Effective Date: January 1, 2020
Last Reviewed On: December 30, 2019
The Privacy Notices provided on this page apply to National Vision, Inc. (“NVI”), America’s Best Contacts & Eyeglasses, America’s Best Vision Plan, Eyeglass World, Vision Center Brought to you by Walmart, Vista Optical in Select Military Exchanges, and Vista Optical in Selected Fred Meyer Stores (collectively, “National Vision”, “we”. “us”, or “our”). This Notice describes how we collect, use, and share information about you in the course of providing our services and explains your rights with regards to that information. This Notice applies to our websites (nationalvision.com, americasbest.com, eyeglassworld.com, findvistaoptical.com) (our “Websites”), the vision services we provide and any other way we may collect or receive information about you (collectively, our “Services”). This Notice does not apply to your protected health information (“PHI”), which is governed by our Health Insurance Portability and Accountability Act of 1996 Notice (“HIPAA”) available here.
Personal Information We Collect
“Personal information” refers to any information about you by which you can be personally identified. We collect or obtain the following categories of personal data about you. Please see “How We Use and Share Personal Information” for more information about why we collect the categories of information below.
Non-Personal Information Collected
Personal information does not include:
Sources of Personal Data
We obtain all of the categories of personal information listed above from the following categories of sources:
More About Cookies
How We Use and Share Information
We may use or disclose the personal information we collect for one or more of the following business purposes:
Disclosures of Personal Information for a Business Purpose
In the preceding twelve (12) months, we have disclosed the following categories of personal information to our third-party service providers for the business purposes described above:
Under applicable law, we are permitted to disclose personal information to service providers in accordance with written contracts requiring our service providers to keep the information confidential. In addition to third-party service providers, we share all of the categories of personal information we collect with government entities (if required by law or reasonably necessary to avoid harm).
Sales of Personal Information
In the preceding twelve (12) months, we have not sold personal information. Our policy is that we do not and will not sell your personal information, unless you give us your consent or direct us to do so.
Contests and Drawings
We may sponsor or host contests or drawings from time to time. Some contests may be offered in conjunction with a third party sponsor and Website users will be notified at the time of the contest as to whether a third party sponsor is involved and whether the third party will be receiving the user's personal information to send promotional communications. The Website user can then choose whether to enter the contest or not at that time based on the terms and conditions associated with that particular contest.
Links to Third Party Web Sites
We display personal testimonials of satisfied customers on our site in addition to other endorsements. With your consent, we may post your testimonial along with your name. If you wish to update or delete your testimonial, you may contact us at [email protected].
We may verify your prescription information provided with your order with your doctor or eye-care provider as required by federal law. For more information about how your Protected Health Information, please see our HIPAA Notice of Privacy Practices.
We have implemented appropriate physical, electronic, and administrative procedures to safeguard and prevent unauthorized access, maintain data security, and correctly use the information we collect online. Please note that there is risk involved in using the internet. Thus, our goal is to provide a reasonable level of security based on general industry standards. We therefore recommend that you use every precaution to protect your information when using the internet and any other links. All transactions occur through our secure server, protected by a DigiCert® Secure Site Certificate. That means that we use encryption to secure information sent from your computer to our servers. In addition, credit card numbers and other sensitive information are encrypted in our database(s) to provide a second layer of security for your private information. When credit card information is transmitted online, we use Secure Sockets Layer (“SSL”) server software to prevent unauthorized access to the information. SSL is a highly sophisticated method of scrambling data as it travels from your computer to our Website servers. You can identify the secure connection by looking for a locked padlock icon at the lower portion of your browser window.
Our Website and Services are not directed to children under the age of 16 and we do not knowingly collect personal information from children. It is our policy not to knowingly solicit or permit children under the age of 16 to provide their personal information for any purpose. In accordance with the Children's Online Privacy Protection Act of 1998 (“COPPA”) and our internal policies, if a person under age 16 submits information to us through any part of our Web Site, and we know that the person submitting information is under age 16, we will not use it for any purpose. We will delete the information as soon as we discover it, and we will not disclose it to third parties. If you are under the age of 16, please stop using our Web Site and its services.
Your Rights and Choices About Your Personal Information
Updating Your Information
If you ever need to update or delete any information on file with us, you may call us at 1-800-637-3597 or email us at [email protected]. If you need to update your information when re-ordering, you will have a chance to make changes to your payment information, shipping and billing address(es) at checkout.
Your California Privacy Rights
You have the right to request that we disclose certain information to you about our collection and use of your personal information over the past 12 months. Once we receive and confirm your verifiable consumer request, we will disclose to you:
We do not disclose personal information to any third parties for their direct marketing purposes. In addition, under California law, web site operators are required to disclose how they respond to web browser 'do not track' signals or other similar mechanisms that provide consumers with the ability to exercise choice regarding the collection of personal information of a consumer over time and across third party web sites, to the extent the operator engages in that collection. We do not respond to any such 'do not track' signals, as no one do not track standard has gained consensus. This law also requires web site operators to disclose whether third parties may collect personal information about their users' online activities over time and across different web sites when the users use the operator's web site. We do not knowingly permit third parties to collect personal information about an individual consumer's online activities over time and across different web sites when a consumer uses our Website. Third parties that have content embedded on our Website (such as social networking features) may set cookies on a user's browser and/or obtain information about the fact that a web browser visited our Website from a certain IP address. These third parties cannot collect any other personal information from our Website unless you provide it to them directly.
Deletion Request Rights
You have the right to request that we delete any of your personal information that we collected from you and retained, subject to certain exceptions. Once we receive and confirm your verifiable consumer request (see a href="#access_data_rights">Exercising Access, Data Portability, and Deletion Rights), we will delete (and direct our service providers to delete) your personal information from our records, unless an exception applies. We may deny your deletion request if retaining the information is necessary for us or our service provider(s) to:
Exercising Access, Data Portability, and Deletion Rights
To exercise the access, data portability, and deletion rights described above, please submit a verifiable consumer request to us by either:
Only you, or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child.
You may only make a verifiable consumer request for access or data portability twice within a 12-month period. The verifiable consumer request must:
We cannot respond to your request or provide you with personal information if we cannot verify your identity or authority to make the request and confirm the personal information relates to you.
We will not discriminate against you for exercising any of your California privacy rights under the CCPA. Unless permitted by the CCPA, we will not:
Our Privacy Notice may change from time to time. If we decide to change our Privacy Notice, we will update the “Effective Date” at the top of this Privacy Notice. Your continued use of the Website or Services following the posting of revised Privacy Notice means that you accept and agree to the changes.
If you have any questions regarding this Privacy Notice or our privacy practices, please contact us at [email protected] or call us at 1-800-637-3597.