1. Information We Collect
To provide a secure and functional booking environment, we collect the minimum necessary data from our users:
- Account Information: Your full name and verified phone number are collected when verifying via OTP.
- Booking Data: Details of court reservations, times, fees, and transactions are logged in our database.
- Legal Compliance Logs: When you agree to the digital Liability Waiver during checkout, we log your request IP address and the exact server-side timestamp.
- Technical Logs: IP addresses and standard browser metadata are logged automatically by our servers for safety, DDoS mitigation, and diagnostic purposes.
2. How We Use Your Information
We use your collected personal information strictly to manage facilities and ensure secure operation of bookings:
- To authenticate logins via WhatsApp OTP.
- To dispatch booking confirmations, receipts, wallet credit updates, and closure alerts.
- To process secure checkout payments via PhonePe.
- To verify compliance with our mandatory Liability Waiver using logged IP and timestamp.
- To analyze court utilization patterns and track interface performance using PostHog analytics (no personal data is exposed).
3. Data Sharing & Third-Party Service Integrations
We do not sell, rent, trade, or distribute your personal details to third-party marketers. Your data is shared strictly with secure utility APIs to complete transactions:
- PhonePe Gateway: Booking amounts and transaction references are shared to generate payment links. PhonePe complies with Payment Card Industry Data Security Standards (PCI-DSS) and Indian banking regulations.
- Meta Cloud API (WhatsApp): Phone numbers and session names are transmitted to Meta Cloud servers to deliver automated OTP codes, confirmation receipts, and wallet notifications.
- PostHog: Technical events and booking funnel milestones are analyzed to monitor errors and improve interface speeds.
4. Cookies, Session & Local Storage
We utilize lightweight cookies and local storage tokens to store active booking sessions, authentication tokens, and user credentials locally on your device. These prevent you from having to re-authenticate with OTP on every visit. You can clear cookies or storage via your web browser settings at any time, which will log you out of the platform.
5. Data Security & Retention
All data transferred between your browser and our servers is encrypted using Secure Sockets Layer/Transport Layer Security (SSL/TLS) technology. We store your account and booking data as long as you maintain an active history with us, or until you request its deletion.
6. Your Privacy Rights & Contact
If you wish to review, update, export, or delete your account records (including phone number and booking records) from our system, please contact us at hello@baselinearena.in. We will process and respond to verified requests within 30 business days.