1. Information We Collect

We may collect information about you in a variety of ways. The information we may collect includes:

1.1 Personal Information

We collect personal information that you voluntarily provide to us when you:

• Make a reservation or booking
• Purchase products or services
• Subscribe to our newsletter or mailing list
• Contact us via email, phone, or contact forms
• Participate in surveys, promotions, or contests
• Create an account on our website

This personal information may include:

• Name and contact information (email address, phone number, mailing address)
• Demographic information (age, date of birth)
• Payment information (credit card details, billing address)
• Account credentials (username, password)
• Communication preferences
• Any other information you choose to provide

1.2 Payment Information

When you make a purchase or reservation, we collect payment information through our third-party payment processor, Square. We do not store complete credit card information on our servers. Square handles the secure processing of payment data in compliance with PCI-DSS standards.

1.3 Usage Data

We automatically collect certain information when you visit, use, or navigate our website. This information may include:

• IP address and device identifiers
• Browser type and version
• Operating system
• Pages viewed and time spent on pages
• Referring/exit pages and URLs
• Date and time of visits
• Clickstream data and navigation paths

1.4 Cookies and Similar Technologies

We use cookies, web beacons, and similar tracking technologies to collect information about your browsing activities. See Section 6 for more details.

1.5 Social Media Information

We may collect information from your interactions with our social media pages on Facebook, Instagram, and TikTok, including likes, comments, shares, and messages.

2. How We Collect Information

2.1 Direct Collection

We collect information directly from you when you:

• Fill out forms on our website or at our physical location
• Communicate with us via email, phone, or in person
• Make reservations or purchases
• Subscribe to our communications

2.2 Automated Collection

We automatically collect certain information through:

• Google Analytics: We use Google Analytics to understand how visitors interact with our website
• Cookies: Small data files stored on your device
• Web Beacons: Electronic images used to track page visits
• Log Files: Server logs that record website activity

2.3 Third-Party Sources

We may receive information about you from third-party sources, including:

• Social media platforms (Facebook, Instagram, TikTok)
• Payment processors (Square)
• Analytics providers (Google Analytics)
• Marketing partners and affiliates

3. How We Use Your Information

We use the information we collect for various purposes, including:

3.1 Service Delivery

• Process and fulfill reservations and orders
• Manage customer accounts
• Process payments and prevent fraud
• Provide customer support and respond to inquiries
• Send confirmations, receipts, and service-related communications

3.2 Business Operations

• Improve and optimize our website and services
• Analyze usage patterns and trends
• Conduct research and analytics
• Develop new features and services
• Monitor and analyze the effectiveness of our marketing campaigns

3.3 Marketing and Communications

• Send promotional materials, newsletters, and special offers (with your consent)
• Personalize your experience with tailored content
• Conduct surveys, contests, and promotions
• Engage with you on social media

3.4 Legal and Security

• Comply with legal obligations and regulations
• Protect our rights, property, and safety
• Prevent fraud, security breaches, and illegal activities
• Enforce our terms of service and policies
• Respond to legal requests and court orders

4. Disclosure of Your Information

We may share your information in the following circumstances:

4.1 Service Providers

We share information with third-party service providers who perform services on our behalf, including:

• Payment processing (Square)
• Website hosting and maintenance
• Data analytics (Google Analytics)
• Email and communication services
• Marketing and advertising services

4.2 Business Transfers

In the event of a merger, acquisition, reorganization, sale of assets, or bankruptcy, your information may be transferred to the acquiring entity.

4.3 Legal Requirements

We may disclose your information when required by law, court order, or government request, or to:

• Comply with legal processes
• Protect our rights and property
• Prevent illegal activities or fraud
• Protect the safety of our customers and employees

4.4 With Your Consent

We may share your information for other purposes with your explicit consent.

5. Third-Party Services

We use the following third-party services that may collect and process your information:

Note: These third-party services have their own privacy policies and data practices. We recommend reviewing their policies to understand how they handle your information.

6. Cookies and Tracking Technologies

6.1 What Are Cookies?

Cookies are small text files stored on your device when you visit our website. They help us provide a better user experience and analyze website traffic.

6.2 Types of Cookies We Use

• Essential Cookies: Necessary for the website to function properly (e.g., session management, security)
• Analytics Cookies: Help us understand how visitors use our website (Google Analytics)
• Functional Cookies: Remember your preferences and settings
• Marketing Cookies: Track your browsing to display relevant advertisements

6.3 Managing Cookies

You can control and manage cookies through your browser settings. Most browsers allow you to:

• View and delete cookies
• Block third-party cookies
• Block cookies from specific websites
• Block all cookies
• Delete all cookies when you close your browser

Note: Disabling cookies may affect website functionality and your user experience.

6.4 Other Tracking Technologies

We may also use:

• Web Beacons: Electronic images that track page views and email opens
• Pixels: Tracking codes used for analytics and advertising
• Local Storage: Browser storage for application data

7. Data Security

We implement appropriate technical and organizational security measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction.

7.1 Security Measures

• Encryption: We use SSL/TLS encryption for data transmission
• Secure Servers: Our servers are protected by firewalls and security protocols
• Access Controls: Limited access to personal data on a need-to-know basis
• Payment Security: All payment processing is handled by PCI-DSS compliant providers (Square)
• Regular Security Audits: We regularly review and update our security practices
• Employee Training: Our staff is trained on data protection and privacy practices

7.2 Data Breach Notification

In the event of a data breach that compromises your personal information, we will notify affected individuals in accordance with applicable laws and regulations. We will provide information about:

• The nature of the breach
• The types of information affected
• Steps we are taking to address the breach
• Recommended actions you can take to protect yourself

8. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

8.1 Retention Periods

• Account Information: Retained while your account is active and for a reasonable period thereafter
• Transaction Records: Retained for accounting and tax purposes (typically 7 years)
• Marketing Communications: Retained until you unsubscribe or request deletion
• Website Analytics: Aggregate data retained indefinitely; individual data typically 26 months (Google Analytics default)
• Legal Compliance: Certain data may be retained longer to comply with legal obligations

8.2 Deletion

When personal information is no longer needed, we will securely delete or anonymize it in accordance with our data retention policies and applicable laws.

9. Your Privacy Rights

Depending on your location, you may have certain rights regarding your personal information:

9.1 Access and Portability

You have the right to request access to the personal information we hold about you and to receive a copy of your data in a structured, commonly used, and machine-readable format.

9.2 Correction

You have the right to request correction of inaccurate or incomplete personal information.

9.3 Deletion (Right to be Forgotten)

You have the right to request deletion of your personal information, subject to certain exceptions (e.g., legal obligations, legitimate business purposes).

9.4 Objection and Restriction

You have the right to object to or restrict certain processing of your personal information, including:

• Marketing communications (you can opt out at any time)
• Processing based on legitimate interests
• Automated decision-making and profiling

9.5 Withdrawal of Consent

Where we process your information based on consent, you have the right to withdraw that consent at any time.

9.6 Exercising Your Rights

To exercise any of these rights, please contact us at:

• Email: [email protected]
• Phone: (812) 603-2097
• Mail: 4210 W. Johnathan Moore Pike, Columbus, Indiana

We will respond to your request within a reasonable timeframe and in accordance with applicable laws (typically within 30 days).

10. Children's Privacy

Our services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately.

If we become aware that we have collected personal information from a child under 13 without parental consent, we will take steps to delete that information as soon as possible.

11. California Privacy Rights (CCPA)

If you are a California resident, you have additional rights under the California Consumer Privacy Act (CCPA):

11.1 Right to Know

You have the right to request information about:

• Categories of personal information we collect
• Categories of sources from which we collect information
• Our business or commercial purposes for collecting information
• Categories of third parties with whom we share information
• Specific pieces of personal information we have collected about you

11.2 Right to Delete

You have the right to request deletion of your personal information, subject to certain exceptions.

11.3 Right to Opt-Out of Sale

We do not sell your personal information. If our practices change, we will update this policy and provide you with opt-out options.

11.4 Right to Non-Discrimination

You have the right not to receive discriminatory treatment for exercising your CCPA privacy rights.

11.5 Authorized Agent

You may designate an authorized agent to make a request on your behalf. The authorized agent must provide written authorization or a power of attorney.

11.6 Verification Process

To protect your privacy, we will verify your identity before responding to CCPA requests. This may involve:

• Matching information you provide with information we have on file
• Requesting additional documentation
• Using a two-step verification process

12. International Data Transfers

Columbus Cat Cafe is based in the United States. If you access our services from outside the United States, please be aware that your information may be transferred to, stored, and processed in the United States.

12.1 GDPR Compliance (for EU Visitors)

If you are located in the European Economic Area (EEA), your personal data may be transferred to the United States, which may not have the same level of data protection as your country. We take appropriate measures to ensure your data is protected, including:

• Implementing appropriate safeguards for international data transfers
• Processing data only for specified, legitimate purposes
• Maintaining data accuracy and integrity
• Respecting your rights under GDPR

12.2 Legal Basis for Processing (GDPR)

We process personal data under the following legal bases:

• Consent: You have given explicit consent for processing
• Contract: Processing is necessary to fulfill a contract with you
• Legal Obligation: Processing is required to comply with legal obligations
• Legitimate Interests: Processing is necessary for our legitimate business interests

13. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

13.1 Notification of Changes

When we make material changes to this Privacy Policy, we will:

• Update the "Last Updated" date at the top of this policy
• Post the updated policy on our website
• Notify you via email (if you have provided an email address)
• Display a prominent notice on our website

13.2 Your Acceptance

Your continued use of our services after any changes to this Privacy Policy constitutes your acceptance of the updated policy. We encourage you to review this policy periodically.

14. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our privacy practices, please contact us:

We will respond to your inquiry as soon as possible, typically within 30 days.