Access to Personal Information by Subcontractors Supplier agrees to require any subcontractors or agents to which it discloses Personal Information under this Agreement or under any SOW to provide reasonable assurance, evidenced by written contract, that they will comply with the same or substantially similar confidentiality, privacy and security obligations with respect to such Personal Information as apply to Supplier under this Agreement or any SOW. Supplier shall confirm in writing to DXC that such contract is in place as a condition to DXC’s approval of use of a subcontractor in connection with any SOW. Upon request of DXC, Supplier will provide to DXC a copy of the subcontract or an extract of the relevant clauses. Supplier shall ensure that any failure on the part of any subcontractor or agent to comply with the Supplier obligations under this Agreement or any SOW shall be grounds to promptly terminate such subcontractor or agent. If during the term of this Agreement or any SOW, DXC determines, in its exclusive discretion, that any Supplier subcontractor or agent cannot comply with the Supplier obligations under this Agreement or with any SOW, then DXC may terminate this Agreement in whole or in part (with respect to any SOW for which such subcontractor or agent is providing services), if not cured by Supplier within the time prescribed in the notice of such deficiency.
Provision of Services by Third Parties The Administrator shall, to the extent it determines that it would be advisable in connection with or incidental to the activities contemplated hereby, arrange for and coordinate the services of other professionals, experts and consultants to provide any or all of the Services, in which case, the costs and expenses of such third parties for providing such services shall be borne by the Administrator other than as set forth in Section 3; it being understood that the Administrator shall not charge to the Issuer any fees in addition thereto with respect to such outsourced Painting-Level Services that are described in Section 1(a)(i) and Entity-Level Services described in Section 1(a)(ii), but the Administrator shall be entitled to reimbursement for third party costs incurred in connection with Non-Routine Services described in Section 1(a)(iii) as set forth in Section 3(b). Reimbursement for Non-Routine Services shall be reimbursed by the Issuer out of the proceeds from a sale of the Painting. In addition, Masterworks may determine to sell the Painting without engaging a third-party intermediary, in which event, the Administrator would charge the buyer of the Painting a reasonable fee not to exceed the lowest published buyer’s premium charged by Sotheby’s, Christie’s or P▇▇▇▇▇▇▇ in effect at such time.
Service Provider Obligations Service Provider shall make the Software and the Services required for provisioning the Software (Software and Services hereinafter together and individually may also be referred to as “Service” or “Services”) available to Customer as described in the Services Description and in the Services Specific Terms (together hereinafter referred to as “Services Description”) referenced in the Order Forms and according to the terms and conditions of this Agreement. Service Provider may amend the Services from time to time, provided that such amendments shall not materially diminish the overall Service. Service Provider aims to provide the Software access to Customer within two (2) working days upon the Effective Date, unless otherwise set forth in the Services Description. The Software may consist of a web application provided to Customer in form of a software as a service solution and a mobile application to be installed by Customer on its mobile device. The agreed scope and quality of the Services is exclusively set forth in the Services Description. Public statements concerning the Service made by Service Provider or its agents will only take form when expressively confirmed by Service Provider in writing. Notwithstanding section 7.1, information and specifications contained within the Services Description shall not qualify as warranty or guarantee with regards to the Service’s quality or as any other kind of guarantee, unless they have been confirmed as such by Service Provider in writing. Service Provider may update and improve the Services from time to time; any such Updates, meaning software that remedies "Defects" (as defined in section 7.4) in the Services and/or may include minor improvements of the Services, are included in the Agreement. In addition to Updates, Service Provider may offer Upgrades and/or Add-On Services to the Services, where “Upgrades” mean new capabilities or functionalities of the Services and “Add-On Services” either mean (i) new and/or additional functionality packages in form of separate modules to the Services, or (ii) integrations or connection applications with other Hilti or third party software applications. Upgrades and Add-On Services are only subject to the Agreement, if ordered separately and paid for by Customer, where additional terms and conditions may apply.
OBLIGATIONS AND ACTIVITIES OF CONTRACTOR AS BUSINESS ASSOCIATE 1. CONTRACTOR agrees not to use or further disclose PHI COUNTY discloses to CONTRACTOR other than as permitted or required by this Business Associate Contract or as required by law.
2. ▇▇▇▇▇▇▇▇▇▇ agrees to use appropriate safeguards, as provided for in this Business Associate Contract and the Agreement, to prevent use or disclosure of PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY other than as provided for by this Business Associate Contract.
3. ▇▇▇▇▇▇▇▇▇▇ agrees to comply with the HIPAA Security Rule at Subpart C of 45 CFR Part 164 with respect to electronic PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY.
4. CONTRACTOR agrees to mitigate, to the extent practicable, any harmful effect that is known to CONTRACTOR of a Use or Disclosure of PHI by CONTRACTOR in violation of the requirements of this Business Associate Contract.
5. ▇▇▇▇▇▇▇▇▇▇ agrees to report to COUNTY immediately any Use or Disclosure of PHI not provided for by this Business Associate Contract of which CONTRACTOR becomes aware. CONTRACTOR must report Breaches of Unsecured PHI in accordance with Paragraph E below and as required by 45 CFR § 164.410.
6. CONTRACTOR agrees to ensure that any Subcontractors that create, receive, maintain, or transmit PHI on behalf of CONTRACTOR agree to the same restrictions and conditions that apply through this Business Associate Contract to CONTRACTOR with respect to such information.
7. CONTRACTOR agrees to provide access, within fifteen (15) calendar days of receipt of a written request by COUNTY, to PHI in a Designated Record Set, to COUNTY or, as directed by COUNTY, to an Individual in order to meet the requirements under 45 CFR § 164.524. If CONTRACTOR maintains an Electronic Health Record with PHI, and an individual requests a copy of such information in an electronic format, CONTRACTOR shall provide such information in an electronic format.
8. CONTRACTOR agrees to make any amendment(s) to PHI in a Designated Record Set that COUNTY directs or agrees to pursuant to 45 CFR § 164.526 at the request of COUNTY or an Individual, within thirty (30) calendar days of receipt of said request by COUNTY. ▇▇▇▇▇▇▇▇▇▇ agrees to notify COUNTY in writing no later than ten (10) calendar days after said amendment is completed.
9. CONTRACTOR agrees to make internal practices, books, and records, including policies and procedures, relating to the use and disclosure of PHI received from, or created or received by CONTRACTOR on behalf of, COUNTY available to COUNTY and the Secretary in a time and manner as determined by COUNTY or as designated by the Secretary for purposes of the Secretary determining COUNTY’S compliance with the HIPAA Privacy Rule.
10. CONTRACTOR agrees to document any Disclosures of PHI COUNTY discloses to CONTRACTOR or CONTRACTOR creates, receives, maintains, or transmits on behalf of COUNTY, and to make information related to such Disclosures available as would be required for COUNTY to respond to a request by an Individual for an accounting of Disclosures of PHI in accordance with 45 CFR § 164.528.
11. CONTRACTOR agrees to provide COUNTY or an Individual, as directed by COUNTY, in a time and manner to be determined by COUNTY, that information collected in accordance with the Agreement, in order to permit COUNTY to respond to a request by an Individual for an accounting of Disclosures of PHI in accordance with 45 CFR § 164.528.
12. ▇▇▇▇▇▇▇▇▇▇ agrees that to the extent CONTRACTOR carries out COUNTY’s obligation under the HIPAA Privacy and/or Security rules CONTRACTOR will comply with the requirements of 45 CFR Part 164 that apply to COUNTY in the performance of such obligation.
13. If CONTRACTOR receives Social Security data from COUNTY provided to COUNTY by a state agency, upon request by COUNTY, CONTRACTOR shall provide COUNTY with a list of all employees, subcontractors and agents who have access to the Social Security data, including employees, agents, subcontractors and agents of its subcontractors.
14. CONTRACTOR will notify COUNTY if CONTRACTOR is named as a defendant in a criminal proceeding for a violation of HIPAA. COUNTY may terminate the Agreement, if CONTRACTOR is found guilty of a criminal violation in connection with HIPAA. COUNTY may terminate the Agreement, if a finding or stipulation that CONTRACTOR has violated any standard or requirement of the privacy or security provisions of HIPAA, or other security or privacy laws are made in any administrative or civil proceeding in which CONTRACTOR is a party or has been joined. COUNTY will consider the nature and seriousness of the violation in deciding whether or not to terminate the Agreement.