendments to PHI in a Designated Record Set that the Covered Entity directs or agrees to pursuant to 45 C.F.R. § 164.526 at the request of the Covered Entity, and in the time and manner designated by the Covered Entity.
(9) Business Associate agrees to make internal practices, books, and records, including policies and procedures and PHI, relating to the use and disclosure of PHI received from, or created, maintained, transmitted or received by, Business Associate on behalf of Covered Entity, available to Covered Entity or to the Secretary in a time and manner agreed to by the parties or designated by the Secretary, for purposes of the Secretary investigating or determining Covered Entity’s compliance with the HIPAA Standards.
(10) Business Associate agrees to document such disclosures of PHI and information related to such disclosures as would be required for Covered Entity to respond to a request by an Individual for an accounting of disclosures of PHI in accordance with 45 C.F.R. § 164.528 and section 13405 of the HITECH Act (42 U.S.C. § 17935) and any regulations promulgated thereunder.
(11) Business Associate agrees to provide to Covered Entity, in a time and manner designated by the Covered Entity, information collected in accordance with subsection (g)(10) of this Section of the Contract, to permit Covered Entity to respond to a request by an Individual for an accounting of disclosures of PHI in accordance with 45 C.F.R. § 164.528 and section 13405 of the HITECH Act (42 U.S.C. § 17935) and any regulations promulgated thereunder. Business Associate agrees at the Covered Entity’s direction to provide an accounting of disclosures of PHI directly to an individual in accordance with 45 C.F.R. § 164.528 and section 13405 of the HITECH Act (42 U.S.C. § 17935) and any regulations promulgated thereunder.
(12) Business Associate agrees to comply with any State or federal law that is more stringent than the Privacy Rule.
(13) Business Associate agrees to comply with the requirements of the HITECH Act relating to privacy and security that are applicable to the Covered Entity and with the requirements of 45 C.F.R. §§ 164.504(e), 164.308, 164.310, 164.312, and 164.316.
(14) In the event that an Individual requests that the Business Associate
(A) restrict disclosures of PHI;
(B) provide an accounting of disclosures of the Individual’s PHI;
(C) provide a copy of the Individual’s PHI in an Electronic Health Record; or
(D) amend PHI in the Individual’s Designated Record Set the Business Associate agrees to notify the Covered Entity, in writing, within five Days of the request.
(15) Business Associate agrees that it shall not, and shall ensure that its subcontractors do not, directly or indirectly, receive any remuneration in exchange for PHI of an Individual without
(A) the written approval of the Covered Entity, unless receipt of remuneration in exchange for PHI is expressly authorized by this Contract and
(B) the valid authorization of the Individual, except for the purposes provided under section 13405(d)(2) of the HITECH Act, (42 U.S.C. § 17935(d)(2)) and in any accompanying regulations.
(16) Obligations in the Event of a Breach.
(A) The Business Associate agrees that, following the discovery by the Business Associate or by a subcontractor of the Business Associate of any use or disclosure not provided for by this section of the Contract, any breach of Unsecured protected health information, or any Security Incident, it shall notify the Covered Entity of such Breach in accordance with Subpart D of Part 164 of Title 45 of the Code of Federal Regulations and this Section of the Contract.
(B) Such notification shall be provided by the Business Associate to the Covered Entity without unreasonable delay, and in no case later than 30 days after the Breach is discovered by the Business Associate, or a subcontractor of the Business Associate, except as otherwise instructed in writing by a law enforcement official pursuant to 45 C.F.R. 164.412. A Breach is considered discovered as of the first day on which it is, or reasonably should have been, known to the Business Associate or its subcontractor. The notification shall include the identification and last known address, phone number and email address of each Individual (or the next of kin of the individual if the Individual is deceased) whose Unsecured protected health information has been, or is reasonably believed by the Business Associate to have been, accessed, acquired, or disclosed during such Breach.
(C) The Business Associate agrees to include in the notification to the Covered Entity at least the following information:
1. A description of what happened, including the date of the Breach; the date of the discovery of the Breach; the unauthorized person, if known, who used the PHI or to whom it was disclosed; and whether the PHI was actually acquired or viewed.
2. A description of the types of Unsecured protected health information that were involved in the Breach (such as full name, Social Security number, date of birth, home address, account number, or disability code).
3. The steps the Business Associate recommends that Individual(s) take to protect themselves from potential harm resulting from the Breach.
4. A detailed description of what the Business Associate is doing or has done to investigate the Breach, to mitigate losses, and to protect against any further Breaches.
5. Whether a law enforcement official has advised the Business Associate, either verbally or in writing, that he or she has determined that notification or notice to Individuals or the posting required under 45 C.F.R.
Non-Contravention of Existing Instruments; No Further Authorizations or Approvals Required Neither the Company nor any of its subsidiaries is (i) in violation of its charter, bylaws or other constitutive document or (ii) in default (or, with the giving of notice or lapse of time, would be in default) (“Default”) under any indenture, mortgage, loan or credit agreement, note, contract, franchise, lease or other instrument to which the Company or any of its subsidiaries is a party or by which it or any of them may be bound, or to which any of the property or assets of the Company or any of its subsidiaries is subject (each, an “Existing Instrument”), except, in the case of clause (ii) above, for such Defaults as would not, individually or in the aggregate, result in a Material Adverse Change. The execution, delivery and performance of the Transaction Documents by the Company, and the issuance and delivery of the Securities, and consummation of the transactions contemplated hereby and thereby and by the Pricing Disclosure Package and the Prospectus (i) have been duly authorized by all necessary corporate action and will not result in any violation of the provisions of the charter, bylaws or other constitutive document of the Company or any subsidiary, (ii) will not conflict with or constitute a breach of, or Default or a Debt Repayment Triggering Event (as defined below) under, or result in the creation or imposition of any lien, charge or encumbrance upon any property or assets of the Company or any of its subsidiaries pursuant to, or require the consent of any other party to, any Existing Instrument, except for such conflicts, breaches, Defaults, liens, charges or encumbrances as would not, individually or in the aggregate, result in a Material Adverse Change or materially adversely affect the consummation by the Company of the transactions contemplated hereby, and (iii) will not result in any violation of any law, administrative regulation or administrative or court decree applicable to the Company or any subsidiary. On and as of the date hereof, no event has occurred or is continuing which constitutes, or with notice or lapse of time would constitute, an Event of Default (as defined in the Indenture). No consent, approval, authorization or other order of, or registration or filing with, any court or other governmental or regulatory authority or agency is required for the execution, delivery and performance of the Transaction Documents by the Company to the extent a party thereto, or the issuance and delivery of the Securities, or consummation of the transactions contemplated hereby and thereby and by the Pricing Disclosure Package and the Prospectus, except such as have been obtained or made by the Company and are in full force and effect under the Securities Act, applicable securities laws of the several states of the United States or provinces of Canada. As used herein, a “Debt Repayment Triggering Event” means any event or condition which gives, or with the giving of notice or lapse of time would give, the holder of any note, debenture or other evidence of indebtedness (or any person acting on such holder’s behalf) the right to require the repurchase, redemption or repayment of all or a portion of such indebtedness by the Company or any of its subsidiaries.
Additional Federally Required Orders/Directives Both parties agree that they will comply with the following laws and directives, where applicable:
11.20.1 Executive Order 11061, as amended, which directs the Secretary of HUD to take all action which is necessary and appropriate to prevent discrimination by agencies that utilize federal funds.
11.20.2 Public Law 88-352, Title VI of the Civil Rights Act of 1964, which provides that no person in the United States shall, on the basis of race, color, national origin, or sex, be excluded from participation in, denied the benefits of, or subjected to discrimination under any program or activity which receives federal financial assistance. The Agency hereby extends this requirement to the Contractor and its private contractors. Specific prohibited discriminatory actions and corrective action are described in Chapter 2, Subtitle C, Title V of the Anti-Drug Abuse Act of 1988 (42 U.S.C. 19901 et. seq.).
11.20.3 Public Law 90-284, Title VIII of the Civil Rights Act of 1968., popularly known as the Fair Housing Act, which provides for fair housing throughout the United States and prohibits any person from discriminating in the sale or rental of housing, the financing of housing or the provision of brokerage services, including in any way making unavailable or denying a dwelling to any person because of race, color, religion, sex, or national origin. Pursuant to this statute, the Agency requires that the Contractor administer all programs and activities, which are related to housing and community development in such a manner as affirmatively to further fair housing.
11.20.4 The Age Discrimination Act of 1975, which prohibits discrimination on the basis of age.
11.20.5 Anti-Drug Abuse Act of 1988 (42 U.S.C. 11901 et. seq.). 11.20.6 HUD Information Bulletin 909-23 which is the following:
11.20.6.1 Notice of Assistance Regarding Patent and Copyright Infringement;
11.20.6.2 Clean Air and Water Certification; and,
Organization; Authorization; Validity of Agreement; Necessary Action Each Company T Shareholder, as of the date hereof (i) is duly organized, validly existing and in good standing under the Laws of the jurisdiction in which it is organized (in the case of good standing, to the extent the concept is recognized by such jurisdiction) and (ii) has all corporate, limited partnership, trust or other organizational power and authority to execute and deliver this Agreement and to perform its obligations hereunder and to consummate the transactions contemplated by this Agreement. The execution and delivery by such Company T Shareholder of this Agreement, the performance by such Company T Shareholder of its obligations hereunder and the consummation by such Company T Shareholder of the transactions contemplated by this Agreement have been duly and validly authorized by such Company T Shareholder and no other actions or proceedings on the part of such Company T Shareholder are necessary to authorize the execution and delivery by him, her or it of this Agreement, the performance by him, her or it of its obligations hereunder or the consummation by him, her or it of the transactions contemplated by this Agreement. This Agreement has been duly executed and delivered by such Company T Shareholder and, assuming this Agreement constitutes a valid and binding obligation of Company Y, constitutes a legal, valid and binding agreement of such Company T Shareholder enforceable against such Company T Shareholder in accordance with its terms, subject to bankruptcy, insolvency, fraudulent transfer, reorganization, moratorium and similar Laws of general applicability relating to or affecting creditors’ rights and to general equity principles (the “Bankruptcy and Equity Exception”).
CERTIFICATION REGARDING CERTAIN FOREIGN-OWNED COMPANIES IN CONNECTION WITH CRITICAL INFRASTRUCTURE (Texas law as of September 1, 2021) By submitting a proposal to this Solicitation, you certify that you agree to the following required by Texas law as of September 1, 2021: Proposing Company is prohibited from entering into a contract or other agreement relating to critical infrastructure that would grant to the company direct or remote access to or control of critical infrastructure in this state, excluding access specifically allowed by the Proposing Company for product warranty and support purposes. Company, certifies that neither it nor its parent company nor any affiliate of company or its parent company, is (1) owned by or the majority of stock or other ownership interest of the company is held or controlled by individuals who are citizens of China, Iran, North Korea, Russia, or a designated country; (2) a company or other entity, including governmental entity, that is owned or controlled by citizens of or is directly controlled by the government of China, Iran, North Korea, Russia, or a designated country; or (3) headquartered in China, Iran, North Korea, Russia, or a designated country. For purposes of this contract, “critical infrastructure” means “a communication infrastructure system, cybersecurity system, electric grid, hazardous waste treatment system, or water treatment facility.” See Tex. Gov’t Code § 2274.0101(2) of SB 1226 (87th leg.). The company verifies and certifies that company will not grant direct or remote access to or control of critical infrastructure, except for product warranty and support purposes, to prohibited individuals, companies, or entities, including governmental entities, owned, controlled, or headquartered in China, Iran, North Korea, Russia, or a designated country, as determined by the Governor.