Privacy Policy

Welcome to Park Queue Times. We respect your privacy and are committed to protecting your personal data. This privacy policy explains how we collect, use, and safeguard your information when you use our platform to access theme park queue times, historical data, and related services.

Park Queue Times is the data controller responsible for your personal data. You can contact us at [email protected]. Our privacy contact for data protection queries is available at the same email address.

We collect and process the following types of information:

• Account Information: Email address and password when you create an account
• Profile Data: Your favourite parks, rides, and alert preferences
• Usage Data: Information about how you interact with our platform, including pages visited and features used
• Device Information: Browser type, operating system, and device identifiers
• Payment Information: For Pro subscribers, payment details are processed securely by our payment provider
• IP Address: For security, analytics, and fraud prevention

Your information is used for the following purposes:

• Providing and maintaining our queue time tracking services
• Personalising your experience with favourite parks and customised alerts
• Processing Pro subscription payments and managing your account
• Sending you notifications about queue times when you've set up alerts
• Analysing usage patterns to improve our platform
• Preventing fraud and ensuring platform security
• Communicating important updates about our services

Under UK GDPR, we rely on the following legal bases for processing your personal data:

• Contractual necessity: Providing our services, managing your account, processing payments
• Legitimate interest: Analytics, fraud prevention, platform improvement
• Consent: Marketing communications, non-essential cookies
• Legal obligation: Compliance with laws, responding to legal requests

Queue time data displayed on our platform is collected from publicly available sources and official theme park APIs. We aggregate this data to provide you with real-time and historical wait time information. We are not affiliated with any theme park operators unless explicitly stated.

We use cookies and similar technologies to:

• Keep you signed in to your account
• Remember your preferences (such as dark mode settings)
• Analyse how our platform is used
• Improve our services based on usage patterns

For more details, please see our Cookie Policy.

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, alteration, disclosure, or destruction. Your data is stored on secure servers and access is restricted to authorised personnel only. We use industry-standard encryption for data in transit and at rest.

We retain your account data for as long as your account is active. If you delete your account, we will remove your personal data within 30 days, except where we are required to retain it for legal or regulatory purposes. Anonymised usage data may be retained indefinitely for analytics purposes.

We use the following third-party services:

• Stripe -- for handling Pro subscription payments securely
• Google Analytics -- to understand how our platform is used
• Cloud Hosting -- for reliable and secure data storage

Each third-party service has its own privacy policy governing the use of your information.

Depending on your location, you may have the following rights:

• Access to your personal data
• Correction of inaccurate data
• Deletion of your data
• Data portability
• Objection to processing
• Withdrawal of consent

To exercise these rights, please contact us at [email protected].

Under UK GDPR, you have the right to request a copy of the personal data we hold about you. To make a Data Subject Access Request, please email us at [email protected]. We will respond to your request within one month. In certain circumstances, we may extend this period by a further two months, in which case we will inform you within the first month.

In the event of a personal data breach that poses a risk to your rights and freedoms, we will notify the Information Commissioner's Office (ICO) within 72 hours of becoming aware of the breach. If the breach is likely to result in a high risk to you, we will also notify you without undue delay, providing details of the breach and the measures taken to address it.

Our services are not directed to children under 13. We apply the age of digital consent as set under UK GDPR at 13 years of age (for England, Wales, and Scotland). If you are under 13, please obtain parental consent before using our services or creating an account. We do not knowingly collect personal information from children under 13 without verifiable parental consent.

Your data may be transferred to and processed in countries outside the United Kingdom, including within the European Economic Area (EEA). Where we transfer data to countries that have not been deemed to provide an adequate level of data protection, we rely on Standard Contractual Clauses (SCCs) approved by the UK Information Commissioner to ensure your data is protected. Our hosting and processing infrastructure is located in the UK and EU.

We may update this privacy policy from time to time. We will notify you of any significant changes by posting the new policy on this page with an updated revision date. We encourage you to review this policy periodically.

If you have any questions about this privacy policy or our data practices, please contact us at [email protected].