Last updated: July 7, 2026
This Privacy Policy explains how PrivOptic ("PrivOptic," "we," "us") collects, uses, and shares personal information when you visit privoptic.com (the "Site") or purchase our digital products (the "Products"). PrivOptic is the controller of personal information collected through the Site.
1. The Short Version
We collect what we need to sell and deliver digital products — your contact details, order information, and standard website data — and not much else. We do not sell personal information, we do not run third-party advertising, and our Products run in your environment, which means the data you process with them never reaches us.
2. Information We Collect
Information you provide. When you make a purchase or contact us, we collect your name, email address, billing address, and the contents of your communications with us. Payment card details are collected and processed directly by our payment processors; we never receive or store full card numbers.
Information collected automatically. When you browse the Site, we and our platform provider (Shopify) collect device and usage information such as IP address, browser type, pages viewed, referring URLs, and interactions with the Site, using cookies and similar technologies. See Section 7 (Cookies).
Information from our platform. Our store runs on Shopify, which processes order, checkout, and fraud-prevention data on our behalf as part of operating the Site.
3. What We Do Not Collect: Data Inside Our Products
Our Products are self-contained tools that run in your own environment — your browser, your intranet, your LMS, or your spreadsheet software. Any data you or your organization enter into a Product (assessments, requests, learner progress, personal data of any kind) is processed locally in your systems. We do not receive it, cannot access it, and are not a processor of it. Where a Product connects to your own LMS or LRS, data flows between your systems only, per your configuration.
4. How We Use Personal Information
We use the information described above to: process and deliver your orders, including sending download links and receipts (performance of a contract); respond to your questions and provide support (performance of a contract / legitimate interests); operate, secure, and improve the Site, including fraud prevention (legitimate interests / legal obligation); maintain business records and comply with tax, accounting, and legal obligations (legal obligation); send service communications about your purchase (performance of a contract); and, only if you opt in, send marketing emails, which you can unsubscribe from at any time (consent). The parentheticals reflect our legal bases where GDPR or UK GDPR applies.
5. How We Share Personal Information
We share personal information only with: Shopify Inc., which hosts our store and processes orders on our behalf; payment processors that handle your transaction; service providers supporting email delivery and store operations; and professional advisors or authorities where required for legal compliance, to enforce our terms, or to protect rights and safety. If our business is sold or reorganized, personal information may transfer as part of that transaction, subject to this policy.
We do not sell personal information, and we do not share it for cross-context behavioral advertising as those terms are defined under the California Consumer Privacy Act (as amended by the CPRA) and similar U.S. state laws. We have not done so in the preceding 12 months.
6. Retention
We keep order and transaction records as required for tax and accounting purposes (generally 7 years), support correspondence for as long as needed to resolve and document the matter, and marketing preferences until you unsubscribe. Site analytics data is retained per our platform provider's standard schedules. When data is no longer needed, it is deleted or de-identified.
7. Cookies
The Site uses cookies that are necessary for it to function — shopping cart, checkout, security, and fraud prevention — along with platform analytics that help us understand how the store is used. Necessary cookies cannot be switched off; you can control other cookies through your browser settings and, where shown, our cookie preferences controls. We honor opt-out preference signals such as Global Privacy Control where legally required.
8. International Transfers
We are based in the United States, and information is processed on Shopify infrastructure that may be located in the U.S. and other countries. Where personal information of individuals in the EEA, UK, or Switzerland is transferred internationally, those transfers rely on appropriate safeguards, including the European Commission's Standard Contractual Clauses and, where applicable, our providers' participation in recognized transfer frameworks.
9. Your Rights
Depending on where you live, you may have the right to: access the personal information we hold about you; correct inaccurate information; delete your information; receive a portable copy; object to or restrict certain processing; withdraw consent at any time (without affecting prior processing); and opt out of sale, sharing, or targeted advertising — noting that we do not engage in those practices. We will not discriminate against you for exercising any right.
To exercise a right, contact us through the Site's contact page. We will verify your request using the email address associated with your purchase and respond within the timeframe required by applicable law (generally 30–45 days). If we decline a request, you may appeal by replying to our decision, and we will review it. You may also lodge a complaint with your data protection authority (in the EEA/UK) or your state attorney general (in the U.S.). Authorized agents may submit requests on your behalf where the law allows, subject to verification.
10. Children
The Site and Products are business tools intended for adults. We do not knowingly collect personal information from anyone under 16, and we do not sell products or services directed at children. If you believe a child has provided us personal information, contact us and we will delete it.
11. Security
We use commercially reasonable administrative and technical safeguards to protect personal information, including the security controls of our platform and payment providers (such as TLS encryption and PCI-DSS compliant payment processing). No system is perfectly secure, so please protect your account credentials and download links.
12. Changes to This Policy
We may update this policy from time to time. The current version will always be posted on the Site with its effective date. Material changes will be flagged on the Site or, where appropriate, sent to the email associated with your purchase.
13. Contact
For privacy questions or to exercise your rights, reach us through the contact page on this Site. We aim to respond to all privacy inquiries promptly.