Common use of Privacy Laws Clause in Contracts

Privacy Laws. The Company is, and at all prior times was, in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, et seq.); and the Company has taken all necessary actions to comply, to the extent required, with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company has in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iv) Personal Data as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Company has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and the Company is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company isand each of its subsidiaries are, and and, at all prior times waswithin the past five years, were, in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, to the extent applicable, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, 17921 et seq.); and the Company has and each of its subsidiaries have taken all necessary reasonable actions to comply, to the extent required, comply in all material respects with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance In a manner reasonably designed to comply with the Privacy Laws, the Company has and each of its subsidiaries have in place, materially comply with, and take appropriate steps reasonably designed to ensure compliance comply in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides materially accurate notice of its Policies when and to the extent required by Privacy Laws to its customers, employees, third party vendors and representatives. The Policies provide materially accurate and legally sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify defined as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iv) Personal Data “personal data” as defined by GDPR; and (v) any other piece of information that reasonably allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The To the Company’s knowledge, the execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its subsidiaries, (i) has not received notice of any actual or potential liability under or relating tounder, or actual or potential violation of, any of the Privacy Laws, Laws and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and arising from any allegations of noncompliance with any of the Company Privacy Laws made by a person, governmental authority or competent supervisory authority in the European Union; or (iii) is not a party to any order, governmental order or decree, or agreement with a governmental authority or competent supervisory authority in the European Union, that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company isand its subsidiaries are, and at all prior times waswere, in material compliance with all applicable data privacy and security laws and regulations, including, without limitationin each case, to the extent applicable, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, 17921 et seq.); , and the Company has taken all necessary actions to comply, to the extent required, with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the The Company has and its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to those data subjects whose Personal Data is subject to the Policies. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iv) Personal Data “personal data” as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None To the Company’s Knowledge, none of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The To the Company’s Knowledge, the execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its subsidiaries, (i) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge Knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company isand each of its subsidiaries are, and at all prior times washave been since January 1, 2019, in material compliance with all applicable state and federal data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, 17921 et seq.); and the Company has taken all necessary actions to complyand, to the extent requiredapplicable, the Company and each of its subsidiaries have taken commercially reasonable actions to comply with, and since January 1, 2019, have been and are currently in compliance in all material respects with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company has and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). To the extent required by applicable law, the Company provides notice of its Policies to its customers, employees, third party vendors and representatives, and such notices are accurate in all material respects. The Policies provide accurate and sufficient notice of the Company's then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company's then-current privacy practices. “Personal Data” means (i) a natural persons’ ' name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iviii) Personal Data “personal data” as defined by GDPR; and (viv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s 's health or sexual orientationorientation and (v) any other piece of information that is subject to any Privacy Laws. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its subsidiaries, (i) has not received written notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any material investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company isand its Subsidiaries are, and at all prior times waswere, in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, et seq.); and the Company has and its Subsidiaries have taken all necessary actions to comply, to the extent required, comply with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company has and its Subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company and its Subsidiaries provides or makes available accurate notices of their Policies to their employees, third-party vendors, representatives and customers, if any. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iv) Personal Data “personal data” as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its Subsidiaries (i) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company isand each of its subsidiaries are, and at all prior times washave been since January 1, 2019, in material compliance with all applicable state and federal data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, 17921 et seq.); and the Company has taken all necessary actions to complyand, to the extent requiredapplicable, the Company and each of its subsidiaries have taken commercially reasonable actions to comply with, and since January 1, 2019, have been and are currently in compliance in all material respects with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company has and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). To the extent required by applicable law, the Company provides notice of its Policies to its customers, employees, third party vendors and representatives, and such notices are accurate in all material respects. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iviii) Personal Data “personal data” as defined by GDPR; and (viv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientationorientation and (v) any other piece of information that is subject to any Privacy Laws. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its subsidiaries, (i) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any material investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company isand its subsidiaries are, and at all prior times waswere, in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, the U.S. Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, et seq.)of 2009; and the Company has and its subsidiaries have taken all necessary actions to comply, to the extent required, comply with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company has and its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to its customers, employees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iv) Personal Data “personal data” as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its subsidiaries, (i) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company isand each of its Subsidiaries are, and at all prior times waswere, in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health HITECH Act (the “HITECH Act”) (42 U.S.C. Section 17921, 17921 et seq.); and the Company has and each its Subsidiaries have taken all necessary actions to comply, to the extent required, comply with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company has and each of its Subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to its customers, employees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iv) Personal Data “personal data” as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its Subsidiaries, (i) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company isand each of its subsidiaries are, and at all prior times waswere, in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, et seq.); and the Company has and each its subsidiaries have taken all necessary actions to comply, to the extent required, comply with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) ); and the Company will, by January 1, 2020, be in material compliance with the California Consumer Privacy Act of 2018, Civil Code sections 1798.100 et seq. (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company has and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to its customers, employees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying informationpersonal data” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iv) Personal Data as defined by GDPR; and (viii) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to describes an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its subsidiaries, (i) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law. (uu) Forward-Looking Statements. No forward-looking statement (within the meaning of Section 27A of the Securities Act and Section 21E of the Exchange Act) included or incorporated by reference in any of the Registration Statement or the Prospectus has been made or reaffirmed without a reasonable basis or has been disclosed other than in good faith.

Privacy Laws. The Company isand its subsidiaries are, and at all prior times waswere, in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, 17921 et seq.); and the Company has and its subsidiaries have taken all necessary actions to comply, to the extent required, comply in all material respects and where applicable with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company has and its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance comply in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data with respect to the Privacy Laws (the “Policies”). The Company provides accurate notice of its Policies to its customers, employees, third party vendors and representatives where and as required to comply with all applicable Privacy Laws and such notices are and have not been misleading or deceptive in any material respects. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information Information” as defined by HIPAA; and (iviii) Personal Data “personal data” as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its subsidiaries, (i) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to arising from any Privacy Law and the Company inquiry, investigation or other proceeding by a governmental agency or body or any court or (iii) is not a party to any order, decree, or agreement by or with a governmental agency or body or any court that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company isand its subsidiaries are, and at all prior times waswere, in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“"HIPAA”"), as amended by the Health Information Technology for Economic and Clinical Health Act (the “"HITECH Act”") (42 U.S.C. Section 17921, 17921 et seq.); ) and the Company has taken all necessary actions to comply, to the extent required, with the European Union General Data Canada's Personal Information Protection Regulation (“GDPR”) (EU 2016/679) and Electronic Documents Act (collectively, “"Privacy Laws”"). To ensure compliance with the Privacy Laws, the Company has and its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “"Policies”"). “The Company provides accurate notice of its Policies to its customers, employees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company's then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company's then-current privacy practices. "Personal Data” means " means: (i) a natural persons’ ' name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “"personally identifying information” " under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; and (iv) Personal Data as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s 's health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its subsidiaries, (A) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company , (B) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law, or (C) is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company is, and at all prior times was, in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, 17921 et seq.); and the Company has taken all necessary actions to comply, to the extent required, comply with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company has in place, comply complies with, and take takes appropriate steps reasonably designed to ensure compliance in all material respects with its policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to its customers, employees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iv) Personal Data “personal data” as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Company (i) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company is, and at all prior times was, each of its subsidiaries are in material compliance with all applicable data privacy and security laws and regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921, 17921 et seq.); and the Company has and each its subsidiaries have taken all necessary commercially reasonable actions to comply, prepare to the extent required, comply with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”), except as could not, individually or in the aggregate, be reasonably expected to result in a Material Adverse Change. To ensure compliance with the Privacy Laws, the Company has and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with its their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). Where required by applicable Privacy Laws and to the extent such Policies are in written form, the Company has provided accurate notice of its Policies then in effect to its customers, employees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; and (iv) Personal Data as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. The Neither the Company nor any of its subsidiaries, (i) has not received written notice of any actual or potential liability under or relating to, or actual or potential alleged violation of, of any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed any obligation or liability under any applicable Privacy Law. IT Systems. (i) The Company and each of its subsidiaries have complied and are presently in compliance in all material respects with their respective published privacy policies, contractual obligations, applicable laws relating to the collection, use, transfer, import, export, storage, protection, disposal and disclosure by the Company or any of its subsidiaries of all data concerning an identified natural person (“Data Security Obligations”, and such data, “Data”); (ii) the Company has not received any notification of or complaint regarding material non-compliance with any Data Security Obligation; and (iii) of there is no action, suit or proceeding by or before any court or governmental agency, authority or body pending or to the Company’s knowledge threatened alleging non-compliance with any Data Security Obligation. The Company and each of its subsidiaries have taken all technical and organizational measures necessary to protect the information technology systems and Data used in connection with the operation of the Company’s and its subsidiaries’ businesses. Without limiting the foregoing, the Company and its subsidiaries have used reasonable efforts to establish and maintain, and have established, maintained, implemented and complied with, reasonable information technology, information security, cyber security and data protection controls, policies and procedures that are designed to protect against and prevent breach, destruction, loss, unauthorized distribution, use, access, disablement, misappropriation or modification, or other compromise or misuse of or relating to any information technology system or Data used in connection with the operation of the Company’s and its subsidiaries’ businesses (“Breach”). To the Company’s knowledge, there has been no such Breach, and the Company and its subsidiaries have not been notified of and have no knowledge of any event or condition that would reasonably be expected to result in, any such Breach.

Privacy Laws. The Company is, and at all prior times was, in material compliance with all applicable data privacy and security laws and regulations, including, including without limitation, the Health Insurance Portability and Accountability Act (“as applicable, HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921amended, et seq.); and the Company has taken all any required and necessary actions to comply, to the extent required, comply in all material respects with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (and all other applicable laws and regulations with respect to Personal Data that have been announced as of the date hereof as becoming effective within 12 months after the date hereof, and for which any non-compliance with the same would be reasonably likely to create a material liability) as soon as they take effect (collectively, the “Privacy Laws”). To ensure material compliance with the Privacy Laws, the Company has in place, comply with, place and take appropriate steps reasonably designed to ensure is in material compliance in all material respects with its commercially reasonable policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling handling, and analysis of Personal Data (the “Policies”)) as applicable. “Personal Data” means (i) a natural persons’ person’s name, street address, telephone number, email e-mail address, photograph, social security number or tax identification number, driver’s license number, passport number, credit card number, bank information, or customer or account number; (ii) any information which would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by HIPAA; (iv) Personal Data “personal data” as defined by GDPR; and (v) any other piece of information that allows the identification of such natural person, or his or her family, person or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. The Company has since inception made all disclosures to users or customers required by applicable laws and regulatory rules or requirements, and has provided accurate notice of its Policies then in effect to its customers, employees, third party vendors and representatives as required by applicable laws and regulatory rules or requirements, except where the failure to do so would not, individually or in the aggregate, have a Material Adverse Effect. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement or any other agreement referred to in this Agreement will not result in a breach of violation of any Privacy Laws or Policies. The Company further certifies that it: (i) has not received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice. The Company ; (ii) is not currently conducting or paying for, in whole or in part, any investigation, remediation remediation, or other corrective action pursuant to any Privacy Law and the Company Law; or (iii) is not a party to any order, decree, or agreement that imposed imposes any obligation or liability under any Privacy Law.