Privacy Policy

1. Introduction

Welcome to DarkRoom Quest. We are committed to protecting your privacy and personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website, book our horror quest experiences, or interact with our services. Please read this policy carefully to understand our practices regarding your personal data and how we will treat it.

By accessing or using our services, you agree to the collection and use of information in accordance with this Privacy Policy. If you do not agree with the terms of this Privacy Policy, please do not access our website or use our services.

2. Information We Collect

2.1 Personal Information

We collect personal information that you voluntarily provide to us when you book a quest, register for workshops, contact us, or participate in our services. This information may include:

• Full name and contact details (email address, phone number, postal address)
• Date of birth and age verification information
• Payment information (credit card details, billing address)
• Emergency contact information
• Health information relevant to participation (disclosed voluntarily for safety purposes)
• Preferences and booking history

2.2 Automatically Collected Information

When you visit our website, we automatically collect certain information about your device and browsing behavior, including:

• IP address and geographic location
• Browser type and version
• Device type and operating system
• Pages visited and time spent on our website
• Referring website and search terms used
• Cookies and similar tracking technologies

2.3 Quest Experience Data

During your quest experience, we may collect biometric and behavioral data for safety monitoring and experience optimization, including heart rate monitoring, movement patterns, and audio recordings for quality assurance. This data is collected with your explicit consent and is anonymized for analysis purposes.

3. How We Use Your Information

We use the collected information for various purposes, including:

• Service Delivery: Processing bookings, managing reservations, and providing quest experiences
• Communication: Sending booking confirmations, updates, safety information, and customer support
• Safety: Monitoring participant well-being during experiences and responding to emergencies
• Payment Processing: Processing transactions and preventing fraud
• Improvement: Analyzing usage patterns to enhance our services and develop new experiences
• Marketing: Sending promotional materials about new quests, special events, and offers (with your consent)
• Legal Compliance: Meeting legal obligations and protecting our rights
• Research: Conducting anonymized research on fear responses and immersive entertainment

4. Information Sharing and Disclosure

We do not sell, trade, or rent your personal information to third parties. We may share your information only in the following circumstances:

• Service Providers: Third-party vendors who assist with payment processing, email delivery, website hosting, and analytics
• Legal Requirements: When required by law, court order, or governmental authority
• Business Transfers: In connection with a merger, acquisition, or sale of assets
• Emergency Situations: To protect the safety and rights of participants, staff, or the public
• With Consent: When you have given explicit permission for specific disclosures

All third-party service providers are contractually obligated to maintain the confidentiality and security of your information and may only use it for the purposes we specify.

5. Data Security

We implement appropriate technical and organizational security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• SSL/TLS encryption for data transmission
• Secure server infrastructure with regular security updates
• Access controls and authentication procedures
• Regular security audits and vulnerability assessments
• Employee training on data protection and privacy
• Encrypted storage of sensitive personal and payment information

However, no method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your personal information, we cannot guarantee absolute security.

6. Your Privacy Rights

Under applicable data protection laws, you have the following rights regarding your personal information:

• Right to Access: Request copies of your personal data we hold
• Right to Rectification: Request correction of inaccurate or incomplete information
• Right to Erasure: Request deletion of your personal data under certain circumstances
• Right to Restriction: Request limitation of processing your personal data
• Right to Data Portability: Receive your data in a structured, commonly used format
• Right to Object: Object to processing of your personal data for specific purposes
• Right to Withdraw Consent: Withdraw consent for data processing at any time

To exercise any of these rights, please contact us at [email protected]. We will respond to your request within 30 days.

7. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to enhance your browsing experience, analyze website traffic, and personalize content. Cookies are small data files stored on your device. You can control cookie preferences through your browser settings, though disabling cookies may affect website functionality.

Types of cookies we use include essential cookies (necessary for website operation), analytical cookies (understanding user behavior), and marketing cookies (delivering relevant advertisements). You can manage your cookie preferences through our cookie consent banner or your browser settings.

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, comply with legal obligations, resolve disputes, and enforce our agreements. Booking information is retained for 7 years for legal and accounting purposes. Marketing communications data is retained until you unsubscribe. Anonymized research data may be retained indefinitely.

9. Children's Privacy

Our services are not intended for individuals under 16 years of age. We do not knowingly collect personal information from children under 16. For participants aged 16-17, parental consent is required. If we become aware that we have collected personal information from a child under 16 without parental consent, we will take steps to delete that information promptly.

10. International Data Transfers

Your information may be transferred to and processed in countries other than Australia. We ensure that such transfers comply with applicable data protection laws and implement appropriate safeguards, such as standard contractual clauses, to protect your information during international transfers.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. We will notify you of any material changes by posting the updated policy on our website with a new "Last Updated" date. We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

12. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

13. Consent

By using our website and services, you consent to the collection, use, and disclosure of your information as described in this Privacy Policy. For certain processing activities, we will seek your explicit consent, which you may withdraw at any time by contacting us.