PRIVACY POLICY
For more information on Interest-based Advertising and your choices regarding it click
here.
To submit a Data Subject Access or Deletion Request, click here.
This Privacy Policy (“Policy”) is effective as of October 02, 2024.
This Policy describes how Luxottica of America Inc., including all direct and indirect subsidiaries
(collectively “Luxottica,” “we,” “our,” or “us”), collect, use, disclose, and safeguard your
information.
This Policy applies to individuals who access this website and any other websites that link to this
Policy
(collectively “Sites”), our as well
as the Face Scanning App (“FSA”), or our in-store Face Scanning Kiosk (“Kiosk”), and certain other
services as described below (collectively, the “Platforms”). This Policy, together with our Terms of Use,
collectively
govern your use of our Sites. This Policy applies to our Platforms that link to
this Policy.
From time to time, we may change this Policy. If we do, we will post an amended version on this
webpage. Please review this Policy periodically.
You may submit a request to exercise rights you may have under applicable state law through our
interactive webform available here
or by calling us toll free at 1-866-472-922
The Privacy Policy covers the following topics:
1. THE INFORMATION WE COLLECT
2. HOW DO WE USE YOUR INFORMATION
3. SHARING INFORMATION WITH THIRD PARTIES
4. COOKIES AND OTHER TRACKING TECHNOLOGIES
5. DIGITAL ADVERTISING & ANALYTICS / INTEREST-BASED ADS
6. THIRD-PARTY LINKS & PLUG-IN
7. BIOMETRIC INFORMATION WE COLLECT
8. YOUR STATE PRIVACY RIGHTS
9. NOTICE TO NEVADA RESIDENTS
10. NOTICE TO VIRGINIA RESIDENTS
11. NOTICE TO CALIFORNIA RESIDENTS
12. NOTICE TO OREGON RESIDENTS
13. NOTICE TO CANADA RESIDENTS
14. YOUR CHOICES
15. CHILDREN’S PRIVACY
16. UPDATING YOUR INFORMATION
17. SECURITY
18. DO NOT TRACK SIGNALS
19. TRACKING ACROSS TIME AND TECHNOLOGIES DISCLOSURE
20. CONSUMERS WITH DISABILITIES
21. CONTACT
1. THE INFORMATION WE COLLECT
For the purpose of this policy, personal information is any information about an identifiable
individual.
We collect the following types of personal information:
Information You Provide
When using our Platforms or our services, you may provide us with your personal information through
a
variety of methods, including the following:
- Create an Account. If you create an account with us, you will provide us with your name, email address, birth date, and you will create a password for future logins.
- Subscribe to Our Newsletter. If you subscribe to our newsletter, you will provide us with your email address.
- Customer Service. If you contact our customer service department, you may need to provide us with additional information so that we can respond to your questions or concerns as completely and thoroughly as possible.
- Purchases. When you make a purchase, you will provide us with your name, email address, phone number, physical address, and credit card or gift card information. We also will collect your payment card, gift card, or other payment information. We use third parties to process payments. For in-store purchases we may also collect your signature.
- Prescriptions. If you purchase prescription products, you will provide us with your eye prescription information and insurance information.
- Register Products. If you decide to register your product(s), you may choose to voluntarily provide the date of your last eye exam, the type(s) of products to register, the purchase date of the products, and the reason(s) why you decided to buy our products.
- Find Your Match. If you use our Frame Advisor Technology, you will either upload a photograph of your face or you will allow the technology to take a scan of your face.
- Book an Appointment. If you book a store appointment, you will provide us with your name, email address, birth date, physical address, and phone number.
- Loyalty Program. If you sign up for our loyalty program, you will provide us with your name, email address, birth date, and you may choose to provide us with your gender.
- Track and Return Orders. If you check your order status or start a return, you will provide us with your order number and email address.
- Refer a Friend. To refer a friend, you will provide us with your name and email address, and the email address of the friend you are referring.
- Promotions. If you enter a sweepstakes, contest, giveaway, or other promotion (each a “Promotion”), you will provide us with your age or birth date.
- Apply for a Job. If you apply for a job through one of our Platforms, we will collect any information you provide in your application, including, but not limited to, work authorization information, visa status, desired salary, language proficiency, educational background, employment history, and references. You may also choose to voluntarily provide optional information such as race, gender, or whether you are disabled.
- Survey. If you are participating in a survey, you may provide your gender and age, income, ethnicity, family size, and marital status.
- Business Information. We may collect personal information from business clients or vendors, including company name, physical address, phone number, email address, and credit card information.
- HIPAA. Some of the affiliates and brands covered by this Policy are subject to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). These affiliates and brands may collect additional information that is considered “protected health information” (“PHI”) as defined by HIPAA. When the information that we collect is considered PHI, we will handle that information in accordance with our Notice of Privacy Practices. Please visit that notice for information on our privacy practices, our legal duties, and your rights concerning your PHI.
- Biometric Information. We may collect biometric information to provide you with certain services. See the “BIOMETRIC INFORMATION” section of this Policy to learn more about how this information is collected, used, disclosed and stored.
- Visual footage.When you visit one of our store locations, you can expect that we will collect CCTV footage.
Information as You Navigate Our Platforms
We automatically collect certain personal information through your use of the Platforms, such as the following:
- Usage Information. For example, the pages on the Platforms you access, the frequency of access, and what you click on while on the Platforms.
- Device Information. For example, hardware model, operating system, application version number, and browser.
- Mobile Device Information. Aggregated information about whether the Platforms are accessed via a mobile device or tablet, the device type, and the carrier.
- Location Information. Location information from Platform visitors on a city-regional basis.
In some cases, we may receive certain personal information from you about a third party including receiving personal information from data brokers. Additionally, the receipt of information from third parties may also include, when you refer a friend and provide the email address, or other contact information, of a third party. If you submit any personal information about another individual to us, you are responsible for making sure you have the authority to do so and to allow us to use their personal information in accordance with this Policy. Top
2. HOW DO WE USE YOUR INFORMATION
We may use the personal information we collect to improve our Platforms and to protect our legal rights. In addition, we may use the personal information we collect to:
- Process your account registration;
- Process and fulfill your order, including sending you emails to confirm your order status and shipment, and to provide other related communications;
- Send you our newsletter;
- Sign you up for our loyalty program;
- Identify your preferences to customize our communications and marketing;
- Manage and record your settings, consents, communications and opt-out choices;
- Provide information regarding vision, vision care, and vision correction;
- Administer a Promotion;
- Review your job application;
- Communicate with you about our Platforms or to inform you of any changes to our Platforms;
- Allow you to find an eyecare professional or doctor, distributor, store or sales consultant in your area and schedule eye exams or similar appointments with such persons;
- Operate and improve the Platforms, including to analyze visits to the Platforms and learn about our visitors so we can operate the Platforms and improve our products and services and deliver the best user experience;
- Create audiences for our advertisements, target our advertisements, and generate reports about the performance of our advertisements;
- Communicate with you, including responding to your inquiries;
- Comply with the law and to maintain the integrity and security of our Platforms;
- Defend our legal rights and the rights of others;
- Investigate, prevent, or take action regarding illegal activities, suspected fraud, situations involving potential threats to the physical safety of any person, or violations of our Terms of Use and to otherwise fulfill our legal obligations;
- Fulfill any other purposes for which you provide it, or any other purpose we deem necessary or appropriate;
5. DIGITAL ADVERTISING & ANALYTICS/INTEREST-BASED ADS
We may partner with ad networks and other ad serving providers (“Advertising Providers”) that serve
ads on
behalf of us and others on the Platforms and non-affiliated platforms. Some of those ads may be
personalized, meaning that they are intended to be relevant to you based on information Advertising
Providers collect about your use of the Platforms and other sites or apps over time, including
information
about relationships among different browsers and devices (“Interest-based Advertising”).
You may choose whether to receive some Interest-based Advertising by submitting opt outs. Some
Advertising
Providers may participate in the Digital Advertising Alliance’s (“DAA”) Self-Regulatory Program for
Online
Behavioral Advertising. To learn more about how you can exercise certain choices regarding
Interest-based
Advertising, visit http://www.aboutads.info/choices , and http://www.aboutads.info/appchoices
for information
on the DAA’s opt-out program for mobile apps.
Some of these companies may also be members of the Network Advertising Initiative (“NAI”). To learn
more
about the NAI and the opt-out options for their members, see http://www.networkadvertising.org/choices.
Please be aware that, even if you are able to opt out of certain kinds of Interest-based
Advertising, you
may continue to receive other types of ads. Opting out only means that those selected members should
no
longer deliver certain Interest-based Advertising to you but does not mean you will no longer
receive any
targeted content and/or ads (e.g., from other ad networks). Also, if your browsers are configured to
reject
cookies when you visit these opt-out webpages, or you subsequently erase your cookies, use a
different
device or web browser or use a non-browser-based method of access (e.g., mobile app), your NAI / DAA
browser-based opt-out may not, or may no longer, be effective. We support the ad industry’s 2009
Self-regulatory Principles for Online Behavioral Advertising
(https://www.iab.com/wp-content/uploads/2015/05/ven-principles-07-01-09.pdf)
and expect that ad networks we
directly engage to serve you Interest-based Advertising will do so as well, though we cannot
guarantee their
compliance. We are not responsible for the effectiveness of, or compliance with, any third parties’
opt-out
options or programs or the accuracy of their statements regarding their programs.
Advertising Providers may use data collected in connection with our advertising campaigns for the
following
purposes:
- For measurement and insight reporting (to produce and provide us with reports measuring the impact and performance of our advertising campaigns).
- To produce benchmarking reports to share with their other customers, but such benchmarking reports will not identify you.
- To target our ad campaigns to specific groups of individuals having particular characteristics.
- To improve and optimize advertising services (for example, to support the objectives of our ad campaigns, improve the effectiveness of their own advertising services and determine the relevance of ads to individuals).
- To personalize ads that the Advertising Providers show, including to enhance user profiles with inferred interests.
- For their internal purposes, including (i) to promote and ensure the safety and security on and of their products and services; (ii) to detect and prevent malicious, deceptive, fraudulent, invalid or illegal activity; (iii) for research and development purposes; and (iv) to maintain the integrity of and to improve their products and services.
- To combine it with other data collected by Advertising Providers in order to provide greater insights in respect of our advertisements.
We use web analytics tools to enhance user experience by optimizing the efficiency, design, and quality of the Platforms. Our analytics tools use cookies and similar technologies to collect and analyze information related to user behavioral metrics on the Platforms, such as mouse movements, clicks, user inputs, scrolling, access time, visit duration, pages viewed, IP address (including approximate location), operating system, and page reloading. These tools provide insight into what works and what doesn’t work for users of the Platforms and they allow us to, for example, identify and repair technical errors such as broken links that impair the Platforms’ functionality. The web analytics tools also help us reconstruct the user experience to better understand, for example, where users may be encountering frustration or impediments to using the Platforms.
We use a website analytics tool that provides session replay, heatmaps, funnels, form analytics, feedback campaigns, and similar features/functionality. This session replay software may record your clicks, mouse movements, scrolling, form fills (keystrokes) in non-excluded fields, pages visited and content, time on site, browser, operating system, device type (desktop/tablet/phone), screen resolution, visitor type (first time/returning), anonymized IP address, location (city/country), language, and similar metadata. This software does not collect information on pages where it is not installed, nor does it track or collect information outside your web browser.
We use this web-based analytics software because it gives us a tool to track the online behavior of visitors while on the Platforms and lets us replay visitors’ actions. This tool gives us the opportunity to make the Platforms better and, in turn, provide you with an enhanced online experience as well. Thanks to this tool, we are able to gain insight on how you and other visitors use the Platforms; for example, whether you can easily locate the “Find a Store” page or whether it takes multiple clicks to get to that page. Information about these small choices and interactions are of paramount value to us, as they can easily make your experience better and more intuitive and, more importantly, allow us to provide you with a more seamless, customer-friendly e-shopping experience while on the Platforms.
For more information on this session replay software, see Contentsquare’s Privacy Policy at https://contentsquare.com/privacy-center/privacy-policy/.
We may use pixel tags (also known as web beacons and clear GIFs) to, among other things, track the actions of users of the Services (including email recipients), measure the success of our marketing campaigns, and compile statistics about usage of the services and response rates. Our Advertising Providers may use pixel tags to collect information for the purposes described above.
6. THIRD-PARTY LINKS & PLUG-IN
The Platforms may provide links to third-party websites or apps, including our social media pages.
We do not
control the privacy practices of those websites or apps, and they are not covered by this Policy.
You should
review the privacy policies of other websites or apps that you use to learn about their data
practices.
The Platforms may also include integrated social media tools or “plug-ins,” such as social
networking tools
offered by third parties. If you use these tools to share information or you otherwise interact with
social
media features on the Platforms, those social media companies may collect information about you and
may use
and share such information in accordance with their own policies, including by sharing such
information with
us or the general public. Your interactions with third-party social media companies and the use of
their
features are governed by the privacy policies of the companies that provide those features. We
encourage you
to read the privacy policies for any social media accounts you create and use.
7. BIOMETRIC INFORMATION WE COLLECT
Through various technology features, including but not limited to our virtual technology features
and/or when
you upload a photo through one of
our Platforms, we may collect data that potentially falls under the definitions of “biometric
identifiers”
or “biometric information” under the
Illinois Biometric Information Privacy Act, 740 ILCS § 14/1 et seq. and Texas Capture or Use of
Biometric
Identifier Act (“CUBI”), Bus. & Com.
§ 503.001 et seq. “Biometric identifiers” are defined as retina or iris scans, fingerprints,
voiceprints, or
scans of the hand or face
geometry.
“Biometric information,” means any information, regardless of how it is captured, converted, stored,
or
shared, based on an individual’s biometric
identifier used to identify an individual.
Any collection of biometric identifiers and biometric information are for the sole purpose of
assisting you
in viewing how certain eyeglasses may
look on your facial features. We will not disclose or disseminate any biometric information to any
entity,
other than those contracted parties
that assist us in providing this service to you, or as required by applicable federal, state or
local law,
or required pursuant to a valid warrant
or subpoena issued by a court of competent jurisdiction.
We will not share your biometric identifiers and biometric information with any entity except in the
following cases:
- We will share your biometric identifiers and biometric information with contacted parties that assist us in providing services to you via our Platforms
- We will share your biometric identifiers and biometric information where it is required by applicable federal, provincial, or local law
- We will share your biometric identifiers and biometric information where it is required pursuant to a valid warrant or subpoena issued by a court of competent jurisdiction
We use appropriate technical, administrative, and physical safeguards to store, transmit, and protect from disclosure any biometric identifiers or biometric information collected. Such storage, transmission, and protection from disclosure shall be performed in a manner that is the same or more protective than the manner in which we store, transmit, and protect from disclosure other confidential and sensitive information.
Biometric information will only be collected by us with your prior explicit consent. Before using our virtual technology features, you will be prompted with a copy of this policy. By clicking “I accept” you are consenting to our collection and storage of your biometric identifiers or biometric information. Top
8. YOUR STATE PRIVACY RIGHTS
Depending on the state in which you reside, you may have certain privacy rights regarding your personal data. Please review the sections below if you are a California, Nevada, Oregon, or Virginia resident. For other state residents, your privacy rights may include (if applicable):
- The right to confirm whether or not we are processing your personal data and to access such personal data and the categories of personal data we are processing or have processed;
- The right to obtain a copy of your personal data that we collected from and/or about you in a portable and, to the extent technically feasible, readily usable format that allows you to transmit the information to another controller without hindrance, where the processing is carried out by automated means;
- The right to delete personal data that we collected from and/or about you, subject to certain exceptions;
- The right to correct inaccurate personal data that we maintain about you, subject to certain exceptions;
- The right, if applicable, to opt out of the processing of your personal data for purposes of (1) targeted advertising; (2) the “sale” of your personal data (as that term is defined by applicable law); and (3) profiling in furtherance of decisions that produce legal or similarly significant effects concerning you;
- If we are required by applicable law to obtain your consent to process sensitive personal data, the right to withdraw your consent; and
- The right not to receive discriminatory treatment by us for the exercise of your privacy rights.
We use cookies and other tracking technologies to display advertisements about our products to you on
nonaffiliated websites, applications, and online services. This is “targeted advertising” under
applicable privacy laws. When we engage in those activities, we sell personal data (i.e.,
information from cookies) to third-party advertisers and analytics companies. We do not use personal
data for profiling in furtherance of decisions that produce legal or similarly significant effects
concerning individuals.
To exercise your rights, please submit a request through our interactive webform available here or by emailing us at privacyoffice@luxotticaretail.com. If
legally required, we will comply with your request upon verification of your identity and, to the
extent applicable, the identity of the individual on whose behalf you are making such request. To do
so, we will ask you to verify data points based on information we have in our records. If you are
submitting a request on behalf of another individual, please use the same contact methods described
above. If we refuse to take action regarding your request, you may appeal our decision through our
interactive webform available here or by emailing us at privacyoffice@luxotticaretail.com. If you
would like to opt out of targeted advertising, you may alter your cookie preferences here by
toggling off the three cookie options in the cookie manager tool.
If you enter into a Loyalty Program with us, we will collect your name, email address, and you may
choose to provide us with your birth date and gender. We do not provide your personal data to data
brokers. If you ask us to delete your personal data, we will not be able to provide you with the
benefits of our Loyalty Program because we will delete your account.
Universal Opt-Out Mechanisms
The Sites recognize the Global Privacy Control (“GPC”) signal. If you are using a browser setting or plug-in that sends an opt-out preference signal to each website you visit, we will treat that as a valid request to opt out. To download and use a browser supporting the GPC browser signal, click here. If you choose to use the GPC signal, you will need to turn it on for each supported browser or browser extension you use. See the “DO NOT TRACK SIGNALS” section below for information on our treatment of do not track signals.
Top9. NOTICE TO NEVADA RESIDENTS
Nevada law allows Nevada residents to opt out of the sale of certain types of personal information. Subject to several exceptions, Nevada law defines “sale” to mean the exchange of certain types of personal information for monetary consideration to another person. We currently do not sell personal information as defined in the Nevada law. However, if you are a Nevada resident, you still may submit a verified request to opt out of sales and will record your instructions and incorporate them in the future if our policy changes. You may send opt-out requests through our interactive webform available here or by emailing us at privacyoffice@luxotticaretail.com.
Top10. NOTICE TO VIRGINIA RESIDENTS
The Virginia Consumer Data Protection Act (“VCDPA”) provides Virginia residents with the right to
receive
certain disclosures regarding the personal data we process about them. For purposes of this section,
personal data means any information that is linked or reasonably linkable to an identified or
identifiable
natural person. Personal data does not include de-identified or publicly available information as
the VCDPA
defines those terms.
For a discussion of the categories of personal data we process, the purposes for our processing, the
categories of personal data that we share with third parties, and the categories of third parties
with whom
we share personal data, please see Section 1 through 3 above, and Section 10 below.
If you are a Virginia resident, the VCDPA grants you the right to: (1) confirm whether or not we are
processing your personal data to access such personal data; (2) correct inaccuracies in your
personal data,
taking into account the nature of the personal data and the purposes of the processing of your
personal
data; (3) delete personal data you have provided or we have obtained about you; (4) obtain a copy of
your
personal data that you previously provided to us in a portable and, to the extent technically
feasible,
readily usable format that allows you to transmit the data to another controller without hindrance,
where
the processing is carried out by automated means; and (5) opt out of the processing of your personal
data
for purposes of (i) targeted advertising, (ii) the sale of personal data, or (iii) profiling in
furtherance
of decisions that produce legal or similarly significant effects concerning you.
We sell personal data to third parties as defined in the VCDPA. We process personal data for
targeted
advertising.
To exercise your rights, please email us at privacyoffice@luxotticaretail.com, with your
name,
the fact that
you are a Virginia resident, and specifying the right(s) you wish to invoke. If we refuse to take
action
regarding your request, you may appeal our decision by email us at privacyoffice@luxotticaretail.com. If you
would like to opt out of targeted advertising, you may alter your cookie preferences by privacy preferences.
12. NOTICE TO CALIFORNIA RESIDENTS
The California Consumer Privacy Act of 2018, as amended by the California Privacy Rights Act of 2020
(“CCPA”), requires that we provide California residents with a privacy
policy that contains a comprehensive description of our online and offline practices regarding the
collection, use, disclosure, sale, sharing, and retention of personal information and of the rights
of
California residents regarding their personal information. This section of the Policy is intended
solely
for, and is applicable only as to, California residents. If you are not a California resident, this
section
does not apply to you and you should not rely on it.
The CCPA defines “personal information” to mean information that identifies, relates to, describes,
is
reasonably capable of being associated with, or could reasonably be linked, directly or indirectly,
with a
particular California resident or household. Personal information does not include publicly
available,
deidentified or aggregated information or lawfully obtained, truthful information that is a matter
of public
concern. For purposes of this “NOTICE TO CALIFORNIA RESIDENTS” section we will refer to this
information as
“Personal Information.”
If you are a California resident and a current or former employee, job applicant, or independent
contractor
of ours, please see our privacy notice available on our job applicant website(s) for more
information on our
collection and use of your Personal Information in that capacity.
Notice at Collection of Personal Information
We currently collect and, in the 12 months prior to the Last Updated date of this Policy, have
collected the
following categories of Personal Information:
- Identifiers (name, postal address, online identifier, Internet Protocol address, email address)
- Unique personal identifiers (device identifier; cookies, beacons, pixel tags, mobile ad identifiers, or other similar technology; customer number)
- Telephone number
- Credit card number
- Insurance policy number
- Medical information
- Internet or other electronic network activity information (browsing history; search history; and information regarding consumer’s interaction with website, application, or advertisement)
- Geolocation data
- Commercial information (records of personal property, products or services purchased, obtained, or considered; other purchasing or consuming histories or tendencies; or other commercial information)
- Education information
- Professional or employment-related information (including employment history)
- Biometric information (imagery of iris, imagery of retina, fingerprint, imagery of face, from which an identifier template, such as a faceprint, a minutiae template, or a voiceprint, can be extracted)
- Characteristics of protected classifications under California or federal law (sex/gender), age (40 and older)
- Inferences drawn from above information to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes
In addition to the purposes stated above in the Section “HOW WE USE YOUR INFORMATION” we currently collect and have collected and sold the above categories of Personal Information for the following business or commercial purposes:
- Auditing related to counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance with this specification and other standards
- Helping to ensure security and integrity to the extent the use of your Personal Information is reasonably necessary and proportionate for these purposes
- Debugging to identify and repair errors that impair existing intended functionality
- Short-term, transient use, including, but not limited to, nonpersonalized advertising shown as part of your current interaction with us, provided that your Personal Information is not disclosed to another third party and is not used to build a profile about you or otherwise alter your individual consumer’s experience outside the current interaction with us, including, but not limited to, the contextual customization of ads shown as part of the same interaction
- Performing services including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services
- Providing advertising and marketing services, except for cross-context behavioral advertising, to you provided that, for the purpose of advertising and marketing, our service providers and/or contractors shall not combine the Personal Information of opted-out consumers that the service provider or contractor receives from us, or on our behalf with Personal Information that the service provider or contractor receives from, or on behalf of, another person or persons or collects from its own interaction with you
- Undertaking internal research for technological development and demonstration
- Undertaking activities to verify or maintain the quality or safety of a service or device that is owned, manufactured, manufactured for, or controlled by us, and to improve, upgrade, or enhance the service or device that is owned, manufactured, manufactured for, or controlled by us
- Advancing our commercial or economic interests, such as by inducing another person to buy, rent, lease, join, subscribe to, provide, or exchange products, goods, property, information, or services, or enabling or effecting, directly or indirectly, a commercial transaction
The following table identifies the categories of Personal Information that we sold or shared to third parties in the 12 months preceding the Last Updated date of this Privacy Policy and, for each category, the categories of third parties to whom we sold or shared Personal Information:
Category of Personal Information
Categories of Third Parties
Identifiers (name, postal address, online identifier, Internet Protocol address, email address)
Advertising networks; data analytics providers; social media networks
Unique personal identifiers (device identifier; cookies, beacons, pixel tags, mobile ad identifiers, or other similar technology; customer number, unique pseudonym or user alias; telephone numbers, or other forms of persistent or probabilistic identifiers that can be used to identify a particular consumer or device)
Advertising networks; data analytics providers; social media networks
Internet or other electronic network activity information (browsing history; search history; and information regarding consumer’s interaction with website, application, or advertisement)
Advertising networks; data analytics providers; social media networks
Commercial information (records of personal property, products or services purchased, obtained, or considered; other purchasing or consuming histories or tendencies; or other commercial information)
Advertising networks; social media networks
Inferences drawn from above information to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes
Advertising networks; social media networks
We sold or shared Personal Information to third parties for the following business or commercial purposes:
- Auditing related to counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance with this specification and other standards
- Advancing our commercial or economic interests, such as by inducing another person to buy, rent, lease, join, subscribe to, provide, or exchange products, goods, property, information, or services, or enabling or effecting, directly or indirectly, a commercial transaction
Category of Personal Information
Categories of Recipients
Identifiers (name, postal address, online identifier, Internet Protocol address, email address)
Subsidiaries and affiliates; marketing service providers; operating systems and platforms
Credit card information
Payment processors
Internet or other electronic network activity information (browsing history; search history; and information regarding consumer’s interaction with website, application, or advertisement)
Subsidiaries and affiliates; operating systems and platforms; social media networks
Geolocation information
Subsidiaries and affiliates; operating systems and platforms
Commercial information (records of personal property, products or services purchased, obtained, or considered; other purchasing or consuming histories or tendencies; or other commercial information)
Subsidiaries and affiliates; operating systems and platforms
Education information
Subsidiaries and affiliates
Biometric information (imagery of iris, imagery of retina, fingerprint, imagery of face, from which an identifier template, such as a faceprint, a minutiae template, or a voiceprint, can be extracted)
Subsidiaries and affiliates; operating systems and platforms
Characteristics of protected classifications under California or federal law (sex/gender), age (40 and older)
Subsidiaries and affiliates; operating systems and platforms
Inferences drawn from above information to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes
Subsidiaries and affiliates; operating systems and platforms
We disclosed Personal Information for the following business or commercial purposes:
- Performing services including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services
Retention of Personal Information
We retain your Personal Information for as long as necessary to fulfill the purposes for which we collect it, such as to provide you with the service you have requested, and for the purpose of satisfying any legal, accounting, contractual, or reporting requirements that apply to us.
Your Rights
If you are a California resident, you have the following rights with respect to your Personal Information:
- The right to know what Personal Information we have collected about you, including the categories of Personal Information, the categories of sources from which we collected Personal Information, the business or commercial purpose for collecting, selling or sharing Personal Information (if applicable), the categories of third parties to whom we disclose Personal Information (if applicable), and the specific pieces of Personal Information we collected about you;
- The right to delete Personal Information that we collected from you, subject to certain exceptions;
- The right to correct inaccurate Personal Information that we maintain about you;
- If we sell or share Personal Information, the right to opt out of the sale or sharing;
- If we use or disclose sensitive Personal Information for purposes other than those allowed by the CCPA and its regulations, the right to limit our use or disclosure;
- The right not to receive discriminatory treatment by us for the exercise of privacy rights the CCPA confers.
You may submit a request to know, delete, and/or correct through our interactive webform available here or by calling us toll free at 1-866-472-9226.
If you are submitting a request on behalf of a California resident, please submit the request through one of the designated methods discussed above. After submitting the request, we will require additional information to verify your authority to act on behalf of the California resident.
Our Process for Verifying a Request to Know, Delete, and/or Correct
We will comply with your request upon verification of your identity and, to the extent applicable, the identity of the California resident on whose behalf you are making such request.
We will verify your identity either to a “reasonable degree of certainty” or a “reasonably high degree of certainty” depending on the sensitivity of the Personal Information and the risk of harm to you by unauthorized disclosure, deletion, or correction as applicable.
For requests to access categories of Personal Information and for requests to delete or correct Personal Information that is not sensitive and does not pose a risk of harm by unauthorized deletion or correction, we will verify your identity to a “reasonable degree of certainty” by verifying at least two data points that you previously provided to us and which we have determined to be reliable for the purpose of verifying identities.
For requests to access specific pieces of Personal Information or for requests to delete or correct Personal Information that is sensitive and poses a risk of harm by unauthorized deletion or correction, we will verify your identity to a “reasonably high degree of certainty” by verifying at least three pieces of Personal Information you previously provided to us and which we have determined to be reliable for the purpose of verifying identities. In addition, you must submit a signed declaration under penalty of perjury stating that you are the individual whose Personal Information is being requested.
Right to Opt Out of Sale or Sharing of Personal Information
If you are a California resident, you have the right to direct us to stop selling or sharing your Personal Information. You may submit a request to opt out of sales or sharing through our interactive webform available by clicking on this link: Do Not Sell or Share My Personal Information. You also may submit a request by calling us a 1-866-472-9226. If you have enabled privacy controls on your browser (such as a plugin), we will also treat that as a valid request to opt out. To opt out of our use of third-party advertising Cookies, please see the section “How You Can Opt Out of Cookies” above.
Notice of Financial Incentive
Oakley Standard Issue offers programs, benefits, and other offerings related to the collection, retention, use, or sale of your Personal Information that may be deemed a “financial incentive” or “price or service difference” under the California Consumer Privacy Act (“CCPA”). We are providing you this information so that you may make an informed decision on whether to participate in our program(s). Participation is always optional! Categories of Personal Information that we may collect when you sign up for a program include your name and email address. By signing up for any of our programs, you affirmatively opt in to receiving the financial incentive. You can end program participation at any time by contacting us at privacyoffice@luxotticaretail.com to unsubscribe or cancel your participation in any program. We will not discriminate against you, in any manner prohibited by applicable law, for exercising these rights. Please note that we may add or change incentive programs, or their terms by posting notice on the program descriptions and terms linked to above, so check them regularly. Financial incentives or price or service differences relate to the collection and use of Personal Information and is based upon our reasonable, good-faith determination of the estimated value of such information to our business, taking into consideration the value of the offer or benefit itself and the anticipated revenue generation that may be realized by rewarding brand loyalty. We calculate the value of the offer and financial incentive by using the expense related to the offer. Based on this analysis, the value of your Personal Information that allows us to make these offers and financial incentives is the value of the offer itself.
Shine the Light Law
If you are a California resident, California Civil Code § 1798.83 permits you to request information regarding the disclosure of your personal information by us to third parties for the third -parties’ direct marketing purposes (as those terms are defined in that statute). To make such a request, please send an email to privacyoffice@luxotticaretail.com with the subject line “Shine the Light Request.”
Top
12. NOTICE TO OREGON RESIDENTS
Oregon Consumer Privacy Act (“OCPA”) provides residents of Oregon with the right to receive certain
disclosures regarding the personal data we process about them. For purposes of this section,
personal data means any information that is linked or reasonably linkable to an identified or
identifiable natural person.
Notice at Collection of Personal Information
We currently collect and, in the 12 months prior to the Last Updated date of this Policy, have
collected the
following categories of Personal Information.Not all categories will be collected or received for
every individual. For more information on the categories of personal data we collect, please see
“The Information We Collect” section of this Site’s privacy policy.
- Identifiers (name, postal address, online identifier, Internet Protocol address, email address)
- Unique personal identifiers (device identifier; cookies, beacons, pixel tags, mobile ad identifiers, or other similar technology; customer number)
- Telephone number
- Credit card number
- Insurance policy number
- Medical information
- Internet or other electronic network activity information (browsing history; search history; and information regarding consumer’s interaction with website, application, or advertisement)
- Geolocation data
- Commercial information (records of personal property, products or services purchased, obtained, or considered; other purchasing or consuming histories or tendencies; or other commercial information)
- Education information
- Professional or employment-related information (including employment history)
- Biometric information (imagery of iris, imagery of retina, fingerprint, imagery of face, from which an identifier template, such as a faceprint, a minutiae template, or a voiceprint, can be extracted)
- Characteristics of protected classifications under California or federal law (sex/gender), age (40 and older)
- Inferences drawn from above information to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes
In addition to the purposes stated above in the Section “HOW WE USE YOUR INFORMATION” we currently collect and have collected and sold the above categories of Personal Information for the following business or commercial purposes:
- Auditing related to counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance with this specification and other standards
- Helping to ensure security and integrity to the extent the use of your Personal Information is reasonably necessary and proportionate for these purposes
- Debugging to identify and repair errors that impair existing intended functionality
- Short-term, transient use, including, but not limited to, nonpersonalized advertising shown as part of your current interaction with us, provided that your Personal Information is not disclosed to another third party and is not used to build a profile about you or otherwise alter your individual consumer’s experience outside the current interaction with us, including, but not limited to, the contextual customization of ads shown as part of the same interaction
- Performing services including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services
- Providing advertising and marketing services, except for cross-context behavioral advertising, to you provided that, for the purpose of advertising and marketing, our service providers and/or contractors shall not combine the Personal Information of opted-out consumers that the service provider or contractor receives from us, or on our behalf with Personal Information that the service provider or contractor receives from, or on behalf of, another person or persons or collects from its own interaction with you
- Undertaking internal research for technological development and demonstration
- Undertaking activities to verify or maintain the quality or safety of a service or device that is owned, manufactured, manufactured for, or controlled by us, and to improve, upgrade, or enhance the service or device that is owned, manufactured, manufactured for, or controlled by us
- Advancing our commercial or economic interests, such as by inducing another person to buy, rent, lease, join, subscribe to, provide, or exchange products, goods, property, information, or services, or enabling or effecting, directly or indirectly, a commercial transaction
The following table identifies the categories of Personal Information that we sold or shared to third parties in the 12 months preceding the Last Updated date of this Privacy Policy and, for each category, the categories of third parties to whom we sold or shared Personal Information:
Category of Personal Information
Categories of Third Parties
Identifiers (name, postal address, online identifier, Internet Protocol address, email address)
Advertising networks; data analytics providers; social media networks
Unique personal identifiers (device identifier; cookies, beacons, pixel tags, mobile ad identifiers, or other similar technology; customer number, unique pseudonym or user alias; telephone numbers, or other forms of persistent or probabilistic identifiers that can be used to identify a particular consumer or device)
Advertising networks; data analytics providers; social media networks
Internet or other electronic network activity information (browsing history; search history; and information regarding consumer’s interaction with website, application, or advertisement)
Advertising networks; data analytics providers; social media networks
Commercial information (records of personal property, products or services purchased, obtained, or considered; other purchasing or consuming histories or tendencies; or other commercial information)
Advertising networks; social media networks
Inferences drawn from above information to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes
Advertising networks; social media networks
We sold or shared Personal Information to third parties for the following business or commercial purposes:
- Auditing related to counting ad impressions to unique visitors, verifying positioning and quality of ad impressions, and auditing compliance with this specification and other standards
- Advancing our commercial or economic interests, such as by inducing another person to buy, rent, lease, join, subscribe to, provide, or exchange products, goods, property, information, or services, or enabling or effecting, directly or indirectly, a commercial transaction
Category of Personal Information
Categories of Recipients
Identifiers (name, postal address, online identifier, Internet Protocol address, email address)
Subsidiaries and affiliates; operating systems and platforms
Credit card information
Payment processors
Internet or other electronic network activity information (browsing history; search history; and information regarding consumer’s interaction with website, application, or advertisement)
Subsidiaries and affiliates; operating systems and platforms; social media networks
Geolocation information
Subsidiaries and affiliates; operating systems and platforms
Commercial information (records of personal property, products or services purchased, obtained, or considered; other purchasing or consuming histories or tendencies; or other commercial information)
Subsidiaries and affiliates; operating systems and platforms
Education information
Subsidiaries and affiliates
Biometric information (imagery of iris, imagery of retina, fingerprint, imagery of face, from which an identifier template, such as a faceprint, a minutiae template, or a voiceprint, can be extracted)
Subsidiaries and affiliates; operating systems and platforms
Characteristics of protected classifications under California or federal law (sex/gender), age (40 and older)
Subsidiaries and affiliates; operating systems and platforms
Inferences drawn from above information to create a profile about a consumer reflecting the consumer’s preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes
Subsidiaries and affiliates; operating systems and platforms
We disclosed Personal Information for the following business or commercial purposes:
- Performing services including maintaining or servicing accounts, providing customer service, processing or fulfilling orders and transactions, verifying customer information, processing payments, providing financing, providing analytic services, providing storage, or providing similar services
Retention of Personal Information
We retain your Personal Information for as long as necessary to fulfill the purposes for which we collect it, such as to provide you with the service you have requested, and for the purpose of satisfying any legal, accounting, contractual, or reporting requirements that apply to us.
Your Rights
Generally, Oregon consumers have the following rights:
- The right to access personal data that has been collected about them and confirmation of the categories of personal data that have been processed by a controller;
- The right to know a list of the specific third parties that have received their personal data or any personal data from a controller;
- The right to correct inaccuracies in their personal data;
- The right to request their personal data to be deleted;
- The right to obtain a copy of their personal data; and
- The right to say “no” to (opt-out of) a controller doing certain things with their personal data.
We will comply with your request upon verification of your identity and, to the extent applicable, the identity of the resident of Oregon on whose behalf you are making such request.
We will verify your identity either to a “reasonable degree of certainty” or a “reasonably high degree of certainty” depending on the sensitivity of the Personal Information and the risk of harm to you by unauthorized disclosure, deletion, or correction as applicable. .
For requests to access categories of Personal Information and for requests to delete or correct Personal Information that is not sensitive and does not pose a risk of harm by unauthorized deletion or correction, we will verify your identity to a “reasonable degree of certainty” by verifying at least two data points that you previously provided to us and which we have determined to be reliable for the purpose of verifying identities.
For requests to access specific pieces of Personal Information or for requests to delete or correct Personal Information that is sensitive and poses a risk of harm by unauthorized deletion or correction, we will verify your identity to a “reasonably high degree of certainty” by verifying at least three pieces of Personal Information you previously provided to us and which we have determined to be reliable for the purpose of verifying identities. In addition, you must submit a signed declaration under penalty of perjury stating that you are the individual whose Personal Information is being requested.
Right to Opt Out of Sale or Sharing of Personal Information
If you are a resident of Oregon, you have the right to direct us to stop selling or sharing your Personal Information. You may submit a request to opt out of sales or sharing through our interactive webform available by clicking on this link: Do Not Sell or Share My Personal Information. You also may submit a request by calling us a 1-800-525-4334. If you have enabled privacy controls on your browser (such as a plugin), we will also treat that as a valid request to opt out. To opt out of our use of third-party advertising Cookies, please see the section “How You Can Opt Out of Cookies” above.
Top
13. NOTICE TO CANADA RESIDENTS
Please see Parts 1-3, above, for a description of the personal information held by us, a general
account of its use, and what personal information we make available to related organizations.
Subject to exceptions set out in privacy legislation, residents of Canada may request to view,
update, or correct their personal information by contacting our privacy officer at the information
provided in the “CONTACT” section below. In order to protect your privacy, we will take
steps to verify your identity before granting you access to the information or enabling you to make
corrections. Please keep in mind that certain information may be subject to exceptions if, for
example, the information is protected by solicitor-client privilege, part of a formal dispute
resolution process, about another individual that would reveal their personal information or
confidential commercial information, or would be prohibitively expensive to provide. In some
instances, you may have consented to the collection of your personal information. Subject to legal
and contractual requirements and reasonable notice, you may withdraw your consent at any time;
however, without your consent, we may not be able to provide you with our services or products if
your personal information is necessary for us to be able to provide them.
14. YOUR CHOICES
To opt out of our email marketing or to unsubscribe from our email newsletters, you can contact our
customer service department using the information in the “CONTACT” section below, or you can
use the link provided at the bottom of each marketing message or newsletter. If you choose to opt
out, you will continue to receive all email communications related to our transaction(s) and
relationship with you.
If you would like to update your mailing information or want your name and address removed from our
direct mailing list, you can contact our customer service department using the information in the
“CONTACT” section below.
You can control the tools on your mobile devices. For example, you can turn on and off the GPS
locator or push notification on your phone. Please consult your mobile device’s user guide for
instructions on clearing
cookies, enabling and disabling location services, and disabling push notifications.
When you make a purchase, you can choose to save your information to obtain a faster checkout for
purchases and/or you can choose to receive emails or texts, which provide you with information
regarding our other products and services. We obtain your consent before contacting you with certain
non-emergency, automated, autodialed, prerecorded, or other telemarketing phone calls or text
messages. You are not required to grant consent to telemarketing calls or texts as a condition of
buying any goods or services. Also, you may revoke your consent at any time at the contact
information listed at the end of this policy. Message and data rates may apply. We will retain your
personal information for the period necessarily to fulfill the purposes of your personal information
collection, unless a longer retention period is required or permitted by law.
15. CHILDREN’S PRIVACY
We understand the importance of protecting children’s privacy, especially in an online environment. Our Platforms are not intentionally designed for or directed at children less than 16 years of age. We do not knowingly collect personal information from children under the age of 16 without the consent of the child’s parent or guardian. We encourage parents and guardians to provide adequate protection measures to prevent minors from providing information unwillingly on the internet. If we are aware of any personal information relating to children that we have collected, we will take steps to securely remove it from our systems.
16. UPDATING YOUR INFORMATION
You may request to view, update, or correct your Personally Identifiable Information by contacting our privacy office at the information provided in the “CONTACT” section below. In order to protect your privacy, we will take steps to verify your identity before granting you access to the information or enabling you to make corrections.
17. SECURITY
We maintain reasonable and appropriate safeguards to help protect your personal information from loss and from unauthorized acquisition. We monitor activity on our Platforms to prevent any unauthorized disclosure of information. In addition, we utilize a licensed system for credit card authorization and fraud detection. However, no security measure or modality of data transmission over the Internet is 100% secure. Although we strive to use commercially acceptable means to protect your personal information, we cannot guarantee absolute security.
18. DO NOT TRACK SIGNALS
Your browser settings may allow you to automatically transmit a “Do Not Track” signal to online services you visit. Note, however, there is no consensus among industry participants as to what “Do Not Track” means in this context. Like many online services, we currently do not alter our practices when we receive a “Do Not Track” signal from a visitor’s browser. To find out more about “Do Not Track,” you can visit http://www.allaboutdnt.com, but we are not responsible for the completeness or accuracy of this third-party information.
19. TRACKING ACROSS TIME AND TECHNOLOGIES DISCLOSURE
Some information about your use of the service and certain third-party services may be collected by us or by third parties using tracking technologies across time and services and used by us and third parties for purposes such as to associate different devices you use and deliver relevant ads and/or other content to you on the service and certain third-party services.
20. CONSUMERS WITH DISABILITIES
We are committed to ensuring this Policy is accessible to individuals with disabilities. To request this Policy in an alternative format, please reach out to us at the Contact information provided below.
21. CONTACT
If you have questions or wish to contact us about this Policy, please direct inquiries to:
Privacy Officer
Luxottica Retail North America, Inc.
4000 Luxottica Place
Mason, Ohio 45040
Phone: 1-800-776-4085
Email: privacyoffice@luxotticaretail.com