Privacy Policy

1. Introduction

Game Over Escape Rooms and ArenaXVR ("Game Over", "we", "us", "our") is committed to safeguarding the privacy of our website visitors and customers. This Privacy Policy explains how we collect, use, disclose, and protect your personal information when you use our website, booking system, and services.

By using our website and services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with any part of this policy, please do not use our website or services.

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide when making a booking or interacting with our services. This includes:

• Contact Information: Name, email address, and phone number
• Booking Information: Date, time, experience selected, group size, and special requests
• Payment Information: Credit card details are processed securely through Square and are never stored on our servers

2.2 Automatically Collected Information

When you visit our website, we may automatically collect certain information, including:

• Usage Data: IP address, browser type, operating system, pages visited, and time spent on pages
• Device Information: Device type, screen resolution, and unique device identifiers
• Cookies: Small data files stored on your device to improve your experience

3. How We Use Your Information

We use the information we collect for the following purposes:

• Processing Bookings: To confirm and manage your escape room or VR experience reservations
• Communication: To send booking confirmations, reminders, and important updates about your reservation
• Payment Processing: To process payments securely through our payment provider (Square)
• Customer Service: To respond to your inquiries and provide support
• Marketing: With your consent, to send promotional offers and newsletters (you may opt out at any time)
• Analytics: To understand how our website is used and improve our services
• Legal Compliance: To comply with applicable laws and regulations

4. Payment Security

Your credit card information is never stored on our servers. All payment processing is handled by Square, a PCI-DSS Level 1 certified payment processor. When you enter your payment information:

• Your card details are transmitted directly to Square's secure servers using industry-standard encryption (TLS/SSL)
• We only receive a secure payment token, not your actual card number
• Square handles all payment processing in compliance with Payment Card Industry Data Security Standards (PCI-DSS)

For more information about Square's security practices, please visit Square's Privacy Policy.

5. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

• Service Providers: With trusted third-party service providers who assist us in operating our website and processing payments (e.g., Square for payments, email service providers for communications)
• Legal Requirements: When required by law, court order, or government request
• Protection of Rights: To protect our rights, privacy, safety, or property, or that of our customers or others
• Business Transfers: In connection with a merger, acquisition, or sale of assets, your information may be transferred as part of that transaction

6. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

• Encryption: All data transmitted between your browser and our servers is encrypted using SSL/TLS technology
• Secure Storage: Personal data is stored in secure, access-controlled databases
• Access Controls: Only authorized personnel have access to personal information on a need-to-know basis
• Regular Monitoring: We regularly monitor our systems for potential vulnerabilities and attacks

While we strive to protect your personal information, no method of transmission over the Internet or electronic storage is 100% secure. We cannot guarantee absolute security.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your experience on our website. Cookies are small text files stored on your device that help us:

• Remember your preferences and settings
• Understand how you use our website
• Improve our services based on usage patterns
• Provide relevant content and advertisements

You can control cookies through your browser settings. However, disabling cookies may affect the functionality of our website.

8. Your Rights

Depending on your location, you may have certain rights regarding your personal information:

• Access: Request a copy of the personal information we hold about you
• Correction: Request correction of inaccurate or incomplete information
• Deletion: Request deletion of your personal information (subject to legal retention requirements)
• Opt-Out: Unsubscribe from marketing communications at any time
• Data Portability: Request your data in a structured, commonly used format

To exercise any of these rights, please contact us using the information provided below.

9. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including:

• To provide our services and maintain booking records
• To comply with legal, accounting, or reporting requirements
• To resolve disputes and enforce our agreements

Booking records are typically retained for a minimum of 7 years for tax and legal purposes.

10. Children's Privacy

Our services are not directed to children under 13 years of age. We do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately so we can delete such information.

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices or content of these external sites. We encourage you to review the privacy policies of any third-party sites you visit.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. Any changes will be posted on this page with an updated "Last Updated" date. We encourage you to review this policy periodically. Your continued use of our services after any changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions about this Privacy Policy or our data practices, please contact us:

14. Florida Information Protection Act

As a Florida-based business, we comply with the Florida Information Protection Act of 2014 (FIPA). In the event of a data breach affecting your personal information, we will:

• Notify affected individuals within 30 days of discovering the breach
• Provide information about the nature of the breach and types of data affected
• Offer guidance on steps you can take to protect yourself
• Report the breach to appropriate authorities as required by law

We do not sell your personal information. We maintain reasonable security measures to protect your data in compliance with Florida law.

15. California Privacy Rights

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

• The right to know what personal information is collected, used, shared, or sold
• The right to delete personal information held by businesses
• The right to opt-out of the sale of personal information
• The right to non-discrimination for exercising your CCPA rights

We do not sell your personal information. To exercise your California privacy rights, please contact us using the information above.