We know your personal information is important to you and it is also important to us and this is why we decided to follow the European General Data Protection Regulation (GDPR), not only for European individuals, but for all individuals regardless of nationality. This Privacy Statement tells you how we use your personal information and explains your rights around how we use it. Please read this Privacy Statement to understand how and why we use your personal information. If you give us personal information about another individual, please make sure you have their permission and please make them aware of this Privacy Statement as it applies to them.
1) Why do we store data?
We store data relevant with the service we facilitate for a venue:
- Data related to an online purchase
- Data related to a visit at a venue
- Data related to a request for a service at the venue
2) What data do we ask from you?
Depending on the service you use, we might ask you for:
- Your Name
- Your Address
- Your Email
- Your Gender
- Your Date of Birth or Birthday
- Information Regarding your Visit (budget, type of visit, visit date, table booked)
- Billing Information
3) How do we store your credit card or banking information?
We do not store credit card numbers. All our processing is tokenized, meaning the credit card information is sent to a processor that returns to us a token used to refer to that transaction or credit card. This token also stores some identifiers like the last 4 digits of your credit card, but we have no means of getting your credit card information as it resides solely with the processor. We also create a billing fingerprint for the sole purpose of detecting suspicious activities across venues.
4) What is our role?
We are a data processor as we store and process data on behalf of venues. Your data will not be shared with anybody outside the venue for which you provided information.
5) What do we do with your data?
We put your data at the disposal of the venue you gave it to, whether for a purchase, reservation or inquiry. The venues can export their data and have the ability to import it into their own CRM. The privacy protection we offer is limited to the data we store and process for the venue. You will need to review the privacy policy of the venue for data they might have exported from our system.
6) Where is the data stored?
UrVenue is a cloud-based system and might use one of the following cloud providers depending on the venue and services used:
- Google Cloud
- Amazon Web Services
- Microsoft Azure Cloud
7) Personal Data Breaches
Personal Data breaches will be reported within 72 hours. We will report to authorities, including the state of Nevada Gaming Control Board and other regulatory bodies concerned, what has been stolen and what countermeasures have been taken. Depending on the depth of the information stolen, we might directly contact the individuals about the breach.
8) Getting a copy of your personal data
By providing proof of identity, we will send you all the information we hold about you across our venue customers. If you find any information factually incorrect, you are able to update it. We will forward your request for information as well as your updated information to our venue customers in the event they have your profile in an external system.
To get a copy of your information or update your information, email us at: privacy@urvenue.com. Remember, we will need proof of identity.
9) Your privacy tomorrow
We will keep improving your data protection in the future by adding easy tools to review and update your data yourself as well as add additional security layers as technology allows it. We will also keep up to date on privacy regulations worldwide so we can be compliant with the strictest guidelines similar to the European GDPR we are in compliance with.
10) Future Privacy Enhancements
We continuously strive to enhance data protection by implementing user-friendly tools for reviewing and updating personal data, incorporating additional security measures, and keeping abreast of global privacy regulations to maintain compliance with the strictest standards.
11) Selling of Personal Data
We do not sell personal data to third parties. Our use of personal data is limited to the purposes outlined in this Privacy Statement, primarily to provide and enhance the services offered through our venues. We are committed to maintaining the confidentiality and integrity of your personal information and ensuring your privacy rights are respected.
12) Children’s Privacy
We do not knowingly collect personal information from children under the age of 16 without parental consent. If you are a parent or guardian and believe we have collected such information in a manner not permitted by law, please contact us so we can obtain parental consent or remove the information.
13) Changes to Our Privacy Policy
We regularly review and update our Privacy Policy to reflect changes in our practices and service offerings, or as required by applicable laws and regulations. We will notify you of any significant changes through our website or through direct communication, so you remain informed about the information we collect and how we use it.
14) Data Retention
We retain personal data only for as long as necessary to fulfill the purposes for which it was collected, including any legal, accounting, or reporting requirements. When deciding on retention periods, we consider the amount, nature, and sensitivity of the data, the potential risk of harm from unauthorized use or disclosure, and the applicable legal requirements.
15) Contact Our Privacy Team
For further information about our privacy practices, or if you have any questions or concerns, please contact our Privacy Officer at privacy@urvenue.com.