Privacy Policy

PostOp Navigator — Last updated: May 2026

1. Introduction

PostOp Navigator ("we," "our," or "us") is a post-operative recovery monitoring platform developed by Zertain India Private Limited. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our mobile application and related services.

We are committed to protecting your health information in compliance with the Health Insurance Portability and Accountability Act (HIPAA) and applicable data protection regulations.

2. Information We Collect

Personal Information:

• Name, email address, and phone number (provided during enrollment by your care team)
• Date of birth and emergency contact information

Health Information:

• Wound photographs submitted through the IncisionIQ feature
• Daily symptom check-in responses (pain level, temperature, drainage, swelling)
• Surgery type, date, and post-operative day information
• Medication and treatment plan details
• AI-generated wound assessment results

Technical Information:

• Device type, operating system version, and app version
• Push notification tokens for delivery of reminders
• App usage analytics (anonymized)

3. How We Use Your Information

• To monitor your post-operative recovery and generate AI-assisted risk assessments
• To alert your care team when symptoms or wound findings require attention
• To send you reminders for medication, wound photos, and symptom check-ins
• To generate recovery progress reports for your surgeon
• To improve the accuracy of our AI assessment models using de-identified data

4. How We Share Your Information

• Your health data is shared only with your assigned surgical care team and healthcare organization
• We do not sell your personal health information to third parties
• De-identified data may be used for research purposes under HIPAA Safe Harbor provisions
• Third-party AI processing (IncisionIQ) is covered under a Business Associate Agreement (BAA)
• We may disclose information when required by law or to protect patient safety

5. Data Security

• All data is encrypted in transit using TLS 1.3 and at rest using AES-256 encryption
• Access is controlled through role-based permissions (surgeon, nurse, admin)
• User sessions expire automatically after periods of inactivity
• All access to patient data is logged in a HIPAA-compliant audit trail retained for 7 years
• We conduct regular security assessments and vulnerability testing

6. Your Rights

• You may request a copy of your health data at any time through your care coordinator
• You may request correction of inaccurate information
• You may request deletion of your account and associated data
• You may withdraw consent for AI-assisted monitoring (this will pause automated assessments)
• You have the right to access, correct, and port your health data under applicable law

7. Data Retention

We retain your health information for the duration of your active recovery plan plus a minimum of 7 years as required by HIPAA regulations. Audit logs are retained for 7 years. You may request earlier deletion of non-required data by contacting your care team.

8. Children's Privacy

PostOp Navigator is not intended for use by individuals under the age of 18 without parental or guardian consent and direct involvement of a healthcare provider.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes through the app or via email. Your continued use of the app after changes are posted constitutes acceptance of the updated policy.

10. Contact Us

If you have questions about this Privacy Policy or your health data, please contact:

Zertain India Private Limited
Email: privacy@postopnavigator.com
Support: support@postopnavigator.com