π Escape To VR β Security Policy
Last updated: May 6, 2025
At Escape To VR, we take your security and privacy seriously β whether you’re immersed in virtual worlds or just browsing our site. This document outlines how we protect customer data, handle vulnerability disclosures, and maintain the integrity of our digital systems.
π 1. Data Protection
- Encryption: All web traffic is encrypted via HTTPS with industry-standard TLS.
- Payment Security: We never store credit card data. All online transactions are handled via PCI-compliant platforms like Stripe.
- Account Protection: Customer accounts (if applicable) are protected by secure password policies and session timeouts.
- Email Privacy: Your email is only used for communication related to your booking or subscription (you can opt out anytime).
π§ 2. VR System Security
- All in-venue VR systems are connected to a secured local network, segmented from customer Wi-Fi.
- Game servers are updated regularly to ensure the latest patches are applied.
- We never record your play sessions unless you’ve consented to a photo/video session.
π‘οΈ 3. Website & Infrastructure
- WordPress core, plugins, and server software are regularly updated.
- We use firewall and malware scanning tools (like Wordfence) to prevent intrusion.
- Backups are performed daily and securely stored off-site.
π£ 4. Responsible Disclosure
If you believe you’ve found a security vulnerability in our systems or website, please report it responsibly:
- Email: support@escapetovr.com
- Or use our contact form
We greatly appreciate security researchers who follow responsible disclosure guidelines and give us a chance to fix issues before going public.
β 5. Scope of Reporting
We welcome reports on:
- Website vulnerabilities (XSS, CSRF, auth bypass, etc.)
- Server misconfigurations
- Exposed credentials or sensitive data
- API security issues (if applicable)
Out of scope:
- Social engineering
- Physical VR gear tampering
- Bugs with no real security impact
π 6. Recognition
Weβre working on a public Hall of Fame to recognize researchers who help keep our systems safe.
π 7. Updates to This Policy
This page will be updated periodically as we grow and evolve our systems. Please check back for the latest version.