Security & trust
Your venue’s data deserves real care.
You’re trusting us with payments, guardian contacts, and the records of children who visit your venue. Here’s exactly how we protect them.
Card payments run through Stripe, a PCI-DSS Level 1 provider. Card numbers never touch our servers — we store payment references, not card data.
Every connection is TLS-encrypted, and sensitive data — including connection strings and secrets — is encrypted at rest.
Each venue gets its own isolated database. Your guests, sales, and members are never co-mingled with another venue’s.
Every report exports to CSV, and your data is yours to take with you. No hostage situations, no export fees.
A play venue handles minors’ information and guardian details. We collect only what the front desk needs to operate, and treat it with care.
Databases are backed up nightly, with a snapshot taken before every change — because losing a guest’s waiver history is not an option.
A note on honesty
We publish what we actually do.
Security pages are easy to dress up. We’d rather be straight with you: Omni-Play is a young platform built alongside a real venue, and we hold ourselves to the standards above today. As we add formal certifications and a public status page, we’ll list them here — dated, not decorated. Questions a security review should ask? Email us and we’ll answer plainly.
Book a demo
See it run your front desk — and grow your business.
Book a 20-minute demo and we'll walk your venue's busiest day, start to close.