Privacy Policy

Last updated: January 2025

Introduction

This privacy notice describes how CorVascular Diagnostics, LLC ("CorVascular," "we," or "us") collects and uses information about you ("personal data") in connection with your use of our website, products, and services, including when you visit our website, when you contact us, when you purchase our products, or when you participate in our events, surveys, or support services in the United States.

In this privacy notice, we will tell you what personal data we obtain about you, how we use that information, with whom we share it, what rights you have regarding your information, and how to contact us to exercise these rights.

Personal Data We Collect and How We Use It

This section describes how CorVascular uses your personal data to provide you with products and related services. Unless we need your personal data in order to comply with laws and regulations, you are not required to provide information to us, but if you choose not to do so we may not be able to offer you certain services and related features or to respond to requests that you may have.

Visiting Our Website

When you visit our website, we may collect certain information automatically, including:

  • IP address and approximate geographic location
  • Browser type and version
  • Operating system
  • Pages visited and time spent on pages
  • Referring website
  • Device information
  • Date and time of visit

We use this information to improve our website, analyze usage patterns, and provide better user experience.

Creating and Managing an Account

When you create an account with us, we collect:

  • Name and contact information (email address, phone number)
  • Professional information (job title, organization, specialty)
  • Account credentials
  • Preferences and settings

We use this information to manage your account, provide customer support, and deliver relevant product information.

Purchasing Products

When you purchase our products, we collect:

  • Billing and shipping information
  • Purchase history and preferences
  • Warranty registration information

We use this information to process orders, provide customer support, manage warranties, and improve our products and services.

Payment Processing and Security

Important: CorVascular Does Not Store Payment Information

CorVascular does not collect, store, or have access to your payment card information, including credit card numbers, expiration dates, CVV codes, or bank account details.

Payment Processing: All payment processing is handled securely by Stripe, Inc., a PCI DSS Level 1 certified payment processor. When you make a purchase:

  • Your payment information is transmitted directly to Stripe using industry-standard encryption
  • Stripe processes your payment and handles all payment card data securely
  • CorVascular only receives confirmation of successful payment and order details
  • We never see or store your actual payment card information

What CorVascular Receives: We only receive:

  • Payment confirmation status (approved/declined)
  • Transaction amount and currency
  • Order number and timestamp
  • Billing address (for shipping and tax purposes)

Stripe's Security: Stripe is certified as a PCI Level 1 Service Provider, the most stringent level of certification available in the payments industry. They maintain the highest security standards and are audited annually by a qualified security assessor.

For more information about Stripe's security practices and data handling, please review their Privacy Policy and Security Policy.

Contacting Customer Support

When you contact our customer support, we may collect:

  • Contact information
  • Product information and serial numbers
  • Support request details and history
  • Technical information about your system

We use this information to provide technical support, resolve issues, and improve our products and services.

Marketing Communications

With your consent, we may send you marketing communications about our products, services, and industry updates. You can opt out of these communications at any time by:

  • Clicking the unsubscribe link in our emails
  • Contacting us directly
  • Updating your account preferences

User Documentation and Analytics Tracking

When you visit our user documentation pages and download files, we may collect additional information to improve our services and understand how our resources are used. This may include:

  • File download tracking, including which documents you access and download
  • User interaction data, such as clicks, hovers, and scrolling behavior
  • Session tracking to understand your journey through our documentation
  • Detailed device information including browser type, operating system, and screen resolution
  • Geographic location data derived from your IP address (country, region, city)
  • Time spent on pages and interaction patterns

This tracking helps us optimize our documentation, understand user needs, and improve the overall experience. We use a consent-based system that allows you to control what data is collected.

Consent Management and Tracking Preferences

We use a privacy-compliant consent management system that allows you to control how your data is collected. You may choose from three categories of tracking:

  • Essential: Required for basic website functionality and security
  • Analytics: Helps us understand how our website and documentation are used
  • Functional: Enables enhanced features and personalization

You may modify your tracking preferences at any time through our privacy notice, which appears when you first visit our documentation pages. You may also withdraw your consent, though this may limit certain website functionality.

Cookies and Similar Technologies

When you visit our website, we may collect certain information by automated means, including cookies and similar technologies, such as web beacons, local storage, and device identifiers. We use these technologies to:

  • Remember your preferences and settings
  • Analyze website traffic and usage patterns
  • Provide personalized content and advertisements
  • Improve website functionality and user experience

You can control cookies through your browser settings, but disabling cookies may affect website functionality.

Data Sharing

CorVascular does not sell, rent, or share your personal data with third parties for any purpose. We only share your personal data in the following limited circumstances:

  • Internal use only: Your personal data is shared only within CorVascular Diagnostics, LLC and its authorized personnel who need access to provide you with products and services.
  • Legal requirements: We may share personal data where required by law, to comply with legal processes, or to protect our rights and interests.
  • Business transfers: In the event of a merger, acquisition, or sale of assets, we may share your personal data as part of the business transfer.

Payment Information: Since CorVascular does not collect or store payment information, we cannot and do not share any payment card details, bank account information, or other sensitive financial data. All payment processing is handled exclusively by Stripe, and any sharing of payment information would be subject to Stripe's privacy policy and security practices.

We do not share your personal data with healthcare providers, business partners, or external organizations unless you have explicitly requested such sharing or it is required by law.

Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption of data in transit and at rest
  • Access controls and authentication
  • Regular security assessments and updates
  • Employee training on data protection
  • Incident response procedures

Payment Security: Since we do not store payment information, your payment card data is never at risk of being compromised through our systems. All payment processing is handled by Stripe, which maintains PCI DSS Level 1 certification and employs industry-leading security measures including:

  • End-to-end encryption of payment data
  • Tokenization to replace sensitive data with secure tokens
  • Regular security audits and penetration testing
  • Fraud detection and prevention systems
  • Compliance with international security standards

Data Retention

We will only keep your personal data for as long as necessary to fulfill the purposes for which we collected it, including for the purposes of satisfying any legal, accounting, or reporting requirements. When we no longer need your personal data, we will securely delete or anonymize it.

Tracking Data: User tracking data, including analytics, download records, and interaction data, may be retained for up to 24 months to analyze usage patterns and improve our services. After this period, the data may be automatically deleted or anonymized. You may request deletion of your tracking data at any time by contacting us.

Your Privacy Rights

Depending on applicable laws, you may have the following rights regarding your personal data:

  • Access: Request access to your personal data and confirm how it is being processed
  • Correction: Request correction of inaccurate or incomplete personal data
  • Deletion: Request deletion of your personal data in certain circumstances
  • Portability: Request a copy of your personal data in a structured, machine-readable format
  • Restriction: Request restriction of processing in certain circumstances
  • Objection: Object to processing of your personal data for direct marketing purposes
  • Withdrawal of consent: Withdraw consent where processing is based on consent
  • Tracking Control: Modify your tracking preferences or opt out of analytics and functional tracking at any time
  • Data Portability: Request a copy of your tracking data in a structured format

To exercise these rights, please contact us using the information provided in the "How to Contact Us" section below.

Children's Privacy

Our website and services are not intended for children under 13 years of age. We do not knowingly collect personal data from children under 13. If you believe we have collected personal data from a child under 13, please contact us immediately.

International Transfers

Your personal data may be transferred to and processed in countries other than your country of residence. We will ensure that such transfers are made in accordance with applicable data protection laws and that appropriate safeguards are in place to protect your personal data.

Updates to This Privacy Notice

We may update this privacy notice from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated notice on our website and updating the "Last updated" date. We encourage you to review this notice periodically.

How to Contact Us

If you have any questions about this privacy notice or our data practices, please contact us:

CorVascular Diagnostics, LLC

Email: support@CorVascular.com

Phone: 888-829-1770

Address: 5810 Baker Road Suite 125, Minnetonka, MN 55345