Privacy Policy

1. Introduction

This Privacy Policy describes how Jooptics ("we", "us", or "our") collects, uses, and protects your personal information when you use our optical management software service ("Service"). We are committed to protecting your privacy and ensuring the security of your personal information.

2. Information We Collect

Personal Information

We may collect the following types of personal information:

• Contact information (name, email address, phone number)
• Business information (company name, business address)
• Account credentials (username, encrypted password)
• Payment information (billing address, payment method details)
• Customer data entered into the system for business operations

Health and Medical Data

As an optical store management platform, our Service collects and processes the following health-related and medical information entered by optical store operators on behalf of their patients/customers:

• Vision prescription data — sphere, cylinder, axis, addition, prism values for both eyes (used for ordering corrective lenses)
• Eye examination results — visual acuity measurements, refraction test results, and other clinical examination findings recorded during optical consultations
• Lens and frame specifications — pupillary distance (PD), segment height, and fitting measurements
• Medical history and notes — relevant eye health conditions, medical notes, and observations recorded by optical practitioners
• Insurance and health coverage information — insurance provider details, policy numbers, and coverage information used to process optical claims
• Patient demographic information — age, date of birth, and other identifying details linked to the patient's optical records
• Visit and treatment history — records of previous optical visits, prescriptions issued, and products dispensed

Usage Information

We automatically collect information about how you use our service:

• IP address and device information
• Browser type and version
• Pages visited and features used
• Login times and session duration
• Error reports and system logs

3. How We Use Your Information

We use your information for the following purposes:

• Provide and maintain our service
• Process payments and manage subscriptions
• Communicate with you about our service
• Provide customer support and technical assistance
• Improve our service and develop new features
• Ensure security and prevent fraud
• Comply with legal obligations

Use of Health Data

Health and medical data collected through our platform is used solely for the following purposes:

• Enabling optical stores to manage patient prescriptions, order lenses, and dispense eyewear
• Generating prescription documents, invoices, and clinical reports for patients
• Processing optical insurance claims submitted by the store on behalf of patients
• Maintaining a longitudinal optical history for continuity of care
• Enabling follow-up appointment reminders and care notifications

We do not use health or medical data for advertising, profiling, or any purpose other than delivering the optical care management service described above. We do not sell health data to any third party.

4. Information Sharing

We do not sell, trade, or rent your personal information to third parties. We may share your information in the following circumstances:

• With service providers who help us operate our business (hosting, payment processing, customer support)
• When required by law or legal process
• To protect our rights, property, and safety
• In connection with a business transaction (merger, acquisition, sale)
• With your explicit consent

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information:

• SSL/TLS encryption for data transmission
• Encrypted storage of sensitive data
• Regular security audits and monitoring
• Access controls and multi-factor authentication
• Regular backups and disaster recovery procedures
• Employee training on data protection

Health and medical data (including vision prescriptions and eye examination records) receives additional protection: it is stored in access-controlled, encrypted databases; access is restricted to the optical store operators who own the data; and it is never used for analytics, advertising, or shared with third parties outside the scope of service delivery.

6. Data Retention

We retain your personal information for as long as necessary to provide our services and comply with legal obligations:

• Account information: retained during active subscription and up to 7 years after termination
• Business data: retained according to your preferences and legal requirements
• Payment information: retained for tax and audit purposes (up to 10 years)
• Usage logs: retained for up to 2 years for security and improvement purposes
• Patient health records and optical data: retained for the duration of the optical store's active subscription. Upon account deletion, all associated patient health and prescription records are permanently deleted within 30 days, unless a longer retention period is required by applicable medical records law.

7. Your Rights

You have the following rights regarding your personal information:

• Access: Request access to your personal information
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your personal information
• Portability: Request export of your data in a standard format
• Objection: Object to processing of your information
• Withdrawal: Withdraw consent at any time

8. Cookies and Tracking

We use cookies and similar technologies to improve your experience:

• Essential cookies: Required for basic functionality
• Preference cookies: Remember your settings and language preferences
• Analytics cookies: Help us understand usage patterns
• Security cookies: Protect against fraud and unauthorized access

You can control cookies through your browser settings, but disabling certain cookies may affect functionality.

9. Third-Party Services

Our service may integrate with third-party services:

• Payment processors for billing and subscription management
• Cloud hosting providers (e.g., AWS) for data storage and processing
• Email services for communication and notifications
• Analytics services for service improvement (platform-level usage only — no patient or health data is shared with analytics providers)

These services have their own privacy policies, and we encourage you to review them. Health and medical data is never shared with third-party analytics, advertising, or marketing services.

10. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place to protect your information during international transfers, including:

• Using service providers with adequate data protection measures
• Implementing standard contractual clauses
• Ensuring compliance with applicable data protection laws

11. Children's Privacy

Our service is not intended for children under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected personal information from a child, we will delete it immediately.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date. We will also notify you via email or through our service for significant changes.

13. Contact Information

If you have any questions about this Privacy Policy or our data practices, please contact us: