Privacy Policy – LI-COR, Inc.

LI-COR, INC. PRIVACY POLICY

SCOPE OF THIS POLICY

This policy describes how LI-COR, Inc. (“LI-COR”, “we”, “us”, or “our”) and our subsidiaries and affiliates collect, use, and disclose information from you, or that you may provide, when you visit a LI-COR Website (your “Website Information”), your personal data that we may receive from the European Union or United Kingdom (collectively your “EU or UK Personal Data”) your personal data that we may receive in the United States (“US”) from the European Economic Area (your “EEA Personal Data”) or Switzerland (your “Swiss Personal Data”), and your personal data that we may receive in the US from the People’s Republic of China (your “PRC Personal Data”). Your Website Information, EU or UK Personal Data, EEA Personal Data, Swiss Personal Data, and PRC Personal Data are collectively referred to in this policy as your “Information.” Website Information may include your EU, EEA, Swiss, or PRC Personal Data. The term “LI-COR Website” includes all websites operated by us, including without limitation licor.com.

This policy does not apply to any third-party websites, applications, software, or products that integrate with any of our services or products or that are accessible on any LI-COR Website or any third-party products, services, or businesses. Additionally, a separate services agreement that you enter into with us may govern the delivery, access, and use of certain services we offer and provide additional or different terms with respect to those certain services.

If you do not agree with the terms of this policy, do not access or use the LI-COR Websites or other services or products we offer. This policy went into effect on the date set forth below. We may update this policy from time to time as described in the section of this policy called Changes to this Privacy Policy.

A NOTE ON DATA PRIVACY FRAMEWORK PRINCIPLES (INTERNATIONAL DATA TRANSFERS FROM THE EEA OR SWITZERLAND)

LI-COR recognizes that the European Economic Area (the “EEA”) and Switzerland have established strict protections regarding the handling of EEA and Swiss Personal Data, including requirements to provide adequate protection for EEA and Swiss Personal Data transferred outside of the EEA or Switzerland. To provide adequate protection for certain EEA and Swiss Personal Data received by LI-COR, Inc. in the US, LI-COR, Inc. has elected to self-certify to the EU-U.S. Data Privacy Framework Principles and Swiss-US Privacy Data Privacy Framework Principles administered by the US Department of Commerce (“Data Privacy Framework”). LI-COR, Inc. adheres to the Data Privacy Framework Principles of Notice, Choice, Accountability for Onward Transfer, Security, Data Integrity and Purpose Limitation, Access, and Recourse, Enforcement, and Liability. If there is any conflict between the terms of this policy and the Data Privacy Framework Principles, the Data Privacy Framework Principles shall govern.

For purposes of enforcing compliance with the Data Privacy Framework, LI-COR, Inc. is subject to the investigatory and enforcement authority of the US Federal Trade Commission.

For more information about the Data Privacy Framework, see the US Department of Commerce's Data Privacy Framework website located at: https://www.dataprivacyframework.gov/s/. To review LI-COR, Inc.'s representation on the Data Privacy Framework list, see the US Department of Commerce's Data Privacy Framework self-certification list located at: https://www.dataprivacyframework.gov/s/participant-search.

LI-COR, INC. complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) to the EU-U.S. DPF, and the UK extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. LI-COR, INC. has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union and the United Kingdom in reliance on the EU-U.S. DPF to the EU-U.S. DPF and the UK extension to the EU-U.S. DPF. LI-COR, INC. has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.

If you have a question or complaint related to LI-COR, Inc.'s participation in the EU-US or Swiss-US Data Privacy Framework, please contact us as provided in the Questions or Complaints section below. LI-COR, Inc. will investigate and attempt to resolve any complaints or disputes regarding the use or disclosure of your EEA or Swiss Personal Data within forty-five (45) days of receiving your complaint. For any unresolved complaints regarding EEA or Swiss Personal Data, LI-COR, Inc. has agreed to cooperate with ICDR/AAA EU-US Data Privacy Framework Program and ICDR/AAA Swiss-US Data Privacy Framework Program located in the United States. If you are unsatisfied with the resolution of your complaint regarding your EEA or Swiss Personal Data, you may contact ICDR/AAA Data Privacy Framework Program at https://www.icdr.org/dpf for further information and assistance or to file a complaint. The services of ICDR/AAA are provided at no cost to you.

Further, with regard to EEA Personal Data, you may have the option to select binding arbitration for the resolution of your complaint under certain circumstances, provided you have taken the following steps: (1) raised your complaint directly with LI-COR, Inc. and provided LI-COR, Inc. the opportunity to resolve the issue; (2) made use of the independent dispute resolution mechanism identified above; and (3) raised the issue through the relevant data protection authority and allowed the US Department of Commerce an opportunity to resolve the complaint at no cost to you. For more information on binding arbitration for the EU-US Data Privacy Framework, please see the US Department of Commerce's Data Privacy Framework Framework: Annex I (Binding Arbitration), available at: https://www.dataprivacyframework.gov/s/. Regarding Swiss Personal Data, the binding arbitration option is expected to be implemented during the first annual review of the Swiss-US Data Privacy Framework by the Department of Commerce and Swiss government. Please visit https://www.dataprivacyframework.gov/s/ for more information on the availability of the binding arbitration option for your Swiss Personal Data.

CATEGORIES OF INFORMATION COLLECTED

LI-COR is a global leader in the design, manufacture, and marketing of high quality, innovative instruments, software, reagents, and integrated systems for plant biology, biotechnology, drug discovery, and environmental research.

LI-COR'S global headquarters (LI-COR, Inc.) is located in the US, with subsidiaries in the United Kingdom (LI-COR Ltd), Germany (LI-COR GmbH), and PRC (LI-COR Beijing Bioscience Ltd.). Business operations are supported worldwide through a network of distributors and sales agents, although LI-COR provides services to individuals directly in many countries. For the purposes described below under the section titled Purposes for Processing Information, LI-COR collects the following Information:

  1. Information voluntarily provided either electronically, verbally, or in writing to us from individuals including without limitation first and last name, position or title, company/institution, lab information, publication information, addresses, phone numbers, and email addresses. Examples of this information include information you provide by filling in forms on a LI-COR Website, such as information provided at the time of registering to use a LI-COR Website, subscribing to a service, ordering a product, and requesting information, support, or further services from us. We may also collect financial information from you, which may include for example debit or credit card information, banking information, or other billing information, for billing purposes.
  2. Order transaction and fulfillment details, which may include for example orders you place through a LI-COR Website or with one of our service representatives. You may be required to provide financial information before placing an order through a LI-COR Website or otherwise. Through e-commerce features on a LI-COR Website, we collect a session ID for the customer that is related to your customer account identity that allows us to associate your order with your account.
  3. Contact information for sales enablement and marketing available from publicly available sources.
  4. Instrument, software, and product information, which may include for example serial numbers of instruments sold and in a customer's possession, instrument configuration, software download and instrument update history, factory service history, and support history and requests, including communications with customers.
  5. Research focus and potential application interest gathered from publicly available sources, provided voluntarily by individuals, or gathered through automated systems including automated decision making systems which monitor individuals using our web services and LI-COR Websites as described in this policy.
  6. Information provided to us from our affiliates and third-party distributors or sales agents for the purpose of business operations, order fulfillment, service, support, marketing, and to otherwise support our business.
  7. Automatically collected information from individuals using our web services and LI-COR Websites, including browser type and version, browser language, operating system, device manufacturer and model, device settings, unique device identifiers, crash data, network information, statistics on page views, traffic to and from our user interfaces, browsing activity including the address of the website visited prior to using the LI-COR Website or services, date and time the services were used, ad data, internet protocol (IP) address, language preferences, and cookie data, and inferred information about a customer including country, company, city, state, postal code, metropolitan area, and phone area code. This may include information about your online activities over time (behavioral tracking). This information may include personal data or we may maintain or associate it with personal data we collect in other ways or receive from third parties. Like many websites, LI-COR Websites and our web services may use a “cookie” identifier to obtain this automatic information. Cookies cannot access, read, or modify any other data on a computer. This information is used to provide a personalized and relevant experience for our website users and to track general statistics on traffic. The “help” portion of the toolbar on most browsers will direct users on how to prevent the browser from accepting new cookies, how to configure the browser to tell the user when they receive a new cookie, or how to fully disable cookies. If you disable cookies, some features of the LI-COR Website or our web services may not work. Clear GIFs are tiny graphics with a unique identifier, similar in function to cookies. In contrast to cookies, which are stored on your device's hard drive, clear GIFs are embedded invisibly on web pages. We may use clear GIFs (a.k.a. web beacons, web bugs or pixel tags), in connection with the LI-COR Websites to, among other things, track the activities of visitors and users, help us manage content, and compile statistics about LI-COR Website usage.
  8. Response to email communication including when an individual “opens” or “clicks”, if supported by the individual's email program. We and our service providers use clear GIFs in HTML emails to help us track email response rates, identify when our emails are viewed, and track whether our emails are forwarded.
  9. LI-COR provides data management and processing software solutions through LI-COR Websites, web services, instruments, and downloaded software that allow users to enter or collect certain data to be processed by the solution at the direction of the user (“Customer Data”). The processing and storage of such Customer Data takes place on servers in the United States, and any Customer Data that is EU, UK, EEA, Swiss, or PRC Personal Data may be transferred to a server in the US. LI-COR has taken steps to secure Customer Data. Customer Data is encrypted in transit, and passwords are encrypted at rest for the protection of our users. LI-COR only uses, accesses, processes, or discloses Customer Data in accordance with instructions provided by the user, the user's consent, the applicable services agreement, and this policy or as required by applicable law, legal process, or regulation.
  10. Information provided by customers, our subsidiaries or parent entity, distributors, or sales agents in order to provide technical support or service for instrumentation or other products or services or guidance on the use of the instrumentation or other products or services. This may include data collected or processed by the instrument user or information automatically collected by instruments, software, or other products and services for support and product and service improvement purposes.

Generally, you are not under a statutory or contractual requirement to provide any EU or UK Personal Data to us. However, it may be necessary for you to provide certain EU or UK Personal Data to us in order to purchase products or services from us or for us to provide certain services, such as warranty or repair services or web services, and without such EU or UK Personal Data we may not be able to sell or provide such products or services to you. For example, we may need your address in order to return a repaired instrument to you or you may need to provide certain EU or UK Personal Data to us when subscribing to our web service that allows us to validate that your license remains active in order for you to continue to use such service.

As noted above, we may receive some Information from third parties, including our subsidiaries, parent entity, distributors, and sales agents, as well as publicly available sources. We protect Information obtained from third parties according to the practices described in this policy, plus any additional restrictions imposed by the source of the Information. We may combine this data with Information we collect.

PURPOSES FOR PROCESSING INFORMATION

LI-COR collects, uses, and processes your Information for purposes of:

  1. Supporting marketing, sales, ordering, and shipping of products and services by us or our third-party distributors or sales agents.
  2. Supporting the service, support, provision, updating, improvement, and maintenance of our products and services and development of current and future products and services.
  3. Providing you with the support and services you request, including for example providing customer support and processing Customer Data according to your instructions.
  4. Communication with our subsidiaries or parent entity, third-party distributors, or sales agents, or with you, including without limitation for promotional communications. If you contact us, we may use your Information to respond.
  5. Communication and advertising of LI-COR products and services.
  6. For the operation of our business, including without limitation for billing, account management, and other administrative and operational purposes.
  7. With regard to Website Information specifically:
    1. Presenting a LI-COR Website and contents to you.
    2. Allowing you to participate in interactive features on a LI-COR Website.
    3. Notifying you about changes to a LI-COR Website or any products or services we offer or provide though it.
    4. For online advertising and analytics.
  8. Carrying out our obligations and enforcing our rights arising from any contracts entered into between you and us, including without limitation for billing and collection.
  9. Fulfilling any other purpose for which you provide it or for which you consent.
  10. Investigating and helping prevent fraud and security issues and abuses, including situations involving potential threats to the safety of any person or property, or violations of this Policy, your customer agreement, and any applicable terms of use.
  11. As required by applicable law, legal process, or regulation.

If Information is aggregated or de-identified so it is no longer reasonably associated with an identified or identifiable natural person, LI-COR may disclose or use it for any purpose as allowed by applicable law.

LI-COR will only process EU, UK, EEA, Swiss, and PRC Personal Data in ways that are compatible with the purpose that LI-COR collected it for, or for purposes the individual later authorizes. Before we use your EU, UK, EEA, Swiss, or PRC Personal Data for a purpose that is materially different than the purpose we collected it for or that you later authorized, we will provide you with the opportunity to opt out. You may also opt out from disclosures of your EU, UK, EEA, Swiss, or PRC Personal Data to unaffiliated third-party data controllers. Opt-out requests can be sent to the contact listed under the Questions or Complaints section below. LI-COR maintains reasonable procedures to help ensure that EU, UK, EEA, Swiss, and PRC Personal Data is reliable for its intended use, accurate, complete, and current.

Individuals may choose to opt out of marketing correspondence or communication from LI-COR. Those who opt out will only receive transactional communications from us, such as those necessary for safe and accurate operation of instruments in their possession or as a direct result of a product purchase or warranty registration. If we have sent you a promotional email, you may use the unsubscribe link in the email or send us a return email asking to be omitted from future email distributions. Individuals may select their email opt-out preferences at www.licor.com/email-preference or by contacting LI-COR as set forth under the E-mail Opt-Out section below. Further, individuals may contact LI-COR as set forth below under Questions or Complaints and request to opt out of all correspondence and communication from LI-COR, subject to the limitations set forth above.

DATA DISCLOSURES TO THIRD PARTIES

To the extent allowed by applicable law, we may disclose Information to a third party: (i) as described in this section, (ii) with your consent, or (iii) where such third party is a buyer or other successor in the event of a merger, acquisition, divestiture, restructuring, reorganization, dissolution, or other sale or transfer of some or all of our assets or equity, whether as a going concern or as part of bankruptcy, liquidation, or similar proceeding, in which Information held by us is among the assets transferred.

You have the right to opt out of having Information disclosed to an unaffiliated third-party data controller or used for some reason other than that for which the data was originally collected. In order to opt out of such disclosures, please email privacy@licor.com or contact LI-COR as provided in the Questions or Complaints section below.

Subsidiaries / Parent

We may disclose your Information to our subsidiaries and parent entity for the purposes described above.

Agents or Service Providers

LI-COR may disclose your Information to service providers, distributors, and sales agents (“Third-Party Partners”) to support LI-COR's business, including for example to support the sales and service of our products and services, the administration of our business, our global and domestic operations, logistics, and other functions and purposes related to LI-COR's business, and to fulfill the purposes for which you provided the Information or any other purposes disclosed by us when you provided the Information. Functions performed on our behalf by Third-Party Partners include for example consulting, cloud storage services, customer information management software services, marketing software services, ecommerce software services, sales and support, and professional services. Third-Party Partners are not under the direct control of LI-COR, however LI-COR will take reasonable steps to ensure that these companies provide the same level of protection required by with Data Privacy Framework Principles (if applicable). Under certain circumstances, we may remain liable for the Personal Data that we transfer to them under Data Privacy Framework.

Third-Party Data Controllers

In some cases we may transfer your Information to unaffiliated third-party data controllers, which may include unaffiliated distributors and sales agents. These parties do not act as our agents or service providers and are not performing functions on our behalf. We may transfer your Information to third-party data controllers for the purpose of processing the sale of our products and services and providing you with additional information about our products and any related services and support that are available from such third-party data controllers. We will only provide your EU, UK, EEA, Swiss, and PRC Personal Data to unaffiliated third-party data controllers where you have not opted out of such disclosures, or in the case of sensitive EU, UK, EEA, Swiss, and PRC Personal Data, where you have opted-in if the Data Privacy Framework or other applicable data protection law requires consent. We enter into written contracts with any unaffiliated third-party data controllers requiring them to provide the same level of protection for EU, UK, EEA, Swiss, and PRC Personal Data the Data Privacy Framework or other applicable data protection law requires. We also limit their use of your EU, UK, EEA, Swiss, and PRC Personal Data so that it is consistent with any consent you have provided and with the notices you have received.

Disclosures for National Security or Law Enforcement

Under certain circumstances, we may be required to disclose your Information in response to valid requests by public authorities, including without limitation to meet national security or law enforcement requirements.

Disclosures Required by Law

If we receive a request for your Information, we may disclose your Information if we reasonably believe disclosure is in accordance with or required by any applicable law, regulation, or legal process.

Aggregated or De-identified Data

We may disclose aggregated or de-identified Information to any third party for any purpose as allowed by applicable law.

Other Disclosures

As allowed by applicable law, we may share your Information with third parties to enforce our contracts or policies, investigate and prevent fraud or security issues, or otherwise protect and defend our rights, property, or safety or that of third parties.

SECURITY OF INFORMATION

LI-COR maintains reasonable and appropriate security measures to help protect Information from loss, misuse, unauthorized access, disclosure, alteration, or destruction. These measures include appropriate technical and organizational measures While LI-COR strives to secure Information, even strict security measures do not guarantee the security of any information, and LI-COR cannot guarantee that the Information it seeks to protect will be protected in all circumstances, including those beyond its reasonable control.

ACCESS

Subject to applicable exemptions, you may have the right to access the EU, UK, EEA or Swiss Personal Data that LI-COR, Inc. holds about you and to request that LI-COR, Inc. correct, amend, or delete it if it is inaccurate or processed in violation of the Data Privacy Framework. If you would like to request access to, correction, amendment, or deletion of your EU, UK, EEA or Swiss Personal Data held by LI-COR, Inc., you can submit a written request to LI-COR to the contact set forth below in the Questions or Complaints section. We may request specific information from you to confirm your identity.

ADDITIONAL NOTICES FOR EU OR UK PERSONAL DATA ONLY

This section provides additional notices to you with respect to your EU or UK Personal Data.

DATA CONTROLLER

A data controller decides how your EU or UK Personal Data is processed and for what purposes.

LI-COR, Inc. is a data controller of your EU or UK Personal Data and may be a data processor of your EU or UK Personal Data in some situations on behalf of its subsidiaries and a data processor of your EU or UK Personal Data that is Customer Data.

Further, LI-COR Ltd and LI-COR GmbH are data controllers of your EU or UK Personal Data with respect to operations outside of the US and may be data processors of your EU or UK Personal Data in some situations on behalf of their affiliates and data processors of your EU or UK Personal Data that is Customer Data.

Contact information for each entity is provided below under the Questions or Complaints section.

LEGAL BASIS FOR PROCESSING

In order to process your EU or UK Personal Data, including any sensitive EU or UK Personal Data, we may rely on one or more of the following legal bases:

  • consent to the processing;
  • processing is necessary for the performance of a contract to which you are a party;
  • processing is necessary in order to take steps at your request prior to entering into a contract;
  • compliance with a legal obligation of the European Union or a member state of the European Union to which we are subject;
  • processing is necessary to comply with your vital interests; and
  • for the purposes of our legitimate interests.

Where processing is based on our legitimate interests, those legitimate interests include operating our business, offering and supporting our products and services, and promoting our products and services.

YOUR RIGHTS

You may exercise any of the rights described in this section by submitting a written request to LI-COR to the contact set forth below in the Questions or Complaints section. We may request specific information from you to confirm your identity. Your rights with respect to your EU or UK Personal Data may include, subject to any exemptions provided by applicable law:

  • Right to Access and Correction: You may have the right to access your EU or UK Personal Data that we hold about you and to request that we correct, amend, or delete it if it is inaccurate or processed in violation of the Data Privacy Framework (if applicable) or other applicable data protection law.
  • Right to Withdraw Consent: Where you have provided your consent to the processing of your EU or UK Personal Data by LI-COR you may withdraw your consent at any time by sending a communication to the LI-COR contact listed below specifying which consent you are withdrawing. Please note that the withdrawal of your consent does not affect the lawfulness of any processing activities based on such consent before its withdrawal.
  • Right to Restrict Use: You may have the right to restrict our use of your EU or UK Personal Data, including for example when you object to the processing of your EU or UK Personal Data on the basis of legitimate interests or you object to the accuracy of your EU or UK Personal Data we hold.
  • Right to Complain about Processing: You may have the right to lodge a complaint about our processing of your EU or UK Personal Data with a supervisory authority in the EU.
  • Right to Object to Processing: Applicable data protection law may entitle you to require us not to process your EU or UK Personal Data for certain specific purposes (including profiling or automated decision making) where such processing is based on our legitimate interests. If you object to such processing, pursuant to applicable data protection law we will no longer process your EU or UK Personal Data for these purposes unless we can demonstrate compelling legitimate grounds for such processing or such processing is required for the establishment, exercise, or defense of legal claims. You further have an absolute right to object to our processing your EU or UK Personal Data for direct marketing purposes, and you can exercise this right by submitting a written request to LI-COR to the contact set forth below in the Questions or Complaints section.
  • Right to be Forgotten: You may be entitled in certain situations to request that we erase your EU or UK Personal Data and close your accounts. Please note that if you request the erasure of your EU or UK Personal Data, we may retain and use your EU or UK Personal Data to the extent necessary to comply with our legal obligations or if required for the establishment, exercise, or defense of legal claims. For example, for our tax, legal reporting, and auditing obligations.
  • Right to Data Portability: In some cases, you may have the right to require that we transmit your EU or UK Personal Data to another data controller.

HOW LONG WE RETAIN YOUR DATA

We keep your EU or UK Personal Data for no longer than reasonably necessary for the purposes described herein, including without limitation providing our products and services and fulfilling the transactions you have requested, or for other essential purposes such as complying with our legal obligations, resolving disputes, and enforcing our agreements.

We use the following criteria to determine how long to retain your EU or UK Personal Data:

  • How long such data is reasonably needed to offer our products and services and operate our business, including without limitation improving and maintaining our products and services and maintaining our business and financial records. This is a key consideration underlying our data retention policies for your EU or UK Personal Data.
  • Whether our customer reasonably expects we will maintain that data. This will lead us to maintaining the data until the customer requests deletion.
  • If the data is of a sensitive type, a shortened retention time is generally more appropriate.
  • Whether we have announced a specific data retention period that would apply to such data.
  • Whether we are subject to a legal, contractual, or other similar obligation to retain the data.

Because these needs can vary for different data types in the context of different products or services, actual retention periods can vary significantly.

USE OF THIRD-PARTY WEB SERVICES

LI-COR may also allow certain third parties, such as Google, Inc. (“Google”) to place tracking technologies on LI-COR Websites using their web services. We use such web services as Google Analytics, Google Adwords, and Google Remarketing, all provided by Google, and among others. LI-COR and these third-party vendors use cookies together to inform, optimize, and serve advertisements based on a user's previous visit to a LI-COR Website. This information may be used to report how the use of these advertisements and the interactions with them are related to visits to LI-COR Websites. Data collected from this advertising may be used to provide a more personalized experience for users. The “help” portion of the toolbar on most browsers will direct users on how to prevent the browser from accepting new cookies, how to configure the browser to tell the user when they receive a new cookie, or how to fully disable cookies. If you disable cookies, some features of the LI-COR Website or our web services may not work. For more information about targeting and advertising cookies and how you can opt out, you can visit the Network Advertising Initiative's (NAI) opt-out page at http://optout.networkadvertising.org/?c=1#!/, the Digital Advertising Alliance's (DAA) opt-out page at http://optout.aboutads.info/?c=2#!/, or http://youronlinechoices.eu. Please note we do not control any of these opt out links and are not responsible for their availability or accuracy.

Google Analytics uses cookies to help analyze how users use LI-COR Websites. Through Google Analytics, we collect information through your browser or device such as browser type and version, operating system, device manufacturer and model, and network. In most cases, information generated by the cookie is transferred to a server of Google in the US and stored there. LI-COR uses IP anonymization, where the IP address of individuals located within the UK, EEA or Switzerland is truncated before being sent to a US-based server. Google Analytics ensures that the IP address of the user is not associated with any other data held by Google. Users may opt-out of Google Analytics by following the instructions and downloading the tool available at: https://tools.google.com/dlpage/gaoptout (you may have to have cookies enabled), or customize their Google advertisement settings at: http://www.google.com/settings/ads.

Currently, our systems do not recognize browser “do-not-track” requests. You may, however, disable certain tracking as discussed in this section (e.g., by disabling cookies); you also may opt-out of targeted advertising by following the NAI or DAA opt-out links above.

NOTICE TO END USERS

Many of our products and services are intended for use by organizations and are administered to you by your organization. We are not responsible for the privacy or security practices of your organization, which may differ from those set forth in this policy. If your organization is administering your use of our products and services, please direct your privacy inquiries to your administrator. Your use of our products and services may be subject to your organization's policies, if any.

CHILDREN'S INFORMATION

No LI-COR Website, instrument, software, or other service or product that we offer is intended for children under 16 years of age. No one under age 16 may provide any personal data to us without parental consent. We do not knowingly collect personal data from children under 16. If we learn we have collected or received personal data from a child under 16 without verification of parental consent, we will delete that information. If you believe we might have any information from or about a child under 16, please send an email to privacy@licor.com or mail your request to the address set forth below under Questions or Complaints.

CHANGES TO THIS PRIVACY POLICY

We reserve the right to amend this policy from time to time. Any such amendment that affects EU, UK, EEA, Swiss, and PRC Personal Data will be consistent with the Data Privacy Framework's requirements and other applicable data protection law. Unless otherwise provided by applicable law, use of Information we collect is subject to the policy in effect at the time such Information is collected.

If we make changes to this policy, the revised policy will be posted on http://www.licor.com. If we make material changes to this policy regarding your personal data, we will provide additional notice, for example via e-mail, prominently posting a notice of such changes on LI-COR Websites, or through the affected services. If you disagree with the changes to this policy, you should cease using our products and services. The date this policy was last revised is identified below. Please periodically check this date to determine when the policy was last updated.

You are responsible for ensuring we have an up-to-date active and deliverable e-mail address for you and for periodically visiting http://www.licor.com and this policy to check for any changes.

CALIFORNIA RESIDENTS

California Consumer Privacy Act

If you are a California resident, then the “California Residents” section and information below applies to you. If you are not a California resident, then this section does not apply to you. Certain terms used in this section have the meanings given to them in the California Consumer Privacy Act of 2018, as amended (“CCPA”).

The CCPA gives California residents certain rights regarding their personal information. This section describes those rights and how California residents can submit your requests to LI-COR.

Information We Collect

LI-COR collects information that identifies, relates to, describes or is otherwise reasonably capable of being associated with a particular consumer, household or device (“personal information”). Personal information does not include (i) publicly available information from government records; (ii) de-identified or aggregated consumer information; or information excluded from CCPA's scope.

In particular, we have collected the following categories of personal information from consumers within the preceding twelve (12) months:

Personal Information Collected (Categories) Description Do We Disclose this Information? Do We Sell this Information? Categories of Third Parties to Whom We May Disclose or Sell this Information
Identifiers First and last name, contact information and online identifiers. YES NO
  • service providers
  • advisors and agents
  • government entities and law enforcement
  • affiliates and subsidiaries
  • advertising networks
  • data analytics providers
  • internet service providers
  • operating systems and platforms
  • data brokers
  • business customer/client
  • [other]
Commercial Information Records of products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies, and payment information. NO NO
  • N/A
Usage Data Browsing history, clickstream data, search history, access logs and other usage data and information regarding an individual's interaction with our websites, mobile apps, and our marketing emails and online ads. YES NO
  • service providers
  • advisors and agents
  • government entities and law enforcement
  • affiliates and subsidiaries
  • advertising networks
  • data analytics providers
  • internet service providers
  • operating systems and platforms
  • data brokers
  • business customer/client
  • [other]
Audio, Video and Electronic Data NO NO
  • N/A
Professional information Includes position or title, company/institution, lab information, publication information, addresses, phone numbers, email addresses, and research focus and potential application interest. YES NO
  • service providers
  • advisors and agents
  • government entities and law enforcement
  • our affiliates and subsidiaries
  • advertising networks
  • data analytics providers
  • internet service providers
  • operating systems and platforms
  • data brokers
  • business customer/client
  • [other]
Inferences Profile reflecting a person's preferences, characteristics and behaviors. NO NO
  • N/A

LI-COR may collect this information directly or through sales agents, marketing tools (e.g., links clicked in emails), distributors, data analytics providers or from you as voluntarily provided or indirectly from our interactions with you.

LI-COR uses the personal information collected for Business Purposes (as defined in the CCPA) along with manners described in the section titled “Purposes for Processing Information.” LI-COR may use, for its purposes or others', your personal information in the manner described in the section titled “Data Transfers to Third Parties.” LI-COR does not sell your personal information collected by its site to third parties in the ordinary course of business.

YOUR RIGHTS AND CHOICES

As California residents, you have the right to access and request that LI-COR delete any of your personal information that we may have collected from you and retained, subject to certain exceptions. Once we receive a deletion request and confirm your identify, we will review your request to see if an exception allowing us to retain the information applies. We will delete or de-identify personal information not subject to any exception from our records and will direct our service providers to take similar action. Only you or a person registered with the California Secretary of State that you authorize to act on your behalf may make a request related to your personal information. LI-COR does not knowingly collect information from minors, but you may also make a verifiable consumer request on behalf of your minor child should you believe LI-COR has collected such information. You may only make a verifiable consumer request for access or data portability twice within a (twelve month) 12-month period. LI-COR will not discriminate against you because you exercise your rights.

EXERCISING YOUR RIGHTS

To exercise your rights described above, please submit a request by either:

  • Calling us at: (402) 467-3576
  • Emailing us at: privacy@licor.com
  • Writing to us at:
    • Director of Marketing
      LI-COR, Inc.
      4647 Superior Street
      Lincoln, NE 68504

You must provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative. You also must describe your request with sufficient detail that allows us to properly understand, evaluate and respond to it. Authorized agents will be required to provide proof of their authorization and we may also require that the relevant consumer directly verify their identity and the authority of the authorized agent.

RESPONSE TIMING AND FORMAT

We will confirm receipt of your request within ten (10) business days. If you do not receive confirmation within the (ten-day) 10-day timeframe, please e-mail privacy@licor.com. We endeavor to substantively respond to a verifiable consumer request within forty-five (45) days of its receipt. If we require more time (up to another forty-five (45) days), we will inform you of the reason and extension period in writing. Any disclosures we provide will only cover the (twelve-month) 12-month period preceding our receipt of your request. We do not charge a fee to process or respond to your verifiable consumer request unless it is excessive, repetitive, or manifestly unfounded. If we determine that the request warrants a fee, we will tell you why we made that decision and provide you with a cost estimate before completing your request.

QUESTIONS OR COMPLAINTS

You or an independent third party on your behalf can direct any questions or complaints about this policy or the use or disclosure of your Information to the following contact:

LI-COR
4647 Superior Street
Lincoln, NE 68504 USA
privacy@licor.com

E-MAIL OPT-OUT

If you wish to change or remove your contact information from our e-mail database, you may select your e-mail opt-out preferences at www.licor.com/email-preference, send an email to privacy@licor.com or mail your request to:

Director of Marketing
LI-COR, Inc.
4647 Superior Street
Lincoln, NE 68504
USA

ADDITIONAL NOTICES FOR PRC PERSONAL DATA ONLY

Except as otherwise provided, this section applies to personal information that is subject to applicable PRC laws, including but not limited to China’s Personal Information Protection Law ("PIPL”). This section supplements this Privacy Policy. In case of any inconsistencies between this section and the rest of this Privacy Policy, this section prevails.

For purposes of this section, the term “personal information” means various kinds of information related to identified or identifiable natural persons recorded by electronic or other means, excluding the anonymized information.

Processing of Sensitive Personal Information

Your financial information may be considered as sensitive personal information. We process such information only as necessary to facilitate transactions with you. We will adopt strict security measures when processing your sensitive personal information.

Sharing and Disclosure of Your Personal Information

We may share and disclose your personal information with third parties as described in the Data Disclosures to Third Parties section. We require all third parties receiving your personal information to implement appropriate security measures to protect your personal information. When using external service providers, we will require them to process your personal information only for purposes set out in this Privacy Policy.

In the event that we will need to share your personal information with business transferees as described in the Data Disclosures to Third Parties section, we will inform you of the name and contact information of the recipient of your personal information. The recipient shall comply with this Privacy Policy when processing your personal information. If the processing methods and purposes of the recipient fall beyond the scope of this Privacy Policy, such a recipient shall obtain your consent.

We will not publicly disclose your personal information unless we have obtained your prior consent or the public disclosure is required by applicable Chinese laws, legally binding enforcement actions or court orders.

Retention and Security

We only keep your personal information for as long as necessary to accomplish the purposes for which it was collected, except where applicable Chinese laws require otherwise. In case a security incident occurs, we will take remediation actions immediately and notify relevant government authorities and affected individuals, where required by applicable Chinese laws.

International Transfer of Your Personal Information

We are headquartered in the US and may use service providers that operate in other countries. We may transfer your personal information described in the Categories of Information Collected section outside China for necessary purposes specified in the Purposes for Processing Information section. We will obtain your separate consent or rely on other legal basis available under the PIPL for the international transfer. We will also adopt applicable international transfer mechanism required under the PIPL and take measures to ensure the overseas recipients can provide the same level of protection as required under the PIPL.

Your Rights

You have the right to access, correction, restrict or object to processing, withdrawal of consent, and obtain a copy of your personal information retained by us.

Under the following circumstances, if we have not deleted your personal information, you also have the right to request us to delete your personal information:

  • the purposes of processing have been achieved or cannot be achieved, or your personal information is no longer necessary for achieving the purposes of processing;
  • we cease to provide our services, or the retention period has expired;
  • you have withdrawn your consent (if we rely on your consent as the legal basis to process your personal information);
  • our processing is in violation of applicable Chinese laws or the agreements with you; or
  • other circumstances as provided by applicable Chinese laws.

Contact Us

To request to exercise your rights or if you have any questions about this section or how we process your personal information, please contact us as provided in the Questions or Complaints section. We will respond to your request in a timely manner in compliance with the PIPL after verifying your identity.

Effective Date: May 25, 2018
Last Revised: November 8, 2023