1. Who we are
Navodat AI Inc. (“Navodat”, “we”) provides autonomous operations software for healthcare organizations. This policy explains how we handle personal information.
2. What we collect
- Account data: name, email, role, organization.
- Usage data: pages viewed, actions taken, device and browser metadata.
- Customer data: information our customers route through the platform, including PHI under a Business Associate Agreement.
3. How we use it
To deliver and improve the service, secure the platform, communicate with you, and meet our legal obligations. We do not sell personal information.
4. PHI and HIPAA
When PHI is processed, we act as a Business Associate. PHI is encrypted at rest and in transit, segregated per tenant, and never used to train shared or foundation models.
5. Subprocessors
A current list of subprocessors is available in our Trust Center. We notify customers in advance of material changes.
6. Your rights
Depending on your location, you may have rights to access, correct, delete, or port your personal data. Contact privacy@navodat.com.
7. Retention
We retain personal data only as long as needed for the purposes above, then delete or de-identify it per our retention schedule.
8. Contact
Questions: privacy@navodat.com. Security reports: security@navodat.com.