Privacy Policy – Conference Room Gaming

Who we are

In addition to being tabletop gamers and painters and terrain builders, we’re also a group who would like to sell you products that we like to build, play, and paint. Pretty straightforward relationship, and we’re not going to be interested in using your data for anything but supporting that goal.

Overall, the privacy policy of the people running Conference Room Gaming is essentially ‘we don’t want your data!’ We don’t sell it, trade it, hide it, collect it (except in circumstances where we are forced to do so by some external system, and even then the data is kept by that external third party in almost every instance) and above all, we respect it (your data, I mean. It was a long sentence to get here, so maybe the ‘it’ wasn’t clear). We’re all big fans of privacy here, and we’re going to act like it when it comes to your information.

At the moment, we’re still setting up and/or deciding what to do about shipping – but in the future, if you buy something from us and we have to mail it to you, we’re going to need your name and address. Our payment provider handles the money part, and we don’t see, keep, retain, or otherwise engage with your payment details other than a notice that you’ve paid or not. Other than using your name and address to buy a shipping label, we won’t use it for anything.

If we have your email, it’s because you’ve given it to us, and we won’t use it for anything you haven’t agreed to – you don’t automatically get added to a mailing list or whatever. We don’t even have one of those yet. But if we do set one up, we’re going to ask if you want to be on it in advance. Sure, it might be one of those little checkmark jobbies next to a ‘would you like to get emails from us?’ but you’ll be able to opt-in, not be forced to opt-out.

Comments

We typically disable comments on our posts – it isn’t that sort of site; but, in case we forget to do that a time or two, this is the information about how Gravatar (among others) uses the data collected from you:

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.

An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

We don’t expect you’ll upload photos given that we don’t currently have a way to do that, and I don’t think we plan to have a way to do it, but just in case, this is good information to have in general:

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

Where it says ‘we’ and ‘our’ below, it’s talking about WordPress I suspect, because ‘we’, as in the folks at Conference Room Gaming don’t really have a lot of control over what cookies WordPress is asking you to allow. Also, there’s no mechanism for a visitor to post to our site at the moment, so that bit is absolutely just for base-covering.

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

I mean, yeah, we might link to articles and/or articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

This one’s easy – no one. If it were up to me, WordPress wouldn’t keep any data at all. Honestly, I barely want your billing address and we need to use that if you buy something. But we absolutely don’t sell, pass on, or in any way use that data from a ‘Conference Room Gaming’ perspective. I’m not entirely clear what our commerce platform does with it, that’s in their T&Cs that you agree to when you use their payment service, though. Not going to lie: I don’t read those things, and I bet 99% of people agreeing to them don’t either – but I also don’t have the expertise to read one and then be relied upon as a source of capital ‘T’ Truth about what they’re doing with it, either.

How long we retain your data

Again, keep in mind that this sort of activity doesn’t happen and probably won’t ever happen on the site, but just in case:

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information. Given that we don’t intend to have registration for users on this site and any account registration that you’d do would be in relation to a purchasing account, this part probably won’t ever be relevant from a ‘Conference Room Gaming’ perspective – details collected in support of buying something from us would be held by our commerce provider and would be available to you when you move through the checkout process as a link to read what they are going to do and/or not do with that data.

What rights you have over your data

Any account based activity that you’d do via this site would be held by a third party & not us specifically – the logging in/out for purchase history and the like, that’s not something we provide directly. The details on what gets done with that data would be in the T&Cs and/or EULA that you’d be presented from that third party. We can’t delete that any more than we could delete Facebook data on your behalf. I would if I could, believe me.

There is a button in WordPress that says “erase personal data”; if ever you ask us to remove any data we store about you (which I believe to be zero anyway), I will look for your data and if we have any, I will press that button while targeting your data. If WordPress tells me that I can’t delete some stuff, it will probably be the data that we are obliged to keep for administrative, legal, or security purposes.

Where your data is sent

Visitor comments may be checked through an automated spam detection service, if ever we enable comments, which we probably won’t.