Privacy Policy for EyeList

Last updated: January 23, 2026

This Privacy Policy describes how Optilima Ltd ("we", "us", or "our") handles information when you use the EyeList mobile application (the "Service") and explains your privacy rights.

EyeList is a surgical case logbook designed for ophthalmology professionals to manage their surgical case records. We take your privacy seriously and have built the Service to store your data locally on your device only. We do not collect, access, or store your patient or case data.

By using the Service, you agree to this Privacy Policy.

Interpretation and Definitions

Interpretation

Words with capitalized initial letters have meanings defined below. These definitions apply whether the words appear in singular or plural.

Definitions

  • Application: EyeList, the mobile software application provided by the Company.
  • Company: Optilima Ltd, the operator of EyeList.
  • Device: Any device that can access the Service, such as a smartphone or tablet.
  • Personal Data: Any information relating to an identified or identifiable individual.
  • Service: The EyeList mobile application.
  • You: The individual using the Service.

Data Collection and Use

Your Case and Patient Data

All surgical case records, patient information, and notes you enter into EyeList are stored locally on your device only. This data includes, but is not limited to:

  • Patient identifiers and hospital numbers
  • Surgical procedure details
  • Visual acuity measurements
  • Biometry and refraction data
  • Comorbidities and complications
  • Notes and observations

We do not have access to this data. It is never transmitted to our servers or to any third party. You retain full control over your data at all times.

EyeList does not offer cloud sync or remote storage of case data.

Personal Data We Collect

EyeList does not require account creation, sign-in, or email registration. We do not collect:

  • Your name, email, or contact information
  • Location data
  • Usage analytics or diagnostics
  • Advertising identifiers
  • Tracking data across apps or websites owned by other companies

Data We May Receive Through Third-Party Services

In-App Purchases (RevenueCat)

If you choose to subscribe to EyeList, we use RevenueCat, a subscription management service, to handle subscription purchases. When you make a purchase, RevenueCat may collect:

  • An anonymous app user identifier
  • Purchase transaction and receipt data
  • Basic device information (such as device type and operating system version)

This information is used solely to verify your subscription status and provide access to premium features. We do not receive or store your payment card details. All payment processing is handled securely by Apple (App Store) or Google (Play Store).

For more information, please refer to RevenueCat's Privacy Policy.

App Store and Play Store

When you download or purchase EyeList through the Apple App Store or Google Play Store, Apple or Google may collect data in accordance with their respective privacy policies. We do not have access to this data.

Data Export and Backup

EyeList provides features that allow you to:

  • Create database backups of your case records
  • Export reports in Excel, CSV, or PDF format
  • Restore data from a previous backup

These features are initiated by you and use your device's native sharing functionality. Exported files are saved to a location you choose, such as your device storage, iCloud, Google Drive, or other third-party services. We do not receive or retain copies of any exported or backed-up data.

You are responsible for the security and handling of any data you export or share.

Healthcare Data Disclaimer

EyeList is intended for use by healthcare professionals to manage their own surgical case records. All patient data you enter is stored locally on your device and is not transmitted to us or any third party.

You are responsible for:

  • Ensuring your use of EyeList complies with applicable healthcare data protection laws and professional regulations (such as HIPAA in the United States, GDPR in the European Union, or other local requirements)
  • Maintaining appropriate security settings and protections on your device
  • Obtaining any necessary patient consents as required by your jurisdiction and professional standards
  • Ensuring that any patient identifiers you store are appropriate for your use case

We do not provide legal or compliance advice. If you have questions about your obligations under healthcare privacy laws, please consult a qualified legal professional.

Subscription Terms

EyeList provides trial access with a limited number of cases so you can evaluate the app. A subscription unlocks unlimited case logging and full access to all features.

If you choose to subscribe:

  • Payment is charged to your Apple App Store or Google Play Store account at confirmation of purchase
  • Subscriptions automatically renew unless cancelled at least 24 hours before the end of the current billing period
  • Renewal pricing will be the subscription price in effect at the time of renewal
  • You can manage or cancel your subscription at any time through your device's App Store or Play Store account settings
  • If you cancel, you will retain access to premium features until the end of the current billing period
  • Your data remains yours — you can view and export your case records even after your subscription ends

Data Retention

Because your case and patient data is stored locally on your device and not transmitted to us, we do not retain any of your data.

All content you create remains on your device and can be deleted at any time by you. Uninstalling the app will remove all locally stored data.

For subscription-related data processed by RevenueCat, please refer to RevenueCat's data retention policies.

Data Transfers

Your case and patient data is not transferred outside your device.

For subscription management, RevenueCat may process data on servers located in the United States. RevenueCat maintains appropriate data protection measures in compliance with applicable regulations.

Your Data Protection Rights (UK & GDPR)

Since we do not collect or process your personal data or patient records, most GDPR rights (such as access, correction, erasure, or portability requests) do not apply in practice to the data stored locally on your device.

You retain full control over your locally stored data and can:

  • View all your data within the app at any time
  • Export your data in multiple formats
  • Delete your data by removing individual records or uninstalling the app

For any data processed by RevenueCat in connection with subscriptions, you may exercise your rights by contacting RevenueCat directly or by contacting us, and we will forward your request where appropriate.

Security

Because all case and patient data remains locally on your device and is not transmitted to us, the security of this information depends on:

  • Your device's operating system and security settings
  • Your use of device passcodes, biometric locks, or encryption
  • Your practices around device sharing and physical security

Modern iOS and Android devices encrypt app data by default. We do not have access to your data and cannot view, retrieve, or recover it.

We recommend:

  • Keeping your device software up to date
  • Using a strong device passcode or biometric authentication
  • Creating regular backups of your data
  • Not sharing your device with unauthorized individuals

Children's Privacy

EyeList is designed for use by healthcare professionals and is not intended for use by children.

We do not knowingly collect personal information from children under the applicable age of digital consent (generally under 13, or under 16 in some jurisdictions). If you believe a child has provided us with personal information, please contact us and we will take appropriate steps to delete such information.

Links to Other Websites

The Service may contain links to external websites, such as:

  • RevenueCat's privacy policy
  • Apple App Store or Google Play Store
  • Our company website

These external sites are not operated by us. We strongly advise you to review the privacy policies of any third-party sites you visit. We have no control over and assume no responsibility for their content, privacy policies, or practices.

Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

Any updates will be posted within the app or on our website with an updated "Last updated" date. Continued use of the Service after changes become effective constitutes acceptance of the revised policy.

If we make material changes that significantly affect your rights, we will provide more prominent notice, such as an in-app notification.

Contact Us

If you have any questions about this Privacy Policy, your data, or your rights, you can contact us at:

Email: support@optilima.com

Company: Optilima Ltd