Operational Security (OPSEC)

Effective Date: 18APR2026

Saber Tactical Performance & Rehab serves military personnel, veterans, law enforcement, fire/rescue, and high‑demand professionals. These populations require heightened protection of personal information, identity, and operational details.

This OPSEC Policy outlines how we safeguard client privacy, protect sensitive information, and maintain a secure training and rehabilitation environment.

1. Commitment to Operational Security

We recognize that many of our clients operate in roles where privacy and security are essential. Saber Tactical is committed to:

• Protecting client identity

• Preventing unauthorized disclosure of sensitive information

• Maintaining strict boundaries around media, data, and communication

• Ensuring our facility and digital platforms uphold OPSEC principles

• We do not provide operational, tactical, or mission‑related advice, guidance, or instruction.

This policy applies to all clients, staff, contractors, and visitors.

2. Media & Photography Policy

To protect client identity and operational security:

• No photos or videos are taken without explicit written consent

• No images will include:

  • Uniforms

  • Insignia

  • Name tapes

  • Agency identifiers

  • Unit markings

  • Sensitive equipment

• No filming is permitted during sessions unless pre‑approved

• No client media is shared publicly without written authorization

Clients may request no‑media status, which is strictly enforced.

3. Social Media & Public Sharing

To maintain privacy and prevent unintentional disclosure:

• We do not tag clients on social media

• We do not post client stories, images, or results without consent

• We do not share tactical training content that could compromise safety

• Clients may not film or photograph other clients

• Clients may not post images taken inside the facility that include other individuals

All public content is reviewed to ensure it does not violate OPSEC or HIPAA standards.

4. Data & Information Security

We maintain strict separation between medical and non‑medical records.

Physical Therapy (Medical Services)

• Protected under HIPAA

• Stored in secure, encrypted systems

• Shared only with authorized medical providers or the VA

Performance Coaching (Non‑Medical Services)

• Not subject to HIPAA

• Stored separately from medical records

• Contains no medical diagnoses or treatment information

We do NOT store:

• Unit assignments

• Deployment information

• Operational details

• Classified or sensitive mission data

• Biometric data

• Location data

We only collect information necessary for safe training and rehabilitation.

Performance Coaching is a non‑medical service and is not subject to HIPAA. Physical Therapy is a HIPAA‑covered service. These records are stored separately and are not combined.

5. VA Community Care OPSEC

For veterans receiving care through the VA Community Care Network:

• All documentation is submitted securely through HSRM

• Only medically necessary information is shared with the VA

• Non‑medical services are not included in VA documentation

• We do not disclose veteran status publicly without consent

We follow all VA privacy and communication standards.

VA documentation is handled according to VA Community Care and HSRM requirements, which may differ from standard HIPAA procedures.

6. Facility OPSEC

To maintain a secure environment:

• No unauthorized recording inside the facility

• No discussion of other clients’ identities or roles

• No sharing of who is present in the clinic at any time

• Staff are trained to avoid asking about operational details

• Tactical gear brought into the clinic is treated with discretion

We maintain a professional, private, and secure training environment.

Clients may request additional privacy accommodations at any time, and these requests will be honored whenever feasible.

7. Staff Responsibilities

All staff members are required to:

• Protect client identity and information

• Avoid discussing client details outside the clinic

• Follow HIPAA and OPSEC protocols

• Report any suspected privacy or security concerns

• Maintain professional boundaries at all times

Staff do not ask about operational details, unit assignments, deployment history, or mission‑related information unless directly relevant to safety.

Staff receive ongoing training in privacy, OPSEC, and secure communication.

8. Client Responsibilities

Clients agree to:

• Avoid filming or photographing others

• Avoid sharing sensitive operational details

• Clients should avoid discussing classified, sensitive, or mission‑related information inside the facility.

• Communicate privacy needs to staff

• Respect the privacy of all individuals in the facility

• Follow all posted OPSEC and media guidelines

This ensures a safe and secure environment for everyone.

9. Tactical Content Restrictions

To prevent misuse or misinterpretation:

• We do not publish sensitive training methods

• We do not share readiness scores publicly

• Readiness scores are non‑medical and are not used for medical decision‑making or occupational qualification.

• We do not disclose branch‑specific standards beyond publicly available information

• We do not provide operational tactics, mission planning, or combat instruction

• We do not determine duty status, occupational qualification, or return‑to‑duty clearance.

Our content focuses solely on fitness, rehabilitation, and performance, not tactics or operations.

10. Reporting Concerns

If you believe your privacy or operational security has been compromised, contact us.

We take all concerns seriously and respond promptly.

11. Policy Updates

This OPSEC Policy may be updated periodically to reflect changes in best practices, legal requirements, or operational needs.

The most current version will always be available on this page.