PRIVACY POLICY
- Updated on:
- 6 July 2026
Quick Reference — Data Controller
- Company: MedOne Surgical, Inc.
- Address: 670 Tallevast Rd, Sarasota, FL 34243, USA
- Privacy Email: medone@medone.com
- Phone: (941) 359-3129
- EU Representative Contact: medone@medone.com (see Section 15 for EU/UK details)
1. Introduction
MedOne Surgical, Inc. (“MedOne,” “we,” “us,” or “our”) respects your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard information when you visit medone.com (the “Site”) or otherwise communicate with us, and describes the choices and rights you have regarding that information.
By accessing or using the Site, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with it, please do not use the Site.
This Site is intended for medical professionals, healthcare facilities, distributors, and other businesses. It is not directed to patients and is not intended to collect patient or medical information. Please do not submit any personal health information, patient information, or other sensitive information through the contact form or any other part of the Site.
2. Data Controller
For the purposes of applicable data protection laws — including the EU General Data Protection Regulation (“GDPR”) and the UK GDPR — MedOne Surgical, Inc. is the data controller responsible for your personal information collected through this Site.
You can contact us with any privacy-related questions or requests at:
- Email: [email protected]
- Post: MedOne Surgical, Inc., 670 Tallevast Rd, Sarasota, FL 34243, USA
We have appointed a representative in the EU/UK for GDPR purposes. Please see Section 15 for details on exercising your rights if you are located in the European Economic Area or United Kingdom.
3. Information We Collect
We collect information in two ways: information you provide to us directly, and information collected automatically when you use the Site.
Information you provide
When you complete our contact form or otherwise reach out to us, we collect the information you choose to provide. This typically includes:
- Name
- Email address
- Telephone number
- Company or organization name
- The contents of your message or inquiry
You control what you include in your message, and you should not include sensitive information such as personal health data.
Information collected automatically
When you visit the Site, certain information may be collected automatically through cookies and similar technologies, subject to your consent where required. This may include:
- Internet Protocol (IP) address
- Browser type and version
- Device type and identifiers
- Operating system
- Screen and language settings
- Referring and exit pages
- Pages and content viewed
- Dates and times of your visit
We do not intentionally collect Social Security numbers, government identification numbers, payment card numbers, financial account information, health data, or other special category personal information through the Site.
4. Legal Bases for Processing (GDPR / UK GDPR)
If you are located in the European Economic Area (EEA) or United Kingdom, we are required to have a valid legal basis each time we process your personal data. The following sets out our processing activities and the corresponding legal bases under Article 6 GDPR:
- Responding to contact form enquiries — Legal basis: Legitimate Interests. We have a legitimate interest in responding to business enquiries from healthcare professionals and companies (Art. 6(1)(f)).
- Sending follow-up product information — Legal basis: Legitimate Interests. We have a legitimate interest in informing enquirers about relevant products and services (Art. 6(1)(f)).
- Operating and securing the Site — Legal basis: Legitimate Interests. We have a legitimate interest in maintaining a functional and secure website (Art. 6(1)(f)).
- Analytics (Google Analytics) — Legal basis: Consent. We only activate analytics cookies and tracking after you have given explicit consent via our cookie banner (Art. 6(1)(a)).
- Complying with legal obligations — Legal basis: Legal Obligation. Processing required to comply with applicable laws and regulations (Art. 6(1)(c)).
- Business transfers — Legal basis: Legitimate Interests. In the event of a merger or acquisition, subject to appropriate safeguards (Art. 6(1)(f)).
Where we rely on legitimate interests, you have the right to object to that processing. Please see Section 13 for how to exercise your rights.
5. Cookies and Similar Technologies
A cookie is a small file stored on your device. We and our service providers use cookies and similar technologies for purposes such as enabling the Site to function, remembering your preferences (including your consent choices), and — where you have consented — measuring how visitors use the Site.
Cookie categories
- Strictly necessary / functional — required for the Site to operate and to remember your cookie-consent choice. These are always active.
- Analytics — used to understand how the Site is used so we can improve it. These are not activated unless and until you consent.
Consent management
When you first visit the Site, a consent banner allows you to accept or decline non-essential cookies and tracking technologies. Non-essential technologies, including analytics, do not load until you affirmatively accept them. You can change or withdraw your choice at any time through the “Cookie Settings” link in the footer of the Site.
Global Privacy Control (GPC)
We honor recognized opt-out preference signals, such as the Global Privacy Control, sent by your browser or device. Where we detect such a signal, we treat it as a request to opt out of non-essential tracking for that browser.
6. Analytics
Where you have consented, we use Google Analytics, a service provided by Google LLC, to help us understand how visitors interact with the Site. Google Analytics may set cookies and collect information such as your IP address and usage activity. This information is used to produce aggregated reports about Site usage.
You can learn more about how Google collects and processes data at https://policies.google.com/technologies/partner-sites, and you may install Google’s opt-out browser add-on at https://tools.google.com/dlpage/gaoptout.
The Site also loads web fonts from Google Fonts in order to display text correctly; this may involve a request to Google’s servers to retrieve the font files.
7. How We Use Information
We use the information we collect to:
- Respond to your enquiries and provide the information, materials, or support you request
- Provide information about our products and services
- Operate, maintain, secure, and improve the Site
- Understand and analyze how the Site is used (where you have consented)
- Detect, prevent, and address technical issues, fraud, or misuse
- Comply with applicable laws and legal obligations and enforce our terms
- For any other purpose disclosed to you at the time we collect the information or with your consent
8. How We Share Information
We do not share your personal information except as described below:
- Service providers. We share information with vendors who perform services on our behalf, such as website hosting, form processing, email/communications, and analytics (for example, Google). These providers are permitted to use the information only to provide services to us. Where required by law (including GDPR), we enter into appropriate data processing agreements with these vendors.
- Legal and safety. We may disclose information if required to do so by law, regulation, legal process, or governmental request, or where we believe disclosure is necessary to protect the rights, property, or safety of MedOne, our users, or others.
- Business transfers. If MedOne is involved in a merger, acquisition, financing, reorganization, or sale of assets, information may be transferred as part of that transaction, subject to this Policy.
- With your consent. We may share information for other purposes with your consent or at your direction.
We do not sell your personal information for money. Please note that, under some privacy laws (including California’s), the use of third-party analytics or advertising technologies can be considered a “sale” or “sharing” of personal information. You can opt out of these technologies at any time using the consent controls described in Section 5.
9. International Data Transfers
MedOne is based in the United States. If you are located in the EEA, UK, or another jurisdiction with data transfer restrictions, please be aware that your personal information will be transferred to and processed in the United States, which may not provide the same level of data protection as your home country.
Where we transfer personal data from the EEA or UK to the United States or other third countries, we rely on appropriate safeguards, which may include:
- Standard Contractual Clauses (SCCs) approved by the European Commission or UK Information Commissioner’s Office (ICO); or
- Other transfer mechanisms permitted under applicable law
You may request further information about the safeguards we use for international transfers by contacting us at [email protected].
10. Data Retention
We retain personal information for as long as necessary to fulfill the purposes described in this Policy, such as responding to and keeping a record of your enquiry, unless a longer retention period is required or permitted by law. When information is no longer needed, we take reasonable steps to delete or de-identify it.
For EEA/UK residents: where we rely on consent as a legal basis, we will retain the relevant data only for as long as consent remains valid and has not been withdrawn.
11. Data Security
We use reasonable administrative, technical, and physical safeguards designed to protect the information we collect. However, no method of transmission over the Internet or method of electronic storage is completely secure, and we cannot guarantee absolute security.
In the event of a personal data breach that is likely to result in a risk to your rights and freedoms, we will notify the relevant supervisory authority and, where required, affected individuals, in accordance with applicable law.
12. Your Privacy Choices
- Cookie and tracking choices. You can accept or decline non-essential cookies through the consent banner, and change your choice at any time via the “Cookie Settings” link in the footer of the Site.
- Opt-out preference signals. We honor Global Privacy Control signals as described above.
- Communications. If you contact us, you may ask us not to send you further messages by contacting us at [email protected].
13. EEA and UK Residents — Your GDPR Rights
If you are located in the European Economic Area or United Kingdom, you have the following rights under the GDPR / UK GDPR:
- Right of access — You have the right to request a copy of the personal data we hold about you.
- Right to rectification — You have the right to ask us to correct inaccurate or incomplete personal data.
- Right to erasure (“right to be forgotten”) — You have the right to ask us to delete your personal data in certain circumstances.
- Right to restriction of processing — You have the right to ask us to restrict how we use your personal data in certain circumstances.
- Right to data portability — Where processing is based on consent or contract and carried out by automated means, you have the right to receive your personal data in a structured, machine-readable format.
- Right to object — You have the right to object to processing based on legitimate interests or for direct marketing purposes. Where you object, we will stop processing unless we demonstrate compelling legitimate grounds.
- Rights related to automated decision-making — You have the right not to be subject to solely automated decisions that produce legal or similarly significant effects.
- Right to withdraw consent — Where processing is based on consent, you may withdraw your consent at any time without affecting the lawfulness of prior processing.
To exercise any of these rights, please contact us at [email protected]. We will respond within one month of receiving your request (extendable by a further two months where necessary, with notice). We may need to verify your identity before processing your request. There is no charge for exercising your rights, unless requests are manifestly unfounded or excessive.
Right to lodge a complaint
You have the right to lodge a complaint with your local data protection supervisory authority. Some relevant authorities include:
- Ireland — Data Protection Commission: www.dataprotection.ie
- Germany — Bundesbeauftragte für den Datenschutz und die Informationsfreiheit (BfDI): www.bfdi.bund.de
- France — Commission Nationale de l’Informatique et des Libertés (CNIL): www.cnil.fr
- Netherlands — Autoriteit Persoonsgegevens: www.autoriteitpersoonsgegevens.nl
- United Kingdom — Information Commissioner’s Office (ICO): www.ico.org.uk
- Other EU member states — refer to the European Data Protection Board’s list at: www.edpb.europa.eu
We would appreciate the opportunity to address your concerns before you approach a supervisory authority, and ask that you contact us in the first instance.
14. California Residents — Your CCPA/CPRA Rights
If you are a California resident, the California Consumer Privacy Act, as amended by the California Privacy Rights Act (“CCPA/CPRA”), provides you with certain rights regarding your personal information.
Categories of personal information we may collect
In the past 12 months, we may have collected the following categories of personal information from visitors to the Site:
- Identifiers — such as name, email address, telephone number, and IP address
- Internet or other electronic network activity — such as browsing activity and interactions with the Site
- Geolocation data — approximate location inferred from IP address
- Professional or employment-related information — such as company or organization name, where you provide it
Your rights
Subject to certain exceptions, California residents have the right to:
- Know / access the categories and specific pieces of personal information we have collected about you, the sources, the purposes, and the categories of third parties to whom we disclose it
- Delete personal information we have collected from you
- Correct inaccurate personal information we maintain about you
- Opt out of the “sale” or “sharing” of personal information (you may exercise this through the consent controls described above and via Global Privacy Control)
- Non-discrimination — we will not discriminate against you for exercising any of these rights
To exercise your California rights, please contact us at [email protected]. We will verify your request and respond as required by law.
15. EU/UK Representative
As MedOne is based outside the EEA and UK but offers services to individuals in those regions, we are required under Article 27 GDPR to designate a representative in the EU and UK.
We are in the process of formally appointing an EU/UK representative. In the interim, EEA and UK residents may direct all data protection enquiries directly to:
- Email: [email protected]
- Post: MedOne Surgical, Inc., Attn: Privacy / GDPR, 670 Tallevast Rd, Sarasota, FL 34243, USA
We will update this section with full EU/UK representative details as soon as they are formally appointed.
16. Other U.S. State Privacy Rights
Depending on where you live, you may have similar rights under other state privacy laws (for example, in Colorado, Connecticut, Virginia, Utah, and other states). To exercise any rights you may have, contact us at [email protected], and we will respond as required by applicable law.
17. Children’s Privacy
The Site is not directed to children, and we do not knowingly collect personal information from children under 16 (or under 13 in the United States where COPPA applies). If you believe a child has provided us with personal information, please contact us at [email protected] so we can delete it.
18. Third-Party Links
The Site may contain links to third-party websites or services. We are not responsible for the privacy practices of those third parties, and this Policy does not apply to them. We encourage you to review the privacy policies of any third-party sites you visit.
19. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we do, we will revise the “Last Updated” date at the top of this page. For material changes, we will provide more prominent notice as appropriate. Your continued use of the Site after an update constitutes acceptance of the revised Policy.
20. Contact Us
If you have questions or requests regarding this Privacy Policy or your personal information, please contact our dedicated privacy team:
- Privacy Email: medone@medone.com
- General Email: [email protected]
- Phone: (941) 359-3129
- Post: MedOne Surgical, Inc., 670 Tallevast Rd, Sarasota, FL 34243, USA
For EEA and UK residents, you may also contact your local supervisory authority as listed in Section 13.