Last updated: May 31, 2026
PathSync ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the PathSync service.
We collect information you provide directly, including your name, email address, password (hashed), role, and any patient or scheduling data you enter into the service. We also collect usage data such as login timestamps and API interactions for security and operational purposes.
We use your information to: provide and maintain the service; notify you about changes; provide customer support; monitor usage and detect technical issues; and improve the service. We do not sell your personal information to third parties.
PathSync is designed for use by home health therapy agencies. If you use the service to store patient health information, that data is treated as PHI. We implement technical and administrative safeguards consistent with HIPAA requirements, including encryption at rest and in transit, access controls, and audit logging. Our infrastructure providers (Neon PostgreSQL, OpenAI, Postmark) maintain HIPAA Business Associate Agreements with us.
We retain your account data for as long as your account is active. If you cancel your subscription, your data is retained for 30 days and then securely deleted. You may request deletion of your data at any time by contacting support@pathsynctherapy.com.
We use session cookies to maintain your logged-in state. Session cookies are httpOnly, secure (in production), and expire after 7 days. No tracking or advertising cookies are used.
We do not share your personal data with any third parties except as required to operate the service (e.g., our email provider for transactional emails) or as required by law.
For privacy-related questions, contact us at: support@pathsynctherapy.com