PRIVACY POLICY
Effective Date: 04/04/2026
1. INTRODUCTION
This Privacy Policy describes how Aykanush Sungulyan A PC, a California professional corporation doing business as RevitalEyes Optometry ("we," "us," or "our"), collects, uses, and shares information about you when you interact with our website, revitaleyesoptometry.com, and otherwise engage with our services online. Our optometry practice is licensed to provide optometric services only in California; however, our website may be accessed from outside California. This Privacy Policy is written primarily to describe our practices and California residents' rights under California privacy laws. We may offer additional notices or rights disclosures where required by other laws based on your location.
Important: This Privacy Policy applies to information collected through the website and other non-clinical channels. It does not govern how we use or disclose Protected Health Information (PHI) as a healthcare provider. For information regarding the use and disclosure of your PHI as a patient, please refer to our separate Notice of Privacy Practices.
Please do not submit detailed medical information or other PHI through general website forms or standard email. If you need to communicate about your care, please use the methods we provide for clinical communications.
If you choose to use a third-party patient intake or scheduling tool linked from our website (for example, our Barti-hosted intake forms), the information you submit through that tool is collected and processed through that third party's systems so that we can provide care. Barti acts as our service provider and Business Associate under a Business Associate Agreement (BAA). Our handling of patient health information is governed by our Notice of Privacy Practices.
2. INFORMATION WE COLLECT
California Privacy Summary (CCPA/CPRA): The table below summarizes the categories of personal information we may collect through the website, common sources, business purposes, and categories of third parties with whom information may be shared. This summary does not describe PHI, which is described in our Notice of Privacy Practices.
| Category | Examples | Sources | Purposes | Shared with (categories) |
|---|---|---|---|---|
| Identifiers | Name, email, phone, IP address | You; your browser/device | Respond to inquiries; security; operations | Hosting/IT, analytics, communications providers |
| Internet / network activity | Pages viewed, clicks, device/browser info, session recordings | Cookies/analytics tools; your browser/device | Site functionality; analytics; fraud prevention | Analytics and marketing technology providers |
| Communications | Messages you send us via forms/email | You | Customer service; administrative communications | Email/communications service providers |
We do not sell personal information. See Section 4 for more detail on cookies and potential "sharing" under the CCPA/CPRA.
We may collect the following types of information from you:
- Identifiers: Your name, email address, phone number, postal address, and IP address.
- Online Activity Data: Information about your browsing activity on our website, such as the pages you visit, the links you click, and the date and time of your visit. We may also collect information about your device, including your browser type, operating system, and device identifiers. We also use session recording tools that may capture anonymized or pseudonymized records of how you interact with our website pages.
- Contact Information: If you contact us through our website or via email, we may collect your name, email address, and any other information you provide in your message.
We collect this information through various means, including:
- Directly from you: When you provide information to us through our website forms, contact us via email, or provide your email address through our patient intake process.
- Automatically: Through the use of cookies and other tracking technologies when you browse our website.
We do not intentionally request sensitive personal information (e.g., SSNs, genetic data) through the website. This website is not directed at children under 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have inadvertently collected personal information from a child under 13, parents or guardians may request deletion by contacting us using the information provided in the CONTACT US section.
3. HOW WE USE YOUR INFORMATION
We may use your information for the following purposes:
- To ensure our website functions properly, personalize your experience, and analyze website usage trends to improve our content and services.
- To respond to your inquiries, provide customer support, and send you administrative and care-related communications, such as appointment reminders, office updates, and intake follow-up. We may also send optional informational communications, such as newsletters or general educational updates you choose to receive. You may opt out of optional informational communications at any time by following the unsubscribe instructions in our emails or by contacting us directly. Opting out does not affect administrative or appointment-related messages necessary for your care.
- To analyze website traffic, understand user behavior, and conduct research to improve our services. We may also aggregate and anonymize data for these purposes.
- To comply with applicable laws, regulations, and legal processes within the State of California.
- To detect, prevent, and address fraud, security breaches, and other potentially harmful activities.
4. SHARING YOUR INFORMATION
We may share your information with the following categories of third parties:
- Service Providers: Third-party service providers who assist us with website hosting, data analysis, and other services. We require service providers to protect personal information and to use it only for the purposes for which we disclose it to them.
- Legal Authorities: Law enforcement agencies, courts, or other government authorities if required by law or legal process, or if we believe it is necessary to protect our rights, property, or safety, or the rights, property, or safety of others.
- Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity. We will provide notice if your personal information becomes subject to a different privacy policy as a result of the transfer. Any Protected Health Information involved in a business transfer is governed by HIPAA and our Notice of Privacy Practices, not this Privacy Policy.
We use cookies and similar technologies for essential functions (session management), analytics (Google Analytics), behavioral analytics and session recording (Microsoft Clarity), and measurement (Meta (Facebook) Pixel). These tools are delivered through Google Tag Manager, a tag management system that loads and manages third-party scripts on our website. You can manage your cookie preferences through your web browser settings. Please note that disabling certain cookies may impact the functionality and user experience of our website.
We take care to limit the use of third-party tracking technologies on pages and forms where users submit appointment requests, intake information, or other health-related information. Where analytics tools are present on such pages, we seek to configure them to measure limited interaction events only and not to transmit form-field content or other information that directly identifies an individual. If you have concerns about data collection on any specific page, please contact us using the information in Section 11.
We partner with Microsoft Clarity and Microsoft Advertising to capture how you use and interact with our website through behavioral metrics, heatmaps, and session replay to improve and market our products/services. Website usage data is captured using first and third-party cookies and other tracking technologies to determine the popularity of products/services and online activity. Additionally, we use this information for site optimization, fraud/security purposes, and advertising. For more information about how Microsoft collects and uses your data, visit the Microsoft Privacy Statement.
We do not sell your personal information. We use Google Analytics to measure website usage and improve our site, the Meta (Facebook) Pixel to measure the reach of our advertising, and Microsoft Clarity for behavioral analytics and session recording. These tools use cookies and may collect information about your browsing activity. Depending on how these technologies operate and your browser/device settings, this activity may constitute "sharing" for cross-context behavioral advertising under the CCPA/CPRA. You may exercise your right to opt out by:
- Adjusting your browser or device privacy settings and cookie controls;
- Using browser-level privacy controls, including the Global Privacy Control (GPC), where available; and
- Contacting us using the information in Section 11 to request assistance with exercising a "Do Not Sell or Share" preference.
We will treat a detected GPC signal as a request to opt out of sale/sharing for the browser/device that sends the signal, to the extent required by applicable law. When we detect a GPC signal from your browser/device, we endeavor to prevent Google Analytics, the Meta (Facebook) Pixel, and Microsoft Clarity from loading for that browser/device. Because these tools are managed through a tag management system, the effectiveness of GPC blocking depends on our technical configuration. We periodically review our implementation to ensure GPC signals are honored as intended.
Note: GPC is a browser/device-level setting. If you use multiple browsers or devices, you may need to enable GPC on each one. Some essential website functionality may still operate. We do not share personal information collected through this website with third parties for their direct marketing purposes. California residents therefore need not submit a request under California Civil Code 1798.83 (Shine the Light), but may contact us with any questions.
5. YOUR RIGHTS
As a California resident, you may have certain rights regarding your personal information. We voluntarily extend the following rights to California residents regardless of whether we meet the statutory thresholds that would make the CCPA/CPRA legally applicable to our practice. We will review and respond to these requests in good faith and in accordance with applicable law, subject to verification and any lawful exceptions:
- Right to Access: Request access to the personal information we hold about you.
- Right to Correct: Request that we correct any inaccurate or incomplete personal information we have about you.
- Right to Delete: Request that we delete your personal information, subject to certain exceptions.
- Rights under the California Consumer Privacy Act (CCPA) and California Privacy Rights Act (CPRA): To the extent these laws apply to our practice, you have the right to know what personal information we collect, the sources of that information, the purposes for which we use it, and the categories of third parties with whom we share it. You also have the right to opt-out of the sale or sharing of your personal information and to limit the use of your sensitive personal information. We do not sell personal information, and we do not intentionally collect sensitive personal information, as defined under CPRA, through this website. See Section 4 for details on cookies and analytics tools. Where applicable, CCPA requests will be processed within 45 days (extendable to 90 with notice).
We will not discriminate against you for making a good-faith privacy request. To exercise any of these rights, please contact us using the contact information provided in Section 11. We may need to verify your identity before processing your request. We will respond to your request within the timeframes required by applicable law.
6. DATA SECURITY
We have implemented reasonable administrative, technical, and physical security measures designed to protect your personal information from unauthorized access, use, disclosure, alteration, or destruction. However, no method of transmission over the internet or method of electronic storage is completely secure, so we cannot guarantee absolute security. In the event of a data breach involving personal information, we will provide notices as required by applicable law.
7. DATA RETENTION
We retain personal information collected through the website for as long as reasonably necessary for the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law. Typical retention periods for website-related data include:
- Website analytics data: Up to 14 months for user-level data; up to 2 months for event-level data.
- Contact and inquiry records: As long as needed to respond to and follow up on your request, generally no longer than 2 years unless an ongoing relationship warrants longer retention.
- Server and access logs: Typically 30 to 90 days, depending on our hosting provider's configuration.
- Privacy rights requests: Records of access, deletion, or opt-out requests are retained for as long as required to demonstrate compliance, generally up to 2 years.
- Cookie and tracking opt-out records: Retained as long as necessary to honor your preference.
This Privacy Policy does not describe retention of medical records or other Protected Health Information (PHI). Retention of patient health records is governed by our Notice of Privacy Practices and applicable healthcare laws.
8. DO NOT TRACK DISCLOSURE
Our website does not respond to "Do Not Track" signals from browsers due to lack of an established industry standard for such signals. However, we do honor Global Privacy Control (GPC) signals as described in Section 4. Please note that third-party analytics, session recording, and measurement providers — including Google Analytics, Microsoft Clarity, and the Meta (Facebook) Pixel — may collect information about your online activities over time and across different websites when you visit our site. Please see Section 4 for details on these technologies and available opt-out options.
9. UPDATES TO THIS PRIVACY POLICY
We may update this Privacy Policy from time to time to reflect changes in our practices or California legal requirements. We will post any changes on our website and update the "Effective Date" at the top of this policy. If we make material changes to this Privacy Policy, we will provide you with notice by posting a notice on our website or by sending you an email, as required by applicable law. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your information.
10. DISPUTE RESOLUTION
Disputes related to this Privacy Policy are governed by the Dispute Resolution section of our Terms and Conditions.
11. CONTACT INFORMATION
For privacy concerns about information collected through the website (non-PHI), or to exercise your CCPA/CPRA rights, contact us using the information below. For requests related to Protected Health Information (PHI) or patient privacy rights under HIPAA/CMIA, please follow the process described in our Notice of Privacy Practices.
Aykanush Sungulyan A PC (DBA RevitalEyes Optometry)
Attn: Privacy Officer
4842 Van Nuys Boulevard, Sherman Oaks, CA 91403
Email: legal@revitaleyesoptometry.com
Subject: Privacy Policy Request
Phone: 1-818-797-5858
TTY/TDD: 711 (Relay Service for people with hearing/speech disabilities)