Privacy Policy

(“NavayaHealth,” “we,” “us,” or “our”) to protecting the privacy, confidentiality, and security of information entrusted to us. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit or use the NavayaHealth website and Home Healthcare software platform (collectively, the “Services”).

This policy is designed to align with applicable data protection laws and healthcare regulations, including the Health Insurance Portability and Accountability Act (HIPAA), where applicable.

1. Information We Collect

We may collect the following categories of information:

A. Personal Information

• Name, email address, phone number, job title, organization name
• Account credentials and authentication information
• Contact and support request details

B. Health and Sensitive Information (PHI)

When acting as a service provider or business associate to healthcare agencies, NavayaHealth may process Protected Health Information (PHI) on behalf of our customers, including: - Patient demographics - Clinical documentation - Care plans, visit notes, and scheduling data - Billing, claims, and eligibility information NavayaHealth processes PHI solely under customer instructions and contractual obligations.

C. Technical and Usage Information

• IP address, browser type, device identifiers
• Log files, access times, and pages viewed
• Cookies and similar tracking technologies

2. How We Use Information

We use the information we collect to:

• Provide, operate, and maintain the NavayaHealth platform
• Enable clinical documentation, care coordination, billing, and compliance workflows
• Authenticate users and manage accounts
• Improve system performance, security, and user experience
• Respond to inquiries and provide customer support
• Meet legal, regulatory, and compliance obligations

We do not sell or rent personal or health information.

3. Cookies and Tracking Technologies

• Maintain secure user sessions
• Analyze website traffic and usage patterns
• Improve platform functionality and performance

You may control cookies through your browser settings. Disabling cookies may limit certain features of the Services.

4. How We Share Information

We may share information only as permitted by law:

• With Customers: Healthcare providers and agencies that control patient data
• With Service Providers: Trusted vendors under strict confidentiality agreements
• Legal & Compliance: When required by law, subpoena, or governmental request
• Business Transfers: In connection with a merger, acquisition, or sale of assets, subject to applicable confidentiality protections

All disclosures of PHI comply with HIPAA and contractual obligations.

5. Data Security

NavayaHealth implements administrative, technical, and physical safeguards to protect information, including: - Encryption in transit and at rest - Role-based access controls - Audit logs and monitoring - Secure cloud infrastructure - Regular security assessments and updates

Despite our efforts, no system can be guaranteed 100% secure.

6. Data Retention

We retain information only for as long as necessary to: - Provide the Services - Fulfill contractual and legal obligations - Comply with healthcare record retention requirements

Data retention periods may vary based on customer agreements and regulatory requirements.

7. HIPAA Compliance

When NavayaHealth acts as a Business Associate under HIPAA: - We process PHI only as permitted by Business Associate Agreements (BAAs) - We apply HIPAA-compliant safeguards - Customers remain the data controllers responsible for patient consent and notices

8. Your Privacy Rights

Depending on applicable laws, individuals may have rights to: - Access or request copies of personal data - Request correction of inaccurate information - Request deletion or restriction of data (subject to legal limitations) - Object to certain processing activities.

Requests should be directed to the healthcare provider controlling the data or to NavayaHealth as outlined below.

9. International Data Transfers

NavayaHealth may process and store data in secure data centers located in the United States or other jurisdictions. We take appropriate measures to ensure lawful and secure cross-border data transfers.

10. Children’s Privacy

NavayaHealth Services are not intended for use by children under the age of 13. We do not knowingly collect personal information directly from children.

11. Third-Party Links

Our website may contain links to third-party websites. NavayaHealth is not responsible for the privacy practices or content of those sites.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated effective date. Continued use of the Services constitutes acceptance of the revised policy.

Contact Us

If you have questions about this Privacy Policy or our data practices, please contact:

Email: csr1@ondemandhomecare.com
Phone: (866) 674-6342
Website: navayahealth.com