This Authorization and Consent (the “Authorization”) is delivered to athenahealth, Inc. (“Athena”) and is effective as of the date submitted on behalf of the Practice identified below (“Client”) (Athena and Client collectively referred to as the “Parties”).
The Parties have entered into an athenahealth Master Services Agreement, athenahealth Services Agreement, athenahealth Services Acknowledgment, or similar agreement (the “Athena Services Agreement”) pursuant to which Client receives certain services from Athena. All capitalized terms used but not defined herein shall have the meanings assigned to them in the Athena Services Agreement.
Client also receives certain services from the partner identified above (the “Partner”), and Partner is permitted, pursuant to applicable law (including HIPAA) and Client’s agreement with Partner for Partner’s services, to receive Client confidential information, which may include Client “protected health information” or “PHI” as that term is used under the Health Insurance Portability and Accountability Act of 1996, and associated regulations (“HIPAA”).
For purposes of this Authorization and Consent, “athenaNet” means the platforms, including the athenaNet® multi-user platform, made available to Client or through which Athena provides services to clients, and the divisions within the athenaNet multi-user platform to differentiate the services Athena provides, and the data of, Client from the services Athena provides, and the data of, other clients are referred to as “Tablespaces”. Each Tablespace has a unique identifier, known as a Context ID.
Client acknowledges and agrees that it is solely responsible for reviewing and vetting Partner systems and workflows, including but not limited to the privacy and security of those systems and workflows, to ensure Client can meet its obligations under applicable state or federal law.