Request a Demo

Policies and Agreements

Website Privacy Policy

Introduction

Thank you for visiting the Zipari website.

Zipari Inc. (Zipari) is committed to protecting the privacy of individuals who visit the Zipari website (www.zipari.com) or use Zipari’s services.

The website (zipari.com) is owned and operated by Zipari, Inc. Throughout the Website, the terms “we”, “us” and “our” refer to Zipari. Zipari offers the Website, including all information and tools available from this site to you (referred to as “you”, “yourself”, “your” or “visitor”) conditioned upon your acceptance of all terms, conditions, policies and notices stated here.

This Privacy Policy outlines the information Zipari may collect and how it is used, shared, and protected in accordance with US Privacy Laws.

By utilizing the Website, you agree to the terms in this policy as dictated herein. If you do not agree to this Privacy Policy, you must not use our Website.

1. Information we collect when you visit our website

You are free to explore the Website without providing any Personal Information, as defined below, about yourself, however, this may limit your ability to receive certain information from us and may limit the availability or functionality of the Website. When you visit the Website we may request that you provide Personal Information about yourself, and we collect Navigational Information (as defined below).

You are responsible for any third-party Personal Information obtained, published or shared through the Website and confirm that you have the third party’s consent to provide the Personal Information to us.

1.1 Personal Information

In this policy, “personal information” refers to any information that relates to an identified or identifiable person. This includes data that can be used on its own or in combination with other information to identify an individual. Personal information can encompass a broad range of data, and the specific categories may vary based on applicable privacy laws and regulations.

Personal information includes any information that you voluntarily submit to us and that identifies you personally, including contact information, such as your name, email address, company name, physical address, phone number, and other information about yourself or your business. Personal Information can also include information about any transactions that you enter into on the Websites, and information about you that is available on the Internet, such as from Facebook, LinkedIn, X (formerly known as Twitter), and Google, or publicly available information that we acquire from service providers.

1.2 Navigational Information

Information collected automatically through the Websites that can directly or indirectly identify an individual.  Navigational information refers to information about your computer and your visits to the Websites such as your IP address, geographical location, browser type, referral source, length of visit and pages viewed.

1.3 Log Files

When you use our services or view content provided by us, we automatically collect non-personally identifiable information about your computer hardware and software. This information can include your IP address, browser type, domain names, internet service provider (ISP), the files viewed on our site (e.g., HTML pages, graphics, etc.), operating system, clickstream data, access times and referring website addresses.

This information is used by Zipari to provide general statistics regarding use of the Zipari Websites. For this purpose, we link this automatically-collected data to Personal Information such as name, email address, address, and phone number.

1.4 Third parties

From time to time, we may receive Personal Information about you from third party sources including partners with which we offer co-branded services or engage in joint marketing activities, and publicly available sources such as social media websites.

1.5 Information About Children

This Website is not intended for or targeted to children under 16, and we do not knowingly or intentionally collect information about children under 16. If you believe that we have collected information about a child under 16, please contact us at privacy@zipari.com, so that we may delete the information.

1.6 Credit Card Information

We do not collect credit card information on our Websites.

1.7 Social Media Features

Our Websites include Social Media Features, such as the Facebook Like button and Widgets, the Share This button or interactive mini-programs that run on our sites. These features may collect your IP address, which page you are visiting on our sites, and may set a cookie to enable the feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our Website. This Privacy Policy does not apply to these features.  Your interactions with these features are governed by the privacy policy and other policies of the companies providing them.

1.8 Public Forums

We offer a publicly accessible blog. Please keep in mind that if you directly disclose any information through our blog this information may be collected and used by others. We will correct or delete any information you have posted on the Websites if you so request, as described in “Accessing and Amending Your Personal Information” below.

1.9 HIPAA Covered Information

Our website does not collect, store, process, display, or transmit PHI, Electronic Medical Records or Electronic Health Records.

1.10 California Consumer Privacy Act

Read our California Consumer Privacy Act Statement

2. How We Use Information We Collect

We use the information we collect only in compliance with this Privacy Policy. Visitors who opt-in to our newsletter or download any content from our Websites are obligated through our agreements with them to comply with this Privacy Policy.

2.1 Personal Information

In addition to the uses identified elsewhere in this Privacy Policy, we may use your Personal Information to:

  • improve your browsing experience by personalizing the Website;
  • send information or Zipari content to you which we think may be of interest to you by post;
  • email, or other means and send you marketing communications relating to our business;
  • promote use of our services to you and share promotional and informational content with you in accordance with your communication preferences;
  • provide other companies with statistical information about our users — but this information will not be used to identify any individual user;
  • send information to you regarding changes to our Customer Terms of Service, Privacy Policy (including the Cookie Policy), or other legal agreements;
  • meet legal requirements.

Our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it. However, we will normally collect personal information from you only where we have your consent to do so, where we need the personal information to perform a contract with you, or where the processing is in our legitimate interests and not overridden by your data protection interests or fundamental rights and freedoms. In some cases, we may also have a legal obligation to collect personal information from you.

If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal information). Similarly, if we collect and use your personal information in reliance on our legitimate interests (or those of any third party), we will make clear to you at the relevant time what those legitimate interests are.

2.2 Navigational Information

We use Navigational Information to operate and improve the Websites. We may also use Navigational Information alone or in combination with Personal Information to provide you with personalized information about Zipari.

2.3 Customer Testimonials and Comments

We post customer testimonials and comments on our Websites, which may contain Personal Information. We obtain each customer’s consent via email prior to posting the customer’s name and testimonial.

3. How we Share Information we Collect

3.1 Service Providers

We employ other companies and people to provide services to visitors to our Websites and may need to share your information with them to provide information, products or services to you. Examples may include removing repetitive information from prospect lists, analyzing data or performing statistical analysis, providing marketing assistance, supplementing the information you provide us in order to provide you with better service, and providing customer service or support. In all cases where we share your information with such agents, we explicitly require the agent to acknowledge and adhere to our privacy and visitors data handling policies.

3.2 Zipari Partners

In addition, we may share data with trusted partners to contact you based on your request to receive such communications, help us perform statistical analysis, or provide customer support. Such third parties are prohibited from using your Personal Information except for these purposes, and they are required to maintain the confidentiality of your information.

We partner with trusted third parties to provide you with co-marketing content that we think may be relevant to you. When you engage with these co-marketing partners, we will tell you who we are sharing data with, and provide a link to the co-marketing partner’s privacy policy so you can learn more about how to opt-out of the partner’s communications. These co-marketing partners are required to adhere to our privacy and data protection policies.

3.3 Corporate Events

If we (or our assets) are acquired by another company, whether by merger, acquisition, bankruptcy or otherwise, that company would receive all information gathered by

Zipari on the Websites. In this event, you will be notified via email and/or a prominent notice on our website, of any change in ownership, uses of your Personal Information, and choices you may have regarding your Personal Information.

3.4 Compelled Disclosure

We reserve the right to use or disclose your Personal Information if required by law or if we reasonably believe that use or disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or comply with a law, court order, or legal process.

4. Cookies and Similar Technologies

4.1 Cookies

Zipari and its partners use cookies or similar technologies (such as web beacons) to analyze trends, administer the website, track users’ movements around the website, and to gather demographic information about our user base as a whole. Tools we may use may include browser cookies. Your browser will store these cookies on your computer in a small file.

4.2 Web Beacons

Zipari and its partners may also use web beacons (single pixel GIF images). These web beacons are placed in the code of a Web page or an email newsletter.

By using the Websites, you give us your free, unambiguous and informed consent to use any of the cookies and tracking tools mentioned in this policy.

4.3 Tracking Tools

Zipari uses tracking tools for the following purposes:

  • To help us recognize your browser, mobile device or the like as a previous visitor. This includes saving and remembering any preferences that may have been set while your browser, mobile device or the like was visiting the Websites, such as language preferences.
  • To track new visitors to the Websites.
  • To help improve the Websites and for capacity planning purposes. We and/or our partners and service providers may set analytics cookies. These allow us to gather aggregated or segmented information about the types of visitors that access the Websites and the pages and advertisements that they view. Zipari will not use this information to personally identify you.
  • To work with advertising partners to display targeted advertising and native advertising on the Websites that you may visit. This targeting may be based on information you submit on the Websites. This targeting may also be based on your activities or behaviors on the Websites. We may also obtain information about your browsing history from our business partners.
4.3.1 Control tracking tools

Your browser may give you the ability to control cookies. How to do this varies from browser to browser. You should view the Help menu on the browser you use for further information.

4.4 Flash Cookies and Other Third Party Tracking Technologies

The Adobe Flash Player (and similar applications) use technology to remember settings, preferences and usage similar to browser cookies but these are managed through a different interface than the one provided by your Web browser. This technology creates locally stored objects that are often referred to as “Flash cookies.” Zipari does not use Flash cookies.

5. Security of your Personal Information

We use a variety of security technologies and procedures to help protect your Personal Information from unauthorized access, use or disclosure. We secure the Personal Information you provide on computer servers in a controlled, secure environment, protected from unauthorized access, use or disclosure. All Personal Information is protected using appropriate physical, technical and organizational measures.

5.1 Linked External Websites

Our Websites provide links to other websites. We do not control, and are not responsible for, the content or practices of these other websites. Our provision of such links does not constitute our endorsement of these other websites, their content, their owners, or their practices. This Privacy Policy does not apply to these other websites, which are subject to any privacy and other policies they may have.

6.Retention of Personal Information

We retain Personal Information that you provide to us where we have an ongoing legitimate business need to do so (for example, as long as is required in order to contact you about our services, or as needed to comply with our legal obligations, resolve disputes and enforce our agreements).

When we have no ongoing legitimate business need to process your Personal Information, we securely delete the information or anonymize it or, if this is not possible, then we will securely store your Personal Information and isolate it from any further processing until deletion is possible. We will delete this information from the servers at an earlier date if you so request, as described in “Accessing and Amending Your Personal Information” below.

If you have elected to receive marketing communications from us, we retain information about your marketing preferences for a reasonable period of time from the date you last expressed interest in our content, products, or services, such as when you last opened an email from us.  We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.

7. Accessing and Amending Your Personal Information

You are entitled at any time to obtain information about all your personal information that we store, in accordance with applicable law and without any fee. However, in certain exceptional cases we may ask you to pay a reasonable fee before providing you with the requested information if permitted by applicable law. We may request reasonable proof of identity before providing this Personal Information. We may not be able to allow you to access certain Personal Information in some situations. For example, if your Personal Information is connected with Personal Information of other persons, or for legal reasons. In such cases we will provide you with an explanation why you cannot obtain this Personal Information. You can also withdraw your consent to the use of your Personal Information at any time by contacting us. You can demand deletion or rectification of your personal information, however, statutory provisions, especially those affecting Zipari’s accounting, processing of claims, and mandatory data retention, may prohibit deletion or anonymization.

We periodically update this Privacy Policy and will post all changes on this page. We will also keep prior versions of this Privacy Policy in an archive for your review.

If you have any questions about this Privacy Policy or our treatment of the information you provide us, please contact us at privacy@zipari.com.

California Privacy Statement

 

Zipari Inc. (Zipari) is providing this California Privacy Statement to comply with the California Consumer Privacy Act of 2018 (“CCPA”), as amended and supplemented by the California Privacy Rights Act of 2020 (“CPRA”) and other applicable California statutes and any terms used below that are defined in a statute shall have the statutory meaning. This California Privacy Statement supplements the information contained in our Privacy Policy published on our website at https://zipari.com/privacy-notice-and-related-agreements/ (the “Privacy Policy”) and applies only if personal information you submit to us is within the scope of the CCPA, CPRA or other applicable California statute, which may be the case where we receive personal information from you, a Payer and/or Providers, in the State of California, USA. In the event of any conflict between this California Privacy Statement (if applicable) and our Privacy Policy, this California Privacy Statement shall prevail with regard to the subject matter hereof.

Information We Collect

Personal Data

In this policy, “personal information” refers to any information that relates to an identified or identifiable person. This includes data that can be used on its own or in combination with other information to identify an individual. Personal information can encompass a broad range of data, and the specific categories may vary based on applicable privacy laws and regulations.

 

While using Our Service, We may ask You to provide Us with certain personally identifiable information that can be used to contact or identify You. Personally identifiable information may include, but is not limited to:

  • Email address

  • First name and last name

  • Phone number

  • Address, State, Province, ZIP/Postal code, City Usage Data

  • Commercial Information such as products considered

  • Internet and network activity

  • Geolocation data

Personal Information under CCPA and CPRA does not include:

  • Publicly available information lawfully made available from government records.

  • Deidentified or aggregated consumer information.

  • Information excluded from the CCPA and CPRA’s scope, like:

    • health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA);

    • personal information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FCRA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver’s Privacy Protection Act of 1994. 

If certain types of information are exempt from CCPA and CPRA, and therefore this statement, other Zipari Privacy Policies may apply.

We generally do not collect additional categories of personal information or use the personal information we collected for significantly different or meaningfully unrelated purposes without providing you notice.

Usage Data

Usage Data is collected automatically when using the Service.

 

Usage Data may include information such as Your Device’s Internet Protocol address (e.g. IP address), browser type, browser version, the pages of our Service that You visit, the time and date of Your visit, the time spent on those pages, unique device identifiers and other diagnostic data.

 

When You access the Service by or through a mobile device, We may collect certain information automatically, including, but not limited to, the type of mobile device You use, Your mobile device unique ID, the IP address of Your mobile device, Your mobile operating system, the type of mobile Internet browser You use, unique device identifiers and other diagnostic data.

We may also collect information that Your browser sends whenever You visit our Service or when You access the Service by or through a mobile device.

 

Tracking Technologies and Cookies

We use Cookies and similar tracking technologies to track the activity on Our Service and store certain information. Tracking technologies used are beacons, tags, and scripts to collect and track information and to improve and analyze Our Service. The technologies We use may include:

 

  • Cookies or Browser Cookies. A cookie is a small file placed on Your Device. You can instruct Your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if You do not accept Cookies, You may not be able to use some parts of our Service. Unless you have adjusted Your browser setting so that it will refuse Cookies, our Service may use Cookies.

  • Web Beacons. Certain sections of our Service and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).

 

Cookies can be “Persistent” or “Session” Cookies. Persistent Cookies remain on Your personal computer or mobile device when You go offline, while Session Cookies are deleted as soon as You close Your web browser.

How We Collect This Information

  • Directly from you

  • Automatically during activity on our site and mobile application

  • From website analytic tools

How We Use Your Information

Zipari uses the collected information for the following purposes:

  • To provide our service – including to monitor the usage and personalize our service.

  • To manage your account – The data you provide can give you access to different functionalities that are available to you as a registered user.

  • To contact you – By email, telephone calls, SMS, or other equivalent forms of electronic communication

  • For other purposes – We may use your information for other purposes, such as data analysis, identifying usage trends, determining the effectiveness of our promotional campaigns and to evaluate and improve our, products, services, marketing and your experience.

Sharing Your Information

Zipari may share your personal information with:

  • Service providers – who help us with business operations.

  • Affiliates – including our parent company and any other subsidiaries,

  • Legal authorities – If required by law.

Zipari does not sell any personal information collected from our customers.

Your Rights

Under the CCPA, you have the right to:

  • Know what personal information we collect – You can request information about how we have collected, used, shared, sold, disclosed and otherwise processed your personal information during the past twelve (12) months, including the right to request the specific pieces of personal information that we possess.

  • Right to Correct Inaccurate Personal Information – You can request that we correct any inaccurate personal information that we have collected from you. We may require adequate documentation to verify such inaccuracy.

  • Access and request deletion of your personal information – You can request that we delete any of the personal information that we have collected from you. We may deny your deletion request pursuant to certain exceptions in the CCPA and CPRA, and the response we provide will explain any reason for denying your request.

  • Opt-out of the sale of your personal information (we do not sell) – We do not sell your personal information as provided in the CCPA and CPRA. When we render services, we will share your personal information with Payers and/or Providers which you have chosen to provide medical services to you and/or family member, or third parties and they may contact you regarding use your personal information. By receiving our services or otherwise authorizing disclosure of your information, you are optingin to such use. You can contact us using the contact points below to change your privacy preferences or to control future use and disclosure of your personal information. We do not knowingly sell the personal information of minors under sixteen (16) years of age without obtaining proper opt-in consent.

  • Non-discrimination for exercising your privacy rights – You have the right to not receive discriminatory treatment by us for exercising any of your CCPA and CPRA rights.

  • Right to Limit Use and Disclosure of Sensitive Personal Information – You can request that we do not use or disclose certain sensitive personal information about you, outside of the necessary use of such information to perform the expected services.

Security

Zipari takes reasonable measures to protect your personal information (CCPA) from unauthorized access, disclosure, alteration, and destruction.

Contact Us

If you have any questions or concerns about our privacy practices, you may contact us at privacy@zipari.com

Changes to This Privacy Policy

Zipari may update this Privacy Policy from time to time. Please review the policy periodically for changes.

Last Updated: 3/21/2024

Terms of Service

These terms of service (“Terms of Service”) apply to the Services to be provided by Zipari, Inc. (“Zipari”) to the client ordering the Services identified on an Order Form (“Client”).

BY USING THE SERVICES, CLIENT AGREES THAT CLIENT HAS READ AND AGREES TO BE BOUND BY THE LATEST VERSION OF THESE TERMS OF SERVICE.

1. Definitions.

1.1. “Client Data” means any data that Client or End Users upload or provide to Zipari in connection with the use of the Services.

1.2. “Client-Supplied Materials” means any materials, data, or information that Client or End Users deliver or make available to Zipari, including Client Data.

1.3. “Deliverables” means the deliverables resulting from Professional Services that are identified in a SOW.

1.4. “End User” means any end user of the Subscription Services.

1.5. “Fees” means all fees and reimbursable expenses for Services provided hereunder.

1.6. “Initial Term” unless otherwise set forth on the Order Form, the Initial Term shall be a period of three (3) years.

1.7. “Order Form” means an order form executed by Zipari and Client and incorporated herein by reference.

1.8. “Order Form Effective Date” means the date the Order Form is executed by Zipari and Client, unless such Order Form specifies another date as the Order Form Effective Date.

1.9. “Order Form Term” means, with respect to the Order Form, collectively, the Initial Term and all Renewal Terms.

1.10. “Professional Services” means the professional services to be provided by Zipari, as set forth in an SOW.

1.11. “Renewal Term” means a period of one (1) year, unless the Order Form specifies another period of time.

1.12. “Service Level Agreement” means the Service Level Agreement provided by Zipari to Client and incorporated herein by reference.

1.13. “Services” means, individually and collectively, the Professional Services, the Support Services, and the Subscription Services.

1.14. “SOW” means a statement of work executed by Zipari and Client for the provision of Professional Services incorporated herein by reference.

1.15. “Subscription Fees” means the fees for Subscription Services set forth on the Order Form.

1.16. “Subscription Services” means Zipari’s software offerings as described in the Order Form, along with any Zipari software that Zipari makes available in connection with such offering.

1.17. “Support Services” means the provision by Zipari to Client of reasonable assistance and consultation to attempt to diagnose and resolve failures of the Subscription Services, and the provision of issue management Services as described in the Service Level Agreement.    

1.18. “Third Party Product” means any product and/or service identified on an Order Form, SOW, or other addenda provided to Client by, or proprietary to, a third party in connection with the Services.

1.19. “Third Party Product Agreement” means the additional terms and conditions applicable to a Third Party Product that apply to Client’s access to and use of such Third Party Product.

1.20. “Work Product” means all subject matter (including but not limited to work, inventions, discoveries, processes and improvements, computer programs, specifications, operating instructions, notes, technical drawings, designs, and all related documentation) created or first reduced to practice by Zipari, alone or with others, in connection with any Services provided hereunder, including but not limited to the Deliverables identified on a SOW.

1.21. “Zipari Technology” means the Services, along with all underlying technology, software, websites, analytics, methods, algorithms, rules, models, APIs, data and materials, discoveries, inventions, ideas and Deliverables and Work Product conceived, originated or prepared by Zipari in connection with, or utilized by Zipari in connection with, the provision of, the Services (excluding Third Party Products), and all related intellectual property and proprietary rights in or to any of the foregoing anywhere in the world.

2. Order Form.

Zipari and Client shall execute one or more Order Forms, which shall be governed by these Terms of Service. Each Order Form shall be executed by authorized representatives of Zipari and Client, and shall identify the Services to be provided by Zipari to Client under such Order Form, the Fees to be paid by Client to Zipari under such Order Form, and other terms and conditions applicable to the Services under such Order Form.  Client shall issue a valid purchase order to Zipari upon execution of the Order Form.

3. Services.

3.1. Professional Services. Professional Services provided by Zipari shall be governed by these Terms of Service and the applicable SOW. Zipari may condition implementation and support of new or additional products or services purchased or licensed by Client upon execution of an SOW and payment of applicable Fees.

3.2. Subscription Services. Subject to Client’s payment of all Fees due hereunder, Client shall have a revocable, nonexclusive, non-transferable, non-assignable, non-sublicensable license, during the Order Form Term, to use the Subscription Services for Client’s internal business purposes to process its own data in the conduct of its business for its customers.

3.3. Support Services. Support Services provided by Zipari shall be governed by these Terms of Service and the Service Level Agreement.

3.4. Deliverables. Subject to Client’s payment of all Fees due hereunder, Client shall have a revocable, nonexclusive, non-transferable, non-assignable, non-sublicensable license, during the Order Form Term, to use the Deliverables in connection with Client’s permitted use of the Subscription Services.

3.5. Work Product. All Work Product, and all intellectual property and proprietary rights therein shall be and remain the property of Zipari. No Work Product shall be deemed to be a work made for hire for Client or any third party, or a joint development, joint invention, or joint work of authorship with Client or any third party. Zipari reserves all rights not expressly granted to Client under these Terms of Service.

3.6. Restrictions. Client shall not: (i) use any Zipari Technology in violation of these Terms of Service or in violation of any applicable laws, rules or regulations; (ii) license, sublicense, sell, resell, transfer, assign, distribute or otherwise commercially exploit or make available any Zipari Technology to any third party; (iii) copy, modify, adapt, publicly display, or publicly perform or create derivative works of any Zipari Technology or any portion thereof, or decompile, reverse assemble, or otherwise reverse engineer the Zipari Technology, or any portion thereof; or (iv) attempt to gain unauthorized access to, impair the security or integrity of, or perform any vulnerability scanning or load testing of: (a) the Subscription Services or any portion thereof or information accessible thereby; or (b) any systems or data of Zipari or any third party. If Client or any End User misuses or abuses the Subscription Services or otherwise violates this Section, Zipari may suspend or terminate Client’s or such End User’s access to the Subscription Services.

4. Third Party Products.

Certain functionalities of the Subscription Services may permit use of Third Party Products that Zipari makes available to Client pursuant to an Order Form, SOW, or addendum. Client may access and use such Third Party Products only in connection with Client’s use of the Subscription Services. Third Party Products are provided subject to the applicable Third Party Product Agreement, and such Third Party Provider may require additional payments by Client to such provider as a condition to using such Third Party Product. Third Party Products are provided by Zipari on an “as is” and “as available” basis, without any warranties from Zipari of any kind, express or implied, and Zipari expressly disclaims all such warranties. No representations, warranties, obligations, or service levels under these Terms of Service or the Service Level Agreement shall apply to any Third Party Products.

5. Term; Termination.

5.1. Term. These Terms of Service will continue until: (i) terminated by either party upon thirty (30) days’ prior written notice if there is no then-current SOW or Order Form; or (ii) terminated in accordance with this Section. Each Order Form will become effective on the Order Form Effective Date and shall continue in effect for the duration of the Initial Term, whereupon such Order Form will automatically renew for successive Renewal Terms, unless either party sends written notice of non-renewal to the other party at least sixty (60) days prior to the end of the Initial Term or the then-current Renewal Term.

5.2. Termination. Either party may terminate these Terms of Service or an SOW or Order Form at any time upon giving written notice as follows: (i) in the event that the other party materially breaches these Terms of Service or such SOW or Order Form and fails to correct the breach within thirty (30) days after written notice specifying the breach; or (ii) in the event that the other party makes an assignment for the benefit of creditors, or commences, or has commenced against it any proceeding in bankruptcy, insolvency, or reorganization pursuant to bankruptcy laws or laws of debtor’s moratorium.

5.3. Effect of Termination. Termination or expiration of an SOW or Order Form will not affect the remainder of these Terms of Service or any other then-current SOW or Order Form. Upon termination of these Terms of Service or an SOW or Order Form: (i) all Services under the terminated SOW or Order Form shall immediately terminate; (ii) Client will pay Zipari for all Fees earned or incurred by Zipari under the terminated SOW or Order Form through the date of termination. In addition, if termination is the result of Client’s uncured material breach, then, without limiting any other right or remedy of Zipari, Client shall also pay to Zipari an amount equal to the Subscription Fees that would be owed to Zipari for the remainder of the Initial Term or then-current Renewal Term of each terminated SOW and Order Form.

6. Fees; Payment Terms.

6.1. Subscription Fees. The Subscription Fees shall be payable as set forth on the Order Form. Unless otherwise set forth on the Order Form, the Subscription Fees shall be paid annually in advance throughout the Order Form Term. Commencing on the one-year anniversary of the Order Form Effective Date and annually thereafter, Zipari may increase the Subscription Fees and other Fees.   

6.2. Professional Services. Client agrees to pay the Fees for the Professional Services provided by Zipari in accordance with Zipari’s standard rates in effect when the Professional Services are provided, unless other rates are set forth in the SOW. Client agrees to pay all out-of-pocket expenses incurred in the course of rendering the Professional Services, including travel, meals, lodging and supplies, and incidental expenses. Unless agreed otherwise by Zipari and Client in writing: (i) all Fees for Professional Services that are rendered on a time and materials basis shall be invoiced monthly in arrears, and (ii) all Fees for Professional Services that are rendered on a “fixed-price” or “flat-fee” basis shall be invoiced upon execution of the SOW. 

6.3. Taxes. Client shall be responsible for any sales, use, or other taxes, assessments, or duties related to the Services. Zipari’s Fees are exclusive of all such taxes, assessments, or duties.

6.4. Payment Terms. The Order Form and all payment obligations are non-cancellable.  Client will not, except as expressly provided hereunder, be entitled to a refund of any amounts paid for any reason. Client shall pay all invoices within thirty (30) days of invoice date.  In order to dispute an invoice, Client must pay the undisputed portion, and provide written notice to Zipari of such dispute prior to the applicable due date, and such dispute must be reasonable and in good faith. Upon receipt of Client’s timely dispute notice, Zipari and Client shall work together diligently and in good faith for a period of thirty (30) days to resolve such dispute. Any amount not timely paid by Client as required by these Terms of Service shall bear interest at the lesser of: (i) 1.5% per month; or (ii) the maximum interest rate allowed by law. In any action arising from or related to Client’s failure to timely pay any Fees due hereunder, Zipari shall be entitled to recover its full costs and expenses related to such action, including its reasonable attorneys’ fees and legal expenses. Zipari shall have no obligation to perform any Professional Services or Support Services, and Zipari may suspend or terminate Client’s access to the Subscription Services, during any period when Client has failed to timely pay any amount owed to Zipari.

6.5. Audit and Inspection. Upon Zipari’s written request, an authorized officer of Client shall confirm in writing the then-current number of employees, members, providers, and/or End Users within the scope of Client’s use of the Subscription Services. Additionally, Zipari may verify Client’s compliance with these Terms of Service at any time, by inspecting the use of the Subscription Services, including through server logging and reporting. If the report or any such inspections reveal use of the Subscription Services beyond the scope permitted by these Terms of Service, Zipari may: (i) provide Client a period of no more than thirty (30) days to pay any additional Fees, and Zipari may increase the ongoing Subscription Fees according to such findings; or (ii) terminate these Terms of Service or affected Order Form and pursue all available remedies for a material breach of these Terms of Service.

7. Client Data; Client-Supplied Materials; HIPAA.

7.1. Client Data. Client is solely responsible for the accuracy and integrity of the Client Data as delivered to Zipari and for adopting procedures to identify and correct errors and omissions in such Client Data. Zipari is under no obligation to review Client Data for accuracy or potential third-party liability. In order to facilitate the provision of Services to Client, Client will provide Client Data to Zipari as described in an SOW or Order Form, or as otherwise requested by Zipari, in the format and specifications designated by Zipari. Client is the owner and data controller of all Client Data. Client hereby grants to Zipari, throughout the term of these Terms of Service, a non-exclusive, royalty-free, license to use, copy, and manipulate the Client Data, in whole or in part: (i) in connection with the Services and related product and service activities; (ii) to perform research and development activities and statistical analysis with the Client Data and to develop analytic models using the Client Data; and (iii) to aggregate, analyze, de-identify, and use such aggregated, analyzed, and de-identified, Client Data to create reference data that does not identify Client or any specific individual, and to develop and provide other products and services.

7.2. Client-Supplied Materials. Client expressly agrees and acknowledges that, in the course of providing the Services, Zipari may access, utilize, copy, adapt, modify, display, distribute, and prepare derivative works of, the Client-Supplied Materials, and so, in addition to any other right granted to Zipari hereunder, Client hereby grants to Zipari, throughout the term of these Terms of Service, a non-exclusive, royalty-free, sublicensable license, to do any and all of the foregoing for the purposes of providing the Services to Client and End Users. Client represents, warrants and covenants to Zipari that: (i) prior to delivering or making available such Client-Supplied Materials to Zipari or using it in connection with the Services, Client has secured all rights in, and consents of third parties with respect to, such Client-Supplied Materials reasonably necessary for Zipari and its agents, and subcontractors to lawfully perform hereunder and to do all acts related thereto described in these Terms of Service (including exercising any licenses granted hereunder); and (ii) Client will maintain all rights and consents set forth at subsection (i) throughout the term of these Terms of Service. Client further represents, warrants, and covenants to Zipari that no Client-Supplied Materials will contain any viruses, malware, or worms intended to damage, interrupt or misappropriate, or impair the security of, the Subscription Services.

7.3. Security. Zipari will use commercially reasonable measures in accordance with prevailing practices in the software industry to maintain and enforce physical and logical security with respect to the Client Data. Zipari may transmit or provide access to Client Data to a subcontractor that is assisting in the provision of Services under these Terms of Service. Zipari reserves the right to temporarily suspend Client’s and End Users’ access to the Subscription Services in the event of a suspected security breach or unauthorized access, without any liability to Client. In the event that Zipari must perform additional services with respect to a security breach or unauthorized access affecting Client Data caused by Client-Supplied Materials, an act or omission of Client or an End User, or Client’s failure to comply with these Terms of Service, Zipari shall be compensated by Client at Zipari’s then-current rates for such services. Client is solely responsible for maintaining complete and up-to-date backups of all Client Data and other Client-Supplied Materials, and acknowledges that it is not relying on Zipari to act as Client’s sole or primary source for such backup or such Client Data and other Client-Supplied Materials.

7.4. Usernames and Passwords; End Users. Access to the Subscription Services by Client and End Users is accomplished through the use of usernames and passwords. Client and End Users shall keep such usernames and passwords strictly confidential to prevent unauthorized use of the Subscription Services. Client shall be liable for any unauthorized use of the Subscription Services or access to Client Data using a username and password associated with Client or any End User. Client will be liable for all acts or omissions of any End Users, as if such acts or omissions were Client’s own acts or omissions.

7.5. HIPAA Compliance. To the extent that Zipari may be deemed to be a Business Associate (as defined at 45 C.F.R § 160.103) of Client, then the Business Associate Agreement located at https://zipari.com/policies-and-agreements/ shall apply.

8. Intellectual Property Rights.

Except as expressly provided otherwise in these Terms of Service, each party retains exclusive ownership and rights to its trade secrets, inventions, patents, copyrights, trademarks, service marks, logos and other intellectual property, and nothing in these Terms of Service grants any right or license therein to the other party. Zipari shall exclusively own all right, title and interest in and to the Zipari Technology.

9. Confidentiality.

Neither party will disclose any Confidential Information of the other party to any third party, nor use such Confidential Information for any purpose, except to the extent required or permitted in connection with such party’s performance in furtherance of, or enforcement of, these Terms of Service. For purposes of these Terms of Service, “Confidential Information” includes any and all information (regardless of form, whether tangible, intangible, or merely recollected) relating to the business of the Discloser and that the Discloser treats as confidential, regardless of whether the information constitutes a trade secret under applicable law. “Discloser” means the party whose Confidential Information has been disclosed to the other party, and “Recipient” means the party who receives, obtains knowledge of, or becomes privy to, Confidential Information of Discloser. “Confidential Information” does not include any information that: (i) was publicly known or in the public domain at the time it was disclosed, or has become publicly known or entered the public domain through no fault of Recipient; (ii) was independently developed by Recipient or others without use of Discloser’s Confidential Information, as demonstrated by files created at the time of such independent development; (iii) was known to Recipient, without restriction on use or disclosure, at the time of disclosure by Discloser hereunder, as demonstrated by files in existence at the time of disclosure; (iv) becomes known to Recipient, without restriction, from a source other than Discloser and without breach of any obligations of confidentiality owed to Discloser and otherwise not in violation of Discloser’s rights; or (v) is disclosed generally to third parties by Discloser without restrictions similar to those contained in these Terms of Service. If any Confidential Information of Discloser is required to be disclosed by Recipient pursuant to the order or requirement of a court, administrative agency, or other governmental body, Recipient shall (a) give Discloser as much advance notice of the possibility of such disclosure as practical so that Discloser may attempt to prevent such disclosure or obtain a protective order regarding its disclosure, and Recipient shall cooperate fully with Discloser in such efforts, at Discloser’s expense, and (b) maintain the confidentiality of, and not disclose, such information until all reasonable methods and legal remedies to prevent such disclosure have been exhausted. Thereafter, Recipient may without liability hereunder disclose only that portion of the Confidential Information that Recipient’s legal counsel advises Recipient is legally required to be disclosed. Each party’s obligations under this Section will survive any termination or expiration of these Terms of Service until such time as such information is no longer confidential or a trade secret under applicable law.

10. DISCLAIMER.

EXCEPT FOR THE WARRANTIES EXPRESSLY STATED IN THESE TERMS OF SERVICE, ALL SERVICES PROVIDED BY ZIPARI HEREUNDER ARE PERFORMED AND PROVIDED ON AN “AS IS” AND “AS AVAILABLE” BASIS, AND ZIPARI DISCLAIMS ALL OTHER WARRANTIES WITH REGARD TO THE SERVICES OR ANY OTHER SUBJECT MATTER, EXPRESS OR IMPLIED, INCLUDING BUT NOT LIMITED TO THOSE REGARDING MERCHANTABILITY, NONINFRINGEMENT, TITLE, ACCURACY, CORRECTNESS, COMPLETENESS, OR FITNESS FOR A PARTICULAR PURPOSE. ZIPARI DOES NOT WARRANT THAT THE SERVICES OR DELIVERABLES WILL MEET CLIENT’S REQUIREMENTS OR THAT THE SERVICES OR DELIVERABLES WILL BE UNINTERRUPTED, ERROR-FREE, OR COMPLETELY SECURE OR FREE OF SECURITY INTRUSION.  ZIPARI WILL NOT BE DEEMED IN BREACH OF ANY OF ITS OBLIGATIONS  UNDER THESE TERMS OF SERVICE WHERE THE BREACH IS CAUSED IN WHOLE OR IN PART BY: (I) ANY CLIENT DATA OR OTHER CLIENT-SUPPLIED MATERIALS; (II) ACTS OR OMISSIONS OF END USERS OR ANY OTHER THIRD PARTY; (III) ANY BREACH OF THESE TERMS OF SERVICE BY CLIENT OR ANY USE OF THE SERVICES OR DELIVERABLES OTHER THAN IN ACCORDANCE WITH THESE TERMS OF SERVICE, THE APPLICABLE DOCUMENTATION, AND ALL APPLICABLE LAWS, RULES, AND REGULATIONS; (IV) ANY USE OF ANY SERVICES OR DELIVERABLES IN COMBINATION WITH ANY OTHER PRODUCT OR SERVICE NOT SUPPLIED BY ZIPARI; OR (V) ANY CHANGES OR MODIFICATIONS TO ANY SERVICES OR DELIVERABLES BY ANY PERSON OR ENTITY OTHER THAN ZIPARI.

11. LIMITATION OF LIABILITY. 

IN NO EVENT SHALL ZIPARI BE LIABLE FOR ANY INDIRECT, SPECIAL, CONSEQUENTIAL, INCIDENTAL, PUNITIVE, OR EXEMPLARY DAMAGES, OR FOR LOST PROFITS OR LOST DATA, REGARDLESS OF THE THEORY OF LAW AND EVEN IF IT HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH CLAIM. CLIENT ACKNOWLEDGES THAT ZIPARI SHALL HAVE NO LIABILITY, DIRECT OR INDIRECT AND REGARDLESS OF THE THEORY OF LAW, FOR ANY THIRD PARTY PRODUCT OR ANY ACT OR OMISSION OF A PROVIDER OF A THIRD PARTY PRODUCT. IN NO EVENT SHALL ZIPARI’S LIABILITY HEREUNDER, REGARDLESS OF THE THEORY OF LAW, EXCEED, IN THE AGGREGATE FOR ALL LIABILITIES ARISING OUT OF, IN CONNECTION WITH, OR RELATED TO THESE TERMS OF SERVICE OR THE SERVICES AT ANY TIME, THE TOTAL AMOUNT PAID TO ZIPARI FROM CLIENT UNDER THESE TERMS OF SERVICE FOR THE SUBSCRIPTION SERVICES IN THE TWELVE (12) MONTHS IMMEDIATELY PRECEDING THE DATE ON WHICH THE ACT OR OMISSION GIVING RISE TO ZIPARI’S LIABILITY OCCURRED. ZIPARI SHALL NOT BE LIABLE FOR ANY DAMAGES, INCLUDING WITHOUT LIMITATION, ANY DIRECT, INDIRECT, SPECIAL, CONSEQUENTIAL, INCIDENTAL, PUNITIVE, OR EXEMPLARY DAMAGES, INCURRED BY CLIENT IN CONNECTION WITH ANY UNAUTHORIZED ACCESS TO CLIENT DATA RESULTING FROM THE ACTIONS OR OMISSIONS OF CLIENT OR ANY END USER OR FROM THE FAILURE OF ANY SECURITY MEASURES EXCEPT TO THE EXTENT SUCH FAILURE OF SECURITY MEASURES IS CAUSED BY ZIPARI’S GROSS NEGLIGENCE. THE LIMITATIONS AND EXCLUSIONS IN THIS SECTION SHALL CONTINUE TO APPLY EVEN IN THE EVENT A WARRANTY OR REMEDY FAILS OF ITS ESSENTIAL PURPOSE.

12. Indemnification.

12.1. Zipari. Zipari will indemnify Client for any damages arising out of or resulting from any third party claim that the Subscription Services used in accordance with these Terms of Service and the applicable Zipari documentation infringes or misappropriates such third party’s U.S. intellectual property rights; provided Client: (a) notifies Zipari in writing of such claim within thirty (30) days; (b) allows Zipari to control and direct the investigation, preparation, and defense of such claim; and (c) collaborates in the defense and resolution of the claim. Notwithstanding the foregoing, Zipari shall have no obligation under the foregoing sentence if such third party claim arises, in whole or in part, out of or as a result of: (i) any Client Data or other Client-Supplied Materials; (ii) acts or omissions of End Users or any other third party; (iii) any breach of these Terms of Service by Client or any use of the Services or Deliverables other than in accordance with these Terms of Service, the applicable documentation, and all applicable laws, rules, and regulations; (iv) any use of any Services or Deliverables in combination with any other product or service not supplied by Zipari; or (v) any changes or modifications to any Services or Deliverables by any person or entity other than Zipari. Further, in the event a claim described above arises or Zipari suspects such a claim will arise, Zipari may at its sole option: (i) modify the Subscription Services in a manner that causes the Subscription Services not to infringe, misappropriate, or otherwise violate such third party’s intellectual property rights; (ii) obtain the right for Client to continue to use the Subscription Services; or (iii) terminate these Terms of Service upon providing notice to Client and, if Zipari is or would be obligated to indemnify Client against such infringement under this Section, refund Client any pre-paid, unused Subscription Fees paid to Zipari by Client for Subscription Services that Client will not receive as a result of termination. Client acknowledges and agrees that this Section sets forth Zipari’s entire liability, and Client’s sole and exclusive remedy for any claim or assertion of infringement, misappropriation or violation of a third party’s intellectual property right that arises from or relates to the Subscription Services.

12.2. Client. Client will indemnify, defend, and hold Zipari harmless from and against any and all claims, losses, damages, liabilities, and expenses (including reasonable attorneys’ fees and expenses) arising out of or resulting from: (a) Client Data or other Client-Supplied Materials, including without limitation any claim that the receipt, use, or disclosure of any of the foregoing by Zipari in accordance with these Terms of Service infringes or violates any right of a third party; (b) Client’s violation of any federal, state or local law, rule or regulation; (c) any claim for personal injury or damage to physical property caused by or resulting from the willful or negligent acts of Client relating to these Terms of Service; or (c) any act or omission by Client or End Users in accessing and using any Subscription Services other than in accordance with these Terms of Service.

13. General.

13.1. Assignment. Neither party may assign these Terms of Service without the prior written consent of the other party, which consent shall not be unreasonably withheld, delayed or conditioned. Any unauthorized assignment will be null and void. Notwithstanding the foregoing, Zipari may assign these Terms of Service in connection with any merger, consolidation, reorganization, sale of all or substantially all of its assets or any similar transaction. These Terms of Service will be binding on and inure to the benefit of Zipari and Client and their successors and permitted assigns.

13.2. Entire Agreement; Amendments. These Terms of Service, together with any attachments or exhibits, sets forth the entire agreement among Zipari and Client with respect to the subject matter hereof. Any prior agreements, promises, negotiations, or representations, whether oral or written, not expressly set forth in these Terms of Service, are of no force or effect. Except as otherwise expressly stated herein, these Terms of Service may not be amended except by a writing signed by Zipari and Client.

13.3. Governing Law. These Terms of Service, and any claim, action, suit, proceeding or dispute arising out of, in connection with, or relating to these Terms of Service, shall be governed by, and construed and interpreted in accordance with, the laws of the State of Indiana, without regard to its provisions on conflicts of laws. Any proceeding arising out of, in connection with, or relating to these Terms of Service shall be exclusively brought and exclusively maintained in a state or federal court situated in Marion County, Indiana.

13.4. Independent Entities. Zipari and Client acknowledge and agree that Zipari is an independent contractor of Client, and nothing in these Terms of Service shall be construed to create an agency, partnership, joint venture, or employment relationship between Zipari and Client. Zipari may use contractors to assist in the provision of the Services or provide certain of the Services through a third party; provided Zipari remains responsible for such Services (excluding Third Party Products).

13.5. No Waiver. A delay or omission by a party to exercise any right under these Terms of Service shall not be construed to be a waiver of such right. No waiver by any party of a breach of these Terms of Service will be deemed a waiver of any subsequent breach.

13.6. Notices. All notices and communications related to these Terms of Service must be in writing and will be deemed given: (i) when personally delivered; (ii) upon confirmation of a facsimile transmittal; or (iii) upon receipt when deposited with the United States Postal Service, postage prepaid, to the address set forth on the Order Form. 

13.7. Order of Precedence. In the event of any conflict or inconsistency between these Terms of Service and any Order Form or SOW, the terms of the main body of these Terms of Service, and then the Order Form or SOW, will control solely with respect to such conflict or inconsistency, unless the Order Form or SOW expressly states that such provision in the Order Form or SOW shall control over these Terms of Service.

13.8. Severability. In the event any provision of these Terms of Service is rendered invalid, illegal, or unenforceable, the remaining provisions of these Terms of Service shall remain in full force and effect. Further, Zipari and Client shall renegotiate and amend the Agreement to comply with the requirements of law.

13.9. Survival. Any provision that, in order to give proper effect to its intent, should survive the expiration or termination of these Terms of Service, shall survive the expiration or termination hereof.

Last revised on December 15, 2023.

Business Associate Agreement

This Business Associate Agreement (“Agreement”) is an addendum to the Terms of Service between Zipari, Inc. (“Business Associate”) and the client (“Client”)  specified on the Order Form between Business Associate and Client, for the purpose of governing the exchange of all Protected Health Information (“PHI”) and personally identifiable information (“PII”), in accordance with applicable law, including without limitation, in compliance with 45 CFR Parts 160 and 164 (“HIPAA Regulations”) the final regulations fully implementing the Health Information Technology for Economic and Clinical Health (HITECH) Act (“HITECH Act”) (42 U.S.C. §17934 et. seq.), and various technical, conforming and other amendments to the HIPAA rules, being entitled “Modifications to the HIPAA Privacy, Security, Enforcement and Breach Notification Rules under the Health Information Technology for Economic and Clinical Health Act and the Genetic Information Non-Discrimination Act; Other Modifications to the HIPAA Rules” (the “Final Rule”).

1. Definitions.

Capitalized terms used in this Agreement shall have the meaning ascribed to them in this Agreement or as set forth in HIPAA, the Privacy Regulations, or Security Regulations. For purposes of this Agreement, “Private Information” consists of PHI and PII created or received on behalf of, or received from, Client.

2. Permitted Uses and Disclosures of Private Information.

Except as otherwise limited in this Agreement, Business Associate may use and disclose Private Information to perform the Services for, or on behalf of, Client as specified in this Agreement, provided that such use or disclosure would not constitute a violation of HIPAA, the Privacy Regulations, or Security Regulations. Unless otherwise limited herein, Business Associate may:

2.1. Use Private Information for the proper management and administration of Business Associate or to carry out the legal responsibilities of Business Associate;

2.2. Disclose Private Information to third parties not employed by Business Associate for the proper management and administration of Business Associate or to carry out the legal responsibilities of Business Associate if (i) the disclosure is required by law, or (ii) Business Associate obtains reasonable assurances from the recipient of Private Information that: (A) Private Information shall be held confidential and shall be used or further disclosed only as required by law or for the purpose for which it was disclosed to the recipient, and (B) the recipient shall notify Business Associate of any instances of which it is aware of a breach of confidentiality of Private Information; and

2.3. For the avoidance of doubt, Business Associate is not precluded from tracking an individual’s navigation or event behavior while an individual uses Business Associate’s platform, products or services.

3. Obligations of Business Associate. With regard to the use and disclosure of Private Information, Business Associate hereby agrees as follows:

3.1. Use and Disclosure. Business Associate shall not use or disclose Private Information other than as permitted or required by this Agreement or as required by law.

3.2. Safeguards. Business Associate shall implement and use all appropriate safeguards to protect the privacy of Private Information and to prevent any use or disclosure of Private Information other than as permitted by the terms of this Agreement. Business Associate will provide information about such safeguards to Client upon request.

3.3. Reporting. Business Associate shall promptly report to Client’s Privacy Official any use or disclosure of Private Information not permitted under the terms of this Agreement and the remedial action taken or proposed to be taken with respect to such use or disclosure.

3.4. Agents and Subcontractors. In cases where it has no pre-existing agreement, Business Associate shall (i) enter into written agreements with all agents and subcontractors to whom Business Associate provides Private Information requiring the agents or subcontractors to agree to the same restrictions and conditions that apply under this Agreement to Business Associate with respect to Private Information, (ii) carry out adequate due diligence on each agent or subcontractor to ensure that it is capable of providing the level of protection for the Private Information that is required by this Agreement, and provide evidence of such due diligence to Client upon request, and (iii) remain liable for all the acts and/or omissions of the agent or subcontractor.

3.5. Disclosures to Client and Secretary of DHHS. Business Associate shall make all internal practices, books and records relating to the use and disclosure of Private Information received or created by Business Associate on behalf of Client available to Client and the Secretary of DHHS for the purpose of determining Client’s and/or Business Associate’s compliance with the Privacy Regulations or the Security Regulations.

3.6. Audits. Unless Client and Business Associate agree otherwise, Business Associate shall maintain all necessary documentation to evidence its compliance with this Agreement for a period of six (6) years after the expiration or termination of this Agreement, or for such longer period as otherwise may be required by applicable laws, whichever occurs later.

3.7. Compliance with EDI Standards. If Business Associate conducts electronically any of the health care transactions identified as “standard transactions” in the EDI Standards for or on behalf of Client, Business Associate shall comply with all applicable requirements of the EDI Standards when conducting standard transactions for or on behalf of Client.

3.8. Compliance with Security Regulations. If Business Associate creates, receives, maintains or transmits Electronic Protected Health Information for or on behalf of Client (“EPHI”), Business Associate shall (i) implement and utilize administrative, physical and technical safeguards that reasonably and appropriately protect the confidentiality, integrity and availability of EPHI that Business Associate receives, creates, maintains or transmits for or on behalf of Client, (ii) promptly report to Client’s Privacy Official in writing any Security Incident, as defined in 45 CFR § 164.304; provided, however, unsuccessful attempts (that is, all instances where there is no unauthorized third party accesses to Private Information or EPHI) shall be reported only upon written request by Client, and (iii) ensure that any agents, including subcontractors, to whom Business Associate provides Private Information implement the safeguards required by subsection (i) above.

3.9. Remuneration in Exchange for Private Information. Business Associate shall not, directly or indirectly, receive remuneration in exchange for any Private Information unless (i) Client obtained from the member in accordance with the Privacy Regulations a valid authorization that includes a specification of whether Private Information can be further exchanged for remuneration by the entity receiving Private Information of that member, or (ii) the purpose of the exchange is for one of the purposes provided under CFR § 164.502(a)(5)(ii)(B)(2). This prohibition shall not affect payment by Client to Business Associate, if any, for Services provided. However, Business Associate may track an individual’s navigation or event behavior while an individual uses Business Associate’s platform, products or services.

3.10. Breach of Unsecured PHI. Business Associate shall provide prompt written notice of any Breach of Unsecured PHI (“Business Associate Notice”) to Client. The Business Associate Notice shall include: (i) the identification of each member whose Unsecured PHI has been, or is reasonably believed by Business Associate to have been, accessed, acquired, used or disclosed during the Breach, (ii) a brief description of what happened, including the date of the discovery of the Breach, (iii) a description of the types of Unsecured PHI involved in the Breach, and (iv) any other relevant information.

4. Term and Termination.

This Agreement shall continue in effect until the discontinuation of Business Associate’s provision of Services to Client involving the use, disclosure or creation of Private Information. This Agreement may be terminated: (i) upon mutual written agreement of the parties; or (ii) if Client determines that Business Associate materially breached any provision of this Agreement, Client shall either (A) provide Business Associate with a written notice of breach and terminate the Agreement if Business Associate does not cure the breach within thirty (30) calendar days of receiving such notice, or (B) immediately terminate this Agreement if cure is not possible. Upon termination of this Agreement, Business Associate shall, in Client’s sole discretion, return to Client or destroy all Private Information in whatever form or medium (including in any electronic medium under Business Associate’s custody or control). If such return or destruction is infeasible, the obligations set forth in this Agreement with respect to Private Information shall survive termination and Business Associate shall limit any further use and disclosure of Private Information to the purposes that make the return or destruction of Private Information infeasible.

5. Amendment/Entire Agreement/Multiple Originals.

This Agreement sets forth the entire agreement among the parties with respect to the subject matter hereof. Any prior agreements, promises, negotiations, or representations, whether oral or written, not expressly set forth in this Agreement, are of no force or effect. Except as otherwise expressly stated herein, this Agreement may not be amended except by a writing signed by the parties.

6. Governing Law.

The laws of Indiana (without giving effect to its conflicts of law principles) govern all matters arising out of or relating to this Agreement. The federal or state courts located in Marion County, Indiana shall have jurisdiction over all matters arising out of or relating to this Agreement

7. Conflicts and Severability.

The terms and conditions of this Agreement shall override and control any conflicting terms or conditions of any other agreement between the parties to the extent such conflict involves an issue related to HIPAA, the Privacy Regulations, the Security Regulations, and/or the EDI Standards. If any provision(s) of this Agreement shall be held to be invalid, illegal or unenforceable, the same shall be deemed to be severable and deleted from this Agreement, and the remaining provisions construed so as to most nearly effectuate the original intention of the parties and HIPAA, the Privacy Regulations, the Security Regulations, and/or the EDI Standards.