CaliberControl — Privacy Policy
Effective Date: [EFFECTIVE DATE]
Max Dev Contracting LLC, a Utah S-Corporation ("CaliberControl," "we," "us," or "our"), operates the CaliberControl platform at https://calibercontrol.com (the "Platform"). This Privacy Policy explains how we collect, use, disclose, and protect information from shooting range operators ("Range Operators") and individuals who book lanes, sign waivers, or otherwise use the Platform ("End Users"). Together, Range Operators and End Users are referred to as "users" or "you."
By using the Platform, you consent to the practices described in this Privacy Policy.
1. Information We Collect
1.1. Information from Range Operators
When you subscribe to CaliberControl as a Range Operator, we collect:
- Business Information: Business name, address, phone number, website, and tax identification information;
- Account Information: Names, email addresses, and login credentials for authorized employees and administrators;
- Payment and Billing Information: Payment method details processed and stored by Stripe (our payment processor). We do not store full credit card numbers on our servers; and
- Usage Data: Information about how you interact with the Platform, including features accessed, settings configured, and administrative actions taken.
1.2. Information from End Users
When you use the Platform as an End User, we collect:
- Account Information: Name, email address, and phone number;
- Payment Information: Payment method details processed through Stripe on behalf of the Range Operator. We do not store full credit card numbers on our servers;
- Reservation Data: Booking dates, times, lane selections, party size, and related reservation details;
- Digital Waiver Data: Your name, signature, date of signing, and the content of signed waivers as configured by the Range Operator;
- Location Data: When you sign a digital waiver, we collect your approximate geographic location at the time of signing for verification purposes. Location data is collected only during the waiver signing process and is not continuously tracked; and
- Usage Data: Information about how you interact with the Platform, including pages visited, actions taken, and device information.
1.3. Information Collected Automatically
For all users, we automatically collect:
- Device Information: Browser type, operating system, device type, and unique device identifiers;
- Log Data: IP address, access times, pages viewed, referring URL, and actions taken on the Platform;
- Cookies and Similar Technologies: As described in Section 7 below.
1.4. Information We Do Not Collect
We do not collect biometric data (e.g., fingerprints, facial recognition data). Digital waiver signatures are treated as electronic signatures, not biometric identifiers.
2. How We Use Your Information
We use the information we collect for the following purposes:
2.1. Providing the Platform: To operate, maintain, and deliver the features and services of the Platform, including processing bookings, payments, and digital waivers;
2.2. Account Management: To create and manage your account, authenticate your identity, and communicate with you about your account;
2.3. Payment Processing: To process subscription fees (Range Operators) and booking payments (End Users) through Stripe;
2.4. Waiver Verification: To record and verify digital waiver signatures, including the use of location data at the time of signing;
2.5. Communications: To send transactional emails (booking confirmations, receipts, account notifications) and, with your consent, marketing communications;
2.6. Platform Improvement: To analyze usage patterns, diagnose technical issues, and improve the Platform's features and performance;
2.7. Legal Compliance: To comply with applicable laws, regulations, legal processes, or enforceable governmental requests;
2.8. Safety and Security: To detect, prevent, and address fraud, security breaches, and technical issues; and
2.9. Dispute Resolution: To resolve disputes and enforce our agreements.
3. How We Share Your Information
We do not sell your personal information. We share information only in the following circumstances:
3.1. With Range Operators. When you make a booking or sign a waiver as an End User, the relevant Range Operator receives your reservation data, waiver information, and contact details necessary to provide their services.
3.2. Payment Processing (Stripe). Payment information is transmitted to and processed by Stripe, Inc. Stripe's collection and use of your information is governed by its own privacy policy at https://stripe.com/privacy.
3.3. Analytics Providers. We may use third-party analytics services (such as Google Analytics, Mixpanel, or similar tools) to understand Platform usage. These services may collect information about your use of the Platform through cookies and similar technologies.
3.4. Hosting and Infrastructure. We use third-party cloud hosting providers to store and process data. These providers are contractually obligated to protect your information.
3.5. Legal Requirements. We may disclose information if required by law, regulation, legal process, or governmental request, or if we believe disclosure is necessary to protect our rights, your safety, or the safety of others.
3.6. Business Transfers. In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction. We will notify you of any such change via email or prominent notice on the Platform.
3.7. With Your Consent. We may share information with third parties when you have given us explicit consent to do so.
4. Data Retention
4.1. Range Operator Data. We retain Range Operator account and business data for as long as your subscription is active and for a commercially reasonable period thereafter (typically ninety (90) days) to facilitate data export. After this period, data is deleted from active systems and from backups within ninety (90) additional days.
4.2. End User Data. We retain End User account and reservation data for as long as your account is active or as needed to provide services. If you request account deletion, we will delete your personal information from active systems within thirty (30) days, subject to Section 4.4.
4.3. Waiver Data. Digital waiver records are retained on behalf of Range Operators in accordance with their instructions and applicable record retention laws. Range Operators determine the retention period for waiver data.
4.4. Legal Obligations. We may retain certain information as required by law, for legitimate business purposes (such as resolving disputes or enforcing agreements), or as needed for our backup and disaster recovery processes.
5. Data Security
5.1. We implement commercially reasonable administrative, technical, and physical safeguards designed to protect your information, including:
- Encryption of data in transit (TLS/SSL) and at rest;
- Access controls limiting employee access to personal information on a need-to-know basis;
- Regular security assessments and monitoring; and
- Secure payment processing through Stripe's PCI-compliant infrastructure.
5.2. While we take reasonable measures to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security.
5.3. If we become aware of a security breach that affects your personal information, we will notify you and any applicable regulatory authorities as required by law.
6. Your Rights and Choices
6.1. Access and Correction. You may access and update your account information at any time by logging into your account. For additional requests, contact us at privacy@calibercontrol.com.
6.2. Account Deletion. You may request deletion of your account and associated personal data by contacting us at privacy@calibercontrol.com. We will process your request within thirty (30) days, subject to our retention obligations described in Section 4.
6.3. Data Export. Range Operators may request an export of their data as described in our Terms of Service.
6.4. Marketing Communications. You may opt out of marketing emails by clicking the "unsubscribe" link in any marketing message or by contacting us. Transactional communications (booking confirmations, account alerts) are not optional while your account is active.
6.5. Location Data. Location data is collected only during the waiver signing process. You may deny location access through your device or browser settings, though this may prevent you from completing a digital waiver that requires location verification.
6.6. Do Not Track. The Platform does not currently respond to "Do Not Track" browser signals. We continue to monitor industry standards regarding Do Not Track.
7. Cookies and Tracking Technologies
7.1. What We Use. We use cookies and similar technologies (local storage, pixels) for the following purposes:
- Essential Cookies: Required for the Platform to function (authentication, session management, security);
- Analytics Cookies: Help us understand how users interact with the Platform, which pages are visited most often, and where errors occur; and
- Preference Cookies: Remember your settings and preferences to enhance your experience.
7.2. Managing Cookies. You can control cookies through your browser settings. Disabling essential cookies may impair Platform functionality.
7.3. Third-Party Cookies. Our analytics providers may set their own cookies. We do not control these cookies and recommend reviewing the privacy policies of our analytics providers.
8. Children's Privacy
8.1. The Platform is not directed to children under the age of thirteen (13). We do not knowingly collect personal information from children under 13 in compliance with the Children's Online Privacy Protection Act ("COPPA").
8.2. If we become aware that we have collected personal information from a child under 13 without parental consent, we will promptly delete that information.
8.3. If you believe a child under 13 has provided us with personal information, please contact us at privacy@calibercontrol.com.
8.4. Minors between 13 and 18 may use the Platform only with the involvement and consent of a parent or legal guardian.
9. California Residents — Your Privacy Rights (CCPA/CPRA)
If you are a California resident, you have the following rights under the California Consumer Privacy Act ("CCPA") and the California Privacy Rights Act ("CPRA"):
9.1. Right to Know. You have the right to request that we disclose the categories and specific pieces of personal information we have collected about you, the categories of sources, the business purposes for collection, and the categories of third parties with whom we share it.
9.2. Right to Delete. You have the right to request that we delete the personal information we have collected about you, subject to certain exceptions.
9.3. Right to Correct. You have the right to request that we correct inaccurate personal information we maintain about you.
9.4. Right to Opt Out of Sale/Sharing. We do not sell personal information, and we do not share personal information for cross-context behavioral advertising.
9.5. Non-Discrimination. We will not discriminate against you for exercising any of your CCPA/CPRA rights.
9.6. How to Submit a Request. To exercise any of these rights, contact us at privacy@calibercontrol.com. We will verify your identity before processing your request and respond within forty-five (45) days.
9.7. Authorized Agents. You may designate an authorized agent to submit requests on your behalf, provided you verify the agent's authority.
Categories of Personal Information Collected (CCPA Disclosure)
| Category | Examples | Collected |
|---|---|---|
| Identifiers | Name, email, phone, IP address | Yes |
| Financial Information | Payment details (via Stripe) | Yes |
| Commercial Information | Booking and transaction records | Yes |
| Internet/Network Activity | Usage data, log data, cookies | Yes |
| Geolocation Data | Approximate location during waiver signing | Yes |
| Professional/Employment | Business info (Range Operators only) | Yes |
| Biometric Information | — | No |
10. Users Outside the United States
10.1. The Platform is operated from the United States. If you access the Platform from outside the United States, your information will be transferred to, stored, and processed in the United States.
10.2. By using the Platform, you consent to the transfer of your information to the United States, which may not provide the same level of data protection as your home jurisdiction.
11. Third-Party Links and Services
11.1. The Platform may contain links to third-party websites or services. This Privacy Policy does not apply to third-party sites. We encourage you to review the privacy policies of any third-party services you access through the Platform.
12. Changes to This Privacy Policy
12.1. We may update this Privacy Policy from time to time. When we make material changes, we will update the "Effective Date" at the top and notify you through the Platform or by email.
12.2. Your continued use of the Platform after changes take effect constitutes your acceptance of the updated Privacy Policy.
13. Governing Law
13.1. This Privacy Policy shall be governed by and construed in accordance with the laws of the State of Utah, without regard to its conflict of laws principles.
14. Contact Us
If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
Max Dev Contracting LLC
Email: privacy@calibercontrol.com
Website: https://calibercontrol.com
For general support inquiries: support@calibercontrol.com