Privacy at a Glance
- •We only collect data necessary to provide our services
- •We never sell your personal information to third parties
- •You can request your data or delete your account at any time
- •All data is encrypted in transit and at rest
- •We comply with GDPR, CCPA, and other privacy regulations
Information We Collect
Account Information
When you create an account, we collect your name, email address, phone number, and billing information. For venue owners, we also collect business name, address, and tax identification information.
Usage Data
We automatically collect information about how you use our platform, including session durations, features accessed, and interactions with the service. This helps us improve our product and provide better support.
Payment Information
Payment processing is handled by Stripe. We do not store your full credit card number on our servers. We only retain the last 4 digits and card type for your reference.
Device Information
We collect information about the devices you use to access Rack N' Action, including IP address, browser type, operating system, and device identifiers.
How We Use Your Information
Providing Our Services
We use your information to operate, maintain, and improve Rack N' Action, including processing transactions, managing reservations, and running tournaments.
Communication
We may send you service-related emails, including account verification, billing notifications, and important updates. You can opt out of marketing emails at any time.
Analytics & Improvement
We analyze usage patterns to understand how our platform is used, identify areas for improvement, and develop new features that benefit our users.
Security & Fraud Prevention
We use your information to detect, prevent, and respond to fraud, abuse, security risks, and technical issues.
Data Security
Encryption
All data transmitted between your device and our servers is encrypted using industry-standard TLS 1.3 encryption. Sensitive data at rest is encrypted using AES-256.
Access Controls
We implement strict access controls to ensure only authorized personnel can access user data, and only when necessary for their job functions.
Regular Audits
We conduct regular security audits and penetration testing to identify and address potential vulnerabilities in our systems.
Incident Response
We have established procedures to detect, respond to, and recover from security incidents. In the unlikely event of a data breach, we will notify affected users as required by law.
Your Rights & Choices
Access & Portability
You can request a copy of your personal data at any time. We will provide your data in a commonly used, machine-readable format.
Correction
If you believe any of your personal information is inaccurate, you can request that we correct it. You can also update most information directly in your account settings.
Deletion
You can request deletion of your account and associated data. Some data may be retained for legal or business purposes, but we will clearly explain what is retained and why.
Marketing Opt-Out
You can opt out of marketing communications at any time by clicking the unsubscribe link in any email or updating your notification preferences in settings.
Information Sharing
Service Providers
We share data with trusted service providers who help us operate our platform, including payment processors (Stripe), email services, cloud hosting (AWS/Vercel), and analytics providers. These providers are contractually obligated to protect your data and use it only for the services they provide to us.
Legal Requirements
We may disclose your information if required by law, court order, or government regulation, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred. We will notify you of any such change and any choices you may have regarding your information.
What We Don't Do
We do not sell, rent, or trade your personal information with third parties for their marketing purposes. We do not use your data to build profiles for targeted advertising outside our platform.
Cookies & Tracking
We use cookies and similar technologies to provide, improve, and protect our services.
Essential Cookies
Required for the platform to function. Cannot be disabled.
Analytics Cookies
Help us understand how users interact with our platform.
Preference Cookies
Remember your settings and preferences for a better experience.
Marketing Cookies
Used for advertising. Can be disabled in your browser settings.
Children's Privacy
Rack N' Action is not intended for children under 13 years of age. We do not knowingly collect personal information from children under 13. If we learn that we have collected personal information from a child under 13, we will delete that information as quickly as possible. If you believe a child under 13 may have provided us with personal information, please contact us.
We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date. Your continued use of Rack N' Action after any changes constitutes acceptance of the updated policy.