Privacy Policy

Last updated: October 7, 2016

This privacy policy applies to the data and information collected by DigiSight Technologies, Inc.™ (“DigiSight”) through the SightBook ("SightBook"), Paxos Scope ("Scope"), and Paxos Checkup ("Checkup") applications, mobile applications that permit users to perform vision tests on mobile devices, and permit physicians to acquire anterior and posterior images of the eye, and the DigiSight web service that enables vision test results and images collected through SightBook, Scope, and Checkup to be uploaded to user accounts on the DigiSight website, https://www.digisight.net (the “Site,” and together with SightBook, Scope, and Checkup, the “Service”), including all information you provide or receive through the Service. This privacy policy applies to all of your use of the Service, and describes how your personal information will be treated as you use the Service. Our privacy policy is not a contract, and it does not create any legal rights or obligations.

Privacy Policy Updates

We may occasionally update this privacy policy. When we do, we will also revise the "last updated" date at the top of the privacy policy. For material changes to this privacy policy, we will notify you either by placing a prominent notice on the home page of the SightBook, Scope, and Checkup apps and/or the Site or by sending you a notification directly. We encourage you to review this privacy policy periodically to stay informed about how we are collecting, using, protecting, and/or disclosing the personal information we collect. Your continued use of the Service constitutes your agreement to this privacy policy and any updates.

How We Collect and Use Your Information

We collect information that you voluntarily provide to us through your use of the Service. When you register with SightBook, Scope, Checkup, or the Site, we will collect certain identifiable information, including demographic information, in order to identify and register you as a user of the Service and to administer and personalize your user experience. This information may include your first and last name; email address; gender; date of birth; social security number; medical record number; city, state, and country of residence; time zone; telephone number and mobile phone number; and other information that you may provide to us. We use this personal information mainly to provide services to you through the Service and to administer your inquiries. We may also use this information to improve user experiences of the Service, to improve the quality and value of the services and to analyze and understand how the services are used.

DigiSight may also collect and store health information either provided by you or generated through your use of SightBook, Scope, or Checkup or provided by your physician’s office. This health information may include known allergies you have, medications you currently take, current diagnoses for your eyes, diabetes history and diagnoses, vision test results, photographs and retinal images, and other information relevant to your vision. This health information is uploaded to your account on the Site so that you or those you authorize can access the information as you direct.

We also collect information about your use of the Site and mobile applications, such as your IP address, browser type, browser language, platform type, the pages you view on the Site and the order in which you view those pages, and your computer and phone’s operating system. We collect this information in order to improve DigiSight’s products and services. We use various technical means to collect this information including application logs on your device or PC, server logs, and “cookies” placed on your device or PC. See “Security, Log Data, and Cookies” below for more information about these technical means and how we use them.

DigiSight may, from time to time, use de-identified patient information in our marketing content. This information may include retinal images. In no circumstance will these retinal images or any other patient information be identifiable as belonging to a specific individual.

DigiSight will not sell, rent, or share your information without your explicit consent, except as described herein or when DigiSight believes it is required to do so by law. DigiSight does not use your individual account or record information about or from you for marketing without first asking for and receiving your signed, written consent. However, we may collect and use aggregate, de-identified, or other information that does not identify you (“De-identified Information”) for marketing, advertising, research and/or other purposes. Such De-identified Information may include, without limitation, health information, non-health content, communications, photographs or excerpts of photographs and/or vision tests that do not contain unique identifiers, video and audio recordings, if any, and any other information described in the DigiSight Terms and Conditions, including information about you submitted or input by your physician’s practice.

DigiSight may sell, transfer or otherwise share some or all of its assets, including your personally identifiable information, making reasonable efforts to protect the confidentiality of information that has not been de-identified, in connection with a proposed merger, acquisition, reorganization or sale of assets or in the event of bankruptcy. You will have the opportunity to opt out of any such transfer if the new entity's planned processing of your information differs materially from that set forth in this privacy policy.

Choices You Have About Our Collection and Use of Your Information

You control who may access the information you store on SightBook, Scope, Checkup, or the Site. The information you maintain on SightBook, Scope, Checkup, or the Site may be updated, deleted, or corrected by you at any time. By default, you are the only user who can view and edit your information. If you choose to, you can share your information with others, such as your physician. Please be aware that DigiSight is not responsible for the privacy practices of third parties with whom you elect to share your personal information.

If you choose to authorize others to access your information on SightBook, Scope, Checkup, or the Site, you can view a list of who has access to your information and you can revoke sharing privileges at any time. When you revoke someone’s ability to access or share your health information, that person will no longer be able to read your information, but may have already seen or may retain a copy of the information.

You may completely delete your information at any time. The deletion process will begin promptly, and your information will be purged from your account shortly thereafter. Additional backup copies of deleted information may persist for a short time.

You may contact us at any time to review, change, or delete any information you have stored on SightBook, Checkup, or the Site. You can do so by sending us an email at info@digisight.net, or by sending a written request to DigiSight Technologies, Inc., 55 Hawthorne Street, Suite 410, San Francisco, CA 94105.

Security, Log Data, and Cookies

DigiSight uses a variety of security technologies and procedures to help protect your information from unauthorized access, use, and disclosure. For example, the information you submit to DigiSight, through SightBook, Scope, Checkup, and/or the Site, will be stored on servers maintained by DigiSight and secured using password protection and encryption. Whenever you submit or modify your information, we will send such information over the Internet using Secure Socket Layer ("SSL") and/or Transport Layer Security ("TLS") encryption technology. However, we advise you that, notwithstanding our security efforts, we believe a persistent attacker with adequate resources would be able to access our systems. Accordingly, we do not guarantee that unauthorized access will never occur.

When you visit the Site we may place “cookies” on your computer. A cookie is a small data file that we transfer to your computer's hard disk for record-keeping purposes. We use cookies for two purposes. First, we utilize persistent cookies to save your login information for future logins to SightBook, Scope, Checkup, and/or the Site. Second, we utilize session ID cookies to enable certain features of the Service, to better understand how you interact with them and to monitor aggregate usage users and web traffic. Unlike persistent cookies, session cookies are deleted from your computer when you log off from then close your browser. You can instruct your browser, by changing its options, to stop accepting cookies or to prompt you before accepting a cookie from the websites you visit. If you do not accept cookies, however, you may not be able to use all portions of the Service or lose some functionality.

When you visit SightBook, Scope, Checkup, and/or the Site, our servers automatically record information that your browser sends whenever you visit a website ("Log Data"). This Log Data may include, for example, information such as your computer's Internet Protocol ("IP") address, browser type, operating system or the webpage you were visiting before you came to our Site, pages of our Site that you visit, the time spent on those pages, access times and dates, and other statistics. We may use this information to monitor and analyze use of the Service and for technical administration of SightBook, Scope, Checkup, or the Site, to increase functionality and user-friendliness, and to better tailor them to users’ needs.

Our employees in particular job functions may have access to user information in order to operate and improve the Service. All DigiSight employees must abide by our Privacy Policy and those who violate our Privacy Policy are subject to disciplinary action, up to and including termination.

Compliance with Laws and Law Enforcement

We will make any legally-required disclosures of any breach of the security, confidentiality, or integrity of your electronically stored personal data.

DigiSight cooperates with government and law enforcement officials or private parties to enforce and comply with the law. We may disclose any information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to respond to claims, legal process (including subpoenas), to protect the property and rights of DigiSight or a third party, the safety of the public or any person, to prevent or stop any illegal, unethical, or legally actionable activity, or to comply with the law.

Children Under 13 Years of Age

This website is not intended to attract children under the age of 13. In accordance with the Children’s Online Privacy Protection Act (“COPPA”), DigiSight will not knowingly collect or accept personally identifiable information from a child under the age of 13 without a parent’s or guardian’s prior consent. If we receive personal information that we discover was provided by a child under the age of 13, we will promptly destroy such information. Schools and parents should supervise their children's online activities and consider the use of other means to provide a child-friendly, online environment. Additional information is available on the Direct Marketing Association's home page at http://www.the-dma.org. If you would like to learn more about COPPA, visit the Federal Trade Commission home page at http://www.ftc.gov.

Your California Privacy Rights

Operators of websites and applications subject to California’s “Shine the Light” law are required to disclose to their California users who obtain products or services from the operator for family or household use, upon request, the identity of any third parties to whom the operator has disclosed personal information for the third parties' direct marketing purposes, within the previous calendar year, along with the type of personal information disclosed.

If you are a California resident and would like to make such a request, please submit your request in writing to info@digisight.net with “Request for California Privacy Information” in the subject. If required, we will provide the requested information to you at the email address from which you send your email.

Please note that our response will be for the prior calendar year and that, under California law, we are required to provide a user this information once during any calendar year.

California: Do Not Track Disclosures

DigiSight does not respond to Do Not Track (“DNT”) signals. DigiSight does not permit third parties to collect personally identifiable information about an individual consumer’s online activities over time and across different web sites when a consumer uses SightBook, Checkup, and/or the Site.