Privacy policy

Privacy Policy

We at MYSAA Vision are committed to protecting and respecting your privacy. Our privacy policy does not contain any surprises, although we ask that you read it carefully as it contains important information on who we are, how and why we collect, store, use and share your personal information, your rights in relation to your personal information and how to contact us.

“Personal information” means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified directly or indirectly from that information.

This website privacy policy is divided into the following sections:

  1. Who we are
  2. Our website
  3. Our collection and use of your personal information
  4. How you can update your data
  5. Our legal basis for processing your personal information
  6. Who we share your personal information with
  7. Transfer of your personal information out of the EEA
  8. Cookies
  9. Marketing
  10. Your rights
  11. Keeping your personal information secure
  12. Changes to our privacy policy
  13. How to contact us

1. Who we are

This website is operated by MYSAA Vision Ltd (“we”, “us” or “our”). For more information about us and what we do, please click below.

Our affiliated websites, mobile sites, and apps include:

We collect, use and are responsible for certain personal information about you. When we do so, we comply with applicable data protection laws and we are the ‘data controller’ of your personal information.

2. Our Website

This privacy policy relates to your use of our website at https://www.mysaavision.com

Our website may contain links to third-party websites. We do not control these third-party websites and are not responsible for their privacy statements. When you leave our website, we encourage you to read the privacy notice of every website you visit.

This website is not intended for children, and we do not knowingly collect data relating to children.

3. Our collection and use of your personal information

We collect certain personal information about you when you use our website and when you purchase something from our online store, as part of the buying and selling process. Some of this personal information is collected directly, we collect the personal information you give us such as your name, address, email address, and details of the products you purchase, and some is collected indirectly, such as your browsing activity while on our website (see ‘Cookies’ below).

When placing an order for Optical Appliances and Optical Dispensing Services with us, you consent to receiving ongoing communications from our Dispensing Optician(s) (and/or our customer care team under our direct supervision) to ensure that we can provide aftercare services and advice in relation to the optical appliances you have been supplied. The aftercare services will include, but not limited to, advice on insertion and removal of lenses, wearing schedules, caring for lenses, our eye care hub literature, hygiene and emergency situations.

Email marketing (if applicable): With your permission, we may send you emails about our store, new products, and other updates.

The personal information we may collect about you includes:

  • your name, address and contact details
  • details of your eye prescription
  • details of any feedback you give us by phone, email, post or via social media
  • your preferences in receiving marketing from us (including newsletters) and your communication preferences
  • registration data (e.g. username/passwords)
  • details of any request you make through the “Refer a Friend” function of our website
  • transaction data* (e.g. details about payments to/from web users)
  • information about the products and services we provide to you
  • information about how you use our website

We use this personal information to:

  • use data analytics to improve our website, apps, and services
  • administer and protect our business and this website (including troubleshooting, data analysis, testing, and system maintenance)
  • process orders, payments, and refunds
  • customize the website and its content to your particular preferences, to create and manage your account, verify your identity, provide goods and services, and improve our services
  • tailor the online advertisements you see
  • make suggestions to you about events or services that may be of interest to you
  • provide marketing information to you in relation to our products where you have given your consent. If you do not wish to be contacted in this way, you can tell us by contacting us using the details set out at the end of the Privacy Policy, using the “unsubscribe” option in communications sent to you, or by adjusting your preferences in your account
  • notify you of any changes to our website or to our services that may affect you

We will only retain your personal information for as long as necessary to fulfill the purposes we collected it for. To determine the appropriate retention period for personal information, we consider a variety of factors including the amount and nature of the personal information, the potential risk of harm from unauthorized use or disclosure, the purposes for which we process it and applicable law. We may anonymize your personal information (so that it can no longer be associated with you) for research or statistical purposes in which case we may use this information indefinitely without further notice to you.

In general, we retain your transactional information and personal details for up to 15 years from the time of your last order with us.

If we need to collect personal information by law, or under the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you.

4. How you can update your data

Under data protection legislation, you have the right to access information held about you (also known as Subject Access Request). If you opt to exercise this right and we agree that we are obliged to provide personal information to you (or someone else on your behalf), we will provide it to you or them free of charge (within 28 working days).

Before providing personal information to you or another person on your behalf, we may ask for proof of identity and sufficient information about your interactions with us in order to verify identity.

If you wish to exercise these rights, please contact us using the details provided in this privacy policy.

5. Our legal basis for processing your personal information

We only use your personal information when the law allows us to. We will use your personal information for the purposes described above in the following circumstances:

  • Where it is necessary for our legitimate interests and your interests and fundamental rights do not override those interests. Our legitimate interests include assisting or recommending products and services based on your browser and/or purchase behavior. Reminders to renew your lenses are also of legitimate interest so that you do not run out, or have not, in any way, exceeded the recommended duration of the lens/solution life. We will also occasionally send you your balance of reward points that you have collected with us as they can be used to purchase more of your product. Where there is important medical information that relates to products (contact lenses are medical devices) we will send out information via emails. We ensure maintaining a balance of any potential impact on you (both positive and negative) and your rights before we process your data for our legitimate interests. You have the right to object, on grounds relating to your particular situation, at any time to processing of personal information concerning you which is based on legitimate interests. More information on this right and on how to exercise it is set out below,
  • Where we need to perform a contract, we are about to enter into or have entered into with you, and
  • Where we need to comply with a legal or regulatory obligation.

Generally, we do not rely on consent as a legal basis for processing your personal information. If we do ask for your consent for any use of your personal information, you have the right to withdraw it at any time by contacting us using the contact details at the bottom of this Privacy Policy.

6. Who we share your personal information with

We may share your personal information as reasonably necessary for the purposes described in this Privacy Policy in the following ways:

  • internally amongst our staff but they will only use it to carry out their duties in line with the purposes set out above,
  • with our affiliates and group companies,
  • with delivery services,
  • with payment gateways,
  • with fraud prevention service providers,
  • with companies who provide services to us, such as hosting our website and performing analyses to improve the quality of our website and services,
  • as may be necessary in connection with any merger, acquisition, divestiture or sale of all or part of our business. If a change happens to our business, then the new owners may use your personal data in the same way as set out in this privacy notice, and
  • with law enforcement or other authorities if required by law.

We do not sell, rent or lease your personal information to third parties.

7. Transfer of your personal information out of the EEA

Personal information collected by us may be stored and processed in any country in which we or our affiliates, suppliers, partners, group companies or agents provide services and services of our platform. By using our services, you expressly consent to any transfer of information outside your country, which may be stored and used by our affiliates, MYSAA Vision or any other group companies on an ongoing basis.

MYSAA Vision is a global company registered in Gibraltar with global affiliates, suppliers, partners, agents or group companies. To ensure the provision of effective and efficient services and communication, we may be required to transfer your personal data, including places outside of the European Economic Area (EEA), Gibraltar and the UK, in countries that may have different data protection laws.

However, we will only transfer your personal data outside these locations where appropriate safeguards have been put in place and to comply with the General Data Protection Regulation (GDPR).

8. Cookies

At MYSAA Vision, we use cookies (and other similar tracking technologies like web beacons) to differentiate you from other users of our website. This helps us provide you with a seamless browsing experience and enables us to enhance our site. Cookies are small text files placed onto your device (e.g. computer, smartphone) when you visit our website.

We utilize the following types of cookies:

1. Strictly necessary cookies - essential for the operation of our website
2. Analytical/performance cookies - allow us to track the number of visitors and their interactions with our site
3. Functionality cookies - used to remember your preferences and personalize your experience
4. Advertising cookies - record your website visits and help tailor ads to your interests

You can adjust your cookie settings on your browser to block some or all cookies. However, blocking essential cookies may limit your access to certain parts of our site. For more information on cookies, visit www.allaboutcookies.org 

9. Marketting

We may send you information about our business, services, and events that may interest you. We will only send these messages with your consent or where permitted by law. You can opt out of these communications at any time by contacting us or using the ‘unsubscribe’ link in our emails.

10. Your Rights

You have a number of important rights in relation to your personal information that you can generally exercise free of charge. In summary, your rights include the right to:

  • Be informed about how we use your personal information and your rights; this is why we are providing you with this privacy policy.
  • Access your personal information.
  • Require us to correct any mistakes in your information which we hold.
  • Require the erasure of personal information concerning you in certain situations.
  • Receive the personal information concerning you which you have provided to us, in a structured, commonly used and machine-readable format and have the right to transmit those data to a third party in certain situations.
  • Object at any time to processing of your personal information for direct marketing.
  • Object in certain other situations to our continued processing of your personal information, and
  • Restrict our processing of your personal information in certain circumstances.

For further information on each of those rights, including the circumstances in which they apply, please see the Guidance from the UK Information Commissioner’s Office (ICO) on individuals rights under the General Data Protection Regulation or contact us using the details at the bottom of this Privacy Policy.

If you would like to exercise any of those rights, please contact us using the details at the bottom of this Privacy Policy. We may ask you for certain information to help us verify your identity and to help us comply with your request.

You can amend your preferences or unsubscribe at any time, by either logging into your account and following the directions, or by calling our Customer Services.

11. Keeping your personal information secure

To ensure the security of your personal information, we implement robust measures and adhere to industry best practices, especially considering our platform on Shopify.

When you provide us with your credit card information, rest assured that we utilize Shopify's trusted payment processing service, and we do not retain your credit/debit card details, except for the expiry dates and last 4 digits of your card number. Your complete credit/debit card details must be entered on Shopify's PCI-compliant payment gateway websites.

Upon processing your order on our website, we securely store the last 4 digits and expiry date of your credit or debit card details received from Shopify's payment gateways. This information helps us process any future orders you may place.

We utilize secure socket layer software (SSL) to encrypt personal information you provide via your registered account on our Shopify-powered website. This encryption technology prevents inadvertent disclosure of personal information over an unsecured connection. Our website is certified with an SSL certificate, ensuring its security.

We maintain the confidentiality of your information and store user personal data on a secure server, which is password-protected and firewall-protected. Any data we collect may be transferred to and stored on Shopify's secure servers, which are renowned for their reliability and adherence to industry standards.

12. Changes to our privacy policy

From time to time, we may update this Privacy Policy to reflect changes in our practices and to comply with legal requirements. When we make changes to this policy, we will notify you in accordance with legal obligations. This Privacy Policy was last updated on 23 April 2024.

13. How to contact us

We welcome any questions or concerns you may have about this Privacy Policy or the handling of your personal information. You can reach us using the following contact details:

Email: info@mysaavision.com
Phone: [Insert phone number]
Post: MYSAA Vision, 137 Kilburn High Road, London, NW6 7HR

We are committed to addressing any queries or issues you may have regarding our use of your personal information. If you believe that our processing of your personal information is not in compliance with data protection laws, you have the right to lodge a complaint with the relevant supervisory authority in your country. In the UK, the supervisory authority is the Information Commissioner's Office (ICO). However, we encourage you to contact us first so that we can try to resolve any concerns you may have.