General
1.1. Prizma Optic (the “Company”) respects the privacy of its customers, users of the website and related services, and acts in accordance with the applicable laws of the State of Israel, including the Privacy Protection Law, 1981 and its regulations (the “Law”).
1.2. This Policy is intended to detail the manner in which personal information is collected, the purposes of its use, its retention, the rights of the users, and additional provisions applicable to such information.
1.3. Use of the website and the Company’s services constitutes consent to this Policy.
1.4. This Policy is written in the masculine form for convenience only, but applies equally to both genders.

Collection of Information
2.1. The Company may collect and process the following information:
  2.1.1. Personal details provided voluntarily, including name, phone number, email address, and physical address;
  2.1.2. Information required for the purchase of products and services, including delivery details;
  2.1.3. Medical information relevant to the provision of optical services, including prescriptions and results of eye examinations;
  2.1.4. Technical usage data of the website, including IP address, browser type, pages viewed, and duration of visit;
  2.1.5. Data collected through Cookies or similar tracking technologies, as detailed in Section 8 below.

2.2. If you provide the Company with personal information regarding a third party, you hereby represent and warrant that you have obtained that party’s explicit consent for such disclosure and processing in accordance with this Policy.

Purposes of Use of Information
The Company may use personal information for the following purposes:
3.1. Provision of optical services, prescription adjustments, eye examinations, supply of products, deliveries, and customer service;
3.2. Management of the Company’s business, including issuing invoices, collecting payments, complying with contractual obligations and legal requirements;
3.3. Maintaining continuity of care and prescription history;
3.4. Improvement of the service, the website, and user experience;
3.5. Sending notices, reminders, or marketing material – subject to the user’s consent;
3.6. Protecting the Company’s legitimate interests, including conducting legal proceedings, preventing fraud, and handling breaches of terms of use.

Data Retention
4.1. The Company shall retain personal information for as long as required for the purposes detailed above, including for compliance with legal requirements.
4.2. Without derogating from the foregoing:
  4.2.1. Transaction data shall be retained for at least seven (7) years, in accordance with bookkeeping laws;
  4.2.2. Inquiries submitted via “Contact Us” forms or service requests shall be retained for up to twenty-four (24) months from the date of inquiry;
  4.2.3. Medical information shall be retained for the period required for the continuation of optometric care and in accordance with legal obligations.
4.3. Information that is no longer required shall be deleted or anonymized.
4.4. Information is stored on secure servers located in Israel, and may also be transferred to and stored outside Israel if the Company uses international cloud providers, subject to applicable law.

Sharing Information with Third Parties
5.1. The Company shall not sell, lease, or transfer personal information to third parties, except as follows:
  5.1.1. To service providers acting on behalf of the Company, including payment processors, courier companies, mailing services, and data hosting providers;
  5.1.2. Where required by law, judicial order, or demand of a competent authority;
  5.1.3. To protect the Company’s rights, prevent fraud, handle disputes, or address breaches of terms of use;
  5.1.4. As part of a transfer of the Company’s business, including merger, sale, or acquisition.

Medical Information
6.1. Medical information constitutes “sensitive information” as defined by the Law.
6.2. The Company shall use medical information solely for the provision of optical services and shall not transfer it to any third party unless essential for the provision of such services.
6.3. Access to medical information shall be granted only to authorized employees and shall be stored in secure systems.

Data Security
7.1. The Company employs reasonable technical and organizational measures, including the use of encryption protocols (SSL/TLS), server security systems, and access controls, in order to prevent unauthorized use, loss, or damage to personal information.
7.2. It is clarified that despite these efforts, transmission of information over the internet is not entirely secure, and the Company cannot guarantee absolute protection.

Cookies and Tracking Technologies
8.1. The website uses Cookies and other tracking technologies for the following purposes:
  8.1.1. Proper operation and enhancement of the user experience;
  8.1.2. Analysis of user traffic;
  8.1.3. Personalization of marketing and advertising content.
8.2. Users may change their browser settings to block Cookies; however, it is hereby clarified that such blocking may impair the functionality of the website.

Personal Area on the Website
9.1. The Company provides users with a personal area on the website, accessible via username and password.
9.2. Within the personal area, information is collected and stored, including purchase history, service records, medical prescriptions, and correspondence with the Company.
9.3. The Company employs reasonable security measures to safeguard user accounts; however, the responsibility for maintaining the confidentiality of login credentials lies solely with the user.
9.4. The Company shall not be liable for unauthorized use of login credentials resulting from the user’s negligence in safeguarding them.
9.5. The user may update or delete certain personal information via the personal area, subject to applicable law and the Company’s legal obligations.

User Rights
10.1. In accordance with the Law, you are entitled to review information held about you by the Company and request its correction or deletion, to the extent it is incorrect, incomplete, or outdated.
10.2. You may also notify the Company at any time of your refusal to receive marketing material.
10.3. Such requests may be submitted to: service@prizma-optic.co.il.

Amendments to the Policy
The Company may update this Policy from time to time. Any material change shall be published on the Company’s website and/or sent to users who have consented to receive correspondence.

Governing Law and Jurisdiction
This Policy shall be governed by the laws of the State of Israel. Exclusive jurisdiction for any dispute arising hereunder and/or relating to the use of the website shall rest with the competent courts of the Tel Aviv–Jaffa District.

Contact Information
For any questions or requests regarding this Policy, please contact:
Prizma Optic.
Email: service@prizma-optic.co.il
Phone: +972-53-4347265
Address: Herzl 32, Ashkelon, Israel