Privacy Policy | Elevate

Last updated: March 15, 2026

This Privacy Policy describes how RxSight, Inc. and its affiliates (collectively, “RxSight”, “we”, “us”, and “our”) use and disclose the information we collect from you through our websites and other online services that link to, incorporate, or for which you are provided a copy of this Privacy Policy (collectively, the “Services”), and the choices you have about how we use your information.

By accessing and/or using any Services, you accept, agree, and affirmatively consent to be bound by all of the terms of this Privacy Policy without limitation or qualification, including our collection, storage, and processing of your personal information. If you disagree with or do not accept any part of this Privacy Policy, do not use any Services or provide us with any information. If you have any questions, please contact us as set out in the “How to Contact Us” section at the end of this Privacy Policy.

What Information Do We Collect?

Information You Provide

We collect information that you voluntarily provide when you use the Services, such as when you register for an RxSight program or service, participate in a survey, provide a testimonial, order a product, participate in an interactive feature or forum (such as chat features), or contact us with a question, comment, or request. The type of information that you provide is based on the specific function of the Services that you use or the RxSight program or service for which you register, and might include, for instance, your name, address, age, birth date, gender, email address, phone number, photo, social media account ID, zip code, education, professional experience, product usage and preferences. You may also choose to provide sensitive personal information such as demographic information or information about your health and/or medical conditions.

Information We Receive from Third Parties

We may combine the information we collect from you with information that we receive about you from other sources, such as public databases, providers of demographic information, joint marketing partners, social media platforms, people with whom you are connected on social media platforms, and other third parties.

Medical Device Information

Certain regulatory bodies require RxSight to track certain information related to medical devices, including, without limitation, serial numbers, the date of implantation, patient name, healthcare provider information. This information is obtained either through an implantation card filled out by the implanting organization or through the medical device itself.

What Information Do We Collect Automatically From Your Device and How Do We Use It?

We and our third-party service providers may collect information automatically from your device in a variety of ways including:

Through your browser or device: Certain information is collected by most browsers or automatically through your device, such as your Media Access Control (MAC) address, device type, screen resolution, operating system name and version, device manufacturer and model, language, Internet browser type and version and the name and version of the Services you are using. We use this information to ensure that the Services function properly.
Using cookies: Cookies are small text files that are stored directly on your device when you visit a website. We use cookies to collect information such as time spent on the Services, pages visited, the pages you view immediately before and after you access the Services, the search terms you enter, and other anonymous traffic data. Cookies allow us to recognize you and personalize your experience, to facilitate navigation, and to display information more effectively. We also use cookies to gather statistical information about the use of the Services in order to understand how they are used, improve them, and resolve questions about them. If you do not want information collected through the use of cookies, most browsers allow you to automatically decline cookies or to be given the choice of declining or accepting cookies from a particular website. If you would like more information about cookies, you may wish to refer to allaboutcookies.org. If you do not accept our cookies, you may experience some inconvenience in your use of the Services. Click here to learn more about the cookies used by rxsight.com or to change or withdraw your consent.
Google Analytics: Google Analytics uses cookies to track your interactions with our Services. Google then collects that information and reports it back to us. Click here for more information on Google Analytics.
Using pixel tags and other similar technologies: We may use pixel tags (also known as web beacons and clear GIFs) to, among other things, track the actions of users of the Services, measure the success of our marketing campaigns and compile statistics about usage of the Services and response rates.
Using Adobe Flash technology (including Flash Cookies) and other similar technologies: We may use Flash local shared objects, commonly called “Flash Cookies,” and other technologies to collect and store information about your use of the Services. If you do not want Flash Cookies stored on your device, you can adjust the settings of your Flash Player. Please note that setting the Flash Player to restrict or limit acceptance of Flash Cookies may reduce or impede the functionality of some Flash applications.
IP Address: Your IP Address is a number that is automatically assigned to the computer that you are using by your Internet Service Provider. An IP Address may be identified and logged automatically in our server log files whenever a user accesses the Services, along with the time of the visit and the page(s) visited. Collecting IP Addresses is standard practice and is done automatically by many websites, applications and other services. We use IP Addresses for purposes such as calculating usage levels of the Services, helping diagnose server problems, and administering the Services. We may also derive your approximate location from your IP Address
Precise Real-Time Location Information: We may collect precise, real-time information about the location of the devices you use to access the Services. We may use your device’s location to provide you with personalized location-based services and content, including marketing communications. You may be permitted to allow or deny the use of your device’s location by managing your location services preferences through your device settings.
Interest-Based Advertising: We may use third party advertising companies to serve advertisements to you when you access and use the Services, based on information relating to your access to and use of the Services and other websites, apps or online services on any of your devices. To do so, these companies may use various technologies, including the placement or recognition of a unique cookie, pixel tag, or other similar technologies, along with information they collect about your online use, to recognize you across the devices you use. These companies use the information they collect, as well as information received from third parties, to serve ads for us about goods and services that may be of interest to you when you are on the Services or on third party properties. If you would like more information about this practice, please visit thenai.org or youradchoices.com. You can opt out of interest-based advertising by advertisers that are part of the National Advertising Initiative or who follow the Digital Advertising Alliance’s Principles by clicking the links provided.

How Do We Use Your Information?

In addition to using your information to deliver the programs, services, products, or information you request, and for the purposes described above, we may also use it:

to provide customer support;
to fulfill purchases or other transactions made by you;
to deliver marketing communications that may be of interest to you;
to send administrative information to you, such as information about the Services and our terms, conditions and policies;
to permit you to participate in polls, surveys, promotions, or other interactive features, such as chat features, and to administer these activities;
to personalize your experience and better tailor content and offers to you;
to facilitate social sharing functionality;
to allow you to send messages to another person through the Services;
to help us and our business partners better understand our audiences, evaluate user interest in the Services, improve the Services, and perform other market research activities;
for our business purposes, such as data analysis; audits; monitoring and prevention of fraud, infringement, and other potential misuse of the Services; modifying the Services; determining the effectiveness of our promotional campaigns; and operating and expanding our business activities;
as we believe to be necessary or appropriate: (a) under applicable law, including laws outside your country of residence; (b) to comply with legal process; (c) to respond to requests from public and government authorities, including public and government authorities outside your country of residence; (d) to enforce our terms and conditions; (e) to protect our operations; (f) to protect our rights, privacy, safety or property, and/or that of you or others; and (g) to allow us to pursue available remedies or limit the damages that we may sustain; and
no mobile information, opt-in data, or consent will be shared with third parties/affiliates for marketing/promotional purposes.

In addition to those purposes listed above, we may use your information for any other purpose disclosed to you at the time of collection or that you have previously authorized. We may combine, aggregate, or anonymize any of the information we collect from you with other information we may collect from or about you from any other online or offline source. We may use information that does not personally identify you for any purpose, except where we are required to do otherwise under applicable law.

How long do we retain your Personal Information?

We retain your personal information for as long as necessary to carry out the purposes set forth in this privacy notice but no longer than as required or permitted under applicable law or internal RxSight policy.

When and to Whom Do We Disclose Your Information?

The information we collect from and about you may be disclosed to the subsidiaries and affiliates within the RxSight group of companies, for the purposes described in this Privacy Policy. It may also be disclosed:

to third parties that provide services to us, such as those that fulfill requests for information, answer calls, administer programs or projects, assist in research and development, or deliver advertisements or other communications;
to business partners who offer products or services jointly with RxSight;
to permit a third-party business partner to deliver marketing communications or products that may be of interest to you, subject to any choices you have expressed;
to identify you to any person to whom you send messages through the Services;
to any person you direct us to contact, such as your designated caregiver(s);
by you, on message boards, chat, profile pages, blogs, and other services to which you post information and materials. Because any information you post may become public, we urge you to be very careful when deciding to disclose any information on or through the Services;
to your friends associated with your social media accounts, to other Services users, and to your social media account providers, in connection with your social sharing activity, such as if you connect your social media account to your Services account or log into your Services account from your social media account. By connecting your accounts, you authorize us to share information with your social media account provider, and you understand that the use of the information we share will be governed by the social media provider’s own privacy policy;
as required by law, such as to law enforcement, to health authorities to report possible adverse events, during government inspections or audits, as ordered or directed by courts or other governmental agencies, or in order to comply with a subpoena or other legal process;
when we believe in good faith that disclosure is necessary to protect legal rights or the security or integrity of our operations or the Services; protect your safety or the safety of others; investigate fraud, a breach of contract, or a violation of law; respond to a government request; or allow us to pursue available remedies or limit the damages that we may sustain; and
to third parties, advisors, and other entities to the extent reasonably necessary for development of or to proceed with the negotiation or completion of a corporate or commercial transaction, including a reorganization, merger, acquisition, joint venture, sale or other disposition of all or a portion of our business, assets, or stock (including in connection with any bankruptcy or similar proceedings).

We may disclose information that does not personally identify you for any purpose, except where we are required to do otherwise under applicable law.

Your Choices

Where you have elected to participate in one of our programs or services or to receive marketing communications from us, we offer you the ability to discontinue your participation or to opt out of receiving those communications in the communication itself. Alternatively, you can contact us to opt out using the contact information found in the “How to Contact Us” section at the end of this Privacy Policy. If you would like to request access to, correct, delete, or opt out of the sharing of your personal information, you may do so by completing our Personal Information Request form.

Information Security

We seek to use appropriate technical, administrative, and physical safeguards to protect the information collected through the Services. Unfortunately, no organization can guarantee the absolute security of electronic information, especially information transmitted over the Internet.

Children’s Information

The Services are not directed to children under the age of thirteen (13), and we do not knowingly collect personal information from such children.

Additional Privacy Rights

Many jurisdictions have enacted data privacy legislation. Depending on where you reside, you may be able to:

Right to Access: You may have the right to obtain your personal data in a portable format that allows you to transmit the personal data to another entity, subject to verification. If your jurisdiction provides for you to receive additional information regarding certain disclosures we make to third parties, we will provide this detail in your response to your access request.
Right to Correction/Rectification: You may have the right to correct your personal information, subject to verification.
Right to Erasure/Deletion: You may have the right to delete your personal information, subject to certain exceptions. In some cases, we may not be able to delete some types of information, in particular, where we have a legal obligation to keep that information, or where you want us to continue to provide you with a service and the processing of that information is necessary for the provision of that service.
Right to Restriction of Processing: You may have the right, in certain circumstances, to restrict further processing of your information.
Right to Portability: You may have the right in some cases to receive your information in a digital format or to have it transmitted directly to another controller/processer (where technically feasible).
Right to Object/Opt Out of Processing/Sharing for Marketing Purposes: You may have the right to object to the processing or sharing of your information on the basis of our legitimate interests, including for some marketing purposes
Right to Withdraw Consent: You can withdraw your consent at any time in respect of the processing of information which is based upon a consent.
Right to Lodge a Complaint or Claim Compensation before the Supervisory Authority for Data Protection in Your Country: If you consider that your rights under the applicable privacy legislation have been infringed, you may have the right to lodge a complaint or claim compensation with the supervisory authority for data protection in your country.

To exercise these additional privacy rights, please contact us by using the contact information found in the “How to Contact Us” section at the end of this Privacy Policy or by using the opt out links provided above.

Please note that some of the rights listed above are not absolute, may not be available in your jurisdiction, and may not be applicable in certain scenarios.

We will not discriminate against you for exercising your rights. We will not deny you goods or services, charge different prices or rates, or provide a different level of service. Some programs require usage of personal information to function, so compliance with your request may impact those experiences.

International Transfers

Our processing of your personal information may require that your information be transferred to countries outside the country where you are located, including where the level of legal protection may be different. Whenever we transfer your information outside of a country or region, such as the European Economic Area, we will ensure that appropriate safeguards are in compliance with applicable law. For further information about the mechanisms we use to protect your information when it is transferred outside of your country or region, please contact us through one of the methods described below.

Accessing and Updating Your Information

We encourage you to update the personal information you provide to help us continue to provide information that best meets your needs. You may be able to access and update this information through the member or account section of the service for which you registered, or you can contact us by using the contact information found in the “How to Contact Us” section at the end of this Privacy Policy. For your protection, we may only implement requests with respect to the personal information associated with the particular email address that you use to send us your request, and we may need to verify your identity before implementing your request.

Links to Third Party Websites

The Services may contain links to third party services that are not under our control. We are not responsible for the collection and use of your information by such services, and we encourage you to review their privacy policies. In addition, we are not responsible for the information collection, use, disclosure, or security practices of other organizations, such as Facebook, Apple, Google, Microsoft, or any other app developer, app provider, social media platform provider, operating system provider, wireless service provider, or device manufacturer, including in connection with any information you disclose to such other organizations through or in connection with the Services.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time by posting a new Privacy Policy on our website. If we make a material change to our Privacy Policy, we will take reasonable steps to notify you. Continuing to access and/or use the Services after we post a revised Privacy Policy constitutes your acceptance of those revisions and all terms of the then effective Privacy Policy.

How to Contact Us

If you have any questions about our Privacy Policy, please contact us and our Data Protection Officer, Shea Sudol, by emailing privacy@rxsight.com, calling (949) 521-7830 or by writing to RxSight, c/o Data Protection Officer, 100 Columbia, Aliso Viejo, CA 92656.