.svg)
Last updated: March 14th, 2025
This Privacy Policy (“Policy”) describes our policies and procedures on the collection, use and disclosure of your information (including Personal Data) when you use the Site or any of our Products and Services, and tells you about how you may exercise your privacy rights under applicable laws.
By using the Site or our Products and Services, you agree to the collection, use and disclosure of your information (including Personal Data) in accordance with this Policy.
Definitions
The following definitions shall have the same meaning regardless of whether they appear in singular or in plural. For the purposes of this Policy:
Account means a unique account created for you to access our Site or our Products and Services.
Company (referred to as either "the Company", "we", "us" or "our" in this Policy) refers to Epilog Imaging Systems, Inc., 333 W San Carlos St, Suite 600 San Jose, CA 95110.
For the purpose of the GDPR, the Company is the Data Controller.
Cookies are small files that are placed on your computer, mobile device or any other device by a website, containing the details of your browsing history on that website among its many uses.
Data Controller means the person or entity which alone or jointly with others determines the purposes and means of the processing of Personal Data.
Device means any device that can access the Service such as a computer, a cell phone or a digital tablet.
Facebook Fan Page is a public profile named Epilog AI specifically created by the Company on the Facebook social network, accessible from https://www.facebook.com/epilogai.
Personal Data is any information that relates to an identified or identifiable individual or that is protected as personal information, personal data or similar term under applicable laws. For the purposes of this Policy, we use the capitalized term Personal Data to refer to personal information as defined under the CCPA.
Products and Services means any products and services offered by Epilog.
Site refers to the website at www.epilog.com.
Service Provider means any natural or legal person who processes the Personal Data on behalf of the Company.
Terms means the Terms of Use at www.epilog.com and any applicable Additional Terms (as defined in the Terms of Use).
Usage Data refers to data collected automatically, either generated by the use of the Site or the Products and Services (for example, the pages visited and the duration of a page visit).
You, your or user means the individual accessing or using the Site or the Products and Services either on their own behalf or behalf of their company.
Collecting and Using your Personal Data
Types of Data Collected
Personal Data
While you order, purchase and use our Products and Services or create an Account with us, we may ask you to provide us with certain Personal Data, which you may include, but is not limited to:
Email address
First name and last name
Shipping Address for delivery of Products and Services
Phone number
Bank account or credit card information in order to pay for products and/or services within the Service
When you pay for Products and Services via bank transfer or credit card, we may ask you to provide information to facilitate this transaction and to verify your identity. Such information may include, without limitation:
Date of birth
Passport or National ID card
Bank card statement
Other information linking you to an address
Usage Data
Usage Data is collected automatically when using the Site or the Products and Services.
Usage Data may include information such as your Device's Internet Protocol address (e.g., IP address), browser type, browser version, the pages of our Service that you visit, the time and date of your visit, the time spent on those pages, unique device identifiers and other diagnostic data.
When you access the Site or the Products and Services by or through a mobile device, we may collect certain information automatically, including, but not limited to, the type of mobile device you use, your mobile device unique ID, the IP address of your mobile device, your mobile operating system, the type of mobile Internet browser you use, unique device identifiers and other diagnostic data.
We may also collect information that your browser sends whenever you visit our Site or when you access our Site or our Products and Services by or through a mobile device.
Connected Car Data
SideCar is one of the Products and Services that we sell that connects to your vehicle’s CAN bus. It collects, receives and generates data about the vehicle’s use, operation, and performance, including but not limited to geolocation of your vehicle, trip durations and routes, parking locations of your vehicle, braking, and acceleration.
Sidecar also uses driver monitoring software that watches the driver and tracks his or her head and eyes, ensuring he or she is monitoring the driving environment. We may collect video from the driver monitoring feed only if you opt in through the settings of Sidecar. You should notify those who use or occupy your vehicle while SideCar is engaged that it is recording video.
Tracking Technologies and Cookies
We use Cookies and similar tracking technologies to track the activity on our Site and Products and Services and store and share certain information. Tracking technologies used are beacons, tags, and scripts to collect and track information and to improve and analyze our Site and our Products and Services. These Cookies and tracking technologies may collect Usage Data, your IP address or Device ID and track and record your interactions with our Site and Products and Services. Such information may be collected by or shared with third parties that provide the Cookies or tracking technologies.The technologies we use may include:
Cookies or Browser Cookies. A Cookie is a small file placed on your Device. You can instruct your browser to refuse all Cookies or to indicate when a Cookie is being sent. However, if you do not accept Cookies, you may not be able to use some parts of our Site or our Products and Services. Unless you have adjusted your browser setting so that it will refuse Cookies, our Site and Products and Services may use Cookies.
Web Beacons. Certain sections of our Site and our emails may contain small electronic files known as web beacons (also referred to as clear gifs, pixel tags, and single-pixel gifs) that permit the Company, for example, to count users who have visited those pages or opened an email and for other related website statistics (for example, recording the popularity of a certain section and verifying system and server integrity).
Cookies can be "Persistent" or "Session" Cookies. Persistent Cookies remain on your personal computer or mobile device when you go offline, while Session Cookies are deleted as soon as you close your web browser.
We use both Session and Persistent Cookies for the purposes set out below:
Necessary / Essential Cookies
Type: Session Cookies
Administered by: Us
Purpose: These Cookies are essential to provide you with services available through the Website and to enable you to use some of its features. They help to authenticate users and prevent fraudulent use of user accounts. Without these Cookies, the services that you have asked for cannot be provided, and we only use these Cookies to provide you with those services.
Cookies Policy / Notice Acceptance Cookies
Type: Persistent Cookies
Administered by: Us
Purpose: These Cookies identify if users have accepted the use of cookies on the Site.
Functionality Cookies
Type: Persistent Cookies
Administered by: Us
Purpose: These Cookies allow us to remember choices you make when you use the Site, such as remembering your login details or language preference. The purpose of these Cookies is to provide you with a more personal experience and to avoid you having to re-enter your preferences every time you use the Site.
For more information about the cookies we use and your choices regarding cookies, please visit our Cookies Policy or the Cookies section of our Privacy Policy.
Use of your Personal Data
The Company may use Personal Data for the following purposes:
To provide, improve and maintain our Site and our Products and Services, including to monitor the usage of our Site and Products and Services and train our artificial intelligence models and machine learning.
To manage your Account: to manage your registration as a user of the Products and Services. The Personal Data you provide can give you access to different functionalities of the Products and Services that are available to you as a registered user.
For the performance of a contract: we use your Personal Data for the purposes or entering and performance of any contracts for the Products and Services you have purchased from us.
To contact you: we use your Personal Data to contact you by email, telephone calls, SMS, or other equivalent forms of electronic communication, such as a mobile application's push notifications regarding updates or informative communications related to the Site and the Products and Services, including any software or security updates.
To provide you with news, special offers and general information about other goods, services and events which we believe may be of interest to you.
To respond to and manage your requests or inquiries.
To comply with applicable laws, and respond to legal process (e.g., subpoenas, discovery request and court orders) or requests from law enforcement or governmental entities.
For business transfers: We may use your Personal Data to evaluate or conduct a merger, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Personal Data held by us is among the assets transferred.
For other purposes: We may use your Personal Data for other purposes, such as data analysis, identifying usage trends, protecting the integrity and security of our systems, preventing fraud, and determining the effectiveness of our promotional campaigns.
Sharing of Your Personal Data
We may share your Personal Data in the following situations:
With Service Providers: We may share your Personal Data with Service Providers that perform functions or perform services on our behalf, such as to monitor and analyze the use of our Site and Products and Services, perform data analytics, provide payment processing, or provide email marketing services.
For business transfers: We may share or transfer your Personal Data in connection with, or during negotiations of, any merger, sale of Company assets, financing, or acquisition of all or a portion of our business to another company, including as part of a bankruptcy proceeding or liquidation.
With Affiliates: We may share your Personal Data with our affiliates, in which case we will require those affiliates to honor this Policy. Affiliates include our parent company and any other subsidiaries, joint venture partners or other companies that we control or that are under common control with us.
With business partners: We may share your Personal Data with our business partners to offer you certain products, services or promotions.
With other users: Our Site and Products and Services may include public features or areas where your Personal Data is shared with other users. If you provide your Personal Data to such features or areas, you agree that your Personal Data may be shared with the public and other users.
Law enforcement: Under certain circumstances, the Company may be required to disclose your Personal Data if required to do so by law or in response to valid requests by public authorities (e.g., a court or a government agency).
Other Situations:
We may disclose your Personal Data in the good faith belief that such action is necessary to:
Comply with a legal obligation or legal process, such as a subpoena, discovery request or court order.
Protect and defend our rights or property.
Prevent or investigate possible wrongdoing in connection with the Site or the Products and Services.
Protect the personal safety of users of the Site or the Products and Services or the public.
Exercise or defend legal claims and protect against legal liability.
With your consent:
We may disclose your Personal Data for any other purpose with your consent.
Retention of your Personal Data
The Company will retain your Personal Data only for as long as is necessary for the purposes set out in this Policy. We will also retain and use you your Personal Data to the extent necessary to comply with our legal obligations (for example, if we are required to retain your data to comply with applicable laws), resolve disputes, and enforce our legal agreements and policies.
The Company will also retain Usage Data for internal analysis purposes. Usage Data is generally retained for a shorter period of time, except when this data is used to strengthen the security or to improve the functionality of our Products and Services, or we are legally obligated to retain this data for longer time periods.
Transfer of your Personal Data
Your information, including Personal Data, is processed at the Company's operating offices and in any other places where the parties involved in the processing are located. It means that this information may be transferred to — and maintained on — computers located outside of your state, province, country or other governmental jurisdiction where the data protection laws may differ than those from your jurisdiction. You consent to such transfer of your information, including your Personal Data.
Security of your Personal Data
The security of you your Personal Data is important to us, but remember that no method of transmission over the Internet, or method of electronic storage is 100% secure. While we strive to use commercially acceptable means to protect your Personal Data, we cannot guarantee its absolute security.
GDPR and UK GDPR
This section only applies to the extent we are processing Personal Data that subject to the GDPR or the implementation of the GDPR under the United Kingdom Data Protection Act (“UK GDPR”),
Legal Basis for Processing Personal Data under GDPR and UK GDPR
We may process Personal Data under the following legal bases:
Consent: We may process your Personal Data where you have given you your consent for one or more specific purposes. You can withdraw your consent at any time by emailing us at info@epilog.com.
Performance of a contract: We process your Personal Data to the extend necessary for the performance of an agreement with you and/or for any pre-contractual obligations thereof, such as in connection with your purchase and use of our Products and Services.
Legal obligations: We process your to the extent necessary for compliance with a legal obligation to which the Company is subject.
Vital interests: We may process your Personal Data if necessary to protect your vital interests or of another natural person, such as to protect your personal safety.
Legitimate interests: We may process your Personal Data where necessary for the purposes of the legitimate interests pursued by the Company, such as for marketing, product development.
Your Rights under the GDPR and UK GDPR
If you are a data subject in the European Economic Area (EEA) or the United Kingdom, you have the following rights with respect to your Personal Data:
Request access to your Personal Data. You have right to request access to your Personal Data and information regarding the processing of your Personal Data, including the purposes of the processing; the categories of Personal Data concerned; the recipients or categories of recipient to whom the Personal Data have been or will be disclosed, in particular recipients in third countries or international organization
Request correction of the Personal Data that we hold about you. You have the right to have any incomplete or inaccurate information we hold about you corrected.
Object to processing of your Personal Data. You have the right to object to processing where we are relying on a legitimate interest as the legal basis for our processing, such as for our direct marketing purposes.
Request erasure of your Personal Data. You have the right to ask us to delete or remove Personal Data in certain situations, such as where we no longer need the Personal Data, subject to certain exceptions.
Request the transfer of your Personal Data. You can request that we provide to you, or to a third-party you have chosen, your Personal Data in a structured, commonly used, machine-readable format. Please note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
Withdraw your consent. You have the right to withdraw your consent on using your Personal Data. If you withdraw your consent, we may not be able to provide you with access to certain specific functionalities of the Site or the Products and Services.
Exercising of your GDPR And UK GDPR Data Protection Rights
You may exercise your rights under the GDPR and UK GDPR by emailing us at info@epilog.com. Please note that we may ask you to verify your identity before responding to such requests.
You have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, if you are in the , please contact your local data protection authority in the EEA. If you are in the UK, you can contact the Information Commissioner’s Office at https://ico.org.uk/make-a-complaint/.
Facebook Insights
We use the Facebook Insights function in connection with the operation of the Facebook Fan Page and on the basis of the GDPR, in order to obtain anonymized statistical data about our users.
For this purpose, Facebook places a Cookie on the device of the user visiting our Facebook Fan Page. Each Cookie contains a unique identifier code and remains active for a period of two years, except when it is deleted before the end of this period.
Facebook receives, records and processes the information stored in the Cookie, especially when the user visits the Facebook services, services that are provided by other members of the Facebook Fan Page and services by other companies that use Facebook services.
For more information on the privacy practices of Facebook, please visit Facebook Privacy Policy here: https://www.facebook.com/privacy/explanation
CCPA Privacy Notice
This section for California residents supplements the information contained in our Privacy Policy and it applies solely to residents of the State of California.
Notice at Collection and Categories of Personal Data Collected
The following is a list of categories of Personal Data which we may collect or may have been collected from California residents within the last twelve(12) months.
Category A: Identifiers.
Examples: A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, account name, driver's license number, passport number, or other similar identifiers.
Collected: Yes.
Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)).
Examples: A name, signature, Social Security number, physical characteristics or description, address, telephone number, passport number, driver's license or state identification card number, insurance policy number, education, employment, employment history, bank account number, credit card number, debit card number, or any other financial information, medical information, or health insurance information. Some personal information included in this category may overlap with other categories.
Collected: Yes.
Category C: Protected classification characteristics under California or federal law.
Examples: Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status, genetic information (including familial genetic information).
Collected: No.
Category D: Commercial information.
Examples: Records and history of products or services purchased or considered.
Collected: Yes.
Category E: Biometric information.
Examples: Genetic, physiological, behavioral, and biological characteristics, or activity patterns used to extract a template or other identifier or identifying information, such as, fingerprints, faceprints, and voiceprints, iris or retina scans, keystroke, gait, or other physical patterns, and sleep, health, or exercise data.
Collected: No.
Category F: Internet or other similar network activity.
Examples: Interaction with our Products and Services or advertisements.
Collected: Yes.
Category G: Geolocation data.
Examples: Approximate physical location.
Collected: Yes, through the Sidecar application.
Category H: Sensory data.
Examples: Audio, electronic, visual, thermal, olfactory, or similar information.
Collected: Yes, the Sidecar application may collect videos of drivers and other persons in vehicles.
Category I: Professional or employment-related information.
Examples: Current or past job history or performance evaluations.
Collected: No.
Category J: Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)).
Examples: Education records directly related to a student maintained by an educational institution or party acting on its behalf, such as grades, transcripts, class lists, student schedules, student identification codes, student financial information, or student disciplinary records.
Collected: No.
Category K: Inferences drawn from other personal information.
Examples: Profile reflecting a person's preferences, characteristics, psychological trends, predispositions, behavior, attitudes, intelligence, abilities, and aptitudes.
Collected: No.
Category L: Sensitive Personal Information
Examples: Precise Geolocation.
Collected: Yes.
Sources of Personal Data
We obtain the categories of Personal Data listed above from the following categories of sources:
Directly from you. For example, the forms you complete on our Site, when you register an Account for our Products and Services, preferences you express or provide through our Products and Services, or from your purchases of our Products and Services.
Automatically from you. For example, through Cookies we or our Products and Services Providers set on your Device as you navigate through our Products and Services.
From Service Providers. For example, third-party vendors for payment processing, or other third-party vendors that we use to provide the Products and Services to you.
Use of Personal Data for Business Purposes or Commercial Purposes
We may use or disclose personal information we collect for "business purposes" or "commercial purposes" (as defined under the CCPA), which may include the following examples:
To operate our Products and Services and provide you with our Products and Services.
To provide you with support and to respond to your inquiries, including to investigate and address your concerns and monitor and improve our Products and Services.
To fulfill or meet the reason you provided the information. For example, if you share your contact information to ask a question about our Products and Services, we will use that personal information to respond to your inquiry. If you provide your personal information to purchase a product or service, we will use that information to process your payment and facilitate delivery.
To respond to law enforcement requests and as required by applicable law, court order, or governmental regulations.
As described to you when collecting your Personal Data or as otherwise set forth in the CCPA.
As described to you when collecting your Personal Data or as otherwise set forth in the CCPA.For internal administrative and auditing purposes.To detect security incidents and protect against malicious, deceptive, fraudulent or illegal activity, including, when necessary, to prosecute those responsible for such activities.
Please note that the examples provided above are illustrative and not intended to be exhaustive. For more details on how we use this information, please refer to the "Use of your Personal Data" section.
Disclosure of Personal Information for Business Purposes or Commercial Purposes
We may use or disclose and may have used or disclosed in the last twelve (12) months the following categories of Personal Data for business or commercial purposes:
Category A: Identifiers
Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
Category D: Commercial information
Category F: Internet or other similar network activity
Please note that the categories listed above are those defined in the CCPA. This does not mean that all examples of that category of Personal Data were in fact disclosed, but reflects our good faith belief to the best of our knowledge that some of that information from the applicable category may be and may have been disclosed.
Sale and Sharing of Personal Information
We may sell and may have sold in the last twelve (12) months the following categories of personal information:
Category A: Identifiers
Category B: Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e))
Category D: Commercial information
Category F: Internet or other similar network activity
Sale or Sharing of Personal Information of Minors Under 16 Years of Age
We do not knowingly collect personal information from minors under the age of 16 through our Products and Services, although certain third party websites that we link to may do so. These third-party websites have their own terms of use and privacy policies and we encourage parents and legal guardians to monitor their children's Internet usage and instruct their children to never provide information on other websites without their permission.
We do not sell or share for cross-context behavioral advertising the personal information of Consumers we actually know are less than 16 years of age, unless we receive affirmative authorization (the "right to opt-in") from either the Consumer who is between 13 and 16 years of age, or the parent or guardian of a Consumer less than 13 years of age. Consumers who opt-in to the sale of personal information may opt-out of future sales at any time. To exercise the right to opt-out, you(or your authorized representative) may submit a request to us by contacting us.
If you have reason to believe that a child under the age of 13 (or 16) has provided us with personal information, please contact us with sufficient detail to enable us to delete that information.
Your Rights under the CCPA
The CCPA provides California residents with specific rights regarding their personal information. If you are a resident of California, you have the following rights:
The right to know. You have right to know what Personal Data we have collected about you, including the categories of Personal Data, the categories of sources from which the Personal Data is collected, the business or commercial purpose for collecting, selling, or sharing Personal Data, the categories of third parties to whom we disclose Personal Data, , and the specific pieces of Personal Data we have collected about your.
The right to delete Personal Data. You have the right to request the deletion of your Personal Data that we have collected from you, subject to certain exceptions.
The right to correct. You have the right to request that we correct inaccurate personal information that we may have about you.
The Right to Limit the Use and Disclosure of Sensitive Personal Information. You have the right to request that we limit the use and disclosure of your sensitive personal information except for certain uses permitted under the CCPA (such as to provide the Products and Services). We do not offer this opt-out as we do not infer characteristics based on your sensitive personal information.
The right to say no to the sale or sharing of Personal Data (opt-out). You have the right to direct us to not sell your personal information or share your personal information for cross-context behavioral advertising. To submit an opt-out request please use this form or email us at info@epilog.com.
The right not to be discriminated against. You have the right not to be discriminated against for exercising any of your consumer's rights, including by:
1) Denying goods or services to you
2) Charging different prices or rates for goods or services, including the use of discounts or other benefits or imposing penalties
3) Providing a different level or quality of goods or services to you
4) Suggesting that you will receive a different price or rate for goods or services or a different level or quality of goods or services
Exercising your CCPA Data Protection Rights
In order to exercise any of your rights under the CCPA, and if you are a California resident, you can contact us as follows:
By email: info@epilog.com
Complete this Form for Opt-out Requests
Please specify the type of request you wish to make. You may also use an authorized agent to make a request to delete, request to correct, or a request to know. If an authorized agent makes a request, we may require the authorized agent to provide proof that you gave the agent signed permission to submit the request.
We may also require you to do either of the following:
(1) Verify your own identity directly with us.
(2) Directly confirm with us that you provided the authorized agent permission to submit the request.
This additional information is not required if we are provided a power of attorney for the authorized agent pursuant to Probate Code sections 4121 to 4130.
We may request that you provide sufficient information that allows us to reasonably verify you are the person about whom we collected Personal Data. We cannot respond to your request or provide you with the required information if we cannot:
Verify your identity or authority to make the request
And confirm that the personal information relates to you
We will disclose and deliver the required information free of charge within 45 days of receiving your verifiable request. The time period to provide the required information may be extended once by an additional 45 days when reasonably necessary and with prior notice.
For data portability requests, we will select a format to provide your personal information that is readily usable and should allow you to transmit the information from one entity to another entity without hindrance.
"Do Not Track" Policy as Required by California Online Privacy Protection Act (CalOPPA)
Our Site and our Products and Services does not respond to Do Not Track signals.
Children's Privacy
Our Site and our Products and Services are not directed to anyone under the age of 13. We do not knowingly collect personally identifiable information from anyone under the age of 13. If you are a parent or guardian and you are aware that your child has provided us with Personal Data, please contact us. If we become aware that we have collected Personal Data from anyone under the age of 13 without verification of parental consent, we take steps to remove that information from our servers.
If we need to rely on consent as a legal basis for processing your information and your country requires consent from a parent, we may require your parent’s consent before we collect and use that information.
Your California Privacy Rights (California's Shine the Light law)
Under California Civil Code Section 1798 (California's Shine the Light law), California residents can request information once a year about sharing their Personal Data with third parties for the third parties' direct marketing purposes. You can submit such requests to info@epilog.com.
California Eraser Law (California Business and Professions Code Section 22581)
California Business and Professions Code section 22581 allows California residents under the age of 18 who are registered users of online sites, services or applications to request and obtain removal of content or information they have publicly posted.
To request removal of such data, and if you are a California resident, you can contact us using the contact information provided below, and include the email address associated with your account.
Be aware that your request does not guarantee complete or comprehensive removal of content or information posted online and that the law may not permit or require removal in certain circumstances.
Links to Other Websites
Our Site and our Products and Services may contain links to other websites that are not operated by us. If you click on a third party link, you will be directed to that third party's site. We strongly advise you to review the privacy policy of every site you visit.
We have no control over and assume no responsibility for the content, privacy policies or practices of any third party sites or services.
Changes to this Privacy Policy
We may update our Policy from time to time. We will notify you of any changes by posting the new Policy on this page. We may also inform you via email and/or a prominent notice on our Site or Products and Services, prior to the change becoming effective and update the "Last Updated" date at the top of this Policy.
You are advised to review this Policy periodically for any changes. Changes to this Policy are effective when they are posted on this page.
Contact UsIf you have any questions about this Privacy Policy, you can contact us:
By email: info@epilog.com