Effective Date: October 1, 2024

If you are a California resident, please click here for more information about your specific privacy rights.

If you are an EU, UK, or Switzerland resident, please click here for more information about who is the controller, the legal basis for processing and your specific data protection rights.

This Privacy Notice (“Notice”) describes how OSI Systems, Inc., together with its subsidiaries and affiliates (collectively, “Company” “us,” “we,” or “our”) collects, uses, discloses, and stores your information in certain contexts. We primarily handle Personal Data (as defined below) as a “Processor” or “Service Provider” to provide services on behalf of our business customers. We handle only limited Personal Data as a “Controller,” such as information about our customers’ employees that we collect through our websites, social media accounts, and mobile applications (collectively, our “Digital Properties”), events (including in-person), competitions and other promotions and through other online and offline interactions (for example, if you negotiate a contract on behalf of one of our client companies, which you represent). This Notice applies to Personal Data that we handle as a Controller. Please read this Notice carefully.

When we handle Personal Data on behalf of and under instructions of our business customers (as their Processor or Service Provider), we are bound by contractual obligations and this Notice does not apply. We do not control and are not responsible for our customers’ privacy and data collection practices and you should ask them if you have questions about such practices. This Notice also does not apply to job applicants or our employees.

Whenever you interact with us on behalf of another individual or entity, such as by providing or accessing Personal Data about another individual, you need to obtain their consent (or have the legal authority without consent) to share any Personal Data you provide to us.

Changes: We may update this Notice from time to time. Any updated Notice will be effective when posted. Please check this Notice periodically for updates. If any of the changes are unacceptable to you, you should stop interacting with us. When required under applicable law, we will notify you of any changes to this Notice by posting an update on the Digital Properties.

Quick Links:

1. Sources of Personal Data
2. Types of Personal Data We Collect
3. How We Use Personal Data
4. How We Disclose Personal Data
5. Cookies and Other Tracking Technologies
6. Data Security and Data Retention
7. Children’s Privacy
8. External Links
9. Contact Information
10. Supplemental Information for California Residents
11. Supplemental information for the EEA, Switzerland and the UK

1. Sources of Personal Data

“Personal Data” is any information relating to an identified or identifiable natural person and in some jurisdictions, information relating to an identified or identifiable household.

We collect Personal Data about you from the following sources:

A. Directly from you. We may collect Personal Data you provide to us directly, such as when you contact us through our Digital Properties, inquire about our products or services, interact with us in person at tradeshows, sign up for offers or newsletters, communicate with us, fill out an online inquiry form, place or customize orders, or sign up for an account or other services.

B. Data collected automatically and through tracking technologies. We may automatically collect information or inferences about you, such as through cookies and other tracking technologies. This may include information such as your IP address, device type, unique device identification numbers, browser type, broad geographic location (e.g., country or city-level location), operating system, referring URLs, information about your navigation to, through, and from our Digital Properties, download errors, number of Digital Property visits, average time spent on Digital Properties, length of visits to certain pages and page interaction. For more information, please review our Cookies Policy.

C. From third parties. We may collect Personal Data from third parties, such as service and content providers, business partners, our affiliated companies and subsidiaries, data brokers, social media companies, individuals or entities who refer you, or other third parties with whom we interact.

D. From publicly available sources. We may collect Persona Data about you from publicly available sources, such as public profiles and websites.

We may combine and use information and make inferences from information that we receive from the various sources described in this Notice, including third party sources. We use and disclose the combined information and inferences for the purposes identified below.

2. Types of Personal Data We Collect

We may collect the following types of Personal Data:

A. Identifiers, such as your name, email address, physical address, telephone number, business contact information, account number, device identifiers (e.g., cookie IDs and IP address), and information you provide when registering as a customer/customer representative to create an online account to access certain resources on our Digital Properties (e.g., eLearning modules and Product Manuals).

B. Business Contact Records, such as signatures

C. Commercial information, such as purchase or subscription information; information about products you or our business contacts order or are interested in; payment details to take payment, fulfil contractual obligations, or for related purposes; delivery details; personal opinions or insights included in any feedback relating to your interactions with us; other commercial or financial information; and legal information relating to your commercial interactions with us, such as fraud checks or flags raised about your transactions, complaints and information related to their resolution.

D. Internet or other electronic network activity information, such as your browsing history, search history, and information regarding your interactions with and use of the Digital Properties. For more information about cookies and other device data, please see Cookies Policy .

E. Non-precise geolocation data, such as your location as derived from your IP address.

F. Professional or employment-related information, such as job title, organization, professional licenses, credentials, professional specialty, professional affiliations, and other professional information.

G. Inferences drawn from any of the information we collect to assess the level of interest in our products and services based on frequency of visits and contact, evaluate the industries showing interest in our products and services based on IP address (where we can infer your approximate location to improve our communications to you), and determine your preferred frequency for receiving offers.

3. How We Use Personal Data

We may use Personal Data for the following purposes:

A. To provide you or your company with products and services, such as providing and delivering you the goods and services you or the company that you represent requests; providing customer service; processing or fulfilling orders and transactions; verifying customer information; assessing financial, credit or insurance risks arising from any relationship or prospective relationship with a customer, supplier, distributor or other party; processing payments; communicating with you about your product, service or subscription; hosting informational webinars; verifying eligibility for certain programs or benefits; responding to requests, complaints, and inquiries; and providing similar services or otherwise facilitating your relationship with us, including requesting/processing your feedback.

B. For our internal business purposes, such as creating, maintaining, or servicing accounts; operating our Digital Properties and customizing the content; maintaining internal business records; enforcing our policies and rules; conducting organizational analysis; completing management reporting; managing Company assets and global workforce; undertaking work planning, both administratively and organizationally (including work schedules and billing of clients); project management; auditing; maintaining records on business activities, such as accounting, commercial, procurement, document management and other similar activities; budgeting; real estate management; IT administration of our technologies, network, and intranet; and IT security management and tasks.

C. For our internal research and product improvement purposes, such as verifying or maintaining the quality or safety of our products or services; improving our products and services, including the navigation and content of Digital Properties; designing new products and services; customizing advertisements to you; evaluating the effectiveness of our advertising or marketing efforts; understanding how visitors interact with our Digital Properties, where they come from, and what content interests them; and debugging and repairing errors with our systems, networks, and equipment.

D. For legal, safety or security reasons, such as complying with legal requirements; complying with reporting and similar requirements; investigating and responding to claims against the Company and its customers; for the establishment, exercise or defense of legal claims we may have against you or pursue together with you, whether in court proceedings or in administrative or out-of-court procedure; completing due diligence (such as in connection with a corporate transaction); protecting our, your, our customers’, and other third parties’ safety, property or rights; detecting, preventing, and responding to security incidents; and protecting against malicious, deceptive, fraudulent, or illegal activity.

E. In connection with a corporate transaction, such as if we acquire, or some or all of our assets are acquired by, another entity, including through a sale in connection with bankruptcy and other forms of corporate change.

F. For marketing, such as marketing our products or services or those of our affiliates, business partners, or other third parties (for purposes of this paragraph alone, “we’” or “our” includes our affiliates, business partners, or other third parties we may be working with to provide marketing) consistent with your consent. For example, we may use Personal Data we collect to send you newsletters, surveys, questionnaires, promotions, or information about events or webinars, or to analyze emails sent and content viewed by customers. You can unsubscribe from our email marketing by clicking the “unsubscribe” or “opt-out” link in the marketing emails we send you. To opt out of other forms of marketing (such as postal marketing), please contact us using the information in Section 9.

We may use anonymized, de-identified, or aggregated information for any purpose permitted by law.

4. How We Disclose Personal Data

We may disclose Personal Data to third parties, including to the categories of recipients described below:

A. Affiliates and subsidiaries, including parent entities, corporate affiliates, subsidiaries, business units, and other companies that share common ownership.

B. Service providers that work on our behalf to provide the products and services you request or that support our relationship with you, such as IT providers, companies that provide business support services, financial administration, and event organization.

C. Professional consultants, such as accountants, lawyers, and financial advisors.

D. Vendors necessary to complete transactions you request, such as shipping companies, logistics providers, and credit reference services to establish creditworthiness (to the extent permitted by applicable law).

E. Law enforcement or other government agencies, for legal, security, or safety purposes, such as when we share information to comply with law or legal requirements; to enforce or apply our Terms of Use and other agreements; and to protect our, your, our customers’, or other third parties’ safety, property, rights, or vital interests.

F. With other entities in connection with a corporate transaction, such as if we, or some or all of our assets, are acquired by another entity, including through a sale in connection with bankruptcy or other forms of corporate change.

G. Entities to which you have consented to the disclosure.

5. Cookies and Other Tracking Technologies

We may collect technical information from and about your device (such as your browser type, operating system, IP address, and domain name) via cookies and other tracking technologies. Please see our Cookies Policy for further information.

6. Data Security and Data Retention

We maintain reasonable security procedures and technical and organizational measures to protect your Personal Data against accidental or unlawful destruction, loss, disclosure or use.

Your Personal Data will be retained as long as necessary to fulfill the purposes we have outlined above unless we are required to do otherwise by applicable law. This includes retaining your Personal Data to provide you or your company with the products or services requested and interact with you; maintain our business relationship with you or your company; improve our business over time; ensure the ongoing legality, safety and security of our services and relationships; or otherwise in accordance with our internal retention procedures. Once you or your company has terminated your relationship with us, we may retain your Personal Data in our systems and records in order to ensure adequate fulfillment of surviving provisions in terminated contracts or for other legitimate business purposes, such as to enable easier future user onboarding, in order to demonstrate our business practices and contractual obligations, or to provide you with information about our products and services in case of interest. If you would like to know more about the retention periods applicable to your Personal Data, you can contact us using details provided in Section 9 below.

7. Children’s Privacy

Our Digital Properties are intended for individuals 18 years of age and older. The Digital Properties are not directed at, marketed to, nor intended for, children under 18 years of age. As a general rule, we do not knowingly collect any information, including Personal Data, from children under 18 years of age. If you believe that we have inadvertently collected Personal Data from a child under the age of 18, please contact us at the address in Section 9 below, and we will take prompt steps to delete the information.

8. External Links

Our Digital Properties may contain links to external sites or other online services that we do not control, including those embedded in third party advertisements or sponsor information. We are not responsible for the privacy practices or data collection policies of such third-party services. You should consult the privacy notices of those third-party services for details on their practices.

9. Contact Information

If you have questions regarding this Notice, please contact us at privacy@osi-systems.com or write to:

OSI Systems, Inc.
Attention: Data Privacy Officer
Corporate Compliance Department
12525 Chadron Avenue
Hawthorne, California 90250
United States of America

10. Supplemental Information for California Residents

We provide services and products primarily to business customers and generally only collect Personal Data of the employees of those business customers. In some limited circumstances, an individual consumer who is a California resident may interact with us directly.

A. Rights Concerning Personal Data

California residents may have the following rights concerning collection, use, sharing, and deletion of Personal Data:

• Right to Know. You have the right to request information about the categories of Personal Data we have collected about you, the categories of sources from which we collected the Personal Data, the purposes for collecting, selling, or sharing the Personal Data, and the categories of third parties with whom we have shared, sold, or disclosed your Personal Data, as well as the specific pieces of Personal Data we have collected about you.
• Right to Delete. You have the right to request that we delete Personal Data that we have collected from you.
• Right to Correct. You have the right to request that we correct inaccurate Personal Data that we maintain about you.
• Right to Opt Out of Sale or Sharing. We do not sell or share your Personal Data.

California residents may exercise the Right to Know, the Right to Delete, and the Right to Correct via our webform or by calling us at 1-833-308-1010.

Verification: In order to process rights requests, we may need to obtain information to locate you in our records or verify your identity depending on the nature of the request. In most cases, we will collect some or all of the following data elements: first and last name, email address, and telephone number. In some cases, we may request different or additional information, including a signed declaration that you are who you say you are. We will inform you if we need such information.

Authorized Agents: Authorized agents may exercise rights on behalf of you by submitting a request via our webform and indicating that they are submitting the request as an agent. We may require the agent to demonstrate authority to act on behalf of you by providing signed permission from you. We may also require you to verify your own identity directly with us or to directly confirm with us that you provided the authorized agent permission to submit the request.

Timing: We will respond to Right to Delete, Right to Correct, and Right to Know requests within 45 days unless we need more time, in which case we will notify you and may take up to 90 days total to respond to your request.

B. Additional Data Processing Disclosures

In addition to the disclosures in the sections above, this section provides supplemental information about how we process Personal Data.

Disclosure of Personal Data

Below please find a chart detailing the categories of Personal Data we disclosed and the categories of third parties to whom each category disclosed in the past 12 months:

Sensitive Personal Data

We do not collect or process Sensitive Personal Data to infer characteristics about you.

11. Supplemental information for the EEA, Switzerland and the UK

The following terms supplement the above disclosures with respect to our processing of European Economic Area (i.e., European Union Member States, Iceland, Liechtenstein and Norway) (“EEA”), Swiss, and UK Personal Data. To the extent applicable, in the event of any conflict or inconsistency between the other parts of the Notice and the terms of this Section 11, this Section 11 shall govern and prevail with regards to the processing of EEA, Swiss and UK Personal Data.

Data Controller

Unless otherwise specified, the entity responsible for the processing of your Personal Data and acting as the controller is the OSI group entity with which you have a primary relationship, such as the entity that entered into the sales, service, or supply contract with you, the entity that provided you with marketing or promotional materials and communications, the entity in the country for which we created a local website, or the entity whose representatives you have been communicating with.

In cases where decisions on the processing of your Personal Data are not made by one OSI entity alone, such as when two OSI group entities co-sign a contract with you or multiple OSI group entities organize an event, such entities are jointly responsible for the lawfulness of those specific processing activities.

On some occasions, other OSI group entities may also independently determine how your Personal Data is processed as independent controllers, such as when another OSI group entity independently provides you a product.

If you have any questions about controllership, do not hesitate to contact us using the information in Section 9 above.

Legal Bases for Processing

We rely on the following legal grounds for the collection, use, and other processing of your Personal Data:

A. Processing Purpose: To provide you or your company with products and services (Section 3.A).

• • Legal Bases:
    • Performance of a contract to which you are a party or to take steps at your request prior to entering into a contract.
    • Compliance with a legal or statutory obligation to which we are subject.
    • Legitimate interests as set out in Section 3
    • Your consent, when appropriate.

B. Processing Purpose: For our internal business purposes (Section 3.B).

• Legal Bases:
  • Performance of a contract to which you are a party or to take steps at your request prior to entering into a contract.
  • Compliance with a legal or statutory obligation to which we are subject.
  • Legitimate interests as set out in Section 3 above.
  • Your consent, when appropriate.

C. Processing Purpose: For our internal research and product improvement purposes (Section 3.C).

• Legal Bases:
• • Legitimate interests as set out in Section 3 above.
  • Your consent, when appropriate.

D. Processing Purpose: For legal, safety or security reasons (Section 3.D).

• Legal Bases:
  • Performance of a contract to which you are a party or to take steps at your request prior to entering into a contract.
  • Compliance with a legal or statutory obligation to which we are subject.
  • Legitimate interests as set out in Section 3 above.
  • Establishment, exercise or defense of legal claims.
  • Protection of vital interests.
  • Your consent, when appropriate.

E. Processing Purpose: In connection with a corporate transaction (Section 3.E).

• Legal Bases:
  • Legitimate interests as set out in Section 3 above.
  • Your consent, when appropriate.

F. Processing Purpose: For marketing (Section 3.F).

• Legal Bases:
  • Legitimate interests as set out in Section 3 above.
  • Your consent, when appropriate.

Your Data Protection Rights

Under the conditions set by applicable data protection laws, you may exercise certain rights regarding your Personal Data.

• Right to Access. You have the right to obtain confirmation from us whether we are processing your Personal Data and related information, as well as the right to obtain a copy of your Personal Data undergoing processing.
• Right to Data Portability. You may receive your Personal Data that you have provided to us in a structured, commonly used and machine-readable format.
• Right to Rectification. You have the right to request the rectification of inaccurate Personal Data and to have incomplete data completed.
• Right to Objection. You have the right to object to the processing of your Personal Data in certain cases.
• Right to Restrict Processing. You may request that we restrict the processing of your Personal Data in certain cases.
• Right to Erasure. You may request that we erase your Personal Data in certain cases.
• Right to Lodge a Complaint. You have the right to lodge a complaint with a supervisory authority in the country where you reside or where the conduct that is the subject of the complaint occurred.
• Right to Refuse or Withdraw Consent. In case we ask for your consent to process your Personal Data, you are free to refuse to give it. If you have given your consent, you may withdraw it at any time without any adverse consequences. The lawfulness of any processing of your Personal Data that occurred prior to the withdrawal of your consent will not be affected.
• Right to Not Be Subject to Automated Decision-making. You have the right to not to be subject to a decision based solely on automated processing and to be given more information about why any such decision was made.

You may exercise these rights by contacting us using our webform or the details provided in Section 9 above. Before responding to your request, we may ask you to verify your identity and to provide further details about your request. We will endeavor to respond within an appropriate timeframe and, in any event, within any timescales required by applicable laws and regulations.

International Transfers of Personal Data

Due to the global nature of our operations, some of the recipients mentioned in Section 4 of the Notice may be located in countries outside the EEA, Switzerland or the UK that do not provide an adequate level of data protection as defined by data protection laws in the EEA, Switzerland and the UK. Certain third countries, such as Canada, have been officially recognized by the European Commission and UK Secretary of State as providing an adequate level of protection. Transfers within our corporate group or to third parties located in countries that have not received such recognition take place using an acceptable data transfer mechanism, such as the EU and/or UK Standard Contractual Clauses, Binding Corporate Rules, approved Codes of Conduct and Certifications, on the basis of permissible statutory derogations, or any other valid data transfer mechanism issued by the EEA, Swiss or UK authorities.

Please reach out to us using the contact information in Section 9 above if you want to receive further information about how we transfer Personal Data or, where available, a copy of the relevant data transfer mechanism.

OSI Systems, Inc.
Attention: Data Privacy Officer
Corporate Compliance Department
12525 Chadron Avenue
Hawthorne, California 90250
United States of America

OSI Systems, Inc.
Attention: Data Privacy Officer
One New Change
London, United Kingdom
EC4M 9AF