Privacy Policy

Effective Date: January 1, 2026
Last Updated: May 1, 2026

Vizitech USA, Inc. (“Vizitech,” “we,” “our,” or “us“) respects your privacy and is committed to protecting personal information in a transparent, secure, and responsible manner.

This Privacy Policy explains how we collect, use, disclose, store, and protect personal information when you visit our website, communicate with us, request information, schedule a demo, engage with our services, or otherwise interact with us online. It also explains the rights and choices that may be available to you under applicable privacy laws.

This Privacy Policy applies to the Vizitech website and any online service or webpage that links to it. It does not apply to third-party websites, platforms, or services that may be linked from our website and that we do not control.

1. Company Information

Vizitech USA, Inc.
103 East Sumter Street
Eatonton, GA 31024
privacy@vizitechusa.com

2. Scope of This Privacy Policy

This Privacy Policy applies to personal information collected through:

  • our public website
  • contact forms and inquiry forms
  • demo requests and business communications
  • downloadable content, newsletters, and marketing forms
  • support or service-related communications
  • certain product and platform interactions where this Privacy Policy is presented or referenced

Vizitech provides readiness-focused training, simulation, verification, and governance solutions, including the Vizitech Vector Readiness Platform. Depending on customer configuration and contractual scope, platform-related processing may include operational, learning, and verification-related information.

3. Information We Collect

We may collect personal information directly from you, automatically through your use of our website, from your organization, or from third parties acting on your behalf.

A. Information You Provide Directly

We may collect information such as:

  • name
  • email address
  • phone number
  • company or organization name
  • job title
  • state, country, or general business location
  • information you include in contact requests, forms, emails, or meeting requests
  • information submitted when you request a demo, consultation, proposal, or other materials

B. Information We Collect Automatically

When you use our website, we may automatically collect certain information, including:

  • IP address
  • browser type and version
  • device type
  • operating system
  • pages viewed
  • referring pages or URLs
  • date and time of access
  • approximate geolocation based on IP address
  • clickstream and interaction data
  • cookie and similar technology data

C. Information We May Process Through Our Products and Services

When organizations use Vizitech solutions, including Vector, we may process categories of information configured by contract, implementation, and customer policy. These may include:

  • identity and segmentation data, such as learner, role, site, shift, cohort, and instructor or manager association
  • program and content data, such as scenario, module, skill, difficulty, inject set, and SOP or content version
  • session and task telemetry, such as start and stop times, pauses, retries, drop-offs, task sequence, step timing, errors, rework, decision paths, and variance events
  • Coach Mode data, such as hints used, coaching prompts shown or accepted, assisted completions, debrief interactions, drill selection, and optional self-report or confidence inputs
  • Verify Mode data, such as rubric item scores, threshold computation inputs and outputs, pass or fail outcomes, attempts-to-pass, proctor or observer marks, evidence artifact identifiers, and audit metadata

4. Sensitive Information

Our default privacy stance is to collect only what is necessary for readiness, proof, service delivery, security, and lawful business operations. Within Vector, optional sensitive signals such as voice, biometrics, or cognitive-load proxies are policy-gated and off by default unless explicitly enabled under customer policy and a valid legal basis. Self-report or confidence information is not treated as proof.

Please do not submit sensitive personal information through our public website unless we specifically request it.

5. How We Use Information

We may use personal information to:

  • operate, maintain, and improve our website and services
  • respond to inquiries and provide requested information
  • schedule demos, meetings, consultations, and follow-up communications
  • provide proposals, onboarding, implementation, and customer support
  • personalize and improve user experience
  • analyze website usage, performance, and marketing effectiveness
  • support product functionality, readiness workflows, verification, dashboards, reporting, and evidence generation
  • manage user access, governance, approvals, versioning, and auditability
  • detect, investigate, and prevent fraud, security incidents, and misuse
  • comply with legal obligations and enforce our agreements
  • establish, exercise, or defend legal claims

6. Legal Bases for Processing

Where required by applicable law, we process personal information on one or more of the following legal bases:

  • your consent
  • performance of a contract
  • compliance with legal obligations
  • our legitimate interests, such as operating our business, improving our services, maintaining security, communicating with customers, and preventing misuse
  • any other lawful basis permitted by applicable law

7. Cookies and Similar Technologies

We may use cookies, analytics tools, pixels, tags, and similar technologies to:

  • remember user preferences
  • support website functionality
  • understand website traffic and usage
  • improve content and performance
  • measure campaign effectiveness
  • help maintain security

You can control cookies through your browser settings and, where applicable, through cookie consent tools on our website. Disabling certain cookies may affect the performance or functionality of the website.

8. How We Share Information

We may disclose personal information:

  • to vendors, contractors, and service providers who help us operate our business and website
  • to hosting, analytics, CRM, communications, scheduling, marketing, and support providers
  • to affiliated entities or successors in connection with a merger, acquisition, financing, or sale of assets
  • to your organization where you interact with us in a business or enterprise capacity
  • to customer-designated systems or integrations when enabled
  • to legal, audit, insurance, and professional advisers
  • to law enforcement, regulators, courts, or other parties when required by law or when necessary to protect rights, safety, and security

We do not sell personal information for money. We also do not knowingly share personal information for cross-context behavioral advertising through our website unless expressly disclosed.

9. Data Retention

We retain personal information only as long as reasonably necessary for the purposes described in this Privacy Policy, including to provide services, comply with legal obligations, maintain security, resolve disputes, and enforce agreements.

For enterprise product environments, retention may vary by data class and customer requirements. Illustrative retention defaults in the Vector framework include:

  • PII: 2 years after last activity, or applicable customer policy
  • performance evidence: 7 years, or applicable regulatory requirement
  • behavioral telemetry: 12 to 18 months where appropriate
  • system logs and audit trails: 2 to 7 years depending on compliance needs
  • optional sensitive signals, if enabled: shortest possible retention consistent with customer policy and lawful basis

Actual retention periods may differ based on legal, contractual, and operational requirements.

10. Data Deletion

Where required by law or contract, we support deletion, de-identification, or restriction requests, subject to lawful exceptions. In enterprise settings, deletion actions may be logged and traceable as part of governance and audit controls.

11. Security

We maintain reasonable administrative, technical, and organizational safeguards designed to protect personal information from unauthorized access, disclosure, alteration, misuse, and destruction. These safeguards may include:

  • access controls
  • authentication and authorization measures
  • audit trails
  • approval workflows
  • retention controls
  • monitoring and logging
  • vendor oversight
  • internal governance and change control procedures

In Vector environments, role-based access and immutable or controlled audit records may apply to changes involving rubrics, thresholds, versions, and evidence exports.

No method of transmission or storage is completely secure, and we cannot guarantee absolute security.

12. International Transfers

Your personal information may be processed in the United States and in other countries where Vizitech or its service providers operate. Those countries may not provide the same level of legal protection as your home jurisdiction.

Where required, we use appropriate safeguards for international transfers, including contractual protections or other recognized legal transfer mechanisms.

13. AI and Automated Processing

Vizitech may use limited AI-supported functions for approved internal and product-related purposes, such as drafting outlines, suggesting scenario variants, or summarizing analytics. Where used within Vector, AI outputs require human approval before release, and customer deployments may support enabled, disabled, or no-AI configurations depending on contractual scope.

We do not use the public website to make solely automated decisions that produce legal or similarly significant effects about individuals.

14. Children’s Privacy

Our website and services are intended for business, institutional, and professional audiences. They are not directed to children under 13, and we do not knowingly collect personal information from children through the website.

15. Your Privacy Rights

Depending on where you live, you may have rights regarding your personal information. These may include the right to:

  • request access to personal information
  • request correction of inaccurate information
  • request deletion of personal information
  • object to or restrict certain processing
  • withdraw consent where processing is based on consent
  • request portability of certain data
  • opt out of certain marketing communications
  • appeal a denied request where required by law

To exercise rights, contact us at privacy@vizitechusa.com. We may need to verify your identity before fulfilling a request.

California Privacy Rights Notice

If you are a California resident, you may have rights under the California Consumer Privacy Act, as amended by the California Privacy Rights Act.

Categories of Personal Information We May Collect

  • identifiers, such as name, email address, phone number, IP address, and online identifiers
  • internet or electronic network activity information
  • commercial or business records relating to inquiries, proposals, or services
  • professional or employment-related information, such as company and title
  • geolocation data derived from IP address
  • audio, visual, or similar information only if voluntarily provided or used in a configured service setting
  • in limited cases, sensitive personal information where lawfully permitted and necessary

Sources

We collect this information:

  • directly from you
  • automatically from your browser or device
  • from your organization
  • from service providers and integrations
  • from lawful third-party sources

Business and Commercial Purposes

  • providing and improving services
  • responding to requests and support needs
  • operating and securing our website and systems
  • analytics and internal reporting
  • onboarding, implementation, and enterprise service delivery
  • compliance, legal, audit, and governance functions

Sale or Sharing

We do not sell personal information for monetary consideration. We also do not knowingly share personal information for cross-context behavioral advertising unless expressly stated on a specific service or property.

Sensitive Personal Information

To the extent we collect sensitive personal information, we use and disclose it only for permitted business purposes, lawful service delivery, security, or other purposes authorized by law and contract.

California Rights

Subject to applicable exceptions, California residents may have the right to:

  • know and access categories and specific pieces of personal information
  • know categories of sources, purposes, and disclosures
  • request deletion
  • request correction of inaccurate personal information
  • opt out of sale or sharing, if applicable
  • limit certain uses of sensitive personal information, where applicable
  • receive equal service and pricing without discrimination for exercising privacy rights

To submit a California privacy request, email privacy@vizitechusa.com with the subject line California Privacy Request.

GDPR and EEA/UK Privacy Rights Notice

If you are located in the European Economic Area, Switzerland, or the United Kingdom, you may have rights under applicable data protection law, including the GDPR and UK GDPR.

Your Rights

Depending on applicable law and circumstances, you may have the right to:

  • be informed about how your personal data is used
  • access your personal data
  • correct inaccurate or incomplete data
  • request erasure of your data
  • restrict processing
  • object to processing based on legitimate interests
  • receive portable copies of certain data
  • withdraw consent where processing relies on consent
  • lodge a complaint with your local supervisory authority

Lawful Bases

Where GDPR applies, we rely on one or more lawful bases, including:

  • consent
  • contract
  • legal obligation
  • legitimate interests
  • other lawful grounds recognized by applicable law

Cross-Border Transfers

Where personal data is transferred outside the EEA or UK, we use recognized safeguards where required.

Complaints

If you are in the EEA or UK and believe your data has been handled unlawfully, you may have the right to lodge a complaint with your local supervisory authority or the UK Information Commissioner’s Office, as applicable.

16. Marketing Communications

You may opt out of marketing emails by using the unsubscribe link included in those emails or by contacting us at privacy@vizitechusa.com. Even if you opt out of marketing, we may still send service, transactional, legal, or relationship-related messages where appropriate.

17. Third-Party Links and Services

Our website may contain links to third-party websites or services, including scheduling tools, video platforms, or embedded content. We are not responsible for the privacy practices of those third parties, and we encourage you to review their privacy policies.

18. Enterprise Customer Context

If you interact with Vizitech through your employer, agency, institution, or another organization using our services, that organization may act as the controller or business with respect to certain personal information, while Vizitech may act as a processor, service provider, or contractor depending on the arrangement and applicable law. In those cases, our processing may also be governed by contractual terms, data processing agreements, and customer instructions.

19. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, products, legal obligations, or operations. When we do, we will revise the Last Updated date at the top of this page.

20. Contact Us

Vizitech USA, Inc.
103 East Sumter Street
Eatonton, GA 31024
privacy@vizitechusa.com