Protection

Purpose and Scope

This Data Protection Policy outlines the principles and practices adopted by CipherQuest Rooms to ensure the confidentiality, integrity, and lawful handling of personal data. It applies to all data subjects whose personal information is processed by us, whether they are customers, users, contractors, or business partners. Our goal is to meet the highest standards of data protection and privacy compliance, in accordance with the General Data Protection Regulation (GDPR), California Consumer Privacy Act (CCPA), and other applicable data privacy regulations worldwide.

Data Collection Practices

We may collect personal data from you directly, automatically through your use of our website or services, or from third-party sources. The categories of data collected may include:

• Identity Information: full name, title, date of birth, government-issued ID
• Contact Information: email address, telephone number, mailing address
• Login Credentials: username, encrypted passwords, authentication tokens
• Financial Details: billing information, payment method data (securely handled by payment processors)
• Technical Data: IP address, browser details, operating system, device ID
• Usage Data: behavior on our website, access times, page interactions
• Communication Records: emails, chat logs, support tickets, feedback forms
• Marketing Data: subscription preferences, interaction with promotional materials

Lawful Basis for Processing

We will only process personal data where we have a legal basis to do so. These bases may include:

• Your explicit consent
• Contractual necessity, to fulfill our obligations to you
• Legal compliance, where data processing is required by law
• Our legitimate interests, provided these do not override your fundamental rights and freedoms

We document the legal basis for each type of processing activity and review it regularly to ensure its validity.

Use of Personal Data

The personal data we collect may be used for the following purposes:

• Providing and improving our services
• Administering customer accounts and verifying identity
• Processing transactions and managing billing
• Responding to inquiries and providing customer support
• Sending service notifications, newsletters, or promotional offers (where permitted)
• Enhancing website functionality and personalizing content
• Ensuring the security of our systems and users
• Complying with legal obligations, including tax and accounting requirements

Sharing and Disclosure

We may disclose personal data to:

• Authorized third-party service providers
• Payment gateways
• Legal and regulatory authorities
• Affiliates and subsidiaries

International Data Transfers

Where personal data is transferred outside of the country or region of origin, we ensure the implementation of adequate safeguards, such as Standard Contractual Clauses, Binding Corporate Rules, or transfers to jurisdictions recognized as providing adequate protection.

Data Retention

We retain personal data only as long as necessary to fulfill the purposes for which it was collected or to comply with legal, regulatory, or internal policy requirements. When data is no longer needed, we ensure secure deletion or anonymization.

Data Subject Rights

As a data subject, you have rights including access, rectification, erasure, restriction, portability, objection, and withdrawal of consent. To exercise your rights, contact us at [email protected].

Security Measures

We implement technical and organizational security controls, including encryption, access controls, intrusion detection, security audits, and employee training.

Cookies and Similar Technologies

Our website uses cookies and other tracking technologies. You can manage preferences via your browser or our cookie consent interface. See our Cookie Policy for more details.

Children’s Data

We do not knowingly collect or process data from individuals under the age of 16. If discovered, such data will be deleted without delay.

Changes to This Policy

We may update this Data Protection Policy and will notify users of significant changes. The latest version will always be available online.