Privacy Policy
DRAFT NOTICE: This document is provided as a working draft for internal review. Replace placeholders, confirm platform-specific facts, and obtain legal review before publication.
1. Scope
This Privacy Policy explains how BoardGamesNMore Inc. and its BoardGameNite / BoardGameNite Events platform ("we," "us," or "our") collect, use, disclose, store, and protect personal information when users visit the site, create accounts, publish or join events, manage registrations, use location-based features, receive email notifications, or otherwise interact with the platform.
This policy is intended for the BoardGameNite Events platform and related public pages, user dashboards, account features, event management tools, waitlist functions, check-in tools, gameplay-related features, and administrative interfaces. It does not automatically apply to the separate retail ecommerce site unless that site expressly adopts this policy or links to it as its governing privacy notice.
2. Operator and Contact Information
The platform is operated by BoardGamesNMore Inc.
Current legal and contact details:
4945 Rue Jolicoeur
Pierrefonds, Quebec, H9H5H9, Canada
support@boardgamesnmore.com
If required by applicable law, the person responsible for privacy compliance for the organization may be reached using the privacy contact details listed above or any updated contact information later published on the site.
3. Personal Information We Collect
Depending on how the platform is used, we may collect account and profile information, event and registration information, gameplay and leaderboard information, location-related information, communications data, payment and transaction information if paid events are enabled, and technical or device information such as IP address, browser details, session identifiers, and diagnostic logs.
4. How We Collect Information
We collect information directly from users when they create an account, edit a profile, create or join an event, join a waitlist, submit content, respond to prompts, or contact us.
We also collect information automatically through browser requests, sessions, cookies, logging tools, security systems, and similar technologies.
In some cases, information may be provided by event hosts, administrators, or authorized users acting within the platform, or returned by third-party service providers such as payment processors, email delivery providers, mapping/geocoding services, hosting providers, and anti-abuse tools.
5. Why We Use Personal Information
We use personal information to operate the site and provide requested features, including account creation, login security, event publishing, registration processing, waitlist management, check-in, event administration, gameplay history, and account support.
We use information to send operational messages, including account verification emails, password resets, event confirmations, event changes, waitlist notices, reminders, nearby-event alerts you choose to enable, and administrative notices.
We also use information to improve, secure, and maintain the platform, troubleshoot issues, prevent abuse, monitor performance, investigate complaints, comply with legal requirements, and enforce platform rules.
6. Consent and User Choices
Where required by law, we collect, use, and disclose personal information with your knowledge and consent, except where law permits or requires otherwise.
You may choose whether to create an account, what optional profile information to provide, whether to enable nearby-event alerts, whether to opt in or out of optional communications, and whether to participate in some public-facing gameplay features if those choices are available.
7. Public, Shared, and Private Platform Data
Because BoardGameNite Events is a community and event platform, some information may be visible to the public, to event participants, to event hosts, or to administrators depending on the feature and your settings.
Information that may be public or visible to other users can include event titles, descriptions, dates, times, venues, host display names, registration counts, table capacity, and some public gameplay or leaderboard information.
Information that is generally treated as restricted or internal includes account security details, email address except where operationally required, internal moderation notes, payment records, private ratings marked as private, and security or diagnostic data.
8. Cookies, Sessions, and Similar Technologies
We use cookies, session data, and similar technologies to keep users signed in, maintain platform state, remember preferences, preserve security controls, improve usability, and support diagnostics.
Some technologies are necessary for core operation of the site. Others may support analytics, fraud prevention, preference storage, or optional features. Blocking essential cookies or session tools can affect platform functionality.
9. Disclosure of Information
We do not sell personal information in the ordinary meaning of that term.
We may share information with service providers that support hosting, email delivery, payments, mapping/geocoding, fraud prevention, analytics, diagnostics, backups, and platform security, but only to the extent reasonably necessary for those services.
We may also disclose information to event hosts, designated administrators, moderators, or internal staff when needed to operate events, confirm attendance, manage disputes, enforce rules, respond to support requests, or maintain the platform.
We may disclose information when required for legal compliance, to respond to lawful requests, to investigate suspected misuse, to protect the rights, safety, or property of users or the business, or in connection with a merger, sale, financing, restructuring, or similar transaction.
10. Cross-Border Processing
Our systems and service providers may process or store personal information in Canada, the United States, or other jurisdictions depending on hosting, infrastructure, and vendor arrangements. As a result, personal information may be subject to the laws of those jurisdictions.
Before publication, confirm the actual provider list and data locations used by the platform so this section can be finalized accurately.
11. Data Retention
We retain personal information only for as long as reasonably necessary for the purposes described in this policy, including maintaining active accounts, administering events, preserving gameplay history where applicable, managing support matters, meeting legal and accounting obligations, investigating misuse, and protecting system security.
Actual retention periods may vary by data category. Backup copies, logs, archived records, and legal hold data may be retained longer where justified.
12. Security Safeguards
We use administrative, technical, and organizational safeguards designed to protect personal information against unauthorized access, misuse, loss, disclosure, alteration, or destruction.
These measures may include role-based access controls, credential protections, password hashing, restricted administrative access, secure transport where supported, audit logging, monitoring, environment separation, backups, and incident response procedures.
No system or method of transmission over the Internet is perfectly secure, and absolute security cannot be guaranteed.
13. User Rights and Requests
Subject to applicable law and reasonable identity verification, users may have the right to request access to personal information held about them, request correction of inaccurate information, withdraw consent for some processing, ask questions about platform privacy practices, or request deletion of some information subject to legal, operational, and security limitations.
Privacy requests should be directed to the privacy contact listed in this document.
14. Location Alerts and Nearby Event Features
If you choose to use nearby-event discovery, saved radius filters, or location-based alert features, we may use the address or regional information you provide to geocode your location, compare event locations to your saved radius, filter event search results, or send you notices about newly created events in your selected area.
Location-based features are optional and may be edited or disabled through account preferences where available.
15. Leaderboards, Game History, and Ratings
The platform may include player statistics, leaderboard rankings, play history, game results, and related gameplay records. Some of this information may be visible to other users depending on the feature design, your choices, and whether you opt out of public ranking features.
Where the system marks specific fields or inputs as private, internal-only, or not visible to other users, we intend those fields to remain restricted within the platform design.
16. Children and Minors
The platform is not intended to knowingly collect personal information from children without appropriate authorization where required by law. If youth participation or family event features are later added, additional consent or guardian workflows may be needed.
If a parent or guardian believes that a minor has provided personal information to the platform inappropriately, they should contact us so the matter can be reviewed.
17. Third-Party Links and Services
The site may contain links or integrations involving third-party websites or services such as mapping services, payment processors, event partners, social media pages, external content sources, or support tools. Those third parties operate under their own terms and privacy policies, and we are not responsible for their separate practices.
18. Privacy Incidents and Notifications
If we become aware of a privacy or security incident affecting personal information, we may investigate, contain, remediate, document, and notify affected parties or regulators where required by law and where we determine notice is appropriate.
19. Changes to This Policy
We may update this Privacy Policy from time to time to reflect changes in site features, law, business practices, or third-party service providers. When we make material changes, we may update the date at the top of the document, post a notice on the site, or send an account or email notice where appropriate.
20. Finalization Checklist Before Publication
Before attaching this Privacy Policy to the live site, review and finalize the legal business name formatting, mailing address, privacy contact email, support email, payment processor details, mapping/geocoding provider details, hosting/provider list, analytics or tracking tools actually used, retention periods, minors/youth workflows, and any jurisdiction-specific wording required by counsel.
This document is a detailed business draft for review and revision. It is not a substitute for legal advice.