BUSINESS ASSOCIATE AGREEMENT (BETWEEN GIOSTARCHICAGO.COM AND GIOSTARORTHOPEDICS.COM AND GODADDY)

Similar documents
H I P AA B U S I N E S S AS S O C I ATE AGREEMENT

HITECH Omnibus Business Associate Agreement DU Hybrid CE ra FINAL

Model Business Associate Agreement

BUSINESS ASSOCIATE AGREEMENT

BUSINESS ASSOCIATE AGREEMENT

HIPAA BUSINESS ASSOCIATE AGREEMENT. ( BUSINESS ASSOCIATE ) and is effective as of ( Effective Date ). RECITALS

BUSINESS ASSOCIATE AGREEMENT

BUSINESS ASSOCIATE AGREEMENT WITH COVERED ENTITY

BUSINESS ASSOCIATE AGREEMENT

Sales Order (Processing Services)

Agent/Agency Agreement

HIPAA DATA USE AGREEMENT

KAISER FOUNDATION HOSPITALS ON BEHALF OF KAISER FOUNDATION HEALTH PLAN OF THE MID-ATLANTIC STATES, INC.

PODIATRY RESIDENCY RESOURCE, INC. END USER SOFTWARE LICENSE AGREEMENT. IMPORTANT-READ CAREFULLY BEFORE USING THE Podiatry Residency Resource SOFTWARE.

Site Access Agreement. (hereinafter referred to as the

DATA USE AGREEMENT FOR ACCESS TO PROTECTED HEALTH INFORMATION

LAW FIRM BUSINESS ASSOCIATE TERMS AND CONDITIONS. North Carolina Society of Healthcare Attorneys

EXHIBIT G PRIVACY AND INFORMATION SECURITY PROVISIONS

AGREEMENT BETWEEN KIDS IN DISTRESS, INC., AND BROWARD COUNTY FOR SUBSTANCE ABUSE SERVICES Contract Number: KID-BARC-CFS-2017

SERVICE PROVIDER SECURITY AGREEMENT. Clemson University ( Clemson ) and. Vendor Name Here. ( Service Provider )

Limited Data Set Data Use Agreement

The HIPAA E-Tool End User License and Software as a Service Agreement

1. THE SYSTEM AND INFORMATION ACCESS

ELECTRONIC TRANSACTIONS TRADING PARTNER AGREEMENT BETWEEN DIRECT SUBMITTER AND WELLPOINT, INC

COMMONWEALTH OF MASSACHUSETTS. ) COMMONWEALTH OF MASSACHUSETTS, ) ) Plaintiff, ) ) v. ) ) SOUTH SHORE HOSPITAL, INC., ) ) Defendant.

REQUEST FOR PROPOSALS FOR ACCREDITATION CONSULTANT SNHD-9-RFP

Copyright License Agreement

DATABASE AND TRADEMARK LICENSE AGREEMENT

IRB RELIANCE EXCHANGE PORTAL AGREEMENT

HARVARD PILGRIM HEALTH CARE, INC. PRIVACY AND SECURITY AGREEMENT

DATA USE AGREEMENT RECITALS

OTTO Archive, LLC CONTENT LICENSE AGREEMENT

End User License Agreement (EULA) Savision Inc. 2017

DAKOTA COUNTY PROPERTY RECORDS TECHNOLOGY AND INFORMATION SUBSCRIPTION AGREEMENT

CLINICAL TRIAL AGREEMENT for INVESTIGATOR-INITIATED STUDY

INDEPENDENT CONTRACTOR AGREEMENT

DATA COLLECTION AGREEMENT MASTER TERMS RECITALS

LIBRARY LICENSE AGREEMENT - DATABASE

Terms and Conditions I. CONTENT. Proprietary Rights

I300 SOFTWARE LICENSE AGREEMENT 1. DEFINITIONS

Patient Privacy and Security: Data Breach Reporting and other HIPAA Changes

TERMS OF USE. 2. Restrictions on Use of the Services.

This Agreement was last updated on June 14th, It is effective between You and Axosoft as of the date of You accepting this Agreement.

Commonwealth of Massachusetts County of Suffolk The Superior Court NOTICE OF DOCKET ENTRY

ICONS Terms of Use. Effective Date: March 1st, 2016

VISA Inc. VISA 3-D Secure Authentication Services Testing Agreement

Delaware State Supplemental Rebate Agreement And (Manufacturer) As used in this Agreement, the following terms have the following

END-USER LICENSE AGREEMENT

!! 1 Page! 2014 PEODepot. All rights reserved. PEODepot and peodepot.com are trademarks of PEODepot. INITIAL! BROKER AGREEMENT

OZO LIVE SOFTWARE LICENSE AGREEMENT. (Single or Multi-Node License Agreement) Version 2.0

MDP LABS SERVICES AGREEMENT

STREETBLAST MEDIA, LLC. PO BOX 176 FAIRDALE, KENTUCKY 40118

PURCHASE ORDER TERMS AND CONDITIONS

SOFTWARE LICENSE AGREEMENT

Terms and Conditions Database License Agreement ( Agreement )

IDL Solutions Licence Agreement

INTERNET ADVERTISING AGREEMENT. THIS AGREEMENT made as of this day of, 2004.

Investigating Privacy Breaches under HITECH and HIPAA

ADDENDUM TO STANDARD CONTRACT BETWEEN Community Coordinated Care for Children, Inc. (4C) AND (CONTRACTOR)

BUSINESS USE AGREEMENT

INTERFACE TERMS & CONDITIONS

WASHINGTON COUNTY PROPERTY RECORDS TECHNOLOGY AND INFORMATION SUBSCRIPTION AGREEMENT

ENT CREDIT UNION ELECTRONIC DEPOSIT AGREEMENT

OZO LIVE EVALUATION SOFTWARE LICENSE AGREEMENT

Terms of Use for the REDCap Non-Profit End-User License Agreement

TUCOWS.INFO domain APPLICATION SERVICE TERMS OF USE

MOTOROLA LICENSE AGREEMENT FOR MOTOROLA RADIO SERVICE SOFTWARE

END-USER LICENSE AGREEMENT

SDL Web Click Wrap DEVELOPER SOFTWARE AND DISTRIBUTION AGREEMENT RESTRICTED TO USE BY DEVELOPERS. Terms and Conditions

SOFTWARE LICENSE TERMS AND CONDITIONS

(i) the data provided in the domain name registration application is true, correct, up to date and complete,

Form of Registration Agreement

WarrantyLink MASTER SERVICES AGREEMENT RECITALS

You may owe fees for use of the App or the Services. Check with your Financial Institution for applicable rates.

Municipal Code Online Inc. Software as a Service Agreement

Site Builder End User License Agreement

ADAM 3 AND ADAM 5 LICENSED PRODUCT END USER LICENSE AGREEMENT (For Customers without a Mater Service Agreement)

ECHOCARDIOGRAPHY QUALITY IMPROVEMENT PROGRAM FACILITY AGREEMENT

HOURLY CONSULTING TERMS AND CONDITIONS

SOUTHERN CALIFORNIA EDISON COMPANY ENERGY SERVICE PROVIDER SERVICE AGREEMENT

MAPR END USER LICENSE AGREEMENT Last updated: April 20, 2016

Last revised: 6 April 2018 By using the Agile Manager Website, you are agreeing to these Terms of Use.

Bookkeeping Service Agreement

AGREEMENT FOR SERVICE AGREEMENT FOR SERVICE

Kaizen Global Inc. s Independent. Business Operator Agreement. Last updated May 10, 2017

Membership Terms & Conditions

Exhibit A. Registration Agreement

THE DAVID J. JOSEPH COMPANY USER ADMINISTRATOR AGREEMENT FOR SCRAPCONNECT

Data Licensing Agreement

Client Order Routing Agreement Standard Terms and Conditions

ACADEMIC SUBSCRIPTION LICENSE AGREEMENT ASSIGNMENT AND SCOPE

ACT, Inc. ( ACT ) and Customer agree as follows: Effective Date: August 8, 2017

SUBCONTRACT AGREEMENT

PLEASE READ THIS AGREEMENT CAREFULLY BEFORE USING THE LICENSED SOFTWARE.

SOFTWARE END USER LICENSE AGREEMENT (Load Systems Software and Firmware)

Exhibit A. Registration Agreement

GlobalSign Certificate Centre (GCC) Terms of Service Non US Version

PRIVACY STATEMENT - TERMS & CONDITIONS. For users of Princh printing, copying and scanning services PRIVACY STATEMENT

License Agreement. 1. Definitions. For purposes of this Agreement, the following terms have the following meanings:

Trustwave Subscriber Agreement for Digital Certificates Ver. 15FEB17

Transcription:

BUSINESS ASSOCIATE AGREEMENT (BETWEEN GIOSTARCHICAGO.COM AND GIOSTARORTHOPEDICS.COM AND GODADDY) This HIPAA Business Associate Agreement ( Agreement ) is entered into by and between GoDaddy.com, LLC, a Delaware limited liability company ( GoDaddy ) and you, and is made effective as of the date of electronic acceptance. This Agreement sets forth each party s respective obligations regarding the Microsoft Office 365 services sold and supported by GoDaddy and represented by us as being HIPAA-compliant (the Services ), and represents the entire agreement between you and GoDaddy concerning the subject matter hereof. Your electronic acceptance of this Agreement signifies that you have read, understand, acknowledge and agree to be bound by this Agreement, along with our Universal Terms of Service Agreement, which is incorporated herein by this reference, and any plan limits presented on the product landing pages, which are also incorporated herein by this reference. The terms we, us or our shall refer to GoDaddy. The terms you, your, User or customer shall refer to any individual or entity who accepts this Agreement. Nothing in this Agreement shall be deemed to confer any third-party rights or benefits. We may, in our sole and absolute discretion, change or modify this Agreement, any policies or agreements which are incorporated herein, and any limits or restrictions on the Services, at any time, and such changes or modifications shall be effective immediately upon posting to the GoDaddy website ( Site ). Your use of the Site or the Services after such changes or modifications shall constitute your acceptance of this Agreement and Service limitations as last revised. If you do not agree to be bound by this Agreement and the Services limitations as last revised, do not continue to use this Site or the Services. We may occasionally notify you of changes or modifications to this Agreement by email. It is therefore very important that you keep your shopper account information current. We assume no liability or responsibility for your failure to receive an email notification if such failure results from an inaccurate email address. The parties agree as follows: Definitions For purposes of this Agreement, any capitalized terms not otherwise defined herein will have the meaning given to them in the Agreement and under HIPAA.

Applicability Business Associate has the same meaning as the term business associate in 45 C.F.R. 160.103 of HIPAA. Covered Entity has the same meaning as the term covered entity in 45 C.F.R. 160.103 of HIPAA. HIPAA means the Health Insurance Portability and Accountability Act of 1996 and the rules and the regulations thereunder, as amended (including with respect to the HITECH Act). HITECH Act means the Health Information Technology for Economic and Clinical Health Act enacted in the United States Congress, which is Title XIII of the American Recovery & Reinvestment Act, and the regulations thereunder, as amended. Protected Health Information or PHI will have the meaning given to it under HIPAA if provided to GoDaddy in connection with your permitted use of the Services. Security Rule means 45 C.F.R., Part 164, Subpart C, under HIPAA. i. Parties. This Agreement applies only to the extent you are acting as a Covered Entity or Business Associate to create, receive, maintain or transmit PHI via the Services and where GoDaddy, as a result, is deemed under HIPAA to be acting as a Business Associate of you. ii. Services Scope. As of the effective date of this Agreement, this Agreement is applicable only to the described Services. GoDaddy may expand the scope of the described Services to include other GoDaddy products or services. If GoDaddy expands the scope of the Services, this Agreement will automatically apply to the additional products and services as of the date they are included, or the date GoDaddy has otherwise provided written communication regarding an update to the scope of the included Services (whichever date is earlier). Permitted Use and Disclosure i. By GoDaddy. GoDaddy may use and disclose PHI only as permitted under HIPAA as specified in the Universal Terms of Service Agreement and under this Agreement. GoDaddy may also use and disclose PHI for the proper management and administration of GoDaddy s business and to carry out the legal responsibilities of GoDaddy, provided that any disclosure of PHI for such purpose may only occur if (1) required by applicable law; or (2) GoDaddy obtains written reasonable assurances from the person to whom PHI will be disclosed that it will be held in confidence, used only for the purpose for which it was disclosed, and that GoDaddy will be notified of any breach. ii. By You. You will not request GoDaddy or the Services to use or disclose PHI in any manner that would not be permissible under HIPAA if done by a Covered Entity itself (unless otherwise expressly permitted under HIPAA for a Business Associate). In connection with your management and administration of the Services for end users, you

are responsible for using the available controls within the Services to support your HIPAA compliance requirements, including enforcing appropriate controls to support your HIPAA compliance. You will not use the Services to create, receive, maintain or transmit PHI to other GoDaddy services outside of the included Services, except where GoDaddy has expressly entered into a separate HIPAA business associate agreement for use of such GoDaddy services. If you use the Services in connection with PHI, you will use controls available within the Services to ensure (1) all other GoDaddy products not part of the Services are disabled for all end users who use the included Services in connection with PHI (except those services where Customer and GoDaddy already have an appropriate HIPAA business associate agreement in place); and (2) you take appropriate measures to limit your use of PHI in the Services to the minimum extent necessary for you to carry out your authorized use of such PHI. You agree that GoDaddy has no obligation to protect PHI under this Agreement to the extent you create, receive, maintain, or transmit such PHI outside of the Services. Appropriate Safeguards GoDaddy and you will use appropriate safeguards designed to prevent against unauthorized use or disclosure of PHI, consistent with this Agreement, and as otherwise required under the Security Rule, with respect to the Services. Reporting GoDaddy will promptly notify you following the discovery of a breach resulting in the unauthorized use or disclosure of PHI in violation of this Agreement in the most expedient time possible under the circumstances, consistent with the legitimate needs of applicable law enforcement and applicable laws, and after taking any measures necessary to determine the scope of the breach and to restore the reasonable integrity of the Services system by using commercially reasonable efforts to mitigate any further harmful effects to the extent practicable. You hereby agree that any such report, notification or other notice made pursuant to this Agreement may be provided electronically. For clarity, you and not GoDaddy are responsible for managing whether your end users are authorized to create, receive, maintain or transmit PHI within the Services and GoDaddy will have no obligations relating thereto. This Section will be deemed as notice to you that GoDaddy periodically receives unsuccessful attempts for unauthorized access, use, disclosure, modification or destruction of information or interference with the general operation of GoDaddy s information systems and the Services and even if such events are defined as a Security Incident under HIPAA, GoDaddy will not provide any further notice regarding such unsuccessful attempts. Provision of Contact Information to Microsoft You hereby acknowledge that GoDaddy has entered into a Business Associate Agreement with Microsoft with respect to the Services. You agree that GoDaddy may share your contact

information with Microsoft for the sole purpose of Microsoft s provision of notices to you related to any unauthorized use or disclosure of PHI by Microsoft in violation of its Business Associate Agreement with GoDaddy. For purposes of this Section, the contact information that may be provided to Microsoft includes your name, title, email address, the name of your organization, and your GoDaddy shopper identification number. You further hereby agree to directly provide your contact information to Microsoft for the sole purpose of Microsoft s provision of notices to you pursuant to its Business Associate Agreement with GoDaddy, at MSO-HIPAA@microsoft.com, or at such other location or via such other method as may be specified by Microsoft from time to time. Agents and Subcontractors GoDaddy will take appropriate measures to ensure that any agents and subcontractors used by GoDaddy to perform its obligations under the Agreement that require access to PHI on behalf of GoDaddy are bound by written obligations that provide the same material level of protection for PHI as this Agreement. To the extent GoDaddy uses agents and subcontractors in its performance of obligations hereunder, GoDaddy will remain responsible for their performance as if performed by GoDaddy itself under this Agreement. Accounting Rights GoDaddy will make available to you the PHI via the Services so you may fulfill your obligation to give individuals their rights of access, amendment, and accounting in accordance with the requirements under HIPAA. You are responsible for managing your use of the Services to appropriately respond to such individual requests. Access to Records To the extent required by law, and subject to applicable attorney client privileges, GoDaddy will make its internal practices, books, and records concerning the use and disclosure of PHI received from you, or created or received by GoDaddy on behalf of you,, available to the Secretary of the U.S. Department of Health and Human Services (the Secretary ) for the purpose of the Secretary determining compliance with this Agreement. Return/Destruction of Information GoDaddy agrees that upon termination of the Agreement, GoDaddy will return or destroy all PHI received from you, or created or received by GoDaddy on behalf of you, which GoDaddy still maintains as provided in the Universal Terms of Service Agreement; provided, however, that if such return or destruction is not feasible, GoDaddy will extend the protections of this Agreement to the PHI not returned or destroyed and limit further uses and disclosures to those purposes that make the return or destruction of the PHI infeasible. In the event this Agreement

is terminated earlier than the underlying Universal Terms of Service Agreement, you may continue to use the Services in accordance with the Universal Terms of Service Agreement, but must delete any PHI you maintain in the Services and cease to create, receive, maintain or transmit such PHI to GoDaddy or within the Services. Term This Agreement will expire upon the earlier of: (i) your cancellation of the Services to which this Agreement applies; or (ii) your acceptance of an updated HIPAA business associate agreement that supersedes this Agreement. Interpretation It is the parties intent that any ambiguity under this Agreement be interpreted consistently with the intent to comply with applicable laws. Effect of Agreement This Agreement supersedes in its entirety any pre-existing HIPAA business associate agreement executed by GoDaddy and you covering the same Services. Each covenant and agreement in this Agreement shall be construed for all purposes to be a separate and independent covenant or agreement. If a court of competent jurisdiction holds any provision (or portion of a provision) of this Agreement to be illegal, invalid, or otherwise unenforceable, the remaining provisions (or portions of provisions) of this Agreement shall not be affected thereby and shall be found to be valid and enforceable to the fullest extent permitted by law. In the event there is a conflict between the provisions of this Agreement and the provisions of the Universal Terms of Service Agreement, the provisions of this Agreement shall control. Revised: 3/29/18 Copyright 2015-2018 GoDaddy.com, LLC All Rights Reserved.

2024 © lawsdocbox.com Privacy Policy | Terms of Service | Feedback