Sured Privacy Notice
Effective Date: November 6, 2025
Overview
Sured LLC (“Sured,” “we,” “our,” or “us”) provides educational and workflow solutions for ophthalmic practices. We respect your privacy and are committed to transparent, lawful, and secure data handling. This Privacy Notice describes how we collect, use, disclose, and protect information through:
– The Application: app.suredhealth.com (“Application”)
– The Website: www.suredhealth.com and related web properties (“Site”)
By using the Application or Site, you agree to the terms of this Notice and our Terms of Use.
1. Information We Collect
A. Information You Provide
– Account or registration details (name, organization, role, email, password)
– Professional contact information and communications submitted through forms or chat
– Customer and billing information (processed securely by our payment providers)
– Voluntary feedback, survey responses, or support requests
B. Information Collected Automatically
We automatically collect limited technical and usage data:
– Browser type, device/OS, IP address, language settings, referral URLs, and session identifiers
– Log data regarding pages or modules viewed, timestamps, and navigation patterns
– Cookies and analytics SDKs (e.g., Google Analytics, Firebase) used for performance, security, and product improvement
You may disable non-essential cookies through your browser or local cookie controls.
C. Protected Health Information (PHI)
Sured may process limited patient-related information solely on behalf of healthcare providers using our solutions.
– When handling PHI, Sured acts as a Business Associate under HIPAA and executes a Business Associate Agreement (BAA) with each covered entity.
– PHI is encrypted in transit and at rest, stored in AWS environments with strict access controls.
– PHI is never sold, used for advertising, or disclosed for non-authorized purposes.
If you access the Site as a visitor or non-clinical user, no PHI is collected.
2. How We Use Information
We use information to:
– Provide, operate, and improve our products and services
– Authenticate users and manage accounts
– Deliver customer support and communicate service updates
– Monitor performance, usage, and security
– Comply with applicable laws and enforce our Terms
– Send optional product or feature updates where legally permitted (you may opt out at any time)
We do not sell or rent personal information to third parties.
3. Legal Bases for Processing (GDPR/UK GDPR)
| Activity | Legal Basis |
| Operating and maintaining the Site/Application | Legitimate Interests |
| Providing products, accounts, and support | Contract |
| Marketing communications | Consent or Legitimate Interests (where permitted) |
| Compliance with laws and cooperation with authorities | Legal Obligation |
| Security, fraud prevention, and protection of rights | Legitimate Interests |
4. Disclosures and Transfers
We may share information with:
– Service Providers that host, process, or analyze data (e.g., AWS, analytics, payment processors) under strict data-processing agreements
– Legal or Regulatory Authorities when required to comply with law or protect rights or safety
– Business Successors in the event of a merger, acquisition, or asset transfer, subject to applicable law
For international transfers, we use safeguards such as Standard Contractual Clauses (SCCs) or equivalent mechanisms recognized under GDPR and UK law.
5. Retention
We retain information only as long as necessary for the purposes described above, to meet legal or contractual obligations, or to resolve disputes. PHI is retained per the relevant BAA and securely deleted or anonymized afterward.
6. Security
Sured employs organizational, technical, and administrative measures to protect information against loss, misuse, or unauthorized access. These include encryption, access control, logging, and secure cloud infrastructure.
No system is entirely secure; in the event of a breach involving personal data, we will notify affected parties and regulators as required by law.
7. Your Rights
For EEA, UK, and Swiss Data Subjects:
You may request access, correction, deletion, restriction, or transfer of your personal data, or object to processing. To exercise these rights, email privacy@suredhealth.com. We will respond within applicable legal timeframes.
For California Residents:
You have the right to know what personal information we collect, delete certain information, correct inaccuracies, and opt out of the sale or sharing of personal information. To make a request, contact privacy@suredhealth.com or use our “Do Not Sell or Share My Personal Information” link on our website. We do not sell personal information for monetary consideration.
For Other Jurisdictions:
We will honor privacy rights applicable under your local laws to the extent required.
8. Children’s Privacy
Sured’s Application and Site are not directed to children under 16, and we do not knowingly collect personal information from minors. If you believe we have collected such data, contact us immediately at privacy@suredhealth.com.
9. Do Not Track
Because industry standards for “Do Not Track” signals are not yet established, our sites do not currently respond to them.
10. Policy Updates
We may update this Privacy Notice periodically. Revisions will be posted on this page with an updated “Effective Date.” Continued use of our Site or Application after changes constitutes acceptance of the updated policy.
11. Contact
For privacy questions, rights requests, or compliance inquiries:
Sured LLC
New York, NY 10001, USA
Email: privacy@suredhealth.com