Privacy policy

This Privacy Policy applies to the official DEPSTECH website (depstech.com) and the companion local application software for DEPSTECH USB-connected endoscopes (collectively, the “Services”). It governs how we collect, use, disclose, and safeguard your personal information when you access or use our Services, purchase products from our website, or otherwise interact with us.

 

We recognize the importance of your personal information and value the trust you place in us. We commit to collecting and using your data only as necessary, and strictly comply with applicable data protection laws and regulations. Please read this Policy carefully—including the Special Statement on Data Processing for the USB-Connected Endoscope Local App, which takes priority over all other provisions.

 

DEFINITIONS

For clarity, key terms used in this Policy have the following meanings:

1. We/DEPSTECH: Shenzhen Potensic Intelligent Co., Ltd. and its affiliates (including our Hong Kong-based operating entity), acting as the data controller of your personal information.

2. You/User: Any individual who accesses our website, uses our products or Services, including but not limited to website visitors, product purchasers, customer support requesters, and users of the USB-connected endoscope local app.

3. Personal Information: Information recorded electronically or otherwise that relates to an identified or identifiable natural person, excluding anonymized data. This includes contact details you voluntarily provide, order information, account credentials, and usage data we automatically collect.

4. Sensitive Personal Information: Personal information that, if disclosed or misused, may infringe on human dignity or endanger personal safety or property. Examples include biometric data, religious beliefs, specific identities, medical/health information, financial account details, and location tracking data. Special Note: Our USB-connected endoscope local app does not collect any personal or sensitive personal information.

5. Services: All products and services we provide via the official website and the USB-connected endoscope companion local app, including product displays, online shopping, customer support, and real-time endoscope imaging.

6. Official Website: The DEPSTECH website hosted at depstech.com.

7. USB-Connected Endoscope Local App: A companion software developed exclusively for our USB-connected endoscope products. It operates entirely offline (no internet connection required for full functionality) and solely receives and displays real-time video feeds transmitted via USB from the endoscope camera.

8. Usage Data: Information we automatically collect via cookies, pixel tags, and similar technologies about your access to and use of the Official Website, including device information, network data, browsing history, and clickstream records.

9. Collection: Acquiring or taking control of personal information for a specific purpose.

10. Use: Processing, analyzing, or utilizing personal information.

11. Sharing: Providing personal information to another data controller, where both parties maintain independent control over the data.

12. Cookie: Small text files stored on your device by a website server to remember preferences, authenticate users, or enhance browsing experience.

13. Global Privacy Control (GPC): A technical standard allowing users to signal privacy preferences via browser settings to opt out of targeted advertising and data sharing.

14. Service Providers: Third-party entities that perform specific functions on our behalf, including payment processors, logistics providers, cloud storage vendors, and analytics platforms.

 

SCOPE OF APPLICATION & SPECIAL STATEMENTS

(I) General Scope

This Policy applies to all interactions between you and us, including:

- Accessing depstech.com to browse products, register an account, place orders, contact customer support, or participate in surveys/promotions;

- Using DEPSTECH customer support services;

- Receiving product notifications, marketing communications, or other outreach from us.

 

(II) Special Statement for the USB-Connected Endoscope Local App

This provision takes precedence over all other sections of this Policy for the App.

Our USB-connected endoscope companion app is a purely local, offline-running program. It requires no internet connection to function fully and does not collect, store, upload, transmit, or share any user data whatsoever, including but not limited to:

- All real-time video, image, or audio content (if applicable) transmitted by the endoscope;

- Device model, operating system, hardware configuration, device identifiers, or any other device information;

- Usage behavior data such as operation logs, session duration, or feature preferences;

- Geolocation, IP address, network status, or any other network-related information;

- Name, contact details, account credentials, or any other personally identifying information.

All data processing for the App occurs exclusively in your local device memory. No backend data transmission channels exist, and neither we nor any third party can access any information generated during your use of the App.

 

(III) Exclusions

This Policy does not apply to:

- Third-party websites, products, or services (including those linked from our Official Website);

- Information you publicly share on third-party social media platforms;

- Endoscope hardware or companion software not provided by DEPSTECH.

 

PERSONAL INFORMATION WE COLLECT (APPLIES ONLY TO THE OFFICIAL WEBSITE)

When you use the Official Website, we collect personal information strictly in accordance with the “minimum necessary” principle. The types of data we collect depend on how you interact with us.

 

(A) Information You Voluntarily Provide to Us

We collect the following information when you use specific features of the Official Website:

- Basic Contact Information: Name, email address, phone number, mailing address, etc., submitted via contact forms, customer support inquiries, or account registration.

- Order & Transaction Information: Name, billing address, shipping address, payment confirmation details, email, phone number, order history, return/exchange records, and invoice information provided when purchasing products.

- Account Information: Username, password, security questions/answers, and account binding details used to create and secure your DEPSTECH account.

- Shopping Behavior Information: Products browsed, added to cart, saved, favorited, reviewed, recommended, or purchased; gift card usage records.

- Customer Support Information: Issue descriptions, supporting documents, screenshots, order numbers, or other details provided during customer support interactions.

- Survey & Promotion Information: Details submitted when participating in questionnaires, user research, contests, sweepstakes, giveaways, or other promotional activities.

 

(B) Usage Data We Automatically Collect

When you visit our Official Website, we automatically collect the following Usage Data via cookies, pixel tags, web beacons, SDKs, and similar technologies:

- Device Information: Device model, operating system type/version, browser type/version, screen resolution, device language, unique device identifiers.

- Network Information: IP address, internet service provider, access time, exit time, page dwell time, page navigation sequence, click/download records, error reports.

- Location Information: Approximate geographic location (country/region, city level) inferred from your IP address.

 

(C) Information We Receive from Third Parties

We may obtain necessary information about you from the following third parties to complete transactions, verify identity, prevent fraud, or improve service quality:

- E-commerce platform providers (e.g., Shopify, which powers our website) for account and transaction data;

- Payment processors for payment verification (we do not store your full credit/debit card details);

- Logistics providers for shipping and delivery status updates;

- Analytics vendors for anonymized user behavior insights;

- Identity verification services for authentication purposes.

All information received from third parties is processed in accordance with this Privacy Policy.

 

HOW WE USE YOUR PERSONAL INFORMATION

We use personal information collected via the Official Website only for the purposes stated below. For residents of the European Economic Area (EEA), we also specify the legal basis under the General Data Protection Regulation (GDPR) for processing your data:

 

1. Core Service Delivery

Process orders, verify payments, arrange shipping, handle returns/exchanges, manage accounts, provide customer support, and send account/order-related notifications.

Legal Basis (EEA): Performance of a contract with you.

 

2. Service Improvement

Analyze user behavior and preferences to optimize website design, product features, and service workflows; develop new products/services.

Legal Basis (EEA): Legitimate interests (to improve user experience and business operations).

 

3. Security & Fraud Prevention

Detect, investigate, and prevent fraud, unauthorized access, malicious attacks, or other illegal activities; protect your account security and our legal rights; verify your identity.

Legal Basis (EEA): Legitimate interests (to safeguard our Services and users) and compliance with legal obligations.

 

4. Marketing & Advertising

Send product updates, promotions, event notices, and new product recommendations via email, SMS, or postal mail with your explicit consent; display personalized ads on our website and third-party platforms based on your browsing/purchase history. You may unsubscribe at any time via links in emails, account settings, or by contacting us.

Legal Basis (EEA): Your explicit consent (for direct marketing) and legitimate interests (for ad personalization, subject to your opt-out rights).

 

5. Compliance & Legal Obligations

Comply with applicable laws, judicial proceedings, government orders, or regulatory requirements; enforce our Terms of Service and other agreements; protect the rights, property, or safety of our users, employees, or the public.

Legal Basis (EEA): Compliance with legal obligations.

 

6. Business Operations

Conduct internal audits, data analysis, financial accounting, risk management, and other routine business activities.

Legal Basis (EEA): Legitimate interests (to operate and manage our business effectively).

 

COOKIES & SIMILAR TECHNOLOGIES

(A) Use of Cookies

Like most websites, we use cookies and similar technologies on our Official Website. Cookies are small text files stored on your device to remember preferences, enhance browsing experience, enable website analytics, and deliver personalized ads. For details about Shopify’s cookie practices (our e-commerce platform provider), please refer to: https://www.shopify.com/legal/cookies

 

(B) Types of Cookies

- Strictly Necessary Cookies: Essential for website functionality; cannot be disabled. They are set only in response to your actions (e.g., setting privacy preferences, logging into your account, submitting forms).

- Functional Cookies: Remember your preferences (e.g., language, region) to provide a personalized experience.

- Analytics Cookies: Collect anonymous data about how visitors interact with our website to help us improve performance and usability.

- Advertising Cookies: Deliver personalized ads relevant to your interests.

 

(C) Managing Cookies

Most browsers accept cookies by default, but you can delete or block them via your browser settings. Note that disabling cookies may degrade your user experience and prevent some website features from working properly.

 

(D) Global Privacy Control (GPC)

Our website recognizes GPC signals. If you enable GPC via your browser to communicate your privacy preference, we will treat this as a valid opt-out request for targeted advertising and data sharing. If we can link the device sending the GPC signal to your DEPSTECH account, we will apply the opt-out to your entire account. Learn more about GPC here: https://globalprivacycontrol.org/

 

(E) Other Tracking Technologies

In addition to cookies, we may use pixel tags, web beacons, and similar tools to track page visits, email opens, and campaign effectiveness.

 

(F) Do Not Track (DNT) Signals

Beyond GPC, we do not currently respond to other “Do Not Track” (DNT) signals sent by your browser or device.

 

SHARING & DISCLOSURE OF PERSONAL INFORMATION

We do not sell your personal information. We share personal information collected via the Official Website only in the following circumstances:

 

(A) Sharing with Service Providers

We share necessary information with third-party Service Providers to perform functions on our behalf, including payment processing, logistics and delivery, cloud storage, data analytics, customer support, IT maintenance, and marketing and promotion.

We require all Service Providers to sign strict confidentiality agreements, limiting their use of your information solely to providing the contracted services and mandating industry-standard security measures. Service Providers are prohibited from using your data for any other purpose.

 

(B) Sharing with Affiliates

We may share your personal information with our parent company, subsidiaries, and affiliated entities for internal management, unified service delivery, and product/service improvement. All affiliates are bound by this Privacy Policy.

 

(C) Legal Requirements & Rights Protection

We may disclose your information when we have a good-faith belief that such disclosure is necessary to:

1. Comply with applicable laws, judicial proceedings, court orders, or government requests;

2. Enforce our Terms of Service, Privacy Policy, or other agreements;

3. Protect the life, property, or legal rights of our users, employees, or the public;

4. Investigate and prevent fraud, security breaches, or illegal activities.

 

(D) Business Transactions

In the event of a merger, acquisition, asset sale, restructuring, or bankruptcy, your personal information may be transferred as part of the transaction assets. We will notify you via website announcement or direct communication before such transfers occur and require the recipient to remain bound by this Privacy Policy.

 

(E) With Your Consent

We may disclose your information to third parties you explicitly authorize or request us to share it with.

 

(F) “Sale” and “Sharing” of Personal Information

Under applicable law, in the past 12 months, we have “shared” the following categories of personal information with commercial/marketing partners for advertising and marketing purposes:

1. Identifiers (name, email address, phone number);

2. Commercial information (records of products/services purchased);

3. Usage Data.

We do not sell your personal information without your explicit consent. You have the right to opt out of such sharing—see the “Your Rights” section below for details.

 

SECURITY & RETENTION OF PERSONAL INFORMATION

(A) Security Measures

We implement industry-leading physical, electronic, and administrative safeguards to protect your personal information from unauthorized access, use, modification, disclosure, or destruction, including:

- Encryption of data in transit (HTTPS) and at rest;

- Strict access controls and multi-factor authentication;

- Regular security audits and vulnerability scanning;

- Employee training on data protection and confidentiality agreements;

- Data backups and disaster recovery plans.

All employees and third-party Service Providers with access to your data are bound by confidentiality obligations, and access is restricted to the minimum necessary personnel.

 

(B) Security Disclaimer

No method of internet transmission or electronic storage is 100% secure. While we take reasonable steps to protect your information, we cannot guarantee absolute security. Information you transmit to us may be at risk during transit. We advise against sending sensitive or confidential information via unsecured channels.

If you suspect any security compromise to your account or personal information, please contact us immediately using the details in the “Contact Us” section below.

 

(C) Data Retention Period

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, based on:

1. Maintaining your account and providing Services;

2. Performing contractual obligations;

3. Complying with legal requirements (e.g., tax, accounting, consumer protection laws mandating retention periods);

4. Resolving disputes or enforcing agreements;

5. Protecting our or third parties’ legitimate interests.

 

YOUR RIGHTS

Depending on your jurisdiction (e.g., EEA under GDPR, California under CCPA), you may have the following rights regarding your personal information. These rights are not absolute and may be subject to legal exceptions.

 

(A) Specific Rights

1. Right to Access/Know: Request a copy of the personal information we hold about you, including details of how we use and share it.

2. Right to Correct: Request correction of inaccurate or incomplete personal information.

3. Right to Delete (Right to Be Forgotten): Request deletion of your personal information, subject to legal exceptions (e.g., where retention is required by law).

4. Right to Restrict Processing: Request that we limit how we process your personal information in specific circumstances.

5. Right to Data Portability: Request your personal information in a structured, commonly used, machine-readable format, and/or have it transmitted to a third party of your choice (where technically feasible).

6. Right to Object: Object to our processing of your personal information based on legitimate interests, or object to its use for direct marketing.

7. Right to Opt Out: Opt out of the “sale” or “sharing” of your personal information and targeted advertising. You may exercise this right via your browser’s GPC signal or by contacting us directly.

8. Right to Withdraw Consent: If we process your data based on your consent, you may withdraw it at any time. Withdrawal does not affect the legality of processing prior to your withdrawal.

9. Right to Lodge a Complaint: If you have concerns about our data practices, you may file a complaint with your local data protection authority. For EEA residents, a list of supervisory authorities is available at the European Data Protection Board website.

 

(B) How to Exercise Your Rights

To exercise any of the above rights, contact us via:

- Email: support@depstech.com / hi@depstech.com

- Postal Mail: G/F Shopping Center, Hang Wai Street, 185 Kam Tai Road, Tuen Mun, New Territories, Hong Kong 999077

 

To protect your account security, we may request proof of identity before fulfilling your request. If you appoint an authorized agent to act on your behalf, we will require documentation confirming your authorization and may ask you to verify your identity directly.

We will respond to valid requests within 15 business days. In exceptional cases, we may extend this period and will notify you in advance.

 

(C) Non-Discrimination

We will not discriminate against you for exercising any of your privacy rights. We will not deny you Services, charge different prices, or provide lower-quality products/services unless permitted by law or necessary to protect our legitimate interests.

 

CHILDREN’S PRIVACY

Our Services are intended for individuals 16 years of age or older. We do not knowingly collect personal information from children under 16.

If you are a parent or guardian and believe we may have inadvertently collected information from a child under 16, please contact us immediately. We will promptly investigate and delete such information if confirmed. As of the effective date of this Policy, we have no actual knowledge of “sharing” or “selling” personal information of individuals under 16.

 

INTERNATIONAL DATA TRANSFERS

Our headquarters is located in Hong Kong, China. Personal information collected via the Official Website is primarily stored on servers in mainland China. If you are located outside mainland China, your information may be transferred to and processed in jurisdictions other than your own.

Data protection laws vary by jurisdiction. We take appropriate safeguards to ensure your information remains protected in accordance with applicable laws. For transfers of personal information from the EEA to countries outside the EEA, we rely on EU Commission-approved Standard Contractual Clauses or other recognized lawful transfer mechanisms.

 

THIRD-PARTY WEBSITES & LINKS

Our Official Website may contain links to third-party websites, applications, or platforms. These links are provided for your convenience only and do not imply endorsement of the third party or its content.

If you click a link to a non-affiliated third-party site, please review that site’s privacy policy, security practices, and terms of use. We make no representations or warranties regarding the privacy, security, accuracy, completeness, or reliability of third-party websites.

Information you provide in public or semi-public forums (including on third-party social media platforms) may be accessible to other users and the platform operator without restriction. We assume no liability for such disclosures.

 

CHANGES TO THIS PRIVACY POLICY

We may update this Privacy Policy from time to time to reflect changes in our business, technology, or legal requirements.

For material changes, we will post a prominent notice on our Official Website and update the “Effective Date” at the top of this Policy. For significant revisions, we may also notify you via email or other direct communication.

We encourage you to review this Policy periodically to stay informed about our privacy practices. Your continued use of our Services after the effective date of any update constitutes your acceptance of the revised Policy.

 

CONTACT US

For questions, comments, or concerns about this Privacy Policy, or to exercise your privacy rights or file a complaint, please contact us:

Email: support@depstech.com / hi@depstech.com

Postal Address: G/F Shopping Center, Hang Wai Street, 185 Kam Tai Road, Tuen Mun, New Territories, Hong Kong 999077