Supersenses Privacy Policy

Last Updated: August 14, 2025

I. Introduction

Welcome to SuperSenses Inc., an S corporation organized under the laws of the State of California, United States of America (“SuperSenses,” “we,” “us,” or “our”). We are committed to advancing sensory health through innovative products, including but not limited to at-home sensory test kits, mobile applications, and related services.

This Privacy Policy (“Policy”) describes how we collect, use, share, and protect information about you when you access and use our website at https://super-senses.com/ (“Website”), mobile application (“App”), at-home sensory test kits, and any other services we may provide (collectively, the “Services”).

By using our Services, you consent to the practices described in this Policy.

II. Scope of the Policy

This Policy applies to all personal information collected by SuperSenses through:

  • Our Website and App

  • Activation and use of sensory test kits

  • Any other interactive features or communications linked to this Policy

  • Offline interactions where you voluntarily provide information to us

  • Data we receive from authorized partners or service providers

We generally act as an independent controller of personal information collected through our Services. For certain enterprise arrangements, we may act as a processor under a separate data processing agreement, in which case that agreement governs.

This Policy does not apply to data collected by third parties, including linked websites, unaffiliated applications, or advertisers.

 

 

III. Data Collection

We collect information in the following ways:

A. Information You Provide

  • Contact details (name, email, phone, postal address, date of birth)

  • Account credentials for Service access

  • Payment details for purchases

  • Any content you submit via our Services

B. Information Collected Automatically

  • Device and connection data (IP address, browser type, device IDs, OS)

  • Usage data (pages visited, features used, interaction history)

  • Cookies and similar technologies (see Section VII)

C. Kit-Driven Data Collection
 Sensory measurement data (e.g., results from smell, taste, hearing, vision, and touch tests) is collected only when you use a registered sensory test kit or an authorized digital equivalent. We do not collect sensory results during in-person classes or demonstrations unless the kit is activated and linked to your account or a designated study.

 

 

IV. Use of Personal Information

We use information to:

  • Provide, operate, and improve the Services

  • Process transactions and deliver customer support

  • Conduct research, testing, and product development

  • Personalize user experience and communications

  • Ensure security and compliance with laws

Data Commercialization (De-identified Data).
 We may create, use, license, and sell de-identified and/or aggregated datasets and derived analytics for research, product development, and other commercial purposes. De-identified data is not reasonably capable of being associated with or linked to you. We contractually prohibit recipients from attempting to re-identify such data.

 

 

V. Sharing of Information

We may share personal information with:

  • Service providers under contractual confidentiality obligations

  • Affiliates and business partners in compliance with this Policy

  • Law enforcement or regulators when legally required

  • Successor entities in the event of a merger, acquisition, or sale of assets (commitments in this Policy remain in force)

No Re-Identification; Downstream Restrictions.
 Any third party receiving de-identified or aggregated datasets must: (a) not attempt to re-identify individuals; (b) implement safeguards commensurate with the data’s sensitivity; (c) flow these restrictions down to any sub-recipients; and (d) permit audit or attestations demonstrating compliance. Material breach permits termination and deletion of received data.

We may license or sell de-identified, aggregated datasets to third parties globally, consistent with applicable privacy laws, including CCPA, UK Data Protection Act 2018, UK GDPR, and EU GDPR.

 

 

VI. Data Security and Retention

We maintain administrative, technical, and physical safeguards to protect personal data, including encryption in transit and at rest, least-privilege access, logging, and monitoring. While no method is 100% secure, we maintain an information security program designed to protect personal information from unauthorized access, use, or disclosure.

We retain personal information only as long as necessary for operational, legal, and research purposes. Where feasible, we minimize the personal information we store, separate identifiers from test results, and convert data to de-identified or aggregated form for longer-term retention and research. De-identified data may be retained indefinitely.

 

 

VII. Cookies and Tracking

We use cookies, pixels, and similar technologies for functionality, analytics, and personalization. You may adjust browser settings to block or delete cookies, though this may limit some features.

 

 

VIII. International Data Transfers

We operate globally. Personal data may be transferred to, stored in, and processed in the United States or other jurisdictions where privacy laws may differ. We use Standard Contractual Clauses, adequacy decisions, and other legally recognized safeguards to protect transferred data.

For users in the UK and EU, our legal bases include performance of a contract, legitimate interests, and, where required for any special category processing, explicit consent. Cross-border transfers use recognized mechanisms under UK GDPR/EU GDPR.

 

 

IX. Your Rights

Depending on your jurisdiction, you may have rights to:

  • Access, correct, or delete personal information

  • Object to or restrict certain processing

  • Request data portability

  • Withdraw consent for processing where applicable

  • Lodge complaints with a data protection authority

No “Sale” or “Sharing” of Personal Information; Global Privacy Control.
 We do not “sell” or “share” personal information as those terms are defined by the California Consumer Privacy Act (as amended by the CPRA). We honor browser-based opt-out signals, including Global Privacy Control, where required. This does not restrict our use, licensing, or sale of de-identified or aggregated data.

We will not discriminate against you for exercising your rights under applicable laws, including the CCPA or UK GDPR.

 

 

X. Children’s Privacy

We do not knowingly collect personal information from children under 13 (or under 16 where required by law) without verifiable parental consent. If we learn we have collected such information without required consent, we will delete it.

 

 

XI. HIPAA Status

We are not generally a HIPAA covered entity. For certain customers, we may act as a business associate under a Business Associate Agreement, in which case that agreement governs our handling of protected health information for that customer.

 

 

XII. Changes to This Policy

We may update this Policy from time to time. The “Last Updated” date will reflect the latest version. Material changes will be communicated via email or prominent notice on our Website.

 

 

XIII. Contact Information

For questions or to exercise privacy rights:

Email: hello@super-senses.com
 Online: https://super-senses.com/connect
 Mail: SuperSenses Inc., 1315 NW Davenport Ave, Bend, OR 97703, USA

 Mail: SuperSenses Inc., 415 Washington Blvd, Suite 709, Marina del Rey, CA 90292, USA