Purpose

PilgrimPathways Tourism Pvt. Ltd. (the “Company”) takes the Company’s customers (“Customer(s)”) privacy very seriously and respects its Customer’s privacy and is committed to the protection of its Customer’s privacy. This privacy policy (“Privacy Policy”) describes the types of information the Company may collect from the Customer and others, and the practices it uses for using, maintaining, protecting and disclosing such information.

The Company may collect personal information from the Customer through its website, bookmydarshan.in and any other dedicated apps on iOS and Android (the “Website(s)”) for the Company’s business operations to provide diverse spiritual offerings for a seamless Pilgrimage (“Services”). The Company may also collect information about the Customer from other sources when the Company provides its Services. This Privacy Policy does not apply to information collected by any external websites that may be accessible from or on the Website.

Please read and review this Privacy Policy carefully to understand the Company’s policies, practices and guidelines regarding the Customer’s information and how the Company treats such information. If the Customer does not agree with the Company’s policies and practices, the Customer has the option to refrain from using the Services. By accessing or using the Website, the Customer agrees to this Privacy Policy. This Privacy Policy may change from time to time. The Company will notify the Customer of any changes by email or text messages or by providing a notice on the Website. The Customer’s continued use of the Services after the Company makes such changes shall be deemed to be an acceptance of those changes, so the Company urges the Customer to kindly check the Privacy Policy periodically for updates.

The Company collects the personal information as per statutory requirements under the applicable laws of India and for the purposes of its commercial operations, business and Services provided.

Principles of Data Protection

The Company complies with the below mentioned principles:

• Data should be obtained for specific and lawful purposes;
• Data should be processed fairly and lawfully only for the specific purpose;
• Data should be adequate, relevant and not excessive in relation to the purpose for which it is held;
• Data should be accurate and, where necessary, kept up to date;
• Data should be kept until the Company receives a request for deletion of such data from the Customer and the Company may keep / retain any customer data as required legally for a minimum period of six (6) months;
• Data should be processed in accordance with the rights of data subjects;
• Data should be securely maintained to avoid loss or destruction; and
• Data should not be shared / transferred to a place where there is no / inadequate level of protection.

Information collected directly from the Customer

To avail / use the services of the Website, the Customer may be asked to provide his / her personal information which may include his / her first name, surname, age, government ID’s, email address, bank account details and telephone number. The Customer’s travel plans including the destination, travel dates and any other special preferences during the booking process will also be collected by the Company. When booking for additional travelers is made on the Website via the Customer’s registered account, the Customer will be required to confirm that each of these travelers has given their consent to the Customer to share their information with the Company. Additional optional information may be collected from the Customer by the Company. Such additional information may include without limitation credit or debit card information or other UPI payment information, communication data including emails, messages and any other details as may be reasonably requested by the Company.

Automatically Collected Information

When the Customer accesses the Service or opens one of the Company’s emails, the Company may automatically record certain information from the Customer’s system by using cookies and other types of tracking technologies. This “automatically collected” information may include Internet Protocol address (“IP Address”), a unique user ID, device type, device identifiers, browser types and language, referring and exit pages, platform type, version of software installed, system type, the content and pages that the Customer’s access on the Website, the number of clicks, the amount of time spent on pages, the dates and times on which the Customer visited the Website, and other similar information.

Usage of Information

The personal information the Customer provides to the Company may be used for various purposes associated with the Company’s business operations and Services (in accordance with the Digital Personal Data Protection Bill, 2022, and Information Technology Act, 2000) which include without limitation:

• Marketing and communications;
• Research and analytics;
• Monitoring and recording communications;
• Dealing with requests, enquiries or complaints and other customer care related activities;
• Carrying out market analysis and marketing Services generally;
• Contacting the Customer about the Company’s Services;
• Providing the Customer with advertising, promotions and / or marketing material;
• Providing the Customer with booking confirmations through SMS, WhatsApp or any alternative messaging service;
• Sending any updates to the Customer’s bookings, tours or trips; and
• Customizing the content on the Website.

Sharing of Customer information

The Company may share the Customer’s information with:

• Law enforcement agencies to prevent unlawful activity;
• Courts, tribunals or judicial bodies to enforce or apply the Company’s terms and conditions and other agreements;
• Governmental bodies to respond to any government or regulatory request;
• Third parties without consent unless it is used for a legitimate purpose such as marketing;
• Other businesses and third parties (such as the Company’s service providers, IT hosting and maintenance providers and other contractors) which the Company engages to help run the Company’s business, for example to provide Services to the Customer;
• Analytics and search engine providers that assist the Company in the improvement and optimization of the Website;
• Such other entities or bodies as may be required by law; and
• Other parties to which the Customer authorizes the Company to release information to.

Where the Company stores Customer data

The Company uses industry standard technology to store the personal data that the Company collects from the Customer on secure servers within India.

Marketing

The Company may wish to send the Customer information about new services, offers, and packages which may be interesting to the Customer. Such information could be sent by post, email, text message or telephone.

Cookies and Similar Technologies

The Company along with its vendors and service providers uses cookies and other similar technologies (e.g., web beacons, flash cookies, etc.) (“Cookies”) to automatically collect information, measure and analyze which web pages the Customer clicks on and how the Customer uses the Platform, to enhance the Customer’s experience using the Website, improve the Company’s Services and provide the Customer’s with targeted advertising on the Website and elsewhere across the Customer’s different devices. Cookies are small files which, when placed on the Customer’s device, enables the Website to provide certain features and functionality. Web beacons are very small images or small pieces of data embedded in images, also known as “pixel tags” or “clear GIFs,” that can recognize Cookies, the time and date a page is viewed, a description of the page where the pixel tag is placed, and similar information from the Customer’s computer or device. By using the Website, the Customer consents to the Company’s use of Cookies.

Additionally, the Company allows its business partners, advertising networks, and other advertising vendors and service providers (including analytics vendors and service providers) to collect information about the Customer’s online activities through Cookies. The Company links the Customer’s contact or subscriber information with the Customer’s interactions and activity on the Website across all the Customer’s devices, using the Customer’s email or other log in or device information. These third parties may utilize this information to display advertisements on the Website and other online platforms based on the Customer’s interests, preferences, and characteristics. The Company shall not be responsible for the privacy practices of these third parties, and the information practices of these third parties are not covered by this Privacy Policy.

The Customer may be able to refuse or disable Cookies by adjusting the Customer’s browser settings. Because each browser is different, please consult the instructions provided by the Customer’s browser. Please note that the Customer may need to take additional steps to refuse or disable certain types of Cookies. For example, due to differences in how browsers and mobile apps function, Customer may need to take different steps to opt out of Cookies used for targeted advertising in a browser and to opt out of targeted advertising for a mobile application, which the Customer may control through the Customer’s device settings or mobile app permissions. In addition, Customer’s opt out selection is specific to the particular browser or device that the Customer is using when the Customer opts out, so the Customer may need to opt out separately for each browser or device. If the Customer chooses to refuse, disable, or delete Cookies, some of the functionality of the Website may no longer be available to the Customer.

Consequence of the Company’s use of the Customer’s personal information

The consequences of using Customer’s personal information involve including but not limited to recommending changes to the Website or Services to better suit the Customer’s personal needs.

Keeping the Customer’s information secure

The Company has appropriate security measures in place on the Website and electronic devices to prevent personal information from being accidentally lost, used or accessed in an unauthorized way. Access will be limited to those who have a genuine business interest and / or a need to know and will only process Customer’s information in an authorized manner and they will be subject to a duty of confidentiality.

The Company has also established protocols to deal with any suspected data security breach, the Company shall notify Customer and any applicable regulator of a suspected data security breach, as required by law. While the Company strives to take all reasonable measures to safeguard Customer’s personal data, it is important to acknowledge that the internet is not entirely secure; therefore, security of personal data cannot be guaranteed.

The Company does not store any banking or payment information relating to credit card or debit card details as they are securely handled by the Company’s payment processor, NTT Data (Atom). The Customer’s payment information is encrypted and protected during the transaction.

Governing Law

This Privacy Policy and the Company’s legal obligations hereunder are subject to the laws of India, regardless of Customer’s location. The Customer hereby consents to the exclusive jurisdiction of and venue in the courts located in Hyderabad in all disputes arising out of or relating to the Customer’s use of the Website or the Services.

If the Customer finds any discrepancies or have any grievances in relation to the processing of personal information under this Policy, please contact the Company’s Grievance Team by via email - [email protected]