Last updated: 20 June 2024
This privacy policy applies to the LENS View application ("Application") created by LENS, Inc. ("Service Provider") as a free service. This service is intended for use "AS IS."
1. Information Collection and Use
The Application collects information when you download and use it. This information may include:
- Your device's internet protocol address (e.g., IP address)
- The pages of the Application that you visit, the time and date of your visit, the time spent on those pages
- The operating system you use on your mobile device
The Application does not gather precise information about the location of your mobile device.
For a better experience while using the Application, the Service Provider may require you to provide certain personally identifiable information. The information that the Service Provider requests will be retained and used as described in this privacy policy.
1.1 Personal Information Collected
We collect various types of personal information from our users, including but not limited to:
- Identifiers: Name, address, email address, phone number, and unique personal identifiers.
- Facial features, fingerprints, and palm biometrics for authentication and identification.
- Health Information: Medical records, health history, and other health-related data (as defined under HIPAA).
- Financial Information: Bank account details, payment card information, and other financial data (as defined under GLBA).
- Internet Activity: Browsing history, search history, and interactions with our website, applications, and advertisements.
- Information about your location.
- Inferences: Information drawn from any of the above to create a profile about your preferences, characteristics, behavior, and attitudes.
1.2 Sources of Personal Information
We obtain personal information from the following sources:
- Directly from You: Information you provide directly to us when using our services, filling out forms, or communicating with us.
- Automatically Collected: Information is collected automatically when you use our website or applications, such as cookies, web beacons, and other tracking technologies.
- Third Parties: Information received from third parties, such as service providers, business partners, and public databases.
2. Purpose of Data Processing
The Service Provider may use the information you provide to contact you from time to time to provide you with important information, required notices, and marketing promotions.
Legal Basis for Processing Data (GDPR Requirement)
The legal basis for processing your data includes:
- Your consent
- Performance of a contract
- Compliance with a legal obligation
- Legitimate interests pursued by the Service Provider
3. Use of Personal Information
We use the personal information we collect for various purposes, including:
- Providing Services: To provide, maintain, and improve our services.
- Authentication and Verification: To verify your identity and authenticate access to our services.
- Compliance: To comply with legal and regulatory requirements, including CCPA, HIPAA, and GLBA.
- Payments: To process payments and manage billing.
- Communication: To communicate with you about your account, our services, and any updates or changes.
- Research and Analytics: To conduct research and analysis and improve our services and user experience.
- Security: To enhance the security of our systems and protect against fraud.
- Marketing: To send you promotional materials and other information that may be of interest to you (with your consent where required by law).
4. Disclosure of Personal Information
We may disclose your personal information to third parties for the following reasons:
- Service Providers: Companies that provide services on our behalf, such as payment processing, data analysis, customer service, and marketing assistance. These service providers are contractually obligated to protect your information and use it only for the purposes for which it was disclosed.
- Legal Compliance: To comply with legal obligations, court orders, or governmental regulations.
- Business Transfers: In connection with a merger, acquisition, or sale of all or a portion of our assets.
- Protection of Rights: To protect our rights, property, and safety, as well as the rights, property, and safety of our users and others.
5. International Data Transfers (GDPR Requirement)
If your data is transferred outside the European Economic Area (EEA), the Service Provider ensures that appropriate safeguards are in place to protect your data, including standard contractual clauses, binding corporate rules, or other legal mechanisms.
6. Your Rights Under CCPA
As a California resident, you have the following rights under CCPA:
- Right to Know: You have the right to request information about the personal information we collect, use, and disclose about you.
- Right to Delete: You have the right to request the deletion of your personal information, subject to certain exceptions.
- Right to Opt-Out: You have the right to opt out of the sale of your personal information.
- Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your privacy rights.
To exercise your rights, please contact us at solutions@lenscorp.ai.
7. Protection of Health Information (HIPAA)
We comply with HIPAA regulations to ensure the privacy and security of your health information. This includes implementing administrative, physical, and technical safeguards to protect against unauthorized access, use, and disclosure of health data.
7.1 Uses and Disclosures of Health Information
We may use and disclose your health information for treatment, payment, and healthcare operations, as well as for purposes required by law. We will obtain your written authorization for any other uses and disclosures.
7.2 Your Rights Under HIPAA
You have the following rights regarding your health information:
- Right to Access: You have the right to access and obtain a copy of your health information.
- Right to Amend: You have the right to request an amendment to your health information if you believe it is incorrect or incomplete.
- Right to an Accounting of Disclosures: You have the right to request a list of certain disclosures of your health information.
- Right to Request Restrictions: You have the right to request restrictions on the use and disclosure of your health information.
- Right to Request Confidential Communications: You have the right to request that we communicate with you in a certain way or at a certain location.
- Right to a Paper Copy of This Notice: You have the right to obtain a paper copy of this Privacy Policy upon request.
8. Protection of Financial Information (GLBA)
We comply with GLBA regulations to protect your financial information. We maintain appropriate safeguards and security measures to protect against unauthorized access, use, and disclosure of your financial data.
8.1 Sharing Financial Information
We do not disclose your financial information to nonaffiliated third parties, except as permitted by law. This includes disclosures necessary to process transactions, maintain your account, comply with legal requirements, and protect against fraud.
9. Data Security
We implement reasonable administrative, technical, and physical security measures to protect your personal information from unauthorized access, use, disclosure, alteration, and destruction. These measures include:
- Encryption: Encrypting sensitive information during transmission and storage.
- Access Controls: Restricting access to personal information to authorized personnel only.
- Monitoring: We regularly monitor our systems for potential vulnerabilities and attacks.
- Training: Providing security training to our employees to ensure they understand and comply with our security policies.
10. Retention of Personal Information
The Service Provider will retain User Provided data for as long as you use the Application and for a reasonable time thereafter. If you'd like us to delete the provided data that you have provided via the application, please contact us at solutions@lenscorp.ai, and we will respond within a reasonable time.
11. Children's Privacy
The Service Provider does not use the Application to knowingly solicit data from or market to children under the age of 13. If we become aware that we have inadvertently collected personal information from a child under 13, we will delete such information from our records.
12. Your Rights (GDPR Requirement)
You have the right to access, rectify, erase, restrict, or object to the processing of your data, and the right to data portability. To exercise these rights, please contact us at solutions@lenscorp.ai.
12.1 Right to Lodge a Complaint (GDPR Requirement)
If you believe that your data protection rights have been violated, you have the right to complain with a supervisory authority in your country of residence.
13. Opt-Out Rights
You can stop all collection of information by the Application easily by uninstalling it. You may use the standard uninstall processes as may be available as part of your mobile device or via the mobile application marketplace or network.
14. P2P Storage and Blockchain Mechanism
We use palm and palm vein biometrics in our Application. Please note that we do not store any biometric data in any database. Instead, the biometric data is distributed across a peer-to-peer (P2P) network using a blockchain mechanism. This ensures that your biometric data is secure and cannot be accessed or reconstructed from a single source.
15. Changes to This Privacy Policy
This Privacy Policy may be updated from time to time for any reason. The Service Provider will notify you of any changes to the Privacy Policy by updating this page with the new Privacy Policy. You are advised to consult this Privacy Policy regularly for any changes, as continued use is deemed approval of all changes.
16. Contact Us
If you have any questions or concerns about this Privacy Policy or our privacy practices, please contact us at:
LENS, Inc.
4288, Indian Glen Drive, Okemos, Michigan, US - 48864
Email: solutions@lenscorp.ai
Effective Date: 20 June 2024