PRIME+ Staff Terms of Use

PRIME+ Authorized User Agreement

Effective Date: January 20, 2021

THIS IS A LEGALLY BINDING AGREEMENT between RecoveryLink, Inc., a Pennsylvania corporation (“RecoveryLink,” “we,” “us” or “our”), and you. The State of Oregon has a Master Services Agreement (defined below) with RecoveryLink for PRIME+ Services (defined below), and YOU MUST AGREE TO THESE TERMS AND CONDITIONS TO USE AN ACCOUNT IN THE PRIME+ RECOVERYLINK ENVIRONMENT.  YOU INDICATE YOUR AGREEMENT TO THIS AUTHORIZED USER AGREEEMENT (THIS “AGREEMENT” OR “AUTHORIZED USER AGREEMENT”) BY EXECUTING THESE TERMS AND CONDITIONS OR BY OTHERWISE ACCESSING OR USING THE SERVICES,  AND YOU AGREE TO BE BOUND BY ITS TERMS AND CONDITIONS. Please read this Agreement carefully. If you do not agree to be bound by these terms and conditions, do not enter into this Agreement or use the Services. Any enrollment or use of services not part of the PRIME+ Services are not covered by this Agreement, and require you enter into a separate agreement with RecoveryLink.

  1. Definitions

For the purposes of this Agreement, the terms set forth in this Section 1 have the meanings assigned to them below. Terms not defined below or in the body of this Agreement (whether or not capitalized) have the definitions given to them in HIPAA.

Administrative Rights” means the rights to administer and direct the use of users’  accounts associated with the Services, including the authority to provide, request, issue, administer and limit the access rights to other User accounts issued to such Provider’s Authorized Workforce, as well as the rights to share Your Information with, or receive Protected Health Information from, third parties through the Services.

“Authorized Uses” are defined in Section 3.4.1.

Authorized Workforce” means those natural persons who are members of your Workforce who you have identified (by their legal names, and the legal names of their employers) in your account as authorized to access the Services on your behalf.

RecoveryLink Record Share” means the feature of the Services through which we make Your Health Information available to other users of the Services with your Consent, or make Protected Health Information of other users of the Services available to you with their Consent.

Clinical Data Exchange” means as applicable the exchange, with your Consent, of Protected Health Information (and Your Personal Information as necessary) between You and covered entities (and their business associates) for any permitted purpose, including, to the extent applicable, care coordination, performance or quality measurement programs (such as HEDIS), and risk adjustment, and other treatment, payment or health care operations purposes.

“RecoveryLink Confidential Information” as to RecoveryLink means any information relating to our business, financial affairs, current or future products or technology, trade secrets, workforce, customers, or any other information that is treated or designated by us as confidential or proprietary, or would reasonably be viewed as confidential or as having value to our competitors. ” RecoveryLink Confidential Information” does not include information that we make publicly available or that becomes known to the general public other than as a result of a breach of an obligation by you. ” RecoveryLink Confidential Information” does not include individuals’ health information.

Consent” means consent or authorization by a user of the Services allowing us to take actions described under this Agreement, which the user of the Services may give in an electronic communication to us or by use of the features of the Services (such as “share,” “transmit,” “refer,” “authorize,” “opt-in,” “agree” or toggling or selecting an action through a settings or activation page located within the Service, and the like). Such Consent may apply to an individual case or situation, or may apply globally or programmatically based on variables that apply to an overall situation or circumstance (whether through a settings or preference page, a global “opt-in” or otherwise).

Credentials” means any unique identifier, password, token, credential, any combination thereof, or other means we may utilize from time to time for authorizing access to all, or any portion of, the Services.

De-Identified Health Information” means health information that has been de-identified in accordance with the provisions of the Privacy Rule.

De-Identified Information” means De-Identified Health Information and De-Identified Personal Information.

De-Identified Personal Information” means Personal Information from which all identifiers that could reasonably be anticipated to identify an individual by an anticipated recipient – such as individual’s name, contact information, or government identifiers – have been removed, inclusive of any personal information under the Oregon Consumer Information Protection Act (OCIPA) under ORS 646A.602(12).

De-Identify” means (i) with respect to Personal Information, to make such information into De-Identified Personal Information, and (ii) with respect to health information, means to make such health information into De-Identified Health Information.

HIPAA” means the administrative simplification provisions of the Health Insurance Portability and Accountability Act of 1996, and the regulations promulgated thereunder, including the Privacy Rule and the Security Rule, as amended.

HITECH Act” means the Health Information Technology for Economic and Clinical Health Act of 2009, and regulations promulgated thereunder.

Limited Access License” means the right to access the Services on a limited basis as set forth in Section 2.2.

Master Services Agreement” refers to the agreement between the State of Oregon, acting by and through its Oregon Health Authority, for Services to support Oregon’s PRIME+ Program.

 “OHA” means the State of Oregon acting by and through its Oregon Health Authority.

ORS” means Oregon Revised Statutes.

Part 2” means the Standards for Patient Record Confidentiality and Disclosures contained within the entirety of 42 CFR Part 2.

Personal Information” means information that includes an individual’s name, contact information, government identifiers, includes identifiers that could reasonably be anticipated to identify an individual personally and/or other identifiers as may be defined under state and federal law, such as the Oregon Consumer Information Protection Act (OCIPA) under ORS 646A.602(12).

Policies and Procedures” means our policies and procedures for access to and use of the Services, as changed from time to time and as posted electronically on the RecoveryLink website at www.myrecoverylink.com.

Privacy Rule” means the Standards for Privacy of Individually Identifiable Health Information at 45 CFR Part 160 and Part 164, Subparts A and E, as amended.

Protected Health Information” has the meaning given it in the Privacy Rule, under ORS 646A.602(12), or Part 2.

Provider” means a PRIME+ site Authorized User; in certain contexts, it has the same meaning as “health care provider” given in 45 CFR §160.103.

Provider of Record” has the meaning given in Section 3.1.1.

Qualified Service Organization” means a Business Associate that is defined as a Qualifying Service Organization under 42 CFR § 2.11 and must agree to certain mandatory provisions regarding the use and disclosure of substance use disorder treatment information.

Security Rule” means the Security Standards for the Protection of electronic Protected Health Information at 45 CFR Part 160 and Part 164, Subparts A and C, as amended.

Services” or “PRIME+ Services” means the customized, HIPAA and 42 CFR Part 2 compliant Oregon PRIME+ software as a service environment, funded by the State of Oregon through OHA, and offered to you as a means of reducing the administrative burden on peer and other PRIME+ program staff, improve program data collection and evaluation efforts, and to improve rates of engagement and outcomes for your clients.

Subscription” means the OHA-paid subscription to the Services offered to you as PRIME+ Services under this Agreement.

Term” means the initial term and any renewal terms of this Agreement as provided in Section 16.1.

User” (capitalized) means a natural person who has been authorized, pursuant to this Agreement, to access the Services, including on behalf of another User; a “user” (un-capitalized) shall mean any user of the Services.

Workforce” means a Provider’s employees, volunteers, trainees, and other persons whose conduct, in the performance of work for Provider, is under the direct control of such Provider, whether or not they are paid by the Provider.

Your Health Information” means Protected Health Information that you or your Workforce input or upload onto the Services, or that we receive on your behalf from your clients, patients, authorized service providers, or our third-party partners pursuant to this Agreement (including Section 4.1.10).

Your Information” means information that you or your Workforce input or upload onto the Services, including Your Personal Information and Your Health Information.

Your Personal Information” means Personal Information about you or your Workforce that you or your Workforce enter or upload onto the Services.

In addition, the words “include,” “includes” and “including” shall be deemed to be followed by the phrase “without limitation.” The word “will” shall be construed to have the same meaning and effect as the word “shall,” and “shall” in all cases means an action or certain interpretation is mandatory. The word “or” shall be construed to have the same meaning and effect as “and/or.” The words “herein,” “hereof” and “hereunder,” and words of similar import, shall be construed to refer to the terms and conditions set forth in this Agreement. The headings used in this Agreement are used for convenience only and are not to be considered in construing or interpreting this Agreement.

42 CFR Part 2” means the Standards for Patient Record Confidentiality and Disclosures contained within the entirety of 42 CFR Part 2.

  1. Grant of Right to Use the Services and Restrictions on Use

2.1 Removed

2.2 Reserved.

2.3 Third Party Services. The Services may include certain third-party software, services, data or applications that may require that you enter into separate agreements with third parties. We may also make available optional services, either directly or through integrations with the Services, provided by third parties, such as billing, synchronous chat and video, and analytics reporting. If You elect to use such Third Party Services, You are responsible for your compliance with the terms of use for any such software or services.

2.4 Restrictions on Use. You will not: (a) use the Services for time-sharing, rental or service bureau purposes; (b) make the Services, in whole or in part, available to any other person, entity or business; (c) copy, reverse engineer, decompile or disassemble the Services, in whole or in part, or otherwise attempt to discover the source code to the software used by the Services; or (d) modify, combine, integrate, render interoperable, or otherwise access for purposes of automating data conversion or transfer, the Services or associated software with any other software or services not provided or approved by us. You will obtain no rights to the Services except for the limited rights to use the Services expressly granted by this Agreement.

  1. Access to the Services

3.1 Access Rights of Providers and their Authorized Workforce.

3.1.1 Provider of Record. We offer the Services to users, users who are Providers, and to natural persons who are members of such users or Providers’ Authorized Workforce, as more fully described in Section 3.1. We treat the Provider in whose name the organizational PRIME+ account is established, as provided to RecoveryLink and authorized by OHA, as the owner of all User accounts associated with such Provider, and we call this Provider the “Provider of Record.” The Provider of Record may be changed in accordance with Section 19.1.

The Provider of Record is a party to this Agreement for all purposes and shall be subject to all of the provisions that are applicable to the person addressed as “you” in this Agreement. Although a member of a Provider of Record’s Authorized Workforce may have signed-up for an account or electronically entered into this Agreement, or may continue to administer Administrative Rights on the Provider of Record’s behalf, only the Provider of Record is entitled to any of the rights, remedies or benefits under this Agreement and control over the Administrative Rights. The Provider of Record is likewise subject to, and we may enforce against it, all of the covenants, obligations, restrictions, limitations, acknowledgements, Consents, representations, warranties, waivers and releases included in this Agreement. The Provider of Record may delegate Administrative Rights to one or more members of the Provider of Record’s Authorized Workforce, but the Provider of Record remains responsible for all activity occurring thereunder.

(a) Incomplete or Inaccurate Registration Information. A Provider that has failed to complete the registration information sufficient to establish itself as the Provider of Record may not be able to access all of the Services. In addition, until such Provider completes such registration information, such Provider agrees and acknowledges that it is subject to, and we may enforce against it, all of the covenants, obligations, restrictions, limitations, acknowledgements, Consents, representations, warranties, waivers and releases set forth in this Agreement that are applicable to the person addressed as “you” in this Agreement, and such Provider hereby grants and makes all rights, waivers and releases set forth in this Agreement that are granted and made by the person addressed as “you” in this Agreement, but such Provider is entitled to none of, and hereby waives and agrees not to assert any of, the rights, remedies or benefits under this Agreement (other than our assurances and obligations under Section 9 below, which such Provider shall have the right to enforce). Once a Provider’s registration has been submitted sufficient to establish its status as the Provider of Record, this provision shall cease to apply.

3.1.2 Authorized Representatives. An authorized representative of a Provider may obtain an account on behalf of such Provider, and may have administrative privileges on the account. We call the person(s) authorized to act on behalf of a Provider the “Authorized Representative(s)” of such Provider. The Provider and Authorized Representative may be the same person. If you are establishing an account or taking any action with respect to a Provider’s account, you represent and warrant that (a) you have the authority to act on such Provider’s behalf either as owner/principal or as a member of such Provider’s Authorized Workforce, (b) the information you submit is complete and accurate, and (c) you have the authority to enter into this Agreement on behalf of such Provider and bind such Provider to the covenants, obligations, restrictions, limitations, acknowledgements, Consents, representations, warranties, grants, waivers and releases contained in this Agreement. If you are an Authorized Representative, you recognize that you have no personal rights with respect to such Provider’s account, and that such Provider may change the Authorized Representative at any time, for any or no reason, with or without notice.

3.1.3 Authorized Workforce. If you are a member of a Provider’s Authorized Workforce, and such Provider has authorized you to access the Services on its behalf by authorizing a Credential for you, then you are authorized under this Agreement to access the Services solely on behalf and at the direction of such Provider. As such, you may sign in and use the functionality of the Services solely on behalf and at the direction of such Provider. You consent to and authorize the disclosure to such Provider any content related to, or otherwise generated by your use of the Services, including secure messages. You hereby agree and acknowledge that you are subject to, and we may enforce against you, all of the covenants, obligations, restrictions, limitations, acknowledgements, Consents, representations and warranties set forth in this Agreement that are applicable to the person addressed as “you” in this Agreement, and you hereby grant and make all rights, waivers and releases set forth in this Agreement that are granted and made by the person addressed as “you” in this Agreement, but you are entitled to none of, and hereby waive and agree not to exercise or assert any of, the rights, remedies or benefits under this Agreement other than the limited, non-exclusive, non-transferable, personal right under this Section 3.1.3 to sign in and use the functionality of the Services solely on behalf and direction of such Provider. Notwithstanding the applicable provisions of Section 16, you acknowledge that your access to the Services may be terminated by the Provider or us at any time, for any reason or no reason at all, with or without notice. By (i) accessing any of the Services under a Provider’s account(s), or (ii) contacting us by any means and requesting or directing us to take any action with respect to any Provider’s account(s) or data held by such account(s), or (iii) asserting any right or authority with respect to such account(s) or data, you represent and warrant that you have the authority to act on such Provider’s behalf and that you are not using the Services, or otherwise engaging in the activities described in clauses (i) through (iii) above, for the benefit or at the direction of any person or entity other than such Provider, including yourself.

3.2 Territory Restrictions. We offer the Services only to users, including any that may be Providers, based in the United States or its territories, and such Providers’ Authorized Workforce based in the United States or its territories. If You are not based in the United States or its territories, You may not use the Services and must discontinue use of the Services immediately.

3.3 Verification. You agree that your use of the Services, or certain features or functionality of the Services, may be subject to verification by us of your identity and credentials as an OHA-authorized user of the Services, and your ongoing qualification as such. You agree that we may use and disclose Your Personal Information for such purposes, including making inquiry of your PRIME+ site and OHA concerning your identity and authorization. You authorize such third parties to disclose to us such information as we may request for such purposes, and you agree to the extent allowable under applicable law to hold them and us harmless from any claim or liability arising from the request for or disclosure of such information. Notwithstanding the applicable provisions at Section 16, you agree that we may suspend or terminate your access to or use of the Services at any time if we are unable at any time to determine or verify your identity, qualifications or credentials.

3.4 Permitted Uses.

3.4.1 Authorized Uses. Subject to the terms of this Agreement, you may use Your Health Information for any purpose expressly permitted by applicable law, including peer support services, treatment, payment, and program and health care operations.

3.4.2 If you are granted access rights to another user of the Services’ Protected Health Information through RecoveryLink Record Share or another component of the Services, you may use such information for Authorized Uses; provided that, except as expressly authorized in writing, (i) you may access only information pertaining to individuals with whom you have a relationship for one or more Authorized Uses, or for whom a provider who has a  relationship for one or more Authorized Uses with the individual has requested a professional consultation from you, or from whom you have received authorization to use their health information ; and (ii) you may use only the minimum necessary information for the Authorized Uses.

3.4.3 You will not use the Services for any purposes other than those described in Section 3.4.1 or Section 3.4.2. In particular, you will not:

(a) reproduce, publish, or distribute content in connection with the Services that infringes any third party’s trademark, copyright, patent, trade secret, publicity, privacy, or other personal or proprietary right; nor

(b) use the Services to transmit illegal, obscene, threatening, libelous, harassing, or offensive messages, or otherwise unlawful material.

In addition, to further safeguard the confidentiality, integrity and availability of the information and other elements housed in the Services, as well as the stability of the Services, you agree you will not, nor attempt to, or authorize anyone to, or attempt to:

(c) (i) Abuse or misuse the Services, including gaining or attempting to gain unauthorized access to the Services, or altering or destroying information housed in the Services; (ii) use the Services in a manner that interferes with other users’ use of the Services; (iii) use the Services in any manner that violates our Policies and Procedures; or (iv) use any ad blocking mechanism, device, or tool to prevent the placement of advertisements in the Services;

(d) Circumvent any technical measures we have put in place to safeguard the Services or the confidentiality, integrity or accessibility of any information housed thereon, or any technical measures we have put in place to restrict access to the Services solely to the class of persons expressly so authorized pursuant to Sections 3.1.1 through 3.1.3; and

(e) Access any portion of the Services other than with a commercial browser (such as Microsoft Edge, Mozilla Firefox or Google Chrome) or mobile applications developed and operated by us.

3.5 Clinical Support Information; Information Exchange. As authorized by OHA, the Services may include us providing information to assist you in clinical decision-making. This may include information and reminders concerning general health-care related information and resources. We may also provide forums for our users to exchange information. You agree that the information and materials available through the Services are for informational and educational purposes only and are not intended to constitute professional advice, diagnosis or treatment, or to substitute for your professional judgment. Information may be placed in the Services by us, OHA, and by third parties beyond our control, including by funding sources of such information. We are not responsible for the accuracy or completeness of information available from or through the Services. You assume full risk and responsibility for the use of information you obtain from or through the Services, and neither we nor OHA, nor any of our licensors or data providers are responsible or liable for any claim, loss, or liability arising from use of the information. We do not recommend or endorse any provider of health care or health-related products, items or services, and the appearance of materials in the Services relating to any such products, items or services is not an endorsement or recommendation of them. You will review the definitions, functionality, and limitations of the Services, and to make an independent determination of their suitability for your use. We, OHA, and our suppliers and licensors disclaim all warranties, whether expressed or implied, including any warranty as to the quality, accuracy, and suitability of the information provided by the Services pursuant to this Section 3.5.

3.6 Safeguards.

3.6.1 You will implement and maintain appropriate administrative, physical and technical safeguards to protect information within the Services. Such safeguards shall comply with federal, state, and local requirements, including 42 CFR Part 2, the Privacy Rule, and the Security Rule, whether or not you are otherwise subject to HIPAA. You will maintain appropriate security with regard to all personnel, systems, and administrative processes used by you or members of your Workforce to transmit, store and process electronic health information through the use of the Services.

You will notify us immediately and in no event more than 24 hours following  your discovery or notification of any breach or suspected breach of the security of the Services, or any unauthorized use or disclosure of information within or obtained from the Services, and you will take such actions to mitigate the breach, suspected breach, or unauthorized use or disclosure of information within or obtained from the Services as we may direct, and will cooperate with us in investigating and mitigating the same.

3.7 User Identification. We authorize you and your Authorized Workforce to use the Credentials uniquely assigned to, or selected by, each such individual User. You acquire no ownership rights in any such Credentials, and such Credentials may be revoked, reset or changed at any time in the discretion of us or the Provider of Record. You will adopt and maintain reasonable and appropriate security precautions for your Credentials to prevent their disclosure to or use by unauthorized persons. Each member of your Authorized Workforce shall have and use a unique identifier. You will ensure that no member of your Workforce uses Credentials assigned to another Workforce member.

3.8 No Third-Party Access. Except as required by law, you will not permit any third party (other than persons who satisfy the definition of Authorized Workforce and meet the requirements of Section 3.1.3) to use or access the Services without our prior written agreement. Nor will you authorize or assist any person or entity in accessing, or attempting to access, any portion of the Services via any means other than a commercial browser (such as Microsoft Edge, Mozilla Firefox or Google Chrome) or a mobile app that we have authored and provided to you. You will promptly notify us of any order or demand for compulsory disclosure of health information if the disclosure requires access to or use of the Services. You will reasonably cooperate with us in connection with any such demand. You will also notify us in the event that you detect or are notified that any person or entity, whether or not a member of your Authorized Workforce, (a) attempts to access the Services by any means other than a commercial browser, (b) claims to offer a service or system that “integrates with” our Services or (c) requests to use your Credentials or requests that you obtain Credentials in order to access to the Services in a manner that would violate this Agreement if you engaged in such activity.

3.9 Your Workforce. You may permit your Authorized Workforce to use the Services on your behalf, subject to the terms of this Agreement. You will:

3.9.1 require each member of your Authorized Workforce to have unique Credentials, and will provide the legal name(s) of each such member for which you are seeking Credentials;

3.9.2 train all members of your Authorized Workforce in the requirements of this Agreement and the Policies and Procedures relating to their access to and use of the Services, and ensure that they comply with such requirements;

3.9.3 take appropriate disciplinary action against any member of your Workforce who violates the terms of this Agreement or the Policies and Procedures;

3.9.4 ensure that only the person to whom a specific set of Credentials have been assigned accesses the Services with such Credentials; and

3.9.5 immediately notify us of the termination of employment of any member of your Authorized Workforce, or of your withdrawal of authorization for any such person to access the Services.

3.10 Personal Health Record. You may make available to your clients portions of their Protected Health Information or other personal information through a web-based personal health record portal that we operate on your behalf (a “Recoveree Portal“). You are responsible for granting Recoveree Portal access privileges to your clients, either on an individual basis or for your entire client population. You are solely responsible for the information that you make available through a Recoveree Portal. Protected Health Information included in Recoveree Portals will be held and administered by us on your behalf subject to the terms of this Agreement including as applicable our business associate obligations stated in Section 9.

3.11 Forums. Reserved.

3.12 Compliance with Law. You are solely responsible for ensuring that your use of the Services complies with applicable law, including laws relating to the maintenance of the privacy, security, and confidentiality of client, patient, and Protected Health Information. You will not grant any user, including members of your Authorized Workforce, any rights to access or use our Services that they would not be allowed to have under applicable laws. In using the Services, You are solely responsible for compliance with all laws relating to the transmission of text messages, automated or pre-recorded phone calls, faxes, email and other communications for refill reminders, appointment reminders, bill pay reminders or other purposes, including, without limitation, the Controlling the Assault of Non-Solicited Pornography And Marketing Act of 2003 (codified at 15 U.S.C. Chapter 103), the Telephone Consumer Protection Act of 1991 (codified at 47 U.S.C. 227 et. Seq.), Do-Not-Call legislation and all similar international, federal or state laws. Without limiting the foregoing, in using the Services you are solely responsible for obtaining any consent or other permission required by such laws from your patients or other individuals to send any communication to your patients or other individuals. We offer no assurance that your use of the Services under the terms of this Agreement will not violate any law or regulation applicable to you. Including to the extent allowable under the Master Services Agreement, and following any notice to you to allow you an opportunity to protect your interests, we may share Your Information with third parties if we in good faith believe that disclosure of Your Information is necessary to (i) comply with a court order, warrant or other legal process, (ii) protect the rights, property or safety of RecoveryLink or others, (iii) investigate or enforce suspected breaches of this Agreement, or (iv) allow our third-party partners to comply with their obligations under federal or state law.

3.12.1  Qualified Service Organization Compliance. In servicing you as a Qualified Service Organization “QSO”, as defined in 42 CFR Part 2, we agree to comply with all requirements contained within 42 CFR Part 2. In the event that we receive a request from a third party for PHI related to substance use disorder diagnosis, treatment, or referral for treatment we will immediately notify you in writing of said request and provide reasonable assistance to you in responding to said request in a timely fashion so as to permit you to respond to the request within the time limits imposed under the HIPAA Standards. We will withhold access to PHI related to substance use disorder diagnosis, treatment, or referral for treatment that is subject to a subpoena, pending the resolution of judicial proceedings by you to resist efforts to obtain access to PHI and will resist in judicial proceedings any efforts to obtain access to PHI related to substance use disorder diagnosis, treatment, or referral for treatment unless access is expressly authorized by the patient, court order, or other legal mandate.

3.13 Professional Responsibility. You will be solely responsible for the professional and technical services you provide. We make no representations concerning the completeness, accuracy or utility of any information in the Services, or concerning the qualifications or competence of persons who placed it there. We have no liability to You for the consequences to you or your patients of your use of the Services.

3.14 Cooperation. You will cooperate with us in the administration of the Services, including providing reasonable assistance in evaluating the Services and collecting and reporting data requested by us for purposes of administering the Services.

3.15 Indemnification. To the extent allowable under the Master Services Agreement and otherwise under applicable law, You hereby agree to indemnify, defend, and hold harmless us and other users, and our and their respective affiliates, officers, directors, employees and agents, from and against any claim, cost or liability, including reasonable attorneys’ fees, arising out of or relating to: (a) the use of the Services by you or your Workforce; (b) any breach by you or your Workforce of any representations, warranties or agreements contained in this Agreement; (c) the actions of any person gaining access to the Services under Credentials assigned to you or a member of your Workforce; (d) the actions of anyone using Credentials assigned to you or any member of your Workforce that adversely affects the Services or any information accessed through the Services; and (e) your negligent or willful misconduct, or that of any member of your Workforce. Your indemnification obligations in this Agreement (including this Section 3.15) are cumulative, and are not intended to, nor do they, limit your indemnification obligations elsewhere in this Agreement or at law, even if such obligations arise or are occasioned or triggered by a single assertion, claim, circumstance, action, event or transaction.

  1. Use of Information

4.1 Purpose of Services. The purpose of the Services is to store Your Health Information and (i) to make it available to you and your Authorized Workforce for Authorized Purposes; (ii) to facilitate the sharing of individuals’ health information among users and other parties with whom you or your Authorized Workforce members elect to share such information; and (iii) to make health information available to your clients or patients through the Recoveree Portal. You may make Your Health Information accessible to other users of the Services, other individuals and entities, or to your clients or patients through the Services for these purposes. You authorize us, including as applicable as your business associate, to use and disclose Your Information as follows:

4.1.1 We will permit access to Your Health Information to you and your Authorized Workforce. You are responsible for ensuring that your use of Your Health Information is consistent with the relevant legal restrictions.

4.1.2 We will permit access to Your Health Information to your clients and patients to whom you have enabled to receive access through our Recoveree Portal.

4.1.3 We will permit access to Your Information by health care providers, covered entities, PRIME+ program users, OHA, and as applicable their business associates to whom you have Consented to provide access to the Services and who have otherwise agreed to integrate with our systems. We will obtain your Consent before we make Your Health Information available to other providers, covered entities, PRIME+ program users, and their respective business associates. You hereby authorize us to share Your Information with OHA. You acknowledge that once we have granted access rights to another provider, PRIME+ program user, OHA, or covered entity (or their respective business associates), we have no control over the uses and disclosures that such person or entity makes of Your Health Information, and the recipient may be subject to its own legal or regulatory obligations (including HIPAA and 42 CFR Part 2) to retain such information and make such information available to patients, governmental authorities and others as required by applicable law or regulation.

4.1.4 Reserved.

4.1.5 Subject to the Master Services Agreement, We may use Your Information in order to prepare analyses and reports, such as activity or quality-metrics reports, or any other reports the Services makes available, in order to render these reports to You or for any of the purposes described in OHA’s agreement with RecoveryLink. Preparation of such analyses and reports may include the use of data aggregation services relating to your peer support, treatment, and health care operations, which we may perform using Your Health Information. Such reporting will be done in a manner that does not make any disclosure of Your Health Information that you would not be permitted to make.

4.1.6 We may use Your Information for the proper management and administration of the Services and our internal business purposes, and (subject to advance notice to you so that you may protect your interests, unless prohibited by law or administrative or judicial order) to carry out our legal responsibilities, which may include us disclosing such information to one of our business associates that has entered into a business associate agreement in accordance with Section 9.4 below. We may also disclose Your Information for such purposes if the disclosure is required by law (as such term is defined in 45 CFR §164.103), or we obtain reasonable assurances (as such term is interpreted or applicable in connection with or under HIPAA) from the recipient that it will be held confidentially and used or further disclosed only (a) as required by law (as such term is defined in 45 CFR §164.103), or (b) for the purpose for which it was disclosed to the recipient, and the recipient notifies us of any instances of which it is aware in which the confidentiality of the information has been breached. Without limiting the foregoing, we may permit access to the system by our contracted system developers under appropriate confidentiality agreements.

4.1.7 We may, to the extent authorized under by OHA under the Master Services Agreement, use Your Health Information and Directory Information (defined below) to enable functionality so that you may contact your patients for treatment and health care operations messages, including sending appointment notifications (such as appointment requests, confirmations, reminders, cancellations and the like) or post-visit treatment satisfaction surveys, invitations and administrative messages concerning Recoveree Portal access, and the like as well to provide information about health-related products or services you provide. With your Consent, we may request an authorization from your patients to use or disclose their health information for any purpose for which use or disclosure may be made with an appropriate authorization. You agree that we may also use and disclose your patients’ health information as permitted by any such authorization.

4.1.8  Reserved.

4.1.9 We may use or disclose Your Health Information for other purposes, as from time to time described in our Policies and Procedures; provided that we will not make or permit any such use or disclosure that would violate the Master Services Agreement or applicable law or regulation if made by you or your business associate.

4.1.10 As authorized under the Master Services Agreement, we may use Your contact information to provide you with notifications regarding Your clients’ or patients’ potential eligibility for certain programs, including savings programs, coupons, sampling, educational, safety, adherence or treatment support materials or other programs which you may choose to share with your patients (“Patient Support Programs“) as well as to administer the Support and Assessment Resources more fully described in Section 6 below. These notifications and materials are not a substitute for your professional medical judgment pertaining to the appropriateness of any such program for a given patient and you should discuss any such programs or materials with your clients or patients directly. We may receive remuneration in connection with presenting you with these Patient Support Programs or Support and Assessment Resources. In connection with offering or operating such Patient Support Programs or Support and Assessment Resources, we may share personally identifiable information about you for the purposes of program administration, and for assessing program eligibility, effectiveness or performance. We will only share such information with partners who are subject to confidentiality obligations. Additionally, we may disclose Personal Information about you to administrators of the Patient Support Programs or Support and Assessment Resources for recordkeeping, corporate integrity or regulatory reporting purposes but in no cases will we share your information for sales, marketing, or other commercial purposes not specifically described in this Agreement.

4.2 Responsibility for Misuse by Other Users. You acknowledge that in granting access to the Services for the purposes set forth in Section 4.1, we will rely on the assurances of the recipients of the information as to (i) their identity and credentials, (ii) the purposes for which they are accessing the system, and (iii) the nature and extent of the information to which they will have access. You acknowledge that, while the Services will contain certain technical safeguards against misuse of the Services, it will rely to a substantial extent on the representations and undertakings of users of the Services. To the extent allowable under the Master Services Agreement, you agree that we will not be responsible for any unlawful access to or use of Your Health Information by any user resulting from the user’s misrepresentation to us, or breach of the user’s user agreement.

4.3 Specially Protected Information. We apply the standards of the Privacy Rule in permitting access to the Services. You acknowledge that other federal and state laws impose additional restrictions on the use and disclosure of certain types of health information, or health information pertaining to certain classes of individuals. You agree that to the extent allowable under the Master Services Agreement you are solely responsible for ensuring that Your Health Information may properly be disclosed for the purposes set forth in Section 4.1, subject to the restrictions of the Privacy Rule and applicable law, including those laws that may be more restrictive than the Privacy Rule, such as 42 CFR Part 2. In particular, you will:

4.3.1 not make available to other users through the Services any information in violation of any restriction on use or disclosure (whether arising from your agreement with such users or under law);

4.3.2 obtain all necessary consents, authorizations or releases from individuals required for making their health information available through the Services for the purposes set forth in Section 4.1;

4.3.3 include such statements (if any) in your notice of privacy practices as may be required in connection with your use of the Services; and

4.3.4 not place in the Services any information that you know or have reason to believe is false or materially inaccurate.

4.4 RecoveryLink Record Share With your Consent, we will make your online health record for any client or patient you designate accessible to any other user of the Services or any third party whom you approve. You may revoke your Consent with respect to any other user at any time. While your Consent is in effect, an approved user may view, edit or otherwise alter any health record you have designated for their use. If you revoke your Consent, the approved user will continue to have the ability to view the health record in the form in which it existed at the time you revoked your Consent, but will not be able to view changes made to the record thereafter, and will not be able to edit the record. The same rules apply to your use of another user’s record who approves access by you. To the extent allowable under the Master Services Agreement You and your Workforce are fully responsible for the information in any record that you share. You or your Workforce should not share patient information that violates any state or federal laws. In any event, but especially in cases of potential fraud, misuse or abuse of the Services, we reserve the right, in our sole judgment, to revoke, remove, cancel or deny continued access to any health record or any RecoveryLink Record Share request.

4.5 Provider Directories. Reserved.

4.6 Care Coordination and Clinical Data Exchange. We will enable Clinical Data Exchange between You and your business associate(s) or those covered entities (and their respective business associates), including health systems, Accountable Care Organizations, and payers, who desire to transmit such data to you with respect to patients they have a treatment relationship or with whom you have Consented to provide such data (all third parties collectively referred herein as “Transmission Partner“). While such transmission integrations are in effect, such Transmission Partner may send and receive clinical data to and from your account on a routine and recurring basis. You may disable an integration with any Transmission Partner by contacting us but any clinical data already received by such Transmission Partner will remain in its possession, subject to the terms of your independent agreements with such Transmission Partner, if any. You are solely responsible for ensuring that You have all necessary consents from Your patients applicable to the sharing of any of Your Health Information under applicable law with respect to each Transmission Partner with whom you have Consented to share any information under this Section 4.6.

  1. Providing Physician Data to Payers and Others

Reserved.

  1. Support and Assessment Resources; Advertising

We may also present to you, through the Services, the opportunity to utilize or engage in clinical decision support or assessment resources or informational programs (“Support and Assessment Resources,” which may also include, for the avoidance of doubt, Patient Support Programs (as previously described in Section 4.1.12)). As authorized under the Master Services Agreement we may also place advertisements concerning the products and services of third parties throughout the Services, so that you see them when you use the Services. Such Support or Assessment Resources or advertisements may be funded or sponsored by third parties, and may include branded or unbranded content about medical conditions, treatments and products, or safety and regulatory information resources. They may also include opportunities to participate in informational surveys or studies, or to discuss with your patients potential clinical trials or other research programs. We may receive remuneration from the funding sources or sponsors for presenting you with Support and Assessment Resources or displaying their advertisements. In connection with offering or operating such Support and Assessment Resources or delivering advertising, we may share personally identifiable information about you for the purposes of assessing program eligibility, effectiveness or performance with partners who are subject to confidentiality obligations. Additionally, if you choose to engage or utilize one of the Support and Assessment Resources, you may be asked to provide personal information that may be used to supplement Your Information as well as information gathered as part of the program itself (e.g., responses to surveys). This information will be used to provide the content or services described in the Support and Assessment Resources or provide you with any gift or honoraria associated with the program. If you receive remuneration for participating in a sponsored survey, for example, we may be required to provide the funding source or sponsor with information about you for its recordkeeping, regulatory reporting or measurement purposes.

  1. Intellectual Property Rights

7.1 Individually Identifiable Health Information. You retain all rights with regard to Your Health Information, and we will only use such information as expressly permitted in this Agreement. Our right to use Your Health Information terminates with the termination (including by expiration) of this Agreement by either party.

7.2 De-Identified Information. In consideration of our provision of the Services, you hereby grant us a license to create and use De-Identified Information that we make from Your Information pursuant to Section 4.1.5 to fulfill purposes allowable under this Agreement and the Master Services Agreement. You agree that you have no interest in such information, or in the proceeds of any sale, license, or other commercialization thereof.

7.3 Other Works and Information. You hereby grant to us a nonexclusive, royalty-free, fully paid-up, perpetual, irrevocable, worldwide and fully sublicensable right to use, reproduce, modify, adapt, publish, translate, create derivative works from, distribute, and display any information, material or work product – other than information that is confidential information or Your Information that has not been De-Identified – you provide to this site or the Services. You agree that we may use, disclose, market, license, and sell such information and works, including derivative products, without restriction. This includes, for example, custom templates that you create using the Services, and information (other than Your Information that has not been De-Identified) that you contribute to forums, discussion groups and the like. You may provide content or material to this site by participating in forums, discussion groups and the like, or by using the site to create custom templates and the like. Furthermore, you agree that we may use, disclose, market, license and sell such material or content, and that you have no interest in the information, or in the proceeds of any sale, license, or other commercialization thereof. No material you provide will knowingly infringe or otherwise violate the intellectual property or other rights of others, and will not be otherwise unlawful, infringing, threatening, libelous, defamatory, obscene, pornographic, or in violation of any law.

7.4 Ownership. All rights, title and interest in and to the Services and the structure, organization and arrangement thereof, are and shall remain the exclusive property of us and/or our licensors and is protected by law, including but not limited to United States copyright law. Under no circumstances will users acquire any ownership rights or other interest in the Services. Except for the limited rights granted herein, all other rights are reserved. You will not remove, deface or obscure any of our copyright or trademark notices and/or legends or other proprietary notices on, incorporated therein or associated with the Services

  1. Individuals’ Rights

You are responsible for affording individuals their rights with respect to relevant portions of Your Health Information, such as the rights of access and amendment. You will not undertake to afford an individual any rights with respect to any information in the Services other than Your Health Information.

  1. Business Associate Provisions

In maintaining, using and affording access to Your Health Information in accordance with this Agreement, we shall, in accordance with and otherwise in reference to the requirements of HIPAA and 42 CFR Part 2, as such requirements are informed by the guidance given by the United Stated Department of Health and Human Services (or any office, department or agency operating thereunder, “HHS“):

9.1 Not use or disclose such information except as permitted or required by this Agreement or as required by law (as such term is defined in 45 CFR §164.103);

9.2 Use appropriate safeguards with respect to Your Health Information to prevent the use or disclosure of such information in a manner inconsistent with the provisions of this Agreement; and implement appropriate physical, technical and administrative safeguards consistent with the requirements of the Security Rule.

9.3 Report to you any use or disclosure of Your Health Information not provided for by this Agreement of which we become aware, including Breaches of Your Health Information under HIPAA, in each case in accordance with §164.410 of HIPAA, and any security incident (as defined by HIPAA) involving Your Health Information of which we become aware, within 7 days of becoming aware of such use or disclosure. Such disclosure or security incident will also be reported to OHA.

9.4 In accordance with §§164.502(e)(1)(ii) and 164.308(b)(2) of HIPAA, as applicable, ensure that any subcontractors that create, receive, maintain or transmit Your Health Information on our behalf agree to the same restrictions, conditions, and requirements that apply to us with respect to such information (as such requirement is interpreted or applicable in connection with or under HIPAA); and we obtain satisfactory assurances (as such term is interpreted or applicable in connection with or under HIPAA) that such subcontractors will appropriately safeguard such information (it being understood, for the avoidance of doubt, that other users of the Services are not our subcontractors);

9.5 Make available to you Your Health Information in furtherance of your obligations under §164.524 of the Privacy Rule;

9.6 Make available to you Your Health Information in furtherance of your obligations to amend and incorporate any amendments to such information in accordance with §164.526 of the Privacy Rule;

9.7 Maintain and make available Your Health Information to provide an accounting of disclosures in accordance with §164.528 of the Privacy Rule;

9.8 To the extent that we are to carry out your obligations under the Privacy Rule, comply with the requirements of the Privacy Rule that apply to you in the performance of such obligations;

9.9 Make our internal practices, books, and records relating to the use and disclosure of Protected Health Information protected by HIPAA that is received from, or created or received by us on your behalf, available to the Secretary of HHS for purposes of determining your compliance with the Privacy Rule; and

9.10 At termination of this Agreement, we will provide appropriate PRIME+ site Authorized Users with a copy of Your Health Information in an electronic form that is accessible through commercially available hardware and software, or provide access to the data for a period agreed upon with OHA. You may have to purchase hardware and software from third parties in order to access your data, and you may have to configure your systems in order to use your data.. You acknowledge that if you approve, in accordance with the terms of this Agreement, we will continue to make information and data (such as your clients or other providers) available to other users of our Services or their respective business associates, pursuant to the terms of the agreements we have with them.

9.11. Upon either party’s knowledge of a material breach of HIPAA or 42 CFR Part 2 by the other party, the non-breaching party (i) may provide written notice of the existence of such material breach and, if it desires to preserve the right to terminate the HIPAA or Part 2 provisions of this Agreement for such material breach, specify in such breach notice a reasonable time frame of at least 60 days for the breaching Party to cure the breach; (ii) if such time frame is so specified, may immediately terminate the HIPAA or Part 2 provisions of this Agreement upon further written notice if the breaching party does not cure the breach or end the violation within such time frame; or (iii) immediately terminate the HIPAA or Part 2 provisions of this Agreement upon written notice if the breaching party has breached a material term of the HIPAA or Part 2 provisions of this Agreement and the parties agree in writing that a cure is not possible.

  1. Computer Systems

You agree and acknowledge that you will be required to acquire, install, configure and maintain all hardware, software and communications systems necessary to access the Services (your “Implementation“). Your Implementation will comply with the specifications from time to time established by us. You will ensure that your Implementation is compatible with the Services. If we notify you that your Implementation is incompatible with the Services, you will eliminate the incompatibility, and we may suspend Services to you until you do so if the incompatibility causes a security risk or materially interferes with your or others’ experience of the Services.

  1. Third-Party Services

11.1 If authorized by OHA under the Master Services Agreement, we may also present to you, through the Services (including via emails, displays or advertisements) or through the use of Your Information, the opportunity to learn about, access, integrate with, or otherwise use services operated by third parties (each a “Third-Party Service“). If you choose to sign-up for or utilize a Third-Party Service, that Third-Party Service may be able to access Your Information. Additionally, we may allow you to access the Third-Party Services, or integrate the Services you receive from us with such Third-Party Services using your Credentials that allow you to receive services or information from such Third-Party Services. Although we may receive remuneration from the operators or sponsors of these Third-Party Services, we do not endorse any Third-Party Services and you are responsible for evaluating any Third-Party Services prior to signing-up for, accessing, or integrating them (including any information) with the Services you receive from us.

11.2 We are not responsible for the quality or efficacy of any Third-Party Services, or their information privacy or security practices, and we have no responsibility for the information, goods or services offered or provided by the operators of such Third-Party Services, or for the manner in which they conduct their operations. Your use of Third-Party Services and the materials, information, goods and services offered by them is entirely at your own risk, and is subject to the terms of use of the third parties operating or providing them, if any. You should assume that any Internet page or other material that does not bear the official RecoveryLink logo is provided by a third party. You should review the applicable terms of any agreement, terms use and privacy policies of any Third-Party Services, since they are subject only to the agreements you have with the operators of such Third-Party Services, and not covered by this Agreement. Further, the Third-Party Services may use Your Information in a way that we would not. You further acknowledge that your use of any Third-Party Services is on an “as-is” basis. Please see our PRIVACY POLICY for further information regarding Third-Party Services.

  1. Fees and Charges

12.1 Service Fees. Reserved.

12.2 Payment. Reserved.

12.3 Late Charges. Reserved.

12.4 Taxes. Reserved.

12.5 Other Charges. You are responsible for any charges you incur to use the Services, such as telephone and equipment charges, and fees charged by third-party vendors of products and services.

12.6 Payment Information; Method of Payment. Reserved.

  1. RecoveryLink Confidential Information

13.1 You may not disclose RecoveryLink Confidential Information to any other person, and you may not use any RecoveryLink Confidential Information except for the purposes described in this Agreement. Except as otherwise provided in this Agreement, you may not, without our prior written consent, at any time, during or after the Term of this Agreement, directly or indirectly, divulge or disclose RecoveryLink Confidential Information for any purpose. In addition, except for the purposes of using the Services, you will not use RecoveryLink Confidential Information for any other purposes. You will hold all RecoveryLink Confidential Information in strict confidence and to take all measures necessary to prevent unauthorized copying, use, or disclosure of RecoveryLink Confidential Information, and to keep the RecoveryLink Confidential Information from falling into the public domain or into the possession of persons not bound to maintain its confidentiality. You will disclose RecoveryLink Confidential Information only to members of your Workforce who have a need to use it for the purposes of this Agreement. You will inform all such recipients of the confidential nature of RecoveryLink Confidential Information and will instruct them to deal with RecoveryLink Confidential Information in accordance with the terms of this Agreement. You will promptly advise us in writing of any improper disclosure, misappropriation, or misuse of the Confidential Information by any person, which may come to your attention.

13.2 You agree that we will suffer irreparable harm if you fail to comply with your obligations set forth in Section 13.1, and you further agree that monetary damages will be inadequate to compensate us for any such breach. Accordingly, you agree that we will, in addition to any other remedies available to us at law or in equity, be entitled to seek injunctive relief to enforce the provisions hereof, immediately and without the necessity of posting a bond.

  1. Disclaimer, Exclusion of Warranties, and Limitation of Liability

14.1 Carrier Lines. YOU ACKNOWLEDGE THAT ACCESS TO THE SERVICES WILL BE PROVIDED OVER VARIOUS FACILITIES AND COMMUNICATIONS LINES, AND INFORMATION WILL BE TRANSMITTED OVER LOCAL EXCHANGE AND INTERNET BACKBONE CARRIER LINES AND THROUGH ROUTERS, SWITCHES, AND OTHER DEVICES (COLLECTIVELY, “CARRIER LINES”) OWNED, MAINTAINED, AND SERVICED BY THIRD-PARTY CARRIERS, UTILITIES, AND INTERNET SERVICE PROVIDERS, ALL OF WHICH ARE BEYOND OUR CONTROL. WE ASSUME NO LIABILITY FOR, OR RELATING TO, THE INTEGRITY, PRIVACY, SECURITY, CONFIDENTIALITY, OR USE OF ANY INFORMATION WHILE IT IS TRANSMITTED ON THE CARRIER LINES, OR ANY DELAY, FAILURE, INTERRUPTION, INTERCEPTION, LOSS, TRANSMISSION, OR CORRUPTION OF ANY DATA OR OTHER INFORMATION ATTRIBUTABLE TO TRANSMISSION ON THE CARRIER LINES. USE OF THE CARRIER LINES IS SOLELY AT YOUR RISK AND IS SUBJECT TO ALL APPLICABLE LOCAL, STATE, NATIONAL, AND INTERNATIONAL LAWS.

14.2 No Warranties. ACCESS TO THE SERVICES AND THE INFORMATION CONTAINED ON THE SERVICES IS PROVIDED “AS IS” AND “AS AVAILABLE” WITHOUT ANY WARRANTY OF ANY KIND, AND WE DISCLAIM ALL WARRANTIES, EXPRESSED OR IMPLIED, STATUTORY OR OTHERWISE, INCLUDING BUT NOT LIMITED TO THE IMPLIED WARRANTIES OF MERCHANTABILITY, FITNESS FOR A PARTICULAR PURPOSE, NONINFRINGEMENT AND TITLE. YOU ARE SOLELY RESPONSIBLE FOR ANY AND ALL ACTS OR OMISSIONS TAKEN OR MADE IN RELIANCE ON THE SERVICES OR THE INFORMATION IN THE SERVICES, INCLUDING INACCURATE OR INCOMPLETE INFORMATION. IT IS EXPRESSLY AGREED THAT IN NO EVENT SHALL WE BE LIABLE FOR ANY SPECIAL, INDIRECT, CONSEQUENTIAL, OR EXEMPLARY DAMAGES, INCLUDING BUT NOT LIMITED TO, LOSS OF PROFITS OR REVENUES, LOSS OF USE, LOSS OF GOODWILL, OR LOSS OF INFORMATION OR DATA, WHETHER A CLAIM FOR ANY SUCH LIABILITY OR DAMAGES IS PREMISED UPON BREACH OF CONTRACT, BREACH OF WARRANTY, NEGLIGENCE, STRICT LIABILITY, OR ANY OTHER THEORY OF LIABILITY, EVEN IF WE HAVE BEEN APPRISED OF THE POSSIBILITY OR LIKELIHOOD OF SUCH DAMAGES. WE DISCLAIM ANY AND ALL LIABILITY FOR ERRONEOUS TRANSMISSIONS AND LOSS OF SERVICE RESULTING FROM COMMUNICATION FAILURES BY TELECOMMUNICATION SERVICE PROVIDERS OR THE SERVICES.

14.3 Conditions for Breach. Reserved.

14.4 Other Users. YOU ACKNOWLEDGE THAT OTHER USERS HAVE ACCESS TO AND ARE USING OUR SERVICES AND THE ACTIONS OF SUCH OTHER USERS ARE BEYOND OUR CONTROL. ACCORDINGLY, WE DO NOT ASSUME ANY LIABILITY FOR OR RELATING TO ANY IMPAIRMENT OF THE PRIVACY, SECURITY, CONFIDENTIALITY, INTEGRITY, AVAILABILITY, OR RESTRICTED USE OF ANY INFORMATION IN THE SERVICES RESULTING FROM ANY USER’S ACTIONS OR FAILURES TO ACT.

14.5 Unauthorized Access; Lost or Corrupt Data. TO THE EXTENT ALLOWABLE UNDER APPLICABLE LAW AND THE MASTER SERVICES AGREEMENT, WE ARE NOT RESPONSIBLE FOR UNAUTHORIZED ACCESS TO YOUR DATA, FACILITIES OR EQUIPMENT BY PERSONS USING THE SERVICES OR FOR UNAUTHORIZED ACCESS TO, ALTERATION, THEFT, CORRUPTION, LOSS OR DESTRUCTION OF YOUR DATA FILES, PROGRAMS, PROCEDURES, OR INFORMATION THROUGH THE SERVICES, WHETHER BY ACCIDENT, FRAUDULENT MEANS OR DEVICES, OR ANY OTHER MEANS. YOU ARE SOLELY RESPONSIBLE FOR VALIDATING THE ACCURACY OF ALL OUTPUT AND REPORTS, AND FOR PROTECTING YOUR DATA AND PROGRAMS FROM LOSS BY IMPLEMENTING APPROPRIATE SECURITY MEASURES. TO THE EXTENT ALLOWABLE UNDER APPLICABLE LAW AND THE MASTER SERVICES AGREEMENT, WE ARE NOT RESPONSIBLE FOR DAMAGES OCCASIONED BY LOST OR CORRUPT DATA, INCORRECT REPORTS, OR INCORRECT DATA FILES RESULTING FROM PROGRAMMING ERROR, OPERATOR ERROR, EQUIPMENT OR SOFTWARE MALFUNCTION, SECURITY VIOLATIONS, OR THE USE OF THIRD-PARTY SOFTWARE. TO THE EXTENT ALLOWABLE UNDER APPLICABLE LAW AND THE MASTER SERVICES AGREEMENT, WE ARE NOT RESPONSIBLE FOR THE CONTENT OF ANY INFORMATION TRANSMITTED OR RECEIVED THROUGH OUR PROVISION OF THE SERVICES.

14.6 Limitation of Liability. Reserved.

  1. Insurance

You will obtain and maintain such policies of general liability, errors and omissions, and professional liability insurance with reputable insurance companies as is usually carried by persons engaged in your business covering the term of this Agreement, or appropriate self insurance.

  1. Term; Modification; Suspension; Termination

16.1 Term. The initial term of this Agreement shall commence on the date you first access the Services and continues until the expiration of the Master Services Agreement, unless terminated earlier in accordance with this Section 16 or pursuant to the Master Services Agreement.

16.2 Termination upon Notice. Notwithstanding Section 16.1, you may terminate this Agreement at any time without cause upon thirty (30) days’ prior written notice to us. Notwithstanding anything to the contrary and for purposes of clarity, termination of this Agreement will automatically terminate all addenda to this Agreement.

16.3 Modification. Modification of this Agreement shall require mutual written consent from the parties and approval of the Oregon Health Authority.

16.4 Termination, Suspension or Amendment as a Result of Government Regulation. Notwithstanding anything to the contrary in this Agreement, we have the right, on notice to you, immediately to terminate, suspend, or amend this Agreement, without liability: (a) to comply with any order issued or proposed to be issued by any governmental agency with authority; (b) to comply with any provision of law, any standard of participation in any reimbursement program, or any accreditation standard; or (c) if performance of any term of this Agreement by either party would cause it to be in violation of law, or would jeopardize its tax-exempt status.

16.5 Judicial or Administrative Procedures; Credentialing. We may terminate this Agreement immediately upon notice to you: (a) if you are named as a defendant in a criminal proceeding for a violation of federal or state law; (b) if a finding or stipulation is made or entered into that you have violated any standard or requirement of federal or state law relating to the privacy or security of health information is made in any administrative or civil proceeding; (c) you are excluded from participation in a federal or state health care program; (d) we receive notice from OHA or your sponsoring PRIME+ program that you are no longer authorized to use the Services; or (d) if applicable, you cease to be qualified to provide services as a health care professional, or we are unable to verify your qualifications as such.

16.6 Suspension of Access. We may suspend access to the Services, in whole or in part, by you or any member of your Workforce immediately pending your cure of any breach of this Agreement (including the failure to pay any Service Fee or Miscellaneous Charges when due), or in the event we determine in our sole discretion that access to or use of all or a portion of the Services by you or the member of your Workforce may jeopardize the Services or the confidentiality, privacy, security, integrity or availability of information within the Services, or that you or the member of your Workforce has violated or may violate this Agreement, or has jeopardized or may jeopardize the rights of any third party, or that any person is or may be making unauthorized use of the Services with any Credentials assigned to you or a member of your Workforce. We may terminate the access of any member of your Authorized Workforce upon termination or change in status of his or her employment with you. Our election to suspend all or a portion of the Services shall not waive or affect our rights to terminate this Agreement as permitted under this Agreement.

16.7 Obligations after Termination. Upon termination of this Agreement, you will (i) cease all use of the Services,  and (ii) remove all software provided under this Agreement from your computer systems. All provisions of the Agreement which, by their nature, should survive termination shall survive termination, including Sections 1, 3.15, 5, 7, 9.10, 11.2, 12 through 15, 16.7, 17, 19.3, and 20 through 27.

  1. Applicable Law; Venue and Jurisdiction

The interpretation of this Agreement and the resolution of any disputes arising under this Agreement shall be governed by the laws of the State of Oregon, without regards to its conflicts of laws provisions. If any action or other proceeding is brought on or in connection with this Agreement, the venue of such action shall be in a court of competent jurisdiction in the State of Oregon.

  1. Arbitration; Dispute Resolution

Any dispute between the parties under this Agreement that is not resolved through informal discussions may be submitted to mediation upon the consent of both parties.  If informal discussions or mediation are unsuccessful, either party may initiate litigation to resolve the dispute. The parties specifically disclaim any right to arbitration of disputes. Neither party waives its right to a jury trial or right to participate in class, collective, or representative claims.

  1. Amending Provider Information; Assignability of this Agreement; Assurances

19.1 Amending Provider Information. If you are a Provider of Record, you are required to submit to us all information necessary to confirm yourself as the Provider of Record, and maintain the accuracy of such information, in a timely fashion, during the Term of this Agreement. You are also required to maintain the accuracy of all information associated with each applicable Credential. We shall be entitled to rely on all information you submit to us under this Agreement, including pursuant to Section 3.1 or this Section 19.1. In the event that you contact us and assert that you have authority to act on behalf of a Provider or any of its account(s) or data, you hereby agree to submit to us such written certifications, assurances (which may include a written opinion of your counsel identifying us as beneficiaries entitled to rely on such opinion), instruments or judicial process as we, in our sole discretion, may request.

19.2 Assignments. This Agreement may be transferred in its entirety by a user in connection with the sale, transfer or reorganization of all or substantially all of the practice or business to which this Agreement relates; provided that each of the following conditions are satisfied in full: (a) an authorized representative of the transferor or transferee notifies us in writing of the transfer, the legal name of the transferee, and date of transfer; (b) the transferor or transferee submits to us such written certifications, assurances (which may include a written opinion of your counsel identifying us as beneficiaries entitled to rely on such opinion) or instruments as we, in our sole discretion, may request; and (c) we are satisfied, in our sole discretion, of the validity of the certifications, assurances or instruments submitted pursuant to clause (b). Upon our recognition of a transfer by a user that is a Provider of Record, the Administrative Rights and all User accounts of such Provider of Record’s Authorized Workforce shall automatically transfer to such Provider of Record’s recognized transferee. Except as expressly set forth in this Section 19.2, you may not assign or transfer this Agreement, in whole or in part, without our prior written consent, which may be withheld at our sole discretion. We may freely assign this Agreement in connection with a merger, acquisition, or sale of assets, or by operation of law or otherwise.

19.3 Assurances. By requesting or directing us to take any action described in Section 19.1 or Section 19.2 with respect to any user or any account(s) or data held by such account(s), you represent and warrant that (i) you have the authority to act on such user’s behalf or to control such account(s) or data, and (ii) your request or direction is not in furtherance of any purpose or action that would violate any provision of this Agreement, applicable law or the rights of any person or entity. TO THE EXTENT ALLOWABLE UNDER APPLICABLE LAW AND THE MASTER SERVICES AGREEMENT, YOU HEREBY WAIVE AND UNCONDITIONALLY RELEASE US AND OUR RESPECTIVE OFFICERS, DIRECTORS, EMPLOYEES AND AGENTS, FROM ANY AND ALL CLAIMS, DEMANDS, DAMAGES, DEBTS, LIABILITIES, EXPENSES, ACTIONS AND CAUSES OF ACTIONS OF EVERY KIND AND NATURE, WHETHER NOW KNOWN OR UNKNOWN, ARISING OUT OF OR IN CONNECTION WITH ANY REASONABLE ACTION WE TAKE OR DO NOT TAKE IN ANY REASONABLE RESPONSE TO ANY REQUEST, DIRECTION, INFORMATION, CERTIFICATION, ASSURANCE OR INSTRUMENTS WE RECEIVE FROM YOU IN ACCORDANCE WITH SECTION 19.1 OR SECTION 19.2.

A GENERAL RELEASE DOES NOT EXTEND TO CLAIMS WHICH THE CREDITOR DOES NOT KNOW OR SUSPECT TO EXIST IN HIS OR HER FAVOR AT THE TIME OF EXECUTING THE RELEASE, WHICH IF KNOWN BY HIM OR HER MUST HAVE MATERIALLY AFFECTED HIS OR HER SETTLEMENT WITH THE DEBTOR

To the extent not restricted by the Master Services Agreement, you hereby agree to indemnify, defend, and hold harmless us and other users, and our and their respective affiliates, officers, directors, employees and agents, from and against any claim, cost or liability, including reasonable attorneys’ fees arising from: (a) any action we take in reliance on any information, certification, assurance or instrument you provide to us, or (b) any action we take that complies with any request or direction you at any time make or made.

  1. Supervening Circumstances

No party to this Agreement shall be deemed in violation of this Agreement if it is prevented from performing any of the obligations under this Agreement by reason of: (a) severe weather and storms; (b) earthquakes or other natural occurrences; (c) strikes or other labor unrest; (d) power failures; (e) nuclear or other civil or military emergencies; (f) acts of legislative, judicial, executive, or administrative authorities; or (g) any other circumstances that are not reasonably foreseeable.

  1. Severability

Any provision of this Agreement that shall prove to be invalid, void, or illegal, shall in no way affect, impair, or invalidate any other provision of this Agreement, and such other provisions shall remain in full force and effect.

  1. Notices

Any and all notices required or permitted under this Agreement shall be sent by United States mail to the address provided below or to such other and different addresses as the parties may designate in writing. If you supply us with an electronic mail address, we may give notice by email message addressed to such address; provided that if we receive notice that the email message was not delivered, we will give the notice by United States mail.

To us:

RecoveryLink, Inc.
4363 Main Street Floor 3, Philadelphia PA 19127

To you, at the current contact information on file with us at the time notice is given.

  1. Waiver

No term of this Agreement shall be deemed waived and no breach excused, unless such waiver or consent shall be in writing and signed by the party claimed to have waived or consented. Any consent by any party to, or waiver of a breach by the other, whether expressed or implied, shall not constitute a consent to, waiver of, or excuse for any other different or subsequent breach.

  1. Complete Understanding; Amendments

This Agreement contains the entire understanding of the parties, and there are no other written or oral understandings or promises between the parties with respect to the subject matter of this Agreement other than those contained or referenced in this Agreement.

  1. No Third-Party Beneficiaries

Nothing express or implied in this Agreement is intended to confer, nor shall confer, upon any person or entity other than the parties and their respective successors or assigns any rights, remedies, obligations, or liabilities whatsoever.

  1. Electronic Transactions

The Services give you the ability to enter into agreements, authorizations, consents and applications; make referrals; or engage in other transactions electronically. YOU ACKNOWLEDGE THAT YOUR ELECTRONIC SUBMISSIONS VIA THE SERVICES IN CONNECTION WITH SUCH ACTIVITIES CONSTITUTE YOUR ACKNOWLEDGMENT THEREOF AND YOUR AGREEMENT AND INTENT TO BE BOUND BY SUCH AGREEMENTS AND TRANSACTIONS, AND APPLIES TO ALL RECORDS RELATING TO SUCH TRANSACTIONS. You represent and warrant that you have the authority to take such actions.