Navia Therapy LogoNavia Therapy← Back to Home

Breach Policy

1. Purpose

At Navia Therapy, we take the privacy and security of personal information seriously. This Breach Policy explains how we respond to any actual or suspected data breach involving the personal, health, or account information of our users, providers, or partners.

2. Definition of a Breach

A data breach means any confirmed or suspected incident that results in:

  • Unauthorized access to, or disclosure of, personal or health-related data
  • Loss, theft, or alteration of data
  • Accidental or unlawful destruction of data
  • Any event that compromises the confidentiality, integrity, or availability of Navia systems or information

Examples include unauthorized access to databases, lost devices, phishing attacks, or accidental sharing of user information.

3. Our Commitment

Navia maintains administrative, technical, and physical safeguards to prevent breaches and to detect and respond to them quickly. We continuously review and improve our systems, employee training, and incident response procedures to meet or exceed applicable laws and best practices.

4. Breach Response Process

If a potential or confirmed breach occurs, Navia Therapy will:

Identify & Contain

  • Immediately secure systems and isolate affected data or accounts
  • Prevent further unauthorized access

Assess & Investigate

  • Evaluate the nature and scope of the breach
  • Determine the types of data affected, individuals involved, and potential impact

Notify Affected Parties

  • Notify impacted users or providers without unreasonable delay (and within legally required timeframes, such as 60 days under HIPAA)
  • Include details on the type of data involved, what happened, and recommended next steps
  • Notify regulatory authorities or business partners if required by law

Remediate & Prevent Future Breaches

  • Take corrective actions (e.g., enhanced security measures, retraining, or software updates)
  • Document the incident and lessons learned

5. Notification Methods

If you are affected by a breach, Navia Therapy may contact you by:

  • Email
  • Secure message through your account
  • Written notice, where required by law

If we cannot reach you directly, we may post a general notice on our website or other communication channels as permitted.

6. Your Role in Security

We encourage all users and providers to help maintain security by:

  • Using strong, unique passwords
  • Keeping login credentials confidential
  • Reporting any suspicious activity or unauthorized access immediately

To report a security issue or suspected breach, contact:

📧info@naviatherapy.com

7. Compliance

Navia Therapy complies with applicable federal and state breach notification laws, including:

  • HIPAA Breach Notification Rule (45 CFR §§164.400–414)
  • State Data Breach Notification Acts
  • Other relevant privacy and consumer protection laws