Privacy Policy

1. Introduction

This Privacy Policy describes how HowlTicket, LLC ("Company," "we," "us," or "our"), a New Jersey limited liability company, collects, uses, discloses, and protects your personal information when you use our ticketing platform and related services (collectively, the "Service").

Our Service is a software-as-a-service (SaaS) platform that enables entertainment venues, escape rooms, haunted attractions, and similar businesses ("Clients") to sell tickets and manage bookings. When you purchase tickets or interact with our platform, you are both our user and a customer of our Client.

2. Information We Collect

2.1 Information You Provide Directly

Account & Booking Information:

• Full name (first and last)
• Email address
• Phone number
• Billing address

Payment Information:

• Payment card type (e.g., Visa, Mastercard)
• Last four digits of payment card

We do not store complete credit card numbers. All payment processing is handled by Stripe, our PCI-DSS compliant payment processor.

Waiver & Consent Information:

• Digital signature (captured as image)
• Date of birth (for age verification where required)
• Waiver acceptance timestamp

2.2 Information Collected Automatically

• IP address
• Browser type and version
• Operating system and device type
• Approximate geographic location (derived from IP)

3. How We Use Your Information

• Process ticket purchases and bookings
• Send booking confirmations and digital tickets
• Send booking reminders (with your consent)
• Verify identity and prevent fraud
• Comply with legal obligations
• Improve our Service and develop new features

4. How We Share Your Information

We share information with:

Recipient	Purpose
Event Operators	The venue where you booked tickets, so they can verify and serve you
Stripe	Payment processing
SendGrid	Email delivery (confirmations, reminders)
Twilio	SMS messaging

5. Data Retention

We retain your personal information for as long as necessary to provide the Service and comply with legal obligations.

Data Type	Retention Period
Booking records	7 years (tax/legal requirements)
Payment records	7 years (financial regulations)
Waiver signatures	Duration of legal liability + 3 years
Audit logs	1 year

6. Your Rights

You have the right to:

• Access - Request a copy of your personal data
• Correct - Request correction of inaccurate data
• Delete - Request deletion of your data (subject to legal retention requirements)
• Opt out of marketing - Unsubscribe from marketing communications at any time
• Opt out of SMS - Reply STOP to any SMS message

California Residents: Under the CCPA, you have additional rights including the right to know what personal information is collected and the right to request deletion. We do not sell personal information.

EEA/UK Residents: Under GDPR, you have additional rights including the right to data portability, the right to restrict processing, and the right to lodge a complaint with a supervisory authority.

7. Data Security

We implement appropriate technical and organizational measures to protect your personal information, including:

• Encryption in transit (TLS 1.2+)
• Encryption at rest for sensitive data
• Access controls and authentication
• Regular security assessments

8. Contact Us

For questions about this Privacy Policy or to exercise your rights, contact us:

We will respond to your request within 30 days (or sooner if required by applicable law).