Privacy Policy
Hotel Heavens our is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose and safeguard your personal information when you visit our website Hotel Heavens (“Website”) or use any of our services.
By accessing our Website or providing your information, you agree to this Privacy Policy.
1. Information We Collect
We may collect the following types of information:
a. Personal Information
-
Full name
-
Email address
-
Phone number
-
Postal address
-
Government ID (Aadhaar, Passport, etc. – only if provided during check-in/reservations)
-
Payment details (processed securely via third-party payment gateways; we do not store card details)
b. Booking & Stay Information
-
Check-in and check-out dates
-
Room preferences
-
Guest count
-
Special requests
c. Automatically Collected Information
When you browse our Website:
-
IP address
-
Browser type
-
Device details
-
Cookies and usage data
-
Referring URLs and pages visited
d. Sensitive Personal Data (SPDI)
Collected only when required:
-
Government ID
-
Financial information (via secure payment gateway)
All SPDI is handled as per the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011.
2. How We Use Your Information
We use your information for:
-
Processing bookings and payments
-
Confirming reservations and sending updates
-
Providing customer support
-
Improving our hotel services and website experience
-
Maintaining security and preventing fraudulent activity
-
Communicating offers, promotions, and hotel news (only with your consent)
-
Complying with legal obligations under Indian law
3. Legal Basis for Processing (Under DPDP Act & IT Rules)
We process your data on the basis of:
-
Consent (for marketing, cookies, or optional data)
-
Contractual necessity (processing booking payments & reservations)
-
Legal compliance (police verification, government records)
-
Legitimate interests (improving service quality and website performance)
4. How We Share Your Information
We do not sell your personal data.
We may share information only with:
-
Trusted service providers, such as:
-
Payment gateways
-
Booking & reservation systems
-
Website hosting providers
-
Email/SMS communication platforms
-
-
Government authorities, when required by law (e.g., police verification, tax compliance)
All third-party partners follow industry-standard data protection measures.
5. Data Storage & Security
We take reasonable technical and organizational measures to secure your data, including:
-
SSL encryption
-
Secure payment processing
-
Restricted access controls
-
Regular security audits
-
Compliance with ISO/IEC 27001 (where applicable)
However, no online transmission is 100% secure. You agree that you use our services at your own risk.
6. Cookies & Tracking Technologies
Our Website uses cookies to:
-
Improve user experience
-
Remember preferences
-
Analyze website traffic
-
Enable secure login and booking functionality
You can choose to disable cookies through your browser settings, but some features may not function properly.
7. Your Rights (Under Indian DPDP Act)
You have the right to:
-
Access your personal data
-
Correct inaccurate data
-
Withdraw consent for optional processing
-
Delete your data (subject to legal retention requirements)
-
Request information on how your data is used
To exercise these rights, contact us at the details below.
8. Data Retention
We retain your personal data only for as long as necessary for:
-
Completing bookings
-
Legal or regulatory requirements (e.g., police verification, taxation)
-
Resolving disputes
-
Maintaining business records
Typically:
-
Booking information: Up to 7 years
-
Basic contact details: Until account/consent is withdrawn