{"id":2302,"date":"2026-03-11T10:58:10","date_gmt":"2026-03-11T10:58:10","guid":{"rendered":"https:\/\/leopoly.com\/leoshape\/?page_id=2302"},"modified":"2026-03-11T11:12:55","modified_gmt":"2026-03-11T11:12:55","slug":"privacy-policy","status":"publish","type":"page","link":"https:\/\/leopoly.com\/leoshape\/legal\/privacy-policy\/","title":{"rendered":"Privacy Policy for LeoShape Software Services"},"content":{"rendered":"\t\t
\n\t\t\t\t
\n\t\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

Privacy Policy<\/h1>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t

For LeoShape Software Services<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

Effective Date: March 11, 2026<\/p>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t

\n\t\t\t\t
\n\t\t\t\t\t

1. Introduction and Our Roles<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
\n\t\t\t\t
\n\t\t\t\t\t\t\t\t\t

This Privacy Policy explains how Leopoly Ltd. (Registered office: 6000 Kecskem\u00e9t, Homokszem u. 3., Hungary) and Leopoly Next Inc. (3 E 3RD AVE San Mateo Clocktower, CA 94401, USA) \u2014 collectively referred to as “Leopoly”<\/strong>, “Service Provider”<\/strong>, “we”<\/strong>, “us”<\/strong>, or “our”<\/strong> \u2014 collect, use, store, and protect personal and health-related data when you use the LeoShape editors, the Order Management System (OMS), and the LeoCapture mobile application (collectively: the “Services”<\/strong>).<\/p>

To align out practices with key data protection laws, including the European General Data Protection Regulation (GDPR) and we applicable the U.S. Health Insurance Portability and Accountability Act (HIPAA), Leopoly acts in two distinct legal capacities depending on the type of data:<\/p>

  • As a Data Controller:<\/strong> When we collect and process the personal data of the professionals, clinics, doctors, or technicians (hereinafter: “Subscribers”<\/strong> or “Users”<\/strong>) who register to use our Services (e.g., account credentials, billing information).<\/li>
  • As a Data Processor \/ Business Associate:<\/strong> When we store and process the personal and health-related data of the patients uploaded or captured by our Subscribers using our Services (e.g., 3D scans, diagnoses, order details). In this scenario, the Clinic \/ Professional is the Data Controller \/ Covered Entity<\/strong>, responsible for obtaining patient consent. Leopoly processes this data solely on behalf of the Subscriber, strictly following their instructions and the applicable Data Processing Agreement (DPA) or Business Associate Agreement (BAA).<\/li><\/ul>\t\t\t\t\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
    \n\t\t\t\t
    \n\t\t\t\t\t

    2. Information We Collect<\/h2>\t\t\t\t<\/div>\n\t\t\t\t<\/div>\n\t\t\t\t
    \n\t\t\t\t
    \n\t\t\t\t\t\t\t\t\t

    A) Information Collected from Subscribers (Professionals):<\/strong><\/p>

    • Identification Data:<\/strong> Email address, name (optional), passwords (encrypted).<\/li>
    • Contractual and Billing Data:<\/strong> Company details, workplace, job title, and payment information.<\/li>
    • Technical and Usage Data:<\/strong> IP addresses, login timestamps, browser and device types, and analytics regarding the usage of the Services (e.g., number of downloads, edits performed).<\/li><\/ul>

      \u00a0<\/p>

      B) Information Managed about Patients (Processed on behalf of Subscribers):<\/strong><\/p>

      While using the Services, Subscribers may highly customize the patient data they record. We treat all such data as sensitive health data and, where applicable for U.S. healthcare customers, as Protected Health Information (PHI). This may include:<\/p>