HIPAA BUSINESS ASSOCIATE ADDENDUM
- Covered Entity wishes to disclose certain information to Business Associate pursuant to the terms of the Underlying Agreement, some of which information may constitute Protected Health Information as defined below.
- Covered Entity and Business Associate intend to protect the privacy and provide for the security of PHI disclosed to Business Associate pursuant to the Underlying Agreement in compliance with the Privacy Rule and Security Standards (defined below) promulgated pursuant to the Health Insurance Portability and Accountability Act of 1996, Public Law 104-191 as modified by the Health Information Technology for Economic and Clinical Health Act, found in Title XIII of the American Recovery and Reinvestment Act of 2009, Public Law 111-005.
In consideration of the mutual premises and the covenants and agreements contained in this Addendum, the Parties agree as follows:
- Terms used in this Addendum that are specifically defined in HIPAA shall have the same meaning as set forth in HIPAA. A change to HIPAA which modifies any defined HIPAA term, or which alters the regulatory citation for the definition shall be deemed incorporated into this Addendum.
- "Business Associate" shall mean the entity described above. Where the term "business associate" appears without an initial capital letter, it shall have the meaning given to such term under the Privacy Rule, including, but not limited to, 45 CFR § 160.103.
- "Covered Entity" means the entity identified as such in the caption above.
- "Data Aggregation" shall have the meaning given to the term under the Privacy Rule, including, but not limited to, 45 CFR § 164.501.
- "Designated Record Set" shall have the meaning given to the term under the Privacy Rule, including, but not limited to, 45 CFR §164.501.
- "Electronic Protected Health Information" and/or "EPHI" shall have the same meaning as the term "electronic protected health information" in 45 CFR § 160.103, and shall include, without limitation, any EPHI provided by Covered Entity or created or received by Business Associate on behalf of Covered Entity.
- "Effective Date". For purposes of this Agreement, the "Effective Date" shall be the Effective Date as such term is defined in the Underlying Agreement.
- "HIPAA" means the Health Insurance Portability and Accountability Act of 1996, Public Law 104-91, as amended, and related HIPAA regulations (45 CFR. Parts 160-1 64).
- "HITECH" means the Health Information Technology for Economic and Clinical Health Act, found in Title XIII of the American Recovery and Reinvestment Act of 2009, Public Law 111-005.
- "Individual" shall have the meaning given to the term under the Privacy Rule, including, but not limited to, 45 CFR § 160.103. It shall also include a person who qualifies as a personal representative in accordance with 45 CFR § 164.502(g).
- "Privacy Rule" shall mean the Standards for Privacy of Individually Identifiable Health Information, and Security Standards for the Protection of Electronic Protected Health Information (the "Security Rule"), that are codified at 45 CFR parts 160 and 164, Subparts A, C, and E and any other applicable provision of HIPAA, and any amendments thereto, including HITECH.
- "Protected Health Information" and/or "PHI" shall have the meaning given to the term under the Privacy Rule, including but not limited to, 45 CFR § 164.103, and shall include, without limitation, any PHI provided by Covered Entity or created or received by Business Associate on behalf of Covered Entity. Unless otherwise stated in this Addendum, any provision, restriction, or obligation in this Addendum related to the use of PHI shall apply equally to EPHI. PHI does not include any information independently given to or sourced by Business Associate directly from third parties.
- "Required By Law" shall have the meaning given to the term under the Privacy Rule, including but not limited to, 45 CFR § 164.103, and any additional requirements created under HITECH.
- "Secretary" shall mean the Secretary of the Department of Health and Human Services or his designee.
- "Security Incident" shall mean the attempted or successful unauthorized access, use, disclosure, modification, or destruction of information or interference with system operations in an information system as provided in 45 CFR § 164.304.
- "Underlying Agreement" shall mean the underlying agreement(s) that outline the terms of the services that Business Associate agrees to provide to Covered Entity and that fall within the functions, activities or services described in the definition of "Business Associate" at 45 CFR § 160.103.
- "Unsecured PHI" shall have the same definition that the Secretary gives the term in guidance issued pursuant to § 13402 of HITECH.
- BUSINESS ASSOCIATE OBLIGATIONS.
- Business Associate agrees that it shall only use and disclose PHI in accordance with the terms of this Addendum or as is Required By Law.
- Business Associate shall not use or disclose PHI except for the purpose of performing Business Associate's obligations to Covered Entity, as such use or disclosure is limited by this Addendum. These obligations are as set forth or necessary and appropriate to Business Associate’s performance of its activities under the Underlying Agreement.
- Business Associate shall not use or disclose PHI in any manner that would constitute a violation of the Privacy Rule. So long as such use or disclosure does not violate the Privacy Rule or this Addendum, Business Associate may use PHI: (a) as is necessary for the proper management and administration of Business Associate's organization, or (b) to carry out the legal responsibilities of Business Associate, as provided in 45 CFR § 164.504(e)(4).
- Business Associate will ensure that any agents, including subcontractors, to whom it provides PHI agree in writing to the same restrictions and conditions, including but not limited to those relating to termination of the contract for improper disclosure, that apply to Business Associate with respect to such information. Further, Business Associate shall implement and maintain sanctions against agents and subcontractors, if any, that violate such restrictions and conditions. Business Associate shall terminate any agreement with an agent or subcontractor, if any, who fails to abide by such restrictions and obligations, subject to cure opportunities as available.
- Business Associate shall develop, implement, maintain, and use appropriate safeguards to prevent any use or disclosure of the PHI or EPHI other than as provided by this Addendum, and to implement administrative, physical, and technical safeguards as required by sections 164.308 (Administrative Safeguards), 164.310 (Physical Safeguards), 164.312 (Technical Safeguards), and 164.316 (Policies and Documentation) of title 45, Code of Federal Regulations and HITECH in order to protect the confidentiality, integrity, and availability of EPHI or PHI that Business Associate creates, receives, maintains, or transmits, to the same extent as if Business Associate were a Covered Entity.
- The additional requirements of Title XIII of HITECH that relate to privacy and security and that are made applicable with respect to covered entities shall also be applicable to Business Associate and shall be and by this reference hereby incorporated into this Addendum.
- Business Associate agrees to adopt the technology and methodology standards provided in any guidance issued by the Secretary pursuant to HITECH §§ 13401-13402.
- Business Associate agrees to mitigate any harmful effect that is known to Business Associate of a use or disclosure of PHI by Business Associate in violation of the requirements of this Addendum and to notify Covered Entity of any breach of unsecured PHI, as required under HITECH § 13402.
- Business Associate shall report, in writing, to Covered Entity any use or disclosure of PHI that is not authorized by the Underlying Agreement or this Addendum. Such written notice shall be provided to Covered Entity within five (5) business days of becoming aware of such use or disclosure.
- In the case of a breach of Unsecured PHI, Business Associate shall, following the discovery of a breach of such information, promptly notify the Covered Entity of such breach in accordance with the specific statutory and regulatory requirements. For example, the notice shall include the identification of each individual whose Unsecured PHI has been, or is reasonably believed by the Business Associate to have been, accessed, acquired, or disclosed during the breach.
- Business Associate will obtain, prior to making any permitted disclosure as set forth in Section 2.2, reasonable assurances from such third party that such PHI will be held secure and confidential as provided pursuant to this Addendum and only disclosed as required by law or for the purposes for which it was disclosed to such third party, and that any breaches of confidentiality of the PHI which becomes known to such third party will be promptly reported to Business Associate. As part of obtaining this reasonable assurance, Business Associate agrees to enter into a Business Associate Agreement with each of its subcontractors pursuant to 45 CFR § 164.308(b)(1) and HITECH § 13401.
- Business Associate shall make PHI in Designated Record Sets that are maintained by Business Associate or its agents or subcontractors, if any, available to Covered Entity for inspection and copying within ten (10) business days of a request by Covered Entity to enable Covered Entity to fulfill its obligations under the Privacy Rule, including, but not limited to, 45 CFR § 164.524.
- Within ten (10) business days of receipt of a request from Covered Entity for an amendment of PHI or a record about an Individual contained in a Designated Record Set, Business Associate or its agents or subcontractors, if any, shall make such PHI available to Covered Entity for amendment and shall incorporate any such amendment to enable Covered Entity to fulfill its obligations under the Privacy Rule, including, but not limited to, 45 CFR § 164.524. If an Individual requests an amendment of PHI directly from Business Associate or its agents or subcontractors, if any, Business Associate will notify Covered Entity in writing within five (5) business days of the request. Any denial of amendment of PHI maintained by Business Associate or its agents or subcontractors, if any, shall be the responsibility of Covered Entity. Upon the approval of Covered Entity, Business Associate shall appropriately amend the PHI maintained by it, or any agents or subcontractors.
- Within ten (10) business days of notice by Covered Entity of a request for an accounting of disclosures of PHI, Business Associate shall make available to Covered Entity the information required to provide an accounting of disclosures to enable Covered Entity to fulfill its obligations under the Privacy Rule, including, but not limited to, 45 CFR §164.528. Except in the case of a direct request from an Individual for an accounting related to treatment, payment or healthcare operations disclosures through an electronic health record, if the request for an accounting is delivered directly to Business Associate or its agents or subcontractors, if any, Business Associate shall within five (5) business days of a request notify Covered Entity about such request. Covered Entity shall either inform Business Associate to provide such information directly to the Individual, or it shall request the information to be promptly forwarded to Covered Entity for compilation and distribution to such Individual. In the case of a direct request for an accounting from an Individual related to treatment, payment or healthcare operations disclosures through electronic health records, Business Associate shall provide such accounting to the Individual in accordance with HITECH § 13405(c), but only after the applicable effective date of such HITECH provision. Business Associate shall not disclose any PHI unless such disclosure is Required by Law or is in accordance with this Addendum. Business Associate shall document such disclosures.
- Business Associate shall make its internal practices, books and records relating to the use and disclosure of PHI available to the Secretary for purposes of determining Covered Entity’s compliance with the Privacy Rule. Business Associate shall notify Covered Entity regarding any PHI that Business Associate provides to the Secretary concurrently with providing such PHI to the Secretary, and upon request by Covered Entity, shall provide Covered Entity with a duplicate copy of such PHI.
- Business Associate and its agents or subcontractors, if any, shall only request, use and disclose the minimum amount of PHI necessary to accomplish the purpose of the request, use or disclosure. Business Associate agrees to comply with the Secretary’s guidance on what constitutes minimum necessary.
- Business Associate and its subcontractors or agents, if any, shall retain any PHI throughout the term of the Underlying Agreement and this Addendum.
- During the term of this Addendum, Business Associate shall notify Covered Entity within twenty-four (24) hours of any suspected or actual Security Incident or breach of security, intrusion or unauthorized use or disclosure of PHI or EPHI and/or any actual or suspected use or disclosure of data in violation of any applicable federal or state laws or regulations, or any legal action against Business Associate arising from an alleged HIPAA violation. Business Associate shall take (i) prompt action to correct any such deficiencies and (ii) any action pertaining to such unauthorized disclosure required by applicable federal and state laws and regulations.
- COVERED ENTITY OBLIGATIONS.
- Covered Entity shall provide Business Associate with notice of any changes to, revocation of, or permission by Individual to use or disclose PHI, if such changes affect Business Associate's permitted uses or disclosures, promptly after Covered Entity becomes aware of such changes to or revocation of permission.
- Covered Entity shall notify Business Associate of any restriction to the use or disclosure of PHI that has been agreed to or must be complied with in accordance with 45 CFR § 164.522 and HITECH § 13405(a).
- Covered Entity shall not request Business Associate to use or disclose PHI in any manner that would not be permissible under the Privacy Rule if done by Covered Entity.
- Covered Entity shall at all times comply with HIPAA, HITECH and state privacy laws and regulations and shall indemnify and hold harmless Business Associate and its owners, employees, agents, affiliates and successors from and against any allegations, claims, actions, investigations, losses, liabilities, fines, penalties and costs (including reasonable attorneys’ fees) arising from violation of federal and state privacy laws and regulations, including HIPAA and HITECH, by Covered Entity, its owners, employees, agents and affiliates, including following termination of the Underlying Agreement. This obligation shall survive termination of this Addendum and the Underlying Agreement.
- If Business Associate knows of a pattern of activity or practice by the Covered Entity that constitutes a material breach or violation of the Covered Entity’s obligations under this Addendum, Covered Entity will take reasonable steps to cure the breach or end the violation. If such steps are unsuccessful, Business Associate will either: 1) terminate the Underlying Agreement and this Addendum, if feasible; or 2) report the problem to the Secretary.
- The term of this Addendum shall be effective as of the date of this Addendum and continue until terminated by either party or until the Underlying Agreement expires or is terminated. Any provision related to the use, disclosure, access, or protection of EPHI or PHI or that by its terms should survive termination of this Addendum shall survive termination.
- A breach by either party, or their agents or subcontractors, if any, of any provision of this Addendum shall constitute a material breach of the Addendum. If a party breaches this Addendum, the non-breaching party may, in its discretion: (i) immediately terminate this Addendum; (ii) provide an opportunity for the breaching party to cure the breach or end the violation and terminate this Addendum if the breaching party does not promptly cure the breach or end the violation within a period not to exceed 30 days; or (iii) report the violation to the Secretary if neither termination nor cure is feasible. Notwithstanding the foregoing, Business Associate shall in all events have a cure opportunity of up to 30 days unless it is in willful violation of law and regulation.
- Upon termination of this Addendum for any reason, Business Associate shall return, or at Covered Entity’s request, destroy all PHI that Business Associate or its agents or subcontractors, if any, still maintain in any form, and shall retain no copies of such PHI. If return or destruction is not feasible, Business Associate shall explain to Covered Entity why conditions make the return or destruction of such PHI not feasible. If Covered Entity agrees that the return or destruction of PHI is not feasible, Business Associate shall retain the PHI, subject to all of the protections of this Addendum, and shall make no further use of such PHI.
- A reference in this Addendum to a section in the Privacy or Security Rule or any other HIPAA regulatory or statutory provision means the applicable statutory or regulatory provision as in effect or as amended.
- Nothing express or implied in this Addendum is intended to confer, nor shall anything herein confer, upon any person other than Covered Entity, Business Associate, or their respective successors or assigns, any rights, remedies, obligations or liabilities whatsoever.
- The parties are independent contractors and nothing in this Addendum shall be deemed to make them partners or joint venturers.
- If any modification to this Addendum is Required By Law or required by HITECH or any other federal or state law affecting this Addendum, or if either party reasonably concludes that an amendment to this Addendum is needed because of a change in federal or state law or changing industry standards, such party shall notify the other of such proposed modification(s) ("Legally-Required Modifications"). Such Legally Required Modifications shall be deemed accepted by each party to the extent required to comply with the Legally Required Modification, and this Addendum so amended, if either party does not, within thirty (30) calendar days following the date of the notice (or within such other time period as may be mandated by applicable state or federal law), deliver to the other party its written rejection of such Legally-Required Modifications.
- All notices which are required or permitted to be given pursuant to this Addendum shall be in writing and provided in such manner as set forth in the Underlying Agreement.
- If any provision of this Addendum is determined by a court of competent jurisdiction to be invalid, void, or unenforceable, the remaining provisions hereof shall continue in full force and effect.
- This Addendum supplements the Underlying Agreement between them. No modification, addition to or waiver of any right, obligation or default shall be effective unless in writing and signed by the party against whom the same is sought to be enforced. No delay or failure of either party to exercise any right or remedy available hereunder, at law or in equity, shall act as a waiver of such right or remedy, and any waiver shall not waive any subsequent right, obligation, or default. Notwithstanding anything herein to the contrary, this Addendum is subject to modification by Business Associate in accordance with the terms of the Underlying Agreement.
- All questions concerning the validity, operation, interpretation, and construction of this Agreement shall be governed by and determined in accordance with the laws of the State of New York (without regard to any forum’s conflict of law principles).
- The provisions of this Addendum are severable. If any provision is determined to be invalid, illegal, or unenforceable, in whole or in part, the remaining provisions and any partially enforceable provisions shall remain in full force and effect.
- In the event of litigation relating to this Addendum, the substantially prevailing party shall be entitled to recover costs and attorneys' fees in addition to all other remedies available at law or in equity.
- This Addendum may be executed by electronic, facsimile or e-mail signature and in any number of counterparts, each of which shall be an original, and all such counterparts shall together constitute but one in the same agreement.
IN WITNESS WHEREOF, the parties have caused this Agreement to be executed by their duly authorized representative.
2. Independent Contractors; Compliance with Law. We are independent contracting parties. Each party shall be solely responsible for its (including its owners’, employees’, agents’ and affiliates’) own acts and omissions and breach of this Agreement (including any adverse change in any representation and/or warranty hereunder and compliance with Applicable Law), and, to the extent not covered by insurance, you shall indemnify and hold us harmless from and against all allegations, investigations, audits, claims, costs, penalties, fines, losses and liabilities associated with the foregoing, your provision of services, practice, operations and business and your covenants and obligations herein, including your breach hereof, adverse changes in any representations and warranties hereunder and all other acts and omissions of yours, including reasonable attorneys’ fees, including following termination. You will be solely responsible for licensure/permits/registration and the conduct of your business, billing, services, testing and practice as required by all applicable Federal and State laws, rules, regulations and third party payor (private and governmental) requirements, including, without limitation, HIPAA and state privacy and patient disclosure laws (collectively, such laws, rules regulations and payor requirements are referred to herein as “Applicable Law”) and are further solely responsible for verifying the accuracy of information provided by patients including via our Program and violation of Applicable Law by you. You assume the sole risk and liability for privacy breaches associated with your violation of Applicable Law and transmission of information to inaccurate e-mail addresses. You represent that the execution of this Agreement has been duly authorized (with the accepting individual having the full power and authority to execute this Agreement on behalf of the practice) and that you are duly organized and a validly existing entity with such licenses, registration and permits in the states in which you do business and with respect to the state residents you service to assure your compliance with Applicable Law. You are under no contractual or other restriction or obligation which is inconsistent with the execution of this Agreement, the performance of your duties
hereunder, or the rights granted to us hereunder. This Section 2 shall survive termination of this Agreement.
3. Termination. This Agreement commences upon acceptance and may be terminated by either party at any time upon immediate written notice. We may store information for your de-activated portal even after termination by either party for so long as required by law/regulation or permitted by law/regulation.
4. Program Ownership. You acknowledge that our Program whether or not marked as “confidential” is special and unique proprietary assets and trade secrets of ours (further constituting our “Confidential Information” proprietary to us). You agree that at all times during the term of this Agreement and following its termination that you will not, either directly or indirectly, disclose, share, use, reproduce, derive materials from, reverse engineer or in any manner divulge to any person or entity, any such Confidential Information, except for purposes of use of the Program for the purposes intended (though patient information for patients treated by you shall also belong to you). This Agreement merely constitutes a revocable non-exclusive and non-transferable license to use the Program on the terms and conditions herein. The license granted does not include any right to use the Program for purposes other than for use by those individuals authorized by you under this Agreement with respect to services rendered by you or to copy, reproduce, sell, assign, transfer, lease, sublease or sublicense the Program for any purpose or to any third party, in whole or in part. The above license rights granted will not affect the exclusive ownership of the Program by us. If you devise any revisions, enhancements, or improvements in the Program, you will promptly disclose such improvements to us, and such improvements will be our sole property, and you will have no rights whatsoever in same. You will cause each authorized user accessing the Program to abide by the terms and conditions of this Agreement as if each were a party hereto. Our sole responsibility for any allegation of infringement of a third party’s intellectual property shall be to replace the functionality with equivalent functionality so long as we desire to continue to offer such functionality for all such similarly situated users, and this Agreement remains subject to your termination rights herein. This Section 4 shall survive termination of this Agreement.
5. Costs of Connectivity; Downtime. You are solely responsible, at your own cost and expense, for acquiring, installing and maintaining any connectivity equipment, hardware, software and other equipment as may be necessary for you and your authorized users to connect to and use the Program functionality or receive the information derived therefrom. We will make commercially reasonable efforts to restore functionality when down time is caused by us, and the Agreement remains subject to the termination rights herein without penalty to us.
6. Data. You acknowledge that we retain independent possession and ownership of, and may share with other persons and entities the data and information from utilization of the Program (including any patient information which is de-identified if required under HIPAA as then-applicable) (e.g., including, without limitation, for statistical purposes, data aggregation, research study, analysis, warehousing, sale or otherwise). For the avoidance of doubt, LabFinder, LLC is hereby authorized to use and exploit de-identified data and healthcare information derived by it from your use of and integration with the LabFinder website and associated mobile app, for any purpose, including for data aggregation, analysis, research, study and sale, and you have no rights in or to any proceeds relating thereto. This Section 6 shall survive termination of this Agreement. You acknowledge that you will be required to sync your electronic medical record (EMR) patient demographic data with us in order to enable auto-completion of your patient’s demographic information into our registration system when scheduling tests/imaging through us. At such time that we sync such information, we will concurrently on your behalf (through your e-mail domain) notify all of your patients in such EMR system of your participation in our Program, as well as periodically thereafter at our option.
7. Name and Likeness. You hereby grant us the non-exclusive, worldwide right and license to publish your name, company name, photos and logo (along with any additional content you provide us) on our website and for purposes of otherwise advertising/marketing and promoting the Program, for so long as you remain a participating user, and further authorize us to share the identity and payor mix of your practice and professionals with current and potential clinical laboratory and radiology subscribers, for no consideration due to you for same. If you are a physician or other professional practice or facility with in-office phlebotomy and are participating in the search engine listing for your office/facility phlebotomy services on LabFinder.com or its associated mobile app, your listing will appear for each clinical laboratory you utilize for those payor plans in which the patient participates, subject to exceptions for private payment and as otherwise determined by us. Termination of your participation shall not affect publications already disseminated prior to the effective termination date.
8. NO WARRANTY. MARKETING, ADVERTISING AND PROMOTIONAL OR SALES MATERIALS OR COMMUNICATIONS OF ANY NATURE DO NOT CONSTITUTE ANY REPRESENTATION OR WARRANTY AND ARE NOT INCORPORATED INTO THIS AGREEMENT, AND YOU WILL NOT RELY ON SAME. EXCEPT AS OTHERWISE EXPRESSLY PROVIDED HEREIN, WE UNDERTAKE NO OBLIGATION TO PROVIDE ERROR-FREE OR FAULT-FREE PROGRAM(S), WEBSITE ACTIVITY OR AVAILABILITY, DATA, REPORTS, RECORDS, INFORMATION, ITEMS, SUPPLIES OR EQUIPMENT. ALL PROGRAMS, SUPPLIES, ITEMS, SERVICES AND EQUIPMENT PROVIDED OR ARRANGED FOR BY US ARE PROVIDED “AS IS”. WE DISCLAIM ALL REPRESENTATIONS AND WARRANTIES OF ANY KIND OR NATURE, EXPRESS OR IMPLIED (EITHER IN FACT OR BY OPERATION OF LAW), WITH RESPECT TO ANY DATA, INFORMATION, REPORTS, PROGRAMS, SUPPLIES, EQUIPMENT, SERVICES OR ITEMS PROVIDED HEREUNDER, INCLUDING, BUT NOT LIMITED TO, ANY WARRANTY OF MERCHANTABILITY, TITLE, DESIGN, INFRINGEMENT, OR FITNESS FOR A PARTICULAR PURPOSE AND ANY WARRANTY ARISING FROM CONDUCT, COURSE OF DEALING, CUSTOM, OR USAGE IN TRADE. This Section 8 shall survive termination of this Agreement.
9. LIMITATION OF LIABILITY. IN NO EVENT SHALL WE BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL OR PUNITIVE DAMAGES, INCLUDING LOSS OF PROFITS, INCURRED BY YOU OR SUCCESSORS, WHETHER IN AN ACTION IN CONTRACT, TORT OR OTHERWISE, EVEN IF THE PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. THIS LIMITATION OF LIABILITY IS CUMULATIVE AND NOT PER INCIDENT. ADDITIONALLY, IN NO EVENT SHALL WE BE LIABLE FOR DAMAGES IN AN AMOUNT MORE THAN THE AMOUNT ACTUALLY PAID BY YOU TO US, IF ANY, OVER THE ONE (1) MONTH PERIOD IMMEDIATELY PRECEDING NOTICE OF THE BREACH. THE FOREGOING LIMITATIONS OF THIS SECTION WILL APPLY EVEN IF THE ABOVE STATED REMEDY FAILS OF ITS ESSENTIAL PURPOSE. This Section 9 shall survive termination of this Agreement.
10. Non-Competition. You expressly agree that you shall not, directly or indirectly, during the period of your registration/participation and for a period of one (1) year after the effective date of cancellation thereof other than on behalf of yourself only: (i) operate, manage, market, own or have any financial or contractual relationship in or with any website or mobile software application (app) that serves as a search engine and/or scheduling system for, whether alone or in combination with any of the following, clinical laboratories, patient service centers and/or diagnostic radiology practices and facilities, or (ii) purchase, use, perform, or agree to perform, any services for any third party that develops, promotes, sells, licenses, distributes, or provides services, or has plans to do any of the foregoing, that would compete directly with the technology or functionality being marketed, sold, licensed, distributed, provided or otherwise made available by us to you and to patients in the Program and website. This Section 10 shall survive termination of this Agreement.
11. Non-Disparagement. At all times during the term of this Agreement and following its expiration or termination for any reason, the parties agree to not, directly or indirectly, in public or private, whether in oral, written, electronic or other format, disparage, deprecate, impugn or otherwise make any statements or remarks that would tend to or be construed to defame or slander the personal or professional reputations, professional qualifications, services, website/application, Program, functionality and/or business of the other party, including its owner(s), parents, subsidiaries, affiliates and/or its/his/her/their owners, independent contractors, employees, agents, affiliates, subsidiaries, parents and/or successors and/or clients/licensees/subscribers, nor shall such party in any manner assist or encourage any third party in doing so. This shall not prohibit the making of claims and the enforcement of rights and remedies arising under this Agreement, testifying truthfully under oath, nor shall it or any other provision in this Agreement prohibit or preclude cooperation with investigations or inquiries by governmental authorities. This Section 11 shall survive termination of this Agreement.
12. Remedies. In the event of a breach or threatened breach of any of the covenants herein, in addition to any other rights or remedies which the party may have at law and in equity which shall be cumulative and not alternative, such party shall further be entitled to such equitable and injunctive relief (including a temporary and permanent injunction, without the requirement of the posting of a bond) as may be available from a court of competent jurisdiction to restrain the other party (and their respective owners, affiliates and successors) from any violation or continued violation of such covenant. The affected party shall not, as a result of the time involved in obtaining such relief, be deprived of the benefit of the full period of the covenant. Accordingly, the covenant shall be deemed to have the duration specified herein, computed from the date the relief is granted, but reduced by the time between the period when the covenant began to run and the date of the first violation of the covenant. If any restriction or any other provision contained in this Agreement shall be deemed to be invalid, illegal or unenforceable by reason of the extent, duration or scope thereof, or otherwise, then the court making such determination shall reduce such extent, duration, scope or other provision hereof, and in its reduced form, such restriction or provision shall then be enforceable in the manner contemplated hereby. This Section 12 shall survive termination of this Agreement.
13. Prior Authorization Program. As a LabFinder user, you can enjoy the benefit of prior authorization services offered by LabFinder. We do, however, retain the right to terminate your participation in this program at any time, for any or no reason. "Prior authorization" means any practice implemented by a carrier or payor in which coverage of a health care service is dependent upon a covered person or a health care practitioner obtaining approval prior to the service being performed. In rendering the services, LabFinder is relying solely on information provided by the patient and/or ordering and/or rendering healthcare providers and suppliers, including you, and does not represent or warrant that it will take steps to verify the information provided to it for the conduct of the services hereunder. As such, LabFinder cannot guaranty the accuracy, current state of the information, or completeness of the information at the time of the request for authorization. LabFinder does not conduct utilization review or make any determination or assessment of medical necessity. You are solely responsible for all determinations of medical necessity for any order you provide a patient, and for the accuracy and completeness of the information you provide to us. LabFinder will not be liable for any damages of any nature attributable to your participation in this program, including with respect to any allegation or audit disputing medical necessity and/or with respect to allegations or findings of violation of law, regulation and/or payor requirements as attributable to this program and the services being rendered hereunder. You acknowledge that prior authorizations are not a guaranty of verification of patient eligibility under the applicable carrier/payor plan. Carriers and other payors retain the right to review the medical necessity of services, eligibility for services, and benefit limitations and exclusions even after a patient receives the services. The limitation of liability under this Section 13 shall survive termination of services under the program and termination of this Agreement.
14. Miscellaneous. We may amend this agreement at any time, and you will be required to accept or otherwise acknowledge your agreement to the changes in order to maintain your access to our services. If you fail to acknowledge your acceptance of any such change then your access will expire immediately or at any time thereafter at our option. Notices hereunder may be given by e-mail to the registered contact of the party (deemed given immediately), by overnight mail to the party’s last known principal address (deemed delivered the next day), or first class mail to such address (deemed given three days later). The Agreement is not assignable by you without our written consent, though we may delegate our rights and obligations and assign this Agreement to any transferee, assignee or successor to our business or assets to which this Agreement relates. If any provision of this Agreement or the application of any provision hereof to any person or circumstances is held to be legally invalid, inoperative or unenforceable, the remainder of this Agreement shall not be affected unless the invalid provision substantially impairs the benefits of the remaining portions of this Agreement to the other party. Any consent or waiver executed in writing by a party shall be binding upon such party from and after the date of execution thereof unless a later or earlier date is specified therein. Any delay or failure to exercise any remedy or right under this Agreement (whether a default exists or not) shall not be construed as a waiver of such remedy or right, or an acquiescence in such default, nor shall it affect any subsequent default of the same or a different nature. Any reference to termination herein shall similarly apply to expiration, non-renewal or cancellation of access. This Agreement shall be binding upon and shall inure to the benefit of the parties hereto and their respective successors and permitted assigns. This Agreement is governed by the laws of the State of New York without reference to its conflicts of law provisions. Each party hereby agrees and consents that any legal action or proceedings with respect to this Agreement shall only be brought in the courts of the State of New York in New York County. By execution and delivery of this Agreement, each such party hereby (i) accepts the jurisdiction of the aforesaid courts; (ii) waives, to the fullest extent permitted by law, any objection which it may now or hereafter have to the venue set forth above; and (iii) further waives any claim that any such suit, action or proceeding brought in any such court has been brought in an inconvenient forum. Each party hereby acknowledges personal jurisdiction in New York for purposes hereof. Notwithstanding any other rights a party may have under law or equity, any cause of action you may have arising out of or related to this Agreement must commence within one (1) year after the cause of action arises. Otherwise, the cause of action is permanently barred. In the event that any party brings litigation at law or in equity arising out of this Agreement, if we are the substantially prevailing party, then we shall be entitled to all expenses incurred, including but not limited to, reasonable attorneys’ fees, collection and court costs incurred in and leading up to such proceeding, and the costs of collection on any judgment. Any provision of this Agreement which by its express terms or by reasonable implication must survive expiration or termination in order to be effectuated shall so survive expiration or termination.
IN WITNESS WHEREOF, the parties have caused this Agreement to be executed by their duly authorized representative.