Privacy Policy
Privacy Policy
APS Groups Private Limited Last Updated: [Insert Date]
This Privacy Policy (“Policy”) explains how APS Groups Private Limited, a company incorporated under the Companies Act, 2013, having its registered office at Dehradun, Uttarakhand, India (“Company”, “We”, “Us”, “Our”), collects, uses, stores, processes, discloses, and protects personal data through its website and platform currently accessible as devbhoomi-darshan (name subject to change) (the “Platform”).
This Policy is framed in compliance with:
- Information Technology Act, 2000
- Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
- Consumer Protection Act, 2019 and E-Commerce Rules, 2020
- Digital Personal Data Protection Act, 2023 (“DPDP Act”), to the extent applicable
By accessing or using the Platform, you confirm that you have read, understood, and agreed to this Privacy Policy. If you do not agree, you must not use the Platform.
Quick Overview (Plain Language Summary)
We collect only the information needed to run our travel and service platform, process bookings, onboard vendors, make payments, and comply with Indian law. We do not sell your data. We protect your data using reasonable security measures and share it only with trusted partners or authorities when legally required.
1. Key Definitions
- Personal Data: Any data about an individual who can be identified directly or indirectly from that data.
- Sensitive Personal Data: Personal data classified as sensitive under applicable Indian law.
- User: Travelers, customers, vendors, agencies, guides, or any individual accessing or using the Platform.
2. Information We Collect
We may collect the following categories of data:
2.1 Personal and Identity Information
- Name
- Email address
- Phone number
- Residential or correspondence address
- Government-issued identification (for KYC, verification, or legal compliance, where required)
2.2 Account and Usage Information
- Account credentials
- Booking history and preferences
- Communications with the Platform
2.3 Transaction Information
- Booking details
- Payment status and transaction identifiers
- Refund and cancellation history
We do not store full debit card numbers, credit card numbers, CVV, or net-banking credentials. Payments are processed through regulated third-party payment gateways.
2.4 Vendor and Service Provider Data
- Business name and details
- Licenses, permits, registrations, and certifications
- Bank account details for settlements and payouts
2.5 Technical and Log Information
- IP address
- Device identifiers
- Browser type and operating system
- Date, time, and usage logs
3. Why We Collect and Use Your Data
We collect and process personal data only for lawful and necessary purposes, including:
- Creating and managing user accounts
- Facilitating bookings and transactions
- Vendor onboarding, verification, and compliance
- Customer support and dispute resolution
- Fraud detection, prevention, and security monitoring
- Compliance with legal, regulatory, and contractual obligations
- Improving Platform features, performance, and user experience
4. Legal Basis for Processing
We process personal data based on one or more of the following lawful grounds:
- Your consent (where required)
- Performance of a contract (for example, to complete a booking)
- Compliance with legal obligations
- Legitimate business interests, where permitted under law
Where consent is required, it is obtained explicitly at the time of data collection or booking.
5. How We Share Your Data
We may share your personal data only when necessary and only with:
- Vendors and service providers to fulfill bookings
- Payment gateways, banks, and financial institutions
- Technology, analytics, and infrastructure service providers
- Government authorities, law enforcement agencies, or courts when legally required
We do not sell, rent, or trade your personal data.
6. Data Storage and Security
We use reasonable technical and organizational security measures consistent with industry standards to protect personal data against:
- Unauthorized access
- Alteration
- Disclosure
- Destruction
Please note: No electronic transmission or storage system is completely secure. By using the Platform, you acknowledge and accept the inherent risks of internet-based systems.
7. Data Retention
We retain personal data only for as long as necessary to:
- Provide our services and fulfill bookings
- Meet legal, regulatory, accounting, or audit requirements
- Enforce contractual rights or resolve disputes
Data may be retained even after account closure if required by law.
8. Your Rights as a User
Subject to applicable law, you may have the right to:
- Access your personal data
- Request correction of inaccurate or incomplete data
- Request deletion of personal data (subject to legal and regulatory requirements)
- Withdraw consent, where processing is based on consent
Requests may be limited or refused where data retention or processing is required by law or for legitimate purposes.
9. Cookies and Tracking Technologies
We may use cookies and similar technologies to:
- Improve user experience
- Analyze usage patterns
- Enhance security
You can manage or disable cookies through your browser settings. Some features of the Platform may not work properly if cookies are disabled.
10. Third-Party Links
The Platform may contain links to third-party websites or services. We are not responsible for:
- Their privacy practices
- Their content
- Their data handling policies
Accessing third-party platforms is at your own risk.
11. Children’s Privacy
The Platform is not intended for individuals under 18 years of age.
We do not knowingly collect personal data from minors. If such data is identified, it will be deleted as soon as we become aware.
12. Limitation of Liability
To the maximum extent permitted by law, the Company shall not be liable for:
- Unauthorized access beyond reasonable control
- Acts or omissions of third-party service providers
- Data loss caused by force majeure events
Nothing in this Policy limits any liability that cannot be excluded under applicable law.
13. Changes to This Policy
We may update this Privacy Policy from time to time. The latest version will always be available on the Platform.
Your continued use of the Platform after changes are posted means you accept the revised Policy.
14. Grievance Redressal
In accordance with applicable Indian law, we have appointed or will appoint a Grievance Redressal Officer.
Grievance Redressal Officer: To be appointed Email: grievances@[yourdomain].com Address: Dehradun, Uttarakhand, India
- Acknowledgement within 48 hours
- Resolution within 30 days
15. Governing Law and Jurisdiction
This Privacy Policy shall be governed by and construed in accordance with the laws of India.
This version maintains full legal coverage, aligns with the DPDP Act, and is structured for easier reading without removing or weakening any legal protections.