Privacy Policy

1. Who we are

This Privacy Policy describes how EYEMAGINE Technology, LLC(“EYEMAGINE,” “we,” “us,” or “our”) collects, uses, and shares personal information when you visit eyemaginetech.com, interact with our forms, or correspond with us. We are a Delaware-registered limited-liability company headquartered in Costa Mesa, California, USA. For privacy inquiries, contact [email protected].

2. Information we collect

Information you give us

• Newsletter signup:email address (HubSpot form “Newsletter”).
• Contact form / workshop request:name, email, company, phone (optional), the service or topic you’re interested in, and the message you write (HubSpot forms “Contact” and “Workshop”).
• Direct correspondence: anything you send to [email protected], call to (949) 218-1331, or send through LinkedIn.

Information collected automatically

• Device and usage: IP address, browser type and version, operating system, screen size, referring URL, pages viewed, the date and time of access, and approximate location derived from your IP.
• Cookies and similar technologies: see Section 4 below.
• Server logs: standard web-server access logs for security, debugging, and abuse prevention.

Information we receive from third parties

• HubSpot CRM: when an existing contact engages with the site, HubSpot may match the visit to that contact record and share back page-view, form-submission, and engagement signals.
• Apollo.io: our website tracker enriches visits with firmographic data (company name, industry, headcount estimate) where possible. We do not receive personal identifiers from this enrichment unless you also submit a form.

3. How we use your information

We use the information we collect to:

• Provide, operate, and improve our website and services.
• Respond to inquiries, schedule workshops, and follow up on leads.
• Send newsletters, updates, and marketing communications you have opted in to receive. You can unsubscribe at any time using the link at the bottom of those emails.
• Measure marketing performance, understand traffic patterns, and improve content (see analytics in Section 4).
• Detect, prevent, and investigate fraud, abuse, or security incidents.
• Comply with legal obligations, enforce our terms, and protect our legal rights.

4. Cookies, pixels, and analytics

We use the following technologies. You can disable cookies in your browser settings; doing so may break parts of the site.

Browser-level controls: most modern browsers let you block third-party cookies, send a Global Privacy Control signal, and clear local storage. We honor Global Privacy Control (GPC) signals from California residents as a request to opt out of the sale or sharing of personal information.

5. Who we share information with

We do not sell personal information for money. We share information only with the following categories of recipients, and only as needed for the purposes described:

• Service providers acting as processors on our behalf: HubSpot (CRM, forms, email, live chat), Google (Analytics, Tag Manager), Meta Platforms (advertising), Apollo.io (sales engagement), DigitalOcean (web hosting), Cloudflare (CDN, DDoS protection, edge TLS).
• Professional advisors: lawyers, accountants, auditors, and similar professionals under a duty of confidentiality.
• In a business transaction: if EYEMAGINE is involved in a merger, acquisition, or asset sale, personal information may be transferred as part of the transaction, subject to standard confidentiality protections.
• For legal reasons: when required by law, subpoena, court order, or government request, or to investigate fraud, security incidents, or violations of our terms.

For CCPA/CPRA purposes, our use of advertising cookies (Meta Pixel, cross-context behavioral advertising) may be considered “sharing” of personal information. See Section 8 for your right to opt out.

6. Data retention

• Form submissions / CRM contacts: retained for the duration of our business relationship plus 7 years to support tax, accounting, and audit obligations. Inactive leads with no engagement for 24 months are reviewed for deletion.
• Newsletter subscribers: retained until you unsubscribe; up to 30 days after unsubscribe for suppression-list purposes (so we don’t accidentally re-add you).
• Analytics data: retained per the vendor’s default (Google Analytics 4: 14 months by configuration; Meta: rolling 180 days for ad attribution).
• Server logs: 90 days.

7. Your rights

Depending on where you live, you may have the following rights regarding your personal information:

• Access — request a copy of the personal information we hold about you.
• Correction — ask us to fix inaccurate information.
• Deletion — ask us to delete your information, subject to legal retention obligations.
• Opt out — opt out of marketing emails (link in every email) or of the sale/sharing of personal information (CCPA: see Section 8).
• Portability — request your information in a portable format.
• Non-discrimination — we will not retaliate against you for exercising any privacy right.

To exercise any of these rights, email [email protected] with the subject line “Privacy rights request.” We will respond within 30 days (or 45 days where allowed by law), and we may need to verify your identity before fulfilling the request.

8. California residents (CCPA / CPRA)

If you are a California resident, the California Consumer Privacy Act (CCPA) as amended by the California Privacy Rights Act (CPRA) gives you specific rights:

• Right to know what categories of personal information we collect, the sources, the business purpose, and the categories of third parties we share it with.
• Right to delete personal information we have collected.
• Right to correct inaccurate personal information.
• Right to opt out of the sale or sharing of personal information. We do not sell information for money, but our use of certain advertising cookies may constitute “sharing” under CPRA.
• Right to limit the use of sensitive personal information — we do not collect sensitive personal information as defined by CPRA.
• Right to non-discrimination for exercising any of the above.

To exercise these rights, email [email protected] with the subject “CCPA request.” You may also designate an authorized agent to make a request on your behalf, in which case we may require proof of the agent’s authority.

“Do Not Sell or Share My Personal Information.” To opt out of the sharing of personal information for cross-context behavioral advertising, email [email protected] or send a Global Privacy Control signal from a supported browser. We honor GPC signals as a valid opt-out request.

9. European Economic Area, UK, and Switzerland (GDPR / UK GDPR)

If you are in the EEA, UK, or Switzerland, the General Data Protection Regulation (GDPR), UK GDPR, or Swiss FADP applies. EYEMAGINE acts as the data controller for personal information collected via this site.

Legal bases we rely on:

• Consent — for marketing emails and non-essential cookies.
• Contract — to respond to your inquiry and deliver services you request.
• Legitimate interests — to run, secure, and improve our business (e.g., analytics, fraud prevention), balanced against your rights.
• Legal obligation — to comply with applicable laws.

You have the rights described in Section 7 above. You also have the right to lodge a complaint with your local data-protection authority. To exercise GDPR rights, email [email protected].

10. Children’s privacy

Our website is intended for business audiences and is not directed to children under 16. We do not knowingly collect personal information from children. If you believe a child has provided personal information to us, please contact us and we will delete the information promptly.

11. Security

We use industry-standard technical and organizational safeguards including TLS encryption in transit, access controls, hardened server configuration, and routine security review. No method of transmission or storage is 100% secure; if you have reason to believe your interaction with us is no longer secure, contact us at [email protected].

12. International data transfers

EYEMAGINE is based in the United States. If you access this site from outside the U.S., your information may be transferred to, stored in, and processed in the U.S. and in any country where our service providers operate. Where required, we rely on appropriate safeguards such as the EU Standard Contractual Clauses or comparable mechanisms.

13. Changes to this policy

We may update this policy from time to time. Material changes will be announced via a notice on this page and, where appropriate, by email. The “Effective” and “Last reviewed” dates at the top of this page tell you when the policy was most recently changed.

14. Contact us