This is the privacy notice of FGX Europe Limited (company number: 03487910) whose registered office is at Suite 1, 3rd Floor 11-12 St. James’s Square, London, United Kingdom, SW1Y 4LB referred to as we, us or our in this privacy notice.
[We are a subsidiary of FXG International Inc with offices at 500 George Washington Highway Smithfield, Rhode Island 02917 USA and part of a group of companies known as the Essilor group.]
This privacy notice sets out how we collect and process your personal data when you access our website www.sightstation.com (“Website or Site”). This privacy notice also provides certain information that is legally required and lists your rights in relation to your personal data.
This privacy notice relates to personal information that identifies you as a natural person (whether you are an actual or potential customer, an individual who browses our website or an individual outside our organisation with whom we interact). If you are an employee, contractor or otherwise engaged in work for us or applying to work for us, a separate privacy notice applies to you instead. We refer to this information throughout this privacy notice as personal data and section 2 sets out further detail of what this includes.
It is important that you read this privacy notice to understand how we may use your personal data and we will update this privacy notice from time to time so please check it whenever you visit our Site.
How to contact us
Controller and contact details
For the purposes of relevant data protection legislation, we are a controller of your personal data. As a controller we use (or process) the personal data we hold about you in accordance with this privacy notice.
If you need to contact us in connection with use or processing of your personal data, then our contact details are email@example.com. You can also amend your consent preferences in your account settings.
Categories of personal data we collect
The categories of personal data about you that we may collect are:
personal data you provide to us in person, via our website or by telephone and the personal and contact details you supply when creating an account on our website
personal data you provide when you purchase a product through our website
personal data you provide if you subscribe to any of our mailing or newsletter services
personal data gathered using cookies
personal data you provide if you enter into a competition or promotion
personal data you provide if you complete surveys from us
personal data you provide if you submit a query to us or participate in discussion boards and social media functions on our website, and
details of your visits to our website including but not limited to traffic data, location data, weblogs and other communication data
We may automatically collect other information about you, including:
- Web browser type;
- Your Internet Protocol (IP) address;
- Domain name of your Internet service provider;
- Your geographic location;
- The Site pages that you visit and the time of your visits; and
- Aggregated information that cannot be used to specifically identify you when you use or visit the Site.
- We may also create personal data about you, for example, if you contact us by telephone with a query about our services or goods, then we may make a written record of key details of the conversation so that we can take steps to address the query.
The sources from which we obtain your personal data
- We may receive information about you if you use any of the other websites operated by us or by other companies in the FGX International or Essilor group.
- You will have been informed at the time your information was collected on those websites if your information was going to be shared within the FGX International or Essilor group and for what purposes.
- We also work closely with third parties (for example payment service providers, technical business partners, advertising analytics providers, search engine information providers, logistics service providers and subcontractors who provide services and goods to us to enable us to fulfil our customer contracts).
- If we receive information about you from them, we will inform you of this and the purposes for which we intend to use that information.
How we use your personal data and the legal basis
Where we are relying on a basis other than consent
We may rely on one or more of the following legal bases when processing your personal data for the following specified purposes:
Where we may rely on consent
We would also like to use your personal data for purposes where it is appropriate for us to obtain your prior consent. These are as follows:
(a) where we or our carefully selected third parties have new products and services which we think you will be interested in.
The legal basis of consent is only used by us in relation to processing that is entirely voluntary – it is not used for processing that is necessary or obligatory in any way.
You may at any time withdraw the specific consent you give to our processing your personal data in these circumstances. Please note even if you withdraw consent we may rely on another legal basis to process your personal data where appropriate.
Who receives your personal data
We may disclose your personal data:
to any Essilor group company and affiliates for business, administrative and legal compliance purposes
to our third party data processers who may process data on our behalf to enable us to carry out our usual business practices (these include performing a range of business related functions for us such as hosting and maintaining our website, maintaining our databases, processing payments and email marketing services) and logistics and other suppliers and subcontractors that help us perform any contract we have entered with you. In each case any such disclosure will only be so that we can process your personal data for the purposes set out in this privacy notice
to analytics and search engine providers that help us improve our website and third parties operating plugins or content (such as Facebook, Twitter, Instagram) on our website which you choose to interact with
to legal and regulatory authorities who request your personal data or to report any potential or actual breach of applicable law or regulation
to external professional advisers such as accountants, auditors and lawyers, provided that they are under duties of confidentiality
where we are under a duty to disclose your information in order to comply with any law, in order to enforce our terms of business (terms & conditions)
or to protect the rights, property or safety of our customers or the public, or protect against legal liability
to law enforcement agencies, courts or other relevant parties, to the extent necessary for the establishment, exercise or defence of legal rights
to third parties where necessary for the purposes of prevention, investigation, detection or prosecution of criminal offences or the execution of criminal penalties
to third parties which are considering or have decided to buy some or all of our assets or shares (including in the event of a reorganisation, dissolution or liquidation)
What happens to your credit or debit card information
We use a third party payment processor to process payments made to us via our website. In connection with the processing of such payments, we do not retain any personally identifiable information or any financial information such as credit card numbers on our website.
We also ensure that our payment provider partners are fully compliant with the payment card industry standards set.
International transfers of personal data
It is possible that personal data we collect from you may be transferred, stored and/or processed outside the European Economic Area, specifically in the United States of America.
In connection with such transfers:
the relevant safeguard in place is the standard data protection contractual clauses between us and the recipient, a copy of which can be obtained by contacting us using the contact details set out in section 1;
there are binding corporate rules in place;
the transfer is made on the basis of an adequacy decision, namely:
the Privacy Shield for transfers to the US; or
the European Commission has decided that the relevant non-EU country ensures an adequate level of protection.
Where we store your personal data
We take reasonable steps to protect personal information that is provided through the website. All personal information provided to us via the website is stored on a server in a secure environment.
Our payment provider uses secure socket layer (SSL) technology which means the card payment data you enter through the website is fully encrypted. Where we have given you a password to access certain parts of the website, you are responsible for keeping that password secure and confidential.
We follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and after it is received. Unfortunately, no method of transmission over the internet or method of electronic storage is completely secure. Therefore, while we take reasonable steps to protect your personal information, we cannot guarantee its absolute security.
How long we store your personal data
We will store your personal data for the time period which is appropriate in accordance with our data retention policy. We keep the length of time that we hold your personal data for under review. These reviews take place annually.
Contractual or statutory requirements on you to provide personal data
In certain circumstances the provision of personal data by you is a requirement:
to comply with the law or a contract; or
necessary to enter into a contract.
It is your choice as to whether you provide us with your personal data necessary to enter into a contract or as part of a contractual requirement. If you do not provide your personal data then the consequences of failing to provide your personal data are that we may not be able to perform to the level you expect under our contract with you.
An example of this would be where we are unable to provide you with certain goods or services as we do not have your full details, or where we cannot perform our contract with you at all because we rely on the personal data you provide in order to do so.
Your rights in relation to your personal data
Subject to applicable law including relevant data protection laws, in addition to your ability to withdraw any consent you have given to our processing your personal data (see section 4), you may have a number of rights in connection with the processing of your personal data, including the right:
of access to, rectification of, and/or erasure of your personal data;
to restrict or object to its processing;
to tell us that you do not wish to receive marketing information;
in some circumstances, to require certain of your personal data to be transferred to you or a third party
to the extent our processing of your personal data is based upon your consent, to withdraw your consent, without affecting the lawfulness of our processing based on your consent before its withdrawal;
the right to lodge complaints regarding the processing of your personal data with the Information Commissioner’s Office or other relevant supervisory body. Please see https://ico.org.uk/concerns/
for how to do this.
If you would like to exercise any of the rights set out above, please contact us using the contact details set out in section 1.
Links to other websites
The links from the Site do not imply that we endorse or have reviewed these websites. The policies and procedures we describe here do not apply to these websites. We neither can control nor are responsible for the privacy practices or content of these websites. We suggest contacting these websites directly for information on their privacy policies.
Changes to this privacy notice
We regularly review our compliance with our Privacy Notice, in particular to make it compliant with new laws and regulations regarding data protection. But, even if this Privacy Notice may change from time to time, we will not reduce your rights under this Privacy Notice without your explicit consent.