Visible Body隐私声明 – Visible Body

最近更新2023二月2月21日

重要说明：本文件以英文版为准，适用于您与我们的关系。任何翻译版本仅为方便起见而提供，并不改变英文版本。

Argosy Publishing, Inc.，以Visible Body的名称开展经营（“公司”或“我们”），从事网络应用程序、桌面应用程序和移动应用程序的开发。公司重视我们应用程序之用户和其他个人（“您”）的信息和数据的隐私，我们可能会收集与您有关的信息用于识别您（您的“个人信息”）。本隐私声明阐述了有关我们收集和使用您的个人信息的政策和做法。如果您不同意本文规定的条款，请不要使用我们的网站或我们的网页版、桌面版和移动版应用程序。我们保留随时更新本隐私声明的权利；并且，以上修订日期为您提供隐私声明已更新的通知。

我们如何收集和使用您的个人信息

我们从您收集哪些信息取决于您如何与公司、我们的网站和我们的应用程序进行互动，下文有更详细的描述。除了下文所述的具体用途之外，我们还可能会将您的个人信息用于我们在遵守法律业务过程中的合法利益，用于执法目的，保护和捍卫我们的权利和财产，或执行我们的用户协议或与第三方达成的协议。

网站表单和邮件列表订阅

当您在公司网站上提交基于网络的表单时，我们可能会根据您提交的具体表单类别收集以下信息：

联系方式信息（例如：电子邮件地址、电话号码）
位置（例如：州/省、国家/地区）
机构隶属关系和角色（例如：学生、医护人员）
语言偏好设定
有关您使用的产品和技术的信息（例如：设备、平台、操作系统）
您对开放式问题的回答（例如：您感兴趣的产品或服务类型、您遇到的技术问题、您的建议）

如果我们以其他方式与您联系，我们也可能收集这些信息。例如，如果您在展会期间造访我们供应商的展台时同意注册加入我们的邮件列表。

我们将这些个人信息用于以下目的：

提供您所请求的服务、产品或信息
向您发送我们认为您可能感兴趣的产品和服务的促销资料或通信
提供客户服务或协助您解决技术问题
评估和/或改进我们所提供的产品和服务，以及开发新的产品或服务

我们是在您同意的情况下发送促销类电子邮件。当我们向您提供您所请求的服务或信息时，我们这样做是因为这是执行我们的合同或合同之前措施所必需的行动。其他信息处理活动是基于我们的合法利益进行，例如寻求客户反馈和改进我们的产品。

自动收集的追踪信息

当您访问我们的网站以及我们向您发送营销类电子邮件时，我们会使用cookie和诸如网络信标之类的其他技术来自动收集某些信息。我们以这种方式收集以下信息：

IP地址
访问来源（例如：您是如何找到我们网站的）
某些页面的访问次数以及访问者使用了哪些网页和哪些应用程序的功能
你使用的是什么浏览器
电子邮件追踪信息（例如您是否打开了我们的电子邮件）

我们将这些信息用于以下目的：

帮助改进我们网站和电子邮件的功能和实用性
用于对网站用户的行为进行统计性分析
用于产品开发和/或内容改进
用于按需定制我们网站的内容和布局

我们还使用第三方（例如Google Analytics）来帮助分析用户对本网站的使用情况。 Google为此目的使用了cookie并向我们提供汇总信息。

您可以通过浏览器设置来阻止cookie的使用，但是，如果您阻止cookie，网站上的某些功能可能无法正常工作。

购买类信息

如果您通过我们的代理商2Checkout或Fastspring之一购买我们的产品，我们会从代理商那里收到有关您购买的某些信息，其中包括联系信息（例如姓名、电子邮件地址）和订单信息（例如帐单邮寄地址、销售来源、付款方式）。我们将这些信息用于维护我们在为客户提供客户支持过程中的合法利益以及跟踪产品的采购。

Visible Body应用程序的用户

如果您使用我们的移动应用程序是因为您所属的公司或机构已代表您购买我们的产品或访问我们应用程序的订阅或许可，则您可以使用激活码来访问我们的应用程序。我们可能会要求您提供电子邮件地址，以便向您发送激活码。您需要提供此信息才能访问我们的应用程序。您的电子邮件地址也可能与您的激活信息（例如您使用激活码的日期和时间）相关联。我们使用这些信息来维护产品激活，检查激活状态并监控我们应用程序的总体使用情况。我们是基于我们的合法利益来处理这些个人信息。

我们的一些Web应用程序允许您保存用户内容，例如保存的视图和用户创建的记录卡（“用户创建内容”）。如果您使用这些功能，则需要提供您的电子邮件地址用于创建帐户。我们仅会出于向您提供该服务的目的而存储和使用您的用户创建内容。

您可以选择注册您自己购买的或其他人代表您购买或获得许可的应用程序。如果您注册应用程序，我们会要求您提供电子邮件地址。仅在取得您同意的情况下，我们会使用这些信息以及与您已注册产品相关的信息来向您发送促销类电子邮件。

课程包用户

如果您使用我们课程包（Course Pack）的某一产品，我们会收集以下个人信息：

电子邮件地址
所属的机构
您所在机构的学习管理系统（“LMS”）的用户ID（由您所属的机构提供给我们）
激活信息（例如：激活的日期和时间）

我们使用这些信息来维护产品激活，检查激活状态及监控课程包产品的总体使用情况。我们使用您的LMS用户ID将测验分数发送给您的LMS，但我们不会存储您的分数。我们使用您的电子邮件地址向您发送激活码。我们是基于我们在提供和监控课程包服务方面的合法利益来处理这些个人信息。

Courseware、Web Suite和某些移动应用程序用户的Visible Body帐户

如果您使用了我们的Courseware,Web Suite,人体解剖学图谱＋或Visible Body＋产品，将会需要您创建Visible Body帐户。此外，我们的某些移动应用程序可能会要求您创建Visible Body帐户，以便共享内容并跨设备访问您的用户创建的内容。在您创建Visible Body帐户时，我们会收集以下个人信息：

联系方式信息（例如：姓名、电子邮件地址）
登录信息，包括加密的密码
激活和使用情况信息（例如：激活的日期和时间、最近一次登录的日期和时间、IP地址）
（仅限Courseware）所属机构、LMS用户ID（如果有）
（仅限Courseware和移动App）角色（例如：学生或讲师）
（仅限Courseware和移动App）用户创建内容（例如：测验、截止日期、作业、保存的视图、便笺卡）
（仅限移动App）App信息和设置（例如：产品名称、产品版本、设备OS、App语言首选项、App内购）

如果您使用Google帐户登录，Google将与Visible Body分享您的姓名、电子邮件地址、语言偏好和个人照片。

我们使用这些信息向您提供产品（Courseware和Web Suite）和由用户创建的内容（Courseware和移动App），以及为了我们在维护产品激活、检查激活状态和监控产品总体使用情况方面的合法利益。
帐户持有者可以选择注册促销内容电子邮件通知。如果您注册了促销内容邮件，我们会使用您的电子邮件地址，以及储存在您帐户中的这类信息来向您发送促销邮件，但仅会在取得您事先同意的情况下发送。

我们还可能使用帐户持有人的电子邮件地址来联系以前或当前的帐户持有人，以请求他们参与可选的客户调查。

我们还可能会使用帐户持有人的电子邮件地址来联系具有教师身份的活跃帐户持有人，以提供个性化的产品培训。

我们如何分享您的个人信息

除非我们获得您的许可，否则，我们不会向第三方出售、共享、出租或披露任何个人身份信息，例如姓名、邮寄地址、电子邮件地址、电话号码以及您提供给我们的其他个人信息；但是，我们可能会出于上述目的向以下第三方披露您的个人信息：

我们的供应商和服务提供商，例如，协助公司提供服务、营销、分析、数据存储或内容管理的服务提供商，或向公司提供咨询服务或专业服务的服务提供商
执法机关、政府机构或其他主管部门，以遵守法律、法规、法院命令或其他法律义务，或为了保护和维护我们的合法利益
如果您通过所属的机构（例如，大学或学院）来使用我们的产品，则会将您的个人信息披露给您所属的机构，以跟踪应用程序的激活并提供包括Courseware在内的学习管理服务（例如，您的姓名、电子邮件地址、测验分数将提供给您的讲师）
如果您索取有关我们的经销商或分销商出售的Visible Body产品的信息，会将您的个人信息披露给我们的授权经销商和分销商

移除可识别身份的信息

您同意我们可以收集和使用定期收集的技术数据和相关信息，包括但不限于有关您的设备、系统和应用程序软件以及外围设备的技术信息。我们可使用此信息来改善我们的产品或为您提供服务或技术，只要信息的形式不会透露您的个人身份。

向美国转移信息

公司总部位于美国境内。我们从您处收集的信息将在美国进行处理。美国并未向欧盟寻求处理您的个人信息的“适当性”，也没有收到这一结论。关于从欧盟转移信息，公司依赖于特定情况的减损。特别是，只有在您同意的情况下，或是为了执行与您订立的合同（或是符合您的利益），或是以不超过您的权利和自由的方式来实现公司令人信服的合法利益，公司才会将个人信息转移到美国。公司会努力采用适当的保护措施来保护您的个人信息的隐私和安全，并以符合本隐私声明的方式来使用您的个人信息。公司不收集敏感型数据（即在欧盟被称为特殊类别的数据）。

数据保留

除非本隐私声明中另有说明，本公司将保留个人信息，并保留到向您提供服务以及此后为遵守我们法律或合同义务所需的时长。如果我们确定上述目的不再需要保留有关潜在客户的信息，我们会定期删除这些信息。经书面请求或在协议终止后的规定期限后，个人信息将从有效数据库中删除。备份中存储的信息不会被主动清除，而是随着时间自然清理。Visible Body保留个人信息备份的时间不会超过90天。

从儿童收集个人信息

我们的网站不供13岁以下的儿童使用。我们不会故意从13岁以下儿童收集个人信息。如果您未满13岁，请勿在本网站上或通过其任何功能使用或提供任何信息（包括您的姓名、地址、电话号码或电子邮件地址）。如果我们获知在未经父母同意的情况下从13岁以下的儿童收集或收到了个人信息，我们将删除这些信息。如果您认为我们可能持有来自13岁以下儿童的或与其相关的任何信息，请立即与我们联系。

链接

本网站含有转到其他网站的链接。我们对此类其他网站的隐私做法概不负责。我们希望访问者在离开我们的网站时意识到这一点，并阅读收集个人信息的每个网站的隐私政策。除本文另有规定外，本隐私声明仅适用于本网站收集的信息。

安全

虽然我们已经采取安全措施来保护我们维护的信息和系统，但我们不能保证我们网站进出的信息传输都是安全的。您发送给我们的电子邮件可能会被拦截。如果您的通信中含有您不愿意以电子方式提供的个人信息，请通过邮寄或电话与我们联系。您发送给我们的电子邮件可能会被拦截。如果您的通信中含有您不愿意以电子方式提供的个人信息，请通过邮寄或电话与我们联系。我们收到您的信息后，将采用合理的程序和安全功能来防止未经授权的访问。

您的权利

选择退出/删除个人信息

您可以通过不填写在线表格、注册服务或创建帐户来避免您的个人信息被收集。如需在提交个人信息后选择退出，您必须通过support@visiblebody.com与我们联系。如需要求我们删除您之前提供给我们的个人信息，您可以通过support@visiblebody.com与我们联系；我们将根据您的要求及时删除此类信息。

如果您想停止使用您的帐户，可以通过support@visiblebody.com联系我们，要求我们将其删除。当您删除帐户时，您将无法使用我们的服务，并且，将无法通过我们的网站查看您的信息。当我们删除帐户时，我们会从我们的数据库中删除您之前提供的任何个人身份信息。但是，即使在您提交删除您的信息的请求后，出于法律和合规原因，我们可能会保留您的信息副本（包括但不限于姓名和电子邮件地址）作为备份副本。

选择退出促销或营销通信

如果您不想收到公司发送的促销或营销类通信，您可以随时通过点击我们电子邮件末尾的“取消订阅”链接来选择退定这些通信。如果您选择取消订阅，我们将会保留您的联系信息，以确保我们不会再与您联系。

欧洲经济区和英国的隐私权

如果您位于欧盟、冰岛、列支敦士登或挪威（“欧洲经济区”或“EEA”）或者英国（“UK”），您有权获得关于我们使用您的个人信息的额外权利。如要了解更多信息，请参阅EEA隐私披露。

加利福尼亚州隐私权利

如果您是加利福尼亚州居民，您可能根据加利福尼亚州法律享有关于我们使用您的个人信息的额外权利。如需了解有关您的加利福尼亚州隐私权的更多信息，请参阅加利福尼亚州居民的CCPA隐私声明。

数据泄露报告

我们会尽合理努力监控和检测任何影响个人信息的数据泄露。在极不可能的情况下，如果数据泄露导致您的个人信息披露给第三方，我们将根据适用法律尽一切合理努力通知您。

隐私声明的更改

公司保留随时更改本政策的权利；如有变更，恕不另行通知；并且，新版本或修订版本的隐私政策和新修订日期将于以下位置公布：http://www.visiblebody.com/privacy。

联系信息

如果您对我们如何处理您的个人数据有疑问，请联系我们：电子邮件地址：support@visiblebody.com；邮寄地址：

Visible Body
492 Old Connecticut Path, Suite 501
Framingham, MA 01701
收件人：信息

对于受欧洲数据保护法律管辖的个人信息，Argosy Publishing, Inc.是这些个人信息的控制者。

EEA Privacy Disclosures

These privacy disclosures (the “Disclosures”) provide information about the collection, use, processing and sharing of data about individuals located in the European Union, Iceland, Liechtenstein or Norway (the “European Economic Area” or “EEA”).

These Disclosures also provide information about the collection, use, processing and sharing of data about individuals located in the United Kingdom, which has left the European Union but has adopted legislation substantially similar to the GDPR. With respect to individuals in the UK, references to the GDPR in these Disclosures are to be read as referring to the UK’s similar legislation, the Data Protection Act 2018.

In these Disclosures:

GDPR means the European Union’s General Data Protection Regulation;
Personal Data means information relating to an identified or identifiable individual; an identifiable individual is one who can be identified, directly or indirectly, by use of any identifier or factor specific to that individual; and
GDPR Processing Activities means the collection, use, processing or sharing of Personal Data when those activities are within the scope of the GDPR.

These Disclosures apply only to the use of Personal Data in GDPR Processing Activities. In these Disclosures the words “Company,” “we,” “us” or “our” refer to Argosy Publishing, Inc. d/b/a Visible Body. These Disclosures apply to GDPR Processing Activities by any means, including hardcopy (such as paper applications or forms) and electronic means (such as websites and mobile applications).

A. How We Collect and Use Personal Data

We collect several categories of Personal Data in circumstances that may involve GDPR Processing Activities, including data you provide, data collected automatically (potentially including location data), and data we obtain from third party sources.

We use the Personal Data that we collect to:

Create and maintain your account;
Process your account registration;
Answer your questions;
Send you newsletters, updates, and other communications that you have requested;
Send you information about our services and resources; and
If you use our products through your affiliation with an institution, such as a college or university, coordinate with the institution you are affiliated with, in order to track activation of applications and to provide learning management services.

As described in more detail below, we rely on a number of legal bases to lawfully process your Personal Data.

The ways in which we collect and use your data vary depending on the relationship between you and us. The following sections of these Disclosures describe in more detail how we collect and use Personal Data in various circumstances that may involve GDPR Processing Activities.

Please note that, depending on the situation, some of the processing of Personal Data we do in the various circumstances described below may not fall within the scope of the GDPR.

1. Personal Data We Collect

Websites and Mobile Applications

As is true of most digital platforms, we obtain certain data automatically when you use one of our websites or mobile applications, such as your IP address, browser type and device type. Certain web forms also collect Personal Data you provide, for example when you enter data into form fields, such as for the purpose of registration. If we also process data through our websites or mobile applications for one of the activities described further below, those descriptions will provide additional information about how those data are collected and used. We and our third-party vendors use this Personal Data for the primary purposes of conducting analytics, improving our websites, responding to your requests and providing you with relevant information.

2. Personal Data We Obtain from Third Party Sources

As part of our GDPR Processing Activities, we may obtain certain Personal Data about you from third party sources, which we may use for the purposes and in the ways described in “How We Collect and Use Personal Data” above and in “Additional Uses of Personal Data” below. In some cases, we may obtain your consent for additional uses.

Partners and Service Providers

We use partners and service providers to provide services for us. Some of these partners have access to Personal Data about you that we may not otherwise have (for example, when you sign up directly with that provider) and may share some or all of these data with us.

3. Additional Uses of Personal Data

In addition to the uses described above, including under “How We Collect and Use Information” and “Personal Data We Obtain from Third Party Sources,” we may use your Personal Data for the following purposes. These additional uses may under certain circumstances be based on your consent, or may be necessary to fulfill our contractual commitments to you, for legal compliance, or to serve our legitimate interest in the following activities:

Conducting our operations and administering educational offerings;
Responding to your requests for research assistance;
Processing and responding to your requests or inquiries of any other kind;
Providing you with newsletters, articles, service alerts or announcements, event invitations, and other information that we believe may be of interest to you;
Conducting research, surveys and similar inquiries to help us understand trends and needs of our Members and customers;
Performing marketing, promotions and advertising, either directly or through third-parties. These activities may include interest-based advertising, targeted advertising and online behavioral advertising in order to increase the likelihood that the content will be of interest to you;
Preventing, investigating, taking action regarding or providing notice of fraud, unlawful or criminal activity, other misconduct, security or technical issues, or unauthorized access to or use of Personal Data, our website or data systems; or
Responding to subpoenas, court orders, or other legal process; enforcing our agreements; protecting the health, safety, rights or property of you, us or others; and meeting legal obligations.

4. Legitimate Interests

In addition to interests otherwise described in these Disclosures, we rely on other legitimate interests in using and sharing your Personal Data. These interests include:

Providing, improving and customizing our educational offerings;
Administering our operations;
Furthering research and understanding in fields of academic study;
Offering attendance to events and opportunities to participate;
Understanding how our online platforms are being used;
Exploring ways to develop and grow our operations;
Cybersecurity;
Enhancing protection against fraud, spam, harassment, intellectual property infringement, crime and security risks; and
Meeting our obligations and enforcing our legal rights.

5. Data Retention

We will retain your Personal Data for as long as is necessary for the purposes set out in these Disclosures and for as long as is required under applicable law or is needed to resolve disputes or protect our legal rights or otherwise to comply with legal obligations. Consistent with the foregoing guidance, some data may be retained indefinitely.

Where we are processing Personal Data based on your consent, we generally will retain the information for the period of time necessary to carry out the processing activities to which you consented, subject to your right, under certain circumstances, to have certain of your Personal Data erased (see “Your Rights” below).

Where we are processing Personal Data based on contract, we generally will retain the information for the duration of the contract plus some additional limited period of time that is necessary to comply with law or that represents the statute of limitations for legal claims that could arise from the contractual relationship.

Where we are processing Personal Data based on the public interest, we generally retain the information for the period of time that continues to serve that underlying interest.

Where we are processing Personal Data based on our legitimate interests, we generally will retain the data for a reasonable period of time based on the particular interest, taking into account the fundamental interests and the rights and freedoms of the data subjects. In some cases, where Personal Data was primarily processed and retained on the basis of consent, contract, the public interest, or other bases described in these Disclosures, we may continue thereafter to retain the data based on a legitimate interest.

B. How We Share and Disclose Personal Data

We share your Personal Data with third parties in the ways described in these Disclosures, including the “How We Collect and Use Personal Data” section above. Additionally, we may share information as described below:

Service Providers

We share your Personal Data with third-party service providers that complete transactions or perform services on our behalf or for your benefit, such as:

Marketing and analytics;
Event registration and coordination;
Providing course platforms or tools that enable or enhance our offerings;
Research insights and analytics;
Research collaboration;
System maintenance and security;
Facilitating other transactions with you; and
Assisting with our legal compliance.

Social Media Platforms

We may also use services provided by third parties (such as social media platforms) to serve targeted ads or sponsored content on third-party platforms. For more information regarding our use of cookies and similar technologies, see the “Cookies and Similar Technologies” section below.

Legal Process, Safety and Terms Enforcement

We may disclose your Personal Data to legal or government regulatory authorities as required by applicable law. We may also disclose your Personal Data to third parties in connection with claims, disputes or litigation, when otherwise required by applicable law, or if we determine its disclosure is necessary to protect the health, safety, rights or property of you, us or others, or to enforce our legal rights or contractual commitments that you have made.

C. International Data Transfers

Much of our Personal Data processing takes place in the United States, though sometimes we or third parties with whom we share data, as discussed above, may process data in other countries. The data privacy laws in the United States and other countries outside the EEA and the UK may provide less protection than such laws in the EEA or the UK. In the event we transfer your Personal Data outside the EEA or outside the UK as part of our GDPR Processing Activities, we rely where required on appropriate or suitable safeguards or specific derogations recognized under the GDPR or under UK law.

The European Commission has adopted standard data protection clauses, also applicable in the UK, which provide safeguards for Personal Data transferred outside of the EEA or the UK. We may use Standard Contractual Clauses when transferring Personal Data from a country in the EEA or from the UK to a country outside the EEA or the UK. If so and your Personal Data are affected, you can request a copy of the Standard Contractual Clauses relevant to your Personal Data by contacting us as set forth in the “Contact Us” section below.

D. Cookies and Similar Technologies

We may collect Personal Data about you, or information that becomes Personal Data if combined with other information, when you visit or use our websites and online services. This information may be collected through the use of cookies, which are small data files placed on your computer or mobile device that allow us to collect certain information whenever you visit or interact with our websites or online services. Some of these cookies are managed by us (first-party cookies), while others are managed by third parties that we do not control (third-party cookies). This information may also be collected through the use of other data collection technologies (such as web beacons, pixels or tags) that embed graphic files in our websites and online services. These graphic files contain a unique identifier that enables us to recognize when someone has visited our website or online services, or in the case of web beacons, opened an email that we have sent them.

These small data files or graphic files serve various functions:

Strictly Necessary: Necessary to deliver our services;
Performance and Functionality: Enhance the performance and functionality of our services but are non-essential to their use;
Analytics and Customization: Allow us to understand the effectiveness of our services and marketing campaigns, as well as to customize our services based on this information; or
Advertising: Make advertising messages more relevant to you and your interests.

You can control the use of certain cookies and similar technologies by:

Opting out of targeted online advertising through advertising networks (please visit http://www.aboutads.info/choices/, http://optout.networkadvertising.org/ or
http://www.youronlinechoices.com for more information);
Setting or amending your web browser controls to accept or refuse cookies (please visit your browser’s help menu for more information).

If you choose to reject certain cookies and similar technologies, you may still use our websites and online services although your access to some functionality and features may be restricted. If you have any questions regarding our use of cookies and other similar technologies, please contact us as set forth in the “Contact Us” section below.

E. Your Rights

Upon your reasonable, good faith request we will provide you with information about whether we hold any of your Personal Data as part of our GDPR Processing Activities, to the extent required by and in accordance with applicable law. In certain cases, you may also have a right, with respect to your Personal Data collected and used in the GDPR Processing Activities, to:

correct or update any of your Personal Data that is inaccurate;
restrict or limit the ways in which we use your Personal Data;
object to the processing of your Personal Data;
request the deletion of your Personal Data; and
obtain a copy of your Personal Data in an easily accessible format.

To submit a request, please send an email message to support@visiblebody.com. Because we want to avoid taking action regarding your Personal Data at the direction of someone other than you, we will ask you for information verifying your identity. We will respond to your request within a reasonable timeframe.

Subject to certain legal limits, you also have the right to withdraw your consent to our processing of your Personal Data as part of our GDPR Processing Activities, where our processing is solely based on your consent. In some cases, you can do this by discontinuing use of the services involved in the GDPR Processing Activities. This would include by closing all of your online accounts with us and contacting us at support@visiblebody.com to request that your Personal Data be deleted. If you withdraw your consent to the use or sharing of your Personal Data for the purposes set out in these Disclosures or the other Visible Body privacy statements that link to or expressly adopt these Disclosures, you may not have access to some or all of the related services, and we might not be able to provide you some or all of the services. Please note that, in certain cases, we may continue to process your Personal Data after you have withdrawn consent and requested that we delete your Personal Data, if we have a legal basis to do so. For example, we may retain certain data if we need to do so to comply with an independent legal obligation, if we still need the data for the lawful purposes for which we obtained the data, or if it is necessary to do so to pursue our legitimate interest in keeping our services and operations safe and secure or to safeguard our rights or the rights or safety of others.

If you have any complaints regarding our privacy practices, you have the right to make a complaint with your national data protection authority (i.e., supervisory authority).

F. User Generated Content

Some of our online activities enable users to submit their own content. Please remember that any Personal Data you submit or post as user-generated content in these circumstances could in some cases be seen by others or become public. You should exercise caution when deciding to disclose your personal, financial or other information in such submissions or posts. We cannot prevent others from using that information in a manner that may violate these Disclosures, the law or your personal privacy and safety. We are not responsible for the results of such postings.

G. Updates to the Disclosures

We may update these Disclosures from time to time without prior notice by posting revised Disclosures to this site. You can determine when these Disclosures were last revised by checking the Last Updated date at the beginning of these Disclosures.

H. Contact Us

If you have any questions, comments, requests or concerns about these Disclosures or other privacy-related matters, you may contact us in the following ways:

Email: support@visiblebody.com
Mail: Visible Body
492 Old Connecticut Path, Suite 501
Framingham, MA 017014
Attn: Information

CCPA Privacy Notice for CA Residents

This PRIVACY NOTICE FOR CALIFORNIA RESIDENTS and applies solely to visitors, users, and others who reside in the State of California (“consumers” or “you”). We adopt this notice to comply with the California Consumer Privacy Act of 2018 (“CCPA”) and other California privacy laws. Any terms defined in the CCPA have the same meaning when used in this notice.

Information We Collect

We collect information that identifies, relates to, describes, references, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or device (“personal information”). In particular, we have collected the following categories of personal information from consumers within the last twelve (12) months:

Category	Examples	Collected
A. Identifiers.	A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, Social Security number, driver’s license number, passport number, or other similar identifiers.	YES
B. Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).	A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver’s license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.	YES
C. Protected classification characteristics under California or federal law.	Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).	NO
D. Commercial information.	Records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies.	NO
E. Biometric information.	Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.	NO
F. Internet or other similar network activity.	Browsing history, search history, information on a consumer’s interaction with a website, application, or advertisement.	YES
G. Geolocation data.	Physical location or movements.	NO
H. Sensory data.	Audio, electronic, visual, thermal, olfactory, or similar information.	NO
I. Professional or employment-related information.	Current or past job history or performance evaluations.	NO
J. Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).	Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.	NO
K. Inferences drawn from other personal information.	Profile reflecting a person’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.	NO

Personal information does not include:

Publicly available information from government records.
De-identified or aggregated consumer information.
Information excluded from the CCPA’s scope, like:
- health or medical information covered by the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and the California Confidentiality of Medical Information Act (CMIA) or clinical trial data;
- personal information covered by certain sector-specific privacy laws, including the Fair Credit Reporting Act (FRCA), the Gramm-Leach-Bliley Act (GLBA) or California Financial Information Privacy Act (FIPA), and the Driver’s Privacy Protection Act of 1994.

We obtain the categories of personal information listed above directly and indirectly from activity on our website and in our applications. For example, from submissions through our website portal or website usage details collected automatically.

Use of Personal Information

We may use or disclose the personal information we collect for one or more of the following business purposes:

To fulfill or meet the reason for which the information is provided. For example, if you share your name and contact information to request pricing information or ask a question about our products or services, we will use that personal information to respond to your inquiry.
To provide you with information, products or services that you request from us.
To provide you with email alerts, event registrations and other notices concerning our products or services, or events or news, that may be of interest to you.
To carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collections.
To improve our website and present its contents to you.
For testing, research, analysis and product development.
As necessary or appropriate to protect the rights, property or safety of us, our clients or others.
To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
As described to you when collecting your personal information or as otherwise set forth in the CCPA.
To evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which personal information held by us is among the assets transferred.

We will not collect additional categories of personal information or use the personal information we collect for materially different, unrelated, or incompatible purposes without providing you notice.

Sharing Personal Information

We may disclose your personal information to a third party for a business purpose. When we disclose personal information for a business purpose, we enter a contract that describes the purpose and requires the recipient to both keep that personal information confidential and not use it for any purpose except performing the contract.

In the preceding twelve (12) months, we have disclosed the following categories of personal information for a business purpose:

Category A: Identifiers.

Category B: California Customer Records personal information categories.

We disclose your personal information for a business purpose to the following categories of third parties:

Service providers.
The institution you are affiliated with, if you use our products through your affiliation with an institution, such as a college or university

In the preceding twelve (12) months, we have not sold any personal information.

Your Rights and Choices

The CCPA provides consumers (California residents) with specific rights regarding their personal information. This section describes your CCPA rights and explains how to exercise those rights.

Access to Specific Information and Data Portability Rights

You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you:

The categories of personal information we collected about you.
The categories of sources for the personal information we collected about you.
Our business or commercial purpose for collecting or selling that personal information.
The categories of third parties with whom we share that personal information.
The specific pieces of personal information we collected about you (also called a data portability request).
If we disclosed your personal information for a business purpose, the personal information categories that each category of recipient obtained.

Deletion Request Rights

You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request, we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies.

We may deny your deletion request if retaining the information is necessary for us or our service providers to:

Complete the transaction for which we collected the personal information, provide a good or service that you requested, take actions reasonably anticipated within the context of our ongoing business relationship with you, or otherwise perform our contract with you.
Detect security incidents, protect against malicious, deceptive, fraudulent, or illegal activity, or prosecute those responsible for such activities.
Debug products to identify and repair errors that impair existing intended functionality.
Exercise free speech, ensure the right of another consumer to exercise their free speech rights, or exercise another right provided for by law.
Comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 seq.).
Engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent.
Enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us.
Comply with a legal obligation.
Make other internal and lawful uses of that information that are compatible with the context in which you provided it.

Exercising Access, Data Portability, Deletion, and Opt-out Rights

To exercise the access, portability, deletion, or opt-out rights described above, please submit a verifiable consumer request to us by email at support@visiblebody.com or by mail at:

Visible Body
492 Old Connecticut Path, Suite 501
Framingham, MA 01701
Attn: Information

Only you or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:

Provide sufficient information that allows us to reasonably verify you are the person or an authorized representative of the person we collected personal information on.
Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.

We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you. Making a verifiable consumer request does not require you to create an account with us. We will only use personal information provided in a verifiable consumer request to verify the requestor’s identity or authority to make the request.

Response Timing and Format

We endeavor to respond to a verifiable consumer request within 45 days of its receipt. If we require more time (up to 90 days), we will inform you of the reason and extension period in writing. If you have an account with us, we will deliver our written response to that account. If you do not have an account with us, we will deliver our written response by mail or electronically, at your option. Any disclosures we provide will only cover the 12-month period preceding the verifiable consumer request’s receipt. The response we provide will also explain the reasons we cannot comply with a request, if applicable. For data portability requests, we will select a format to provide your personal information that is readily usable and should allow you to transmit the information from one entity to another entity without hindrance.

We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

Non-Discrimination

We will not discriminate against you for exercising any of your CCPA rights. Unless permitted by the CCPA, we will not:

Deny you goods or services.
Charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties.
Provide you a different level or quality of goods or services.
Suggest that you may receive a different price or rate for goods or services or a different level or quality of goods or services.

Changes to Our Privacy Notice

We reserve the right to amend this privacy notice at our discretion and at any time. When we make changes to this privacy notice, we will notify you by email or through a notice on our website homepage.

Contact Information

If you have any questions or comments about this notice, our Privacy Notice, the ways in which we collect and use your personal information, your choices and rights regarding such use, or wish to exercise your rights under California law, please do not hesitate to contact us at:

Visible Body
492 Old Connecticut Path
Framingham, MA 01701
Attn: Information
support@visiblebody.com

此组别内的文章