.png)
IRIS IT values the trust that our customers, business partners, patients, and employees place in us to appropriately use and protect their Personal Data. This Global Privacy Notice ("Privacy Notice") summarizes what Personal Data we collect and how we use it.
The Privacy Notice applies to websites, apps, and other online services operated by IRIS IT and its affiliates when those websites, apps, and other online services link to this Privacy Policy (collectively, the "Site"). Please note, this Privacy Notice does not apply to websites, apps, and social media pages that have a separate privacy notice or privacy policy. Except as specifically noted for California Residents below, our Privacy Notice applies only to activities we engage in on the Site and does not apply to activities that are "offline."
Throughout this Privacy Notice, we use the following defined terms:
Country of Practice or Work
Data Controller Name and Address
Email Contact Details
United States Of America
privacy@buywithiris.com
If you have any questions about these definitions or anything else in this Privacy Notice, email us at privacy@buywithiris.com.
By using the Site and providing your Personal Data and other information through the Site, you acknowledge that your Personal Data will be processed pursuant to the terms of this Privacy Notice, including any location-specific terms. If you do not agree with the practices described in this Privacy Notice, please do not provide us with your Personal Data or otherwise interact with the Site. Where required by applicable law, we will not collect, use, or disclose your Personal Data without first obtaining your consent.
When you visit or interact with our Site, we may collect Personal Data such as:
When you visit and interact with the Site, we may collect Personal Data from you, your browser or device, cookies, and social media plug-ins, as described in more detail below.
We may ask you to provide certain Personal Data at various times and places on the Site. For example, we may collect Personal Data from you when you:
Please note, if you do not provide us with information that is indicated as mandatory, we may not be able to manage your account or provide you with our products or services. You also may not be able to access all of the Site or participate in all of its features.
If you provide us with Personal Data of a third party, you should ensure such third party has been provided with this Privacy Notice and that you have obtained their authorization or consent prior to providing their Personal Data to us.
Personal Data Collected through Automated Means Device or Browser:
Certain information is automatically collected from your device or browser and analyzed when you visit or interact with our Site.
Cookies and Other Tracking Technologies: We use cookies, web beacons/pixel tags, and other tracking technologies (collectively, "cookies") to recognize you when you visit our Site. Cookies are small bits of data cached or stored on your computer. These cookies may be delivered in a first-party or third-party context. For example, we may collect information about your browser type and version, operating system, user language, viewed web pages, links that are clicked, IP address, screen resolution, and web pages visited before and after visiting our Site. Our emails to you also may contain tracking technologies to help us understand when you open an email or click links within it.
By collecting this information, we can better understand how you interact with our Site; give you a more personal and optimized online experience by recognizing your preferences; improve our Site; fulfill contracts with our business partners; help confirm receipt of and response to our emails; and provide more effective customer service. For more information on the cookies we use or your choices related to them, please see our Cookie Policy described in Section 14.
We use Personal Data for:
We disclose Personal Data to the following recipients and purposes:
We may use and disclose any Personal Data as reasonably necessary to comply with law and legal requirements, cooperate with and respond to law enforcement requests, or as otherwise required by applicable law, court order, or government regulations. We also use Personal Data we collect as necessary to maintain appropriate records for internal administrative purposes, to protect our rights and interests or those of others, to resolve any disputes, to enforce our policies, or to prevent harm. Any Personal Data we collect may be provided to our professional advisors, including accountants, auditors, consultants, and lawyers, when reasonably necessary for our professional advisors to perform services for us and give us appropriate advice. Any and all Personal Data we collect may be given to another company in the unlikely event of a sale, merger, or other acquisition of some or all of our assets or business or as part of the negotiation or evaluation of such sale, merger, or other acquisition.
IRIS IT is a global group of companies. Please note that when you provide Personal Data to us, we may process your Personal Data in the United States and other locations, which may have privacy laws that differ from those in your country. In certain cases, we may need to share, transfer, store, or otherwise process your Personal Data in locations outside of the jurisdiction in which you reside or are located. When we transfer Personal Data, we do so in accordance with applicable laws. If you have any questions about how we transfer your Personal Data, you can contact us at privacy@buywithiris.com.
You may choose to opt out of receiving direct marketing, commercial emails, and other educational materials from us about our products and services by following the instructions contained in the communications we send or, at any time, by signing into your account and adjusting your communication preferences. Please allow five (5) business days for your request to be processed. Please also note that even if you unsubscribe, we may still send you transactional or administrative communications, including, for example, to manage any account you have with us, respond to your requests, execute agreements with you, and manage your transactions on the Site.
Cookies and Tracking Technologies: You may disable certain cookies and tracking technologies at any time by adjusting your browser settings or taking other actions to opt out of cookies and tracking technologies. Please be aware, however, that if you disable cookies, you may not be able to take full advantage of all of our Site features. For more information on how to control and disable cookies, please see our Cookie Policy described in Section 14.
Your Rights Regarding Your Personal Data
Under applicable law, you may have certain rights with respect to your Personal Data, including the right to delete, correct, or access your Personal Data. To exercise any rights you may have, please contact us at privacy@buywithiris.com. We will respond to your request in accordance with applicable law.
For your convenience and information, our Site may contain links to other websites and apps unaffiliated with IRIS IT. We do not control or monitor and are not responsible for the privacy practices or the content of these websites and apps we link to. We urge you to review the relevant privacy policies prior to use to ensure that you are comfortable with their privacy practices.
IRIS IT takes appropriate steps to manage the privacy of your Personal Data and the security of the Site. We have implemented commercially reasonable administrative, technical, and physical security controls that are designed to safeguard Personal Data. Despite these efforts, it is impossible to guarantee 100% security in all circumstances. If you have any questions about the security of our Site, you can contact us at privacy@buywithiris.com.
IRIS IT takes the security of your personal information seriously. However, no system is completely secure. In the event of a data breach involving your personal information, we will:
If you believe your data may have been compromised or if you suspect unauthorized activity in your account, please contact us immediately at opsec@buywithiris.com
IRIS IT INC. is committed to ensuring the highest levels of security for our systems, applications, and user data. Our Security Bug Bounty Program incentivizes ethical hackers and security researchers to responsibly identify and report vulnerabilities. By working together, we aim to build a safer digital environment for everyone.
The program is open to individuals worldwide, except where prohibited by law. To be eligible:
Employees, contractors, and vendors of IRIS IT INC. are not eligible to participate.
The following are within the scope of this program:
The following are outside the scope of this program:
Participants must:
Failure to follow these guidelines may result in disqualification from the program and potential legal consequences.
To submit a vulnerability, provide the following details:
Submissions must be sent to opsec@buywithiris.com
Rewards are based on the severity and impact of the vulnerability, as determined by our internal team. Rewards range from $50 to $5,000 USD, depending on the following factors:
IRIS IT INC. reserves the right to adjust rewards at its sole discretion.
We will not initiate legal action against participants who:
The program does not authorize participants to:
Any action outside the scope of this policy may result in disqualification and legal consequences.
IRIS IT INC. reserves the right to modify or terminate this program at any time without prior notice. Changes will be communicated through our website or other official channels.
For questions or submissions related to the Security Bug Bounty Program, contact us at:
IRIS IT retains your Personal Data for the period necessary to fulfill the purposes for which your Personal Data was collected, unless a longer retention period is necessary, the Personal Data is required to fulfill a legal obligation, or we are otherwise permitted to retain the Personal Data for other uses. For example, we generally retain Personal Data used for:
Where Personal Data is used for more than one purpose, we will retain the Personal Data until the purpose with the longest retention period expires. If you have questions about our retention policies, please contact us at privacy@buywithiris.com.
IRIS IT does not expect that any portion of its Site will be used by persons under the age of 16, and we do not knowingly collect Personal Data from anyone under that age of If we learn that we have received Personal Data from someone under the age of 16, we will delete that information in accordance with applicable law.
We reserve the right to modify this Privacy Notice at any time. Where required by applicable law, we will seek your consent to any material changes. You can determine when this Privacy Notice was last revised by referring to the date it was "Last Updated" above.
If you have any questions or comments about our privacy practices or this Privacy Notice please contact us at:
Email to:
privacy@buywithiris.com
IRIS IT provides this California privacy notice ("California Privacy Notice") for residents of California ("California Residents," "you"), in addition to our Privacy Policy/Global Privacy Notice, to give extra information to California Residents related to their rights under the California Consumer Privacy Act of 2018, as modified by the California Privacy Rights Act of 2020.
If you would like to receive a copy of this California Privacy Notice in an alternate format or language, please contact us at privacy@buywithiris.com.
This California Privacy Notice describes how and why we will collect and use your Personal Data and reflects our practices during the past twelve (12) months.
As described in Section 3 ("How Your Personal Data is Collected"), we obtain Personal Data (1) directly from you (for example, when you submit your Personal Data to us in a request form), and (2) indirectly from you (for example, through cookies and other tracking technologies used when you interact with our Site).
We use Personal Data for the reasons described in Section 4 ("How We Use and Disclose Your Personal Data"), including customer service, communication, fulfillment, customer experience, personalization, direct marketing, promotions, and security and integrity. We disclose Personal Data to our affiliates and service providers, and for the purposes, including to support our business operations, described in Section 4 ("How We Use and Disclose Your Personal Data").
Category of Personal Data
Purposes for Collection and Use
Identifiers
Examples:
Personal Data Categories*
Examples:
* As defined in Cal. Civ. Code § 1798.80(e)
Commercial Information
Examples:
Internet Activity Information
Examples:
Audio, Electronic, Visual, or Similar Information
Examples:
Personal Data we collect is retained in accordance with the information provided in Section 9 ("Retention of Personal Data").
California Residents may exercise their privacy rights with respect to their Personal Data as set forth in the table below by following the instructions that are included after the table. We will not discriminate against you if you exercise your privacy rights.
California Privacy Rights
Description
Right to Know/Access
You have the right to request that we disclose to you details about your Personal Data we collect, use, disclose, and sell, including:
Right to Delete
You have the right to request that we delete the Personal Data we collect about you.
Right to Correct Inaccurate Personal Data
If you believe that Personal Data we maintain about you is inaccurate, you have the right to request that we correct that information.
Right to Opt Out of Sales and Sharing of Personal Data
We are not selling Personal Data or sharing Personal Data for targeted advertising based on our current understanding of those defined terms under relevant California privacy law, and we have no actual knowledge that the Personal Data of California Residents under the age of 16 years old is sold or shared. IRIS IT acknowledges, however, that the interpretation of the law may change, and we are committed to evaluating our compliance with the law on a regular basis. If, at any point, we determine that we are selling or sharing Personal Data in a way that would trigger your right to opt out of such sales or sharing, we will update this section and offer appropriate links on our Site.
Right to Limit Use and Disclosure of Sensitive Personal Data
We do not use or disclose sensitive personal information for purposes that would give rise to the right to limit the use and disclosure of this data. Health information may be obtained by IRIS IT while providing certain services. IRIS IT’s typical practice is to maintain health information as protected health information in accordance with the Health Insurance Portability and Accountability Act.
If you are a California Resident and would like to exercise any of your privacy rights listed above, please contact us at privacy@buywithiris.com. You may designate an authorized agent to make a request to exercise your privacy rights for you. Your authorized agent should use the same contact information to make any privacy rights request. Please note that we may separately verify your identity with you if an authorized agent makes a request on your behalf.
When you or your authorized agent contacts us to make a privacy rights request, please provide your full name and email address, tell us which privacy right(s) you wish to exercise, and give us any additional information that will help us identify you. Please note that if we cannot initially verify your identity, we may request additional information to complete our verification process. Certain information you give us as part of a privacy rights request may become part of our required recordkeeping associated with responding to such requests. We aim to respond to all requests within six (6) weeks. We will inform you if our response will take longer. If we cannot fulfill your request, we will let you know why in our response.
To exercise one or more of your privacy rights, or to contact us with questions about our privacy policies and practices, please contact us using the information provided in Section 12 ("How to Contact Us").
This Cookie Notice forms part of IRIS IT’s Privacy Policy/Global Privacy Notice. This Cookie Notice describes how IRIS IT and its affiliates ("IRIS IT," "we," "us," or "our") use cookies and other tracking technologies (collectively, "Cookies") on our websites and other online services operated by IRIS IT that link to this Cookie Notice (collectively, the "Site"). This Cookie Notice describes:
A cookie is a small text file saved by your internet browser when you visit a website. Cookies store or provide information to help our Site function. Some cookies recognize your device (such as your computer) when you visit our Site again, and some cookies can help us understand your use of our Site over time. For example, cookies might be used to:
We also use a type of tracking technology called web beacons (or web bugs, pixel tags, or clear GIFs). Web beacons are an often invisible way to see if someone has used or accessed certain content. We primarily use web beacons to help us understand which areas of our Site are most popular with our visitors and to improve and update the content on our Site in response. Additionally, web beacons can help us measure the effectiveness of our advertising, for example, by counting the number of individuals who visit our Site or open an email message or click a link within it.
Cookies often store the name of the website and a unique ID associated with your browser or device. This information allows the relevant website to retrieve or provide the correct information. Frequently, Cookies are used to collect and store your personal preferences, information needed to authenticate you as a valid website visitor, your IP address, your contact details, your browsing history, and information about your use of a website, such as the links you click, how often you visit the website, and how you arrive at the website. Each Cookie retrieves information it stores or provides information related to the Cookie. Cookies do not read other information on your device.
Cookies vary in how long they are kept on your device. We use both Session Cookies and Persistent Cookies on our Site.
"Session Cookies" are temporary Cookies that last for only a single browsing session. The information they collect is stored in temporary memory and erased shortly after you leave our Site or close your browser.
"Persistent Cookies" are stored on your device until you take steps to remove the Cookies or until a particular Cookie’s expiration date (often several months after the Cookie is placed on your device). Persistent Cookies can record information from each visit you make to our Site as long as they remain on your device.
Cookies are used by us primarily to collect and to be able to analyze information about your interactions with our Site. We use this information to improve our Site. In particular, our Site uses the following types of Cookies for the purposes explained below.
The Cookies we use are placed by us or by our vendors. We and our vendors may link the information collected by Cookies to other information collected about you. More information about the Cookie vendors that IRIS IT typically works with follows. Each of these may collect or receive information from our Site visitors.
Vendor
Purpose
Privacy Policy
Type
You can choose not to allow Cookies on our Site; however, blocking some types of Cookies may affect your ability to use our Site or customized content. The rights and choices available to you may differ based on where you are or where you live. All visitors to our Site should have access to at least one of the following options to restrict our use of Cookies.
Consenting to Cookies and Updating Consents
In some locations, we cannot place Cookies without your consent. When we require your consent for Cookies, you will be shown a pop-up notification banner when you first visit our Site. You will have the option to "Accept All" or make additional choices before confirming your consent with the "Confirm My Choices" button within this banner. If you select "Accept All," we take that to mean that you have consented to our Cookies, and all Cookies for the Site will be placed unless you have separately disabled them using your own browser settings (see "Opting Out of Cookies Using Your Browser" below). Note that when you consent to Cookies on our Site, you may withdraw your consent or change your Cookie preferences at any time by [insert explanation]. Strictly necessary Cookies will continue to be placed without consent.
Opting Out of Cookies Using Self-Regulatory Programs
Self-regulatory programs are available to help you control the use of Cookies on your browsers. These types of programs help to regulate vendors in the digital advertising space. One function of their self-regulatory programs is to give you the ability to opt out of targeted (or interest-based) advertising, including Cookies, from their member companies. You can visit the relevant Digital Advertising Alliance website to find a convenient place to opt out of targeted advertising for participating vendors for each region — (United States), (Canada), or (European Economic Area and United Kingdom).
Opting Out of Cookies Using Your Browser
You may be able to disable Cookies using your browser settings. Please review your browser’s instructions for general information.
We periodically evaluate our use of Cookies and will update this Cookie Notice as our practices change. We will indicate the effective date at the top of this Cookie Notice.
If you have any questions about this Cookie Notice or our privacy practices, please email us at privacy@buywithiris.com or write to us at:
.png)
