Tobii Data transparency

Eye tracking data transparency policy

Tobii has an eye tracking data transparency policy

If you are developing an application that stores or transfers Tobii eye tracking data, presence or position data, Tobii requires that your application complies with the eye tracking data transparency policy.

Overview

The policy states

Applications that store or transfer eye tracking data need to implement active user acceptance: informing people what you are doing with their data and why.

The application needs to visualize for the user when storage or transfer of Eye Tracking Data occurs.

The user should understand the benefits they receive by providing their eye tracking data — what’s in it for me.

Why does Tobii have an Eye tracking data transparency policy? ​

Eye tracking is still an emerging technology in consumer, commercial, and specialized products and solutions. It holds the promise of new opportunities — in the way we interact with machines, how advancing the frontier of science and in the creation of solutions that have a positive impact on people’s lives.

The data generated by eye tracking technology can reveal a lot about a person. Their reaction in certain situations, how they are feeling, their identification, and even whether they are suffering from specific medical conditions. Classified as personal data, eye tracking data needs to be handled accordingly.

Tobii aspires to protect the data integrity and data privacy of every person who interacts with eye tracking. But we cannot do this alone.

We rely on every organization to build trust with people whose eye tracking data they leverage. We rely on every product to respect users by very clearly informing them if their eye tracking data is stored or transferred to another system — and more importantly why.

To help us fulfill this aspiration, we created the Tobii Eye Tracking Data Transparency policy.

When does Tobii’s Eye tracking data transparency policy apply?

Tobii’s Eye tracking data transparency policy applies when eye tracking data in raw or processed form is stored, or when it is transferred to other devices, systems, or networks.

What does this mean?

For users

As a user, you should expect all applications that store or transfer your eye tracking data comply with the Tobii Eye Tracking Data Transparency Policy.

For software developers

As a developer, building solutions using any of Tobii’s SDKs, you must adhere to our license terms. One of the license terms requires you comply with our Eye Tracking Data Transparency Policy.

For hardware manufacturers and OEMs

If you are a hardware manufacturer or OEM using Tobii eye tracking, you can be proud that you have built your product on a technology that takes the privacy of users seriously.

If you develop software that uses eye tracking as part of your solution, you must also adhere to Tobii's Eye tracking data transparency policy — just like any other software developer.

If you wish to publish your own proprietary SDKs or APIs that incorporate Tobii's eye tracking, you must contact us for a dialogue on how we can work together to ensure that our Eye tracking data transparency policy is upheld.

Policy

Eye tracking data transparency policy

If Your Software stores or transfers Eye Tracking Data, then you must comply with this policy and as such, Tobii requires the following to be implemented into Your Software:

  • Active User Acceptance: Your Software needs to use a consistent format to ask the user, explicitly and clearly, for their permission to store, or transfer, their Eye Tracking Data. This request for permission must happen before the user’s data is stored or transferred. It also needs to state the purpose of storing/transferring Eye Tracking Data and that such data will not be used for any other purpose.
  • Visualization: Your Software must show the user when the storing or transferring of Eye Tracking Data is taking place. You must provide a mechanism for visualization. This is required unless explicitly waived by Tobii.

Tobii recommends that the following is implemented into Your Software:

  • The “What’s in it for me” policy: Clearly inform users about the value they will receive from Your Software. This is about giving the user clear guidance and motivation about why they should provide their Eye Tracking Data to You.

    Please note that the implementation of this policy may vary between different categories of products. For screen-based products, a window, such as the one below, is recommended for the Active User Acceptance and What’s in it for me policy.

Tobii Data transparency policy

Active User Acceptance - alternative methods of implementation and exemption

Some specific circumstances make a software-based user acceptance impossible or inappropriate. If Your Software is used in either of the situations described in A, B or C below, You may instead implement firm legal requirements on the user of Your Software to conduct an alternative approval process.

Situation A: Your Software is used to conduct research, tests or assessments on a Test Subject which a Facilitator operates and oversees, and You prefer that Active User Acceptance from the Test Subject is provided via a separate process, instead of through Your Software. In this situation, Your Software must, instead, explicitly and in a clear and prominent manner, require that the Facilitator takes responsibility to:

(i) obtain Active User Acceptance from the Test Subject via separate means; and

(ii) inform the Test Subject about what data was collected, the purpose of the data collection and that the data will not be used for any other purpose; and

(iii) if the Test Subject does not give such consent, permanently delete the data from that Test Subject.

Only upon confirmation of this by the Facilitator will Your Software be allowed continued use. This process must be followed at least every time Your Software is started.

Situation B: Your Software is used to collect Eye Tracking Data from an individual that is not of legal age, or a user who is not physically or mentally able or fit to provide Active User Acceptance. In such situation, Your Software may instead implement a process where Active User Acceptance is collected from a legal guardian of the user. This may be done either via Your Software, or via a different method (such as a paper-based form), prior to collecting the data. In either case, such Active User Acceptance form must be very explicit and in a clear way provide information about which data will be collected, and it must state the purpose of the Eye Tracking Data collection and that the Eye Tracking Data will not be used for any other purpose.

Situation C: Your Software is used to collect Eye Tracking Data from a user who is under a medical emergency where there is an imminent risk to the user’s life or health. When the application is used in such situation, Active User Acceptance is not required.

Terminology

“Eye Tracking data” refers to these categories of data:

  • Biometric Eye Tracking Data: Data relating to the physical, physiological or behavioral characteristics of a person’s eyes or face;
  • Psychographic Eye Tracking Data: Any insights derived from biometric eye tracking data relating to a person’s physical, mental, and emotional state, or their interests

“Store or transfer” applies to any method of saving eye tracking data beyond the length of the user session; or any method of sharing eye tracking data so that it can be accessed or observed by others in retrospect, or in real-time on a separate display or device.

Review

The review process

Tobii customers and partners that are developing solutions requiring access to our API’s, need to sign a software development license agreement (SDLA). Our SDLA for Commercial use and for Research use requires compliance to the Tobii Eye Tracking Data Transparency Policy.

If you signed a SDLA for Commercial use and have been granted right to store and or transfer eye tracking data, you also have to undergo a review process (this is not applicable for applications under the Research SDLA).

We have a review process for three reasons:

  • Ensure policy compliance
  • Help implement best practice of active user acceptance
  • Evolve the policy by learning from our customers and partners

The review is not required if you are running the project under a proof-of-concept phase (non-commercial SDLA). The review process is transparent and we share our review records with our customers and partners.

Review process overview

Tobii Data transparency policy review process overview

It is important to plan the review process well in time. Initiation of review process is done by contacting Tobii account manager. The Tobii account manager will then allocate a dedicated review manager. The review manager will make contact and execute the review process, answer questions and provide relevant information and support.

Compliant applications and software

software development licensing

Applications and Software complying with the Tobii Eye Tracking Data Transparency Policy

Below is a list of applications and software that are in compliance with the Tobii Eye Tracking Data Transparency Policy. This list is continuously updated.

ApplicationWebsiteCompany
Tobii Pro Labhttps://www.tobii.com/products/software/behavior-research-software/tobii-pro-labTobii
Tobii Pro Software Development Kithttps://www.tobii.com/products/software/applications-and-developer-kits/tobii-pro-sdk/Tobii
Sticky by Tobiihttps://www.tobii.com/products/software/online-marketing-research/stickyTobii
Tobii Pro Glasses 3 ControllerTobii
EventIDEhttp://www.okazolab.com/OkazoLab Ltd.
Eye Tracking Analytics for League of Legendshttps://app.mobalytics.gg/lol/summoner-search/?src=homeMobalytics
Eye Tracking Analytics for Aim Traininghttps://www.3daimtrainer.com/3D Aim Trainer
Tobii Ghost Streaming and Broadcastinghttps://gaming.tobii.com/software/ghost/Tobii
Ovationhttps://www.ovationvr.com/VRSpeaking, LLC.
EYE-SYNChttps://syncthink.com/product/SyncThink Inc.
EYEVIDO Labhttps://eyevido.de/EYEVIDO GmbH
Verum Polygraphhttps://www.verum.llc/Verum LLC
Readerseyehttps://www.readerseye.com/BNRI Inc.
Qualisys Track Managerhttps://www.qualisys.com/Qualisys AB
AVATARhttps://discernscience.com/avatar/Discern Science
SennsLabhttps://www.bitbrain.com/neurotechnology-products/software/sennslaBitbrain
Annahttps://www.neuroears.co.kr/products?product=annaNeuroEars

Applications and Software complying with the Tobii Eye Tracking Data Transparency Policy

Below is a list of applications and software that are in compliance with the Tobii Eye Tracking Data Transparency Policy. This list is continuously updated.

ApplicationCompany
Tobii Pro LabTobii
Tobii Pro Software Development KitTobii

Our software development licensing model