HIPAA BUSINESS ASSOCIATE AGREEMENT

This HIPAA Business Associate Agreement (“BAA”), is entered into by and between MH Sub I, LLC, (“Business Associate”) and you (“Healthcare Provider”) who entered into a Service Agreement with Business Associate, for the purpose of compliance with the Health Insurance Portability and Accountability Act and its implementing administrative simplification regulations (“45 CFR 160-164”) (“HIPAA”), Subtitle D of the Health Information Technology for Economic and Clinical Health Act (“HITECH”), and the Omnibus Rule of 2013 (“Omnibus Rule”). This BAA hereby amends and is incorporated into any underlying agreement between Healthcare Provider and Business Associate; to the extent that the provisions of this BAA conflict with those of an underlying agreement, the provisions of this BAA shall control. Capitalized terms used but not otherwise defined herein shall have the same meaning as those terms defined in HIPAA, HITECH and the Omnibus Rule.

If, in the provision of services to Healthcare Provider, Business Associate representatives may receive or have access to Protected Health Information (“PHI”) that is created and/or maintained by Healthcare Provider, Business Associate shall be bound by the following terms:

Last Revised: November 3, 2017