Common use of Privacy Laws Clause in Contracts

Privacy Laws. The Company and each of its subsidiaries are, and at all times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collected, to the extent that such notice is required by applicable Privacy Laws. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated by applicable Privacy Laws; and (iii) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiaries, (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all prior times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations regulations; and the Company and each its subsidiaries have taken all necessary actions to be in material compliance with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) and the California Consumer Privacy Act of 2018, Civil Code sections 1798.100 et seq. (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated “personal data” as defined by applicable Privacy LawsGDPR; and (iii) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to describes an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiaries, (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives, as appropriate. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as “personally identifying information” under the unfair or deceptive trade practice authority of the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by applicable Privacy Lawsthe Health Insurance Portability and Accountability Act (“HIPAA”); (iv) “personal data” as defined by GDPR; and (iiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The To the Knowledge of the Company, the execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiaries, (i) has received written notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all times since January 1September 21, 2017 were, in material compliance with all applicable data privacy and security laws and regulations regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (the “HITECH Act”) (42 U.S.C. Section 17921 et seq.) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their with, policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collected, to the extent that such notice is required by applicable Privacy Laws. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by applicable Privacy LawsHIPAA; and (iiiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither Except as would not, individually or the aggregate, have a Material Adverse Effect, neither the Company nor any of its subsidiaries, (i) has at any time since September 21, 2017 received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement by a governmental or regulatory authority that imposed imposes any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries Subsidiaries are, and at all times since January 1in the past three (3) years (or such shorter time as the Company has existed, 2017 were, if applicable) were in material compliance with all applicable data privacy and security laws and regulations (collectivelyregulations(collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries Subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collected, to the extent that such notice is required by applicable Privacy Laws. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated by applicable Privacy Laws; and (iii) (v) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiariesSubsidiaries, (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law. (mm) IT Systems. (i)(x)There has been no material security breach or attack or other compromise of any Personal Data, any of the Company’s and its Subsidiaries’ information technology and computer systems, networks, hardware and software used to store and/or process any Personal Data, data (including the data of their respective customers, employees, suppliers, vendors and any third party data maintained by or on behalf of them), equipment or technology (“IT Systems and Data”), and (y) the Company and its Subsidiaries have not been notified of, and have no knowledge of any event or condition that would reasonably be expected to result in any material security breach, attack or compromise to their IT Systems and Data, (ii) the Company and each of its Subsidiaries have taken appropriate steps reasonably designed to ensure material compliance with, all applicable Privacy Laws relating to the privacy and security of IT Systems and Data and to the protection of such IT Systems and Data from unauthorized use, access, misappropriation or modification except as would not, in the case of this clause (ii), individually or in the aggregate, result in a Material Adverse Change, and (iii) the Company and each of its Subsidiaries have implemented backup and disaster recovery technology consistent with industry standards and practice.

Privacy Laws. The Company and each of its subsidiaries Subsidiaries are, and at all prior times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (42 U.S.C. Section 17921 et seq.) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries Subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling handling, and analysis of Personal Data (the “Policies”). The Company provides accurate notice notice, when applicable, of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means means: (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by applicable Privacy LawsHIPAA; and (iiiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiaries, (iA) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; , (iiB) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; , or (iiiC) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries Subsidiaries are, and at all times since January 1, 2017 in the past three (3) years were, in material compliance with all applicable data privacy and security laws and regulations regulations, including, without limitation, the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance In connection with their efforts to comply with the Privacy Laws, the Company and each of its subsidiaries Subsidiaries have in place, comply in material respects with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides materially accurate notice of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives. The Policies provide materially accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) “personal data” as defined by applicable Privacy LawsGDPR; and (iiiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None To the Company’s knowledge, none of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiariesSubsidiaries, (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed imposes any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collected, to the extent that such notice is required by applicable Privacy Laws. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated by applicable Privacy Laws; and (iii) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiaries, (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all prior times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations regulations, including without limitation, as applicable, HIPAA, as amended by HITECH (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, contractual obligations, industry standards, and any other legal obligations, the Company and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their publicly posted policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling handling, and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collected, to the extent that such notice is required by applicable Privacy Laws. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices) as applicable. “Personal Data” means all personal, personally identifiable data, including (i) a natural persons’ person’s name, street address, telephone number, email e-mail address, photograph, social security number or tax identification number, driver’s license number, passport number, credit card number, bank information, or customer or account number; (ii) any information which is regulated would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by applicable Privacy LawsHIPAA; and (iiiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. The Company and its subsidiaries have made all disclosures to users or customers required by Privacy Laws and has provided accurate notice of its publicly posted Policies then in effect to its customers, employees, third party vendors and representatives as required by Privacy Laws, except where the failure to do so would not, individually or in the aggregate, result in a Material Adverse Change. None of such disclosures made or contained in any of the Policies have been materially inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respectPolicies. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of violation of any Privacy Laws or Policies. Neither the The Company further certifies that neither it nor any of its subsidiaries, subsidiary: (i) has received written notice of any actual or potential liability under or relating to, or actual or potential material violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such noticeviolation; (ii) is currently conducting the subject of any investigation or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant by a government entity relating to any violations of Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed imposes any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all times since January 1, 2017 were, Subsidiaries are in material compliance with all applicable data privacy and security laws and regulations regulations; and the Company and each its Subsidiaries have taken necessary actions to comply in all material respects with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the The Company and each of its subsidiaries Subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ nameperson’s name in combination with, street address, telephone number, email address, photograph, social security number, number or bank information, ; or customer or account number; (ii) any information which is regulated “personal data” or “personal information” as defined by applicable Privacy Laws; and (iii) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiariesSubsidiaries, (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all times since January 1, 2017 were, the Subsidiaries are in material compliance with all applicable data privacy and security laws and regulations regulations; and the Company and the Subsidiaries have taken all necessary actions to comply in all material respects with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the The Company and each of its subsidiaries the Subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) “personal data” as defined by applicable Privacy LawsGDPR; and (iiiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms the Registration Rights Agreement or any of the other agreement referred to in this Agreement Transaction Documents will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiariesthe Subsidiaries, (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all prior times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations regulations, including, without limitation, HIPAA, as amended by the HITECH Act; and the Company and its subsidiaries have taken all necessary actions to comply with the European Union General Data Protection Regulation (“GDPR”) (EU 2016/679) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by applicable Privacy LawsHIPAA; (iv) “personal data” as defined by GDPR; and (iiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiaries, (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all prior times since January 1, 2017 2010 were, in material compliance with all applicable data privacy and security laws and regulations (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the The Company and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Where required by applicable Privacy Laws, the Company provides accurate notice of its Policies to individuals data subjects from whom it collects Personal Data are collected, to the extent that such notice is required by applicable Privacy LawsData. The Policies provide accurate and sufficient notice of the Company’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s then-current privacy practices. “Personal Data” means (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by applicable Privacy LawsHIPAA; (iv) “personal data” as defined by GDPR; and (iiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a material breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiaries, (i) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; (ii) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; or (iii) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law. The Company acknowledges that Cowen and, for purposes of the opinions to be delivered pursuant to Section 7 hereof, counsel to the Company and counsel to Cowen, will rely upon the accuracy and truthfulness of the foregoing representations and hereby consents to such reliance.

Privacy Laws. The Company Homology and each of its subsidiaries Subsidiaries are, and at all prior times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations regulations, including, without limitation, the Health Insurance Portability and Accountability Act (“HIPAA”), as amended by the Health Information Technology for Economic and Clinical Health Act (42 U.S.C. Section 17921 et seq.) (collectively, “Privacy Laws”). To ensure compliance with the Privacy Laws, the Company Homology and each of its subsidiaries Subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “Policies”). The Company Homology provides accurate notice notice, when applicable, of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the CompanyHomology’s then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the CompanyHomology’s then-current privacy practices. “Personal Data” means means: (i) a natural persons’ name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as “personally identifying information” under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by applicable Privacy LawsHIPAA; and (iiiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company Homology nor any of its subsidiaries, (iA) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; , (iiB) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; , or (iiiC) is a party to any orderOrder, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries Subsidiaries are, and at all prior times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations regulations, including, without limitation, the Health Insurance Portability and Accountability Act ("HIPAA"), as amended by the Health Information Technology for Economic and Clinical Health Act (42 U.S.C. Section 17921 et seq.) (collectively, “"Privacy Laws”"). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries Subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “"Policies”"). The Company provides accurate notice notice, when applicable, of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s 's then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s 's then-current privacy practices. “"Personal Data” means " means: (i) a natural persons’ ' name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as "personally identifying information" under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by applicable Privacy LawsHIPAA; and (iiiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s 's health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiaries, (iA) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; , (iiB) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; , or (iiiC) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.

Privacy Laws. The Company and each of its subsidiaries are, and at all prior times since January 1, 2017 were, in material compliance with all applicable data privacy and security laws and regulations regulations, including, without limitation, the Health Insurance Portability and Accountability Act ("HIPAA"), as amended by the Health Information Technology for Economic and Clinical Health Act (the "HITECH Act") (42 U.S.C. Section 17921 et seq.) (collectively, “"Privacy Laws”"). To ensure compliance with the Privacy Laws, the Company and each of its subsidiaries have in place, comply with, and take appropriate steps reasonably designed to ensure compliance in all material respects with their policies and procedures relating to data privacy and security and the collection, storage, use, disclosure, handling and analysis of Personal Data (the “"Policies”"). The Company provides accurate notice of its Policies to individuals from whom Personal Data are collectedits customers, to the extent that such notice is required by applicable Privacy Lawsemployees, third party vendors and representatives. The Policies provide accurate and sufficient notice of the Company’s 's then-current privacy practices relating to its subject matter and such Policies do not contain any material omissions of the Company’s 's then-current privacy practices. “"Personal Data” means " means: (i) a natural persons’ ' name, street address, telephone number, email address, photograph, social security number, bank information, or customer or account number; (ii) any information which is regulated would qualify as "personally identifying information" under the Federal Trade Commission Act, as amended; (iii) Protected Health Information as defined by applicable Privacy LawsHIPAA; and (iiiiv) any other piece of information that allows the identification of such natural person, or his or her family, or permits the collection or analysis of any data related to an identified person’s 's health or sexual orientation. None of such disclosures made or contained in any of the Policies have been inaccurate, misleading, deceptive or in violation of any Privacy Laws or Policies in any material respect. The execution, delivery and performance of this Agreement, any Terms Agreement or any other agreement referred to in this Agreement will not result in a breach of any Privacy Laws or Policies. Neither the Company nor any of its subsidiaries, (iA) has received notice of any actual or potential liability under or relating to, or actual or potential violation of, any of the Privacy Laws, and has no knowledge of any event or condition that would reasonably be expected to result in any such notice; , (iiB) is currently conducting or paying for, in whole or in part, any investigation, remediation or other corrective action pursuant to any Privacy Law; , or (iiiC) is a party to any order, decree, or agreement that imposed any obligation or liability under any Privacy Law.