Data Sovereignty

PRIVACY CHARTER

UjjainTravel respects the sanctity of your digital footprint as much as your spiritual journey. We believe in absolute transparency regarding your personal data.

SSL Secure GDPR Ready No Data Resale

1. Commitment to Privacy

UjjainTravel ("we," "us," or "our") operates the www.ujjaintravel.com website and provides spiritual tourism services. This Privacy Policy informs you of our policies regarding the collection, use, and disclosure of personal data when you use our Service and the choices you have associated with that data.

We use your data to provide and improve the Service. By using the Service, you agree to the collection and use of information in accordance with this policy. This policy is structured to comply with the Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011 of India, alongside global standards.

2. Types of Data Collected

A Personal Identification Information

While using our Service, we may ask you to provide us with certain personally identifiable information that can be used to contact or identify you ("Personal Data"). This includes:

Full Name & Gender
Email Address
Phone Number (WhatsApp)
Gov-ID Details (For Temple Verification)

B Usage & Technical Data

We may also collect information on how the Service is accessed and used. This includes your IP address, browser type, pages visited, time spent, and unique device identifiers to optimize your experience.

3. Utilization of Your Information

UjjainTravel uses the collected data for various professional purposes:

Service Delivery

To process your temple bookings, assign Pandits, coordinate transport, and send itinerary notifications.

Communication

To provide customer support, respond to inquiries via WhatsApp, and send promotional offers (only if opted-in).

Verification

To comply with Mahakaleshwar temple security norms which require Aadhaar/Passport verification for Bhasma Aarti.

Fraud Prevention

To detect, prevent, and address technical issues or unauthorized financial transactions.

5. Third-Party Disclosure & Sharing

We never sell your personal data to advertisers. However, we share necessary data with trusted partners to fulfill your requests:

Service Providers

Hereditary Pandits, local transport partners, and hotels receive your contact details and ritual preferences.

Financial Processors

Payment processors (Razorpay) receive transaction data. We do not store your credit card information on our servers.

Legal Compliance

Data may be shared with law enforcement or shrine administrative committees if subpoenaed or mandated for public safety.

6. Data Retention Protocols

We will retain your Personal Data only for as long as is necessary for the purposes set forth in this Privacy Policy. Generally, transactional data is retained for 7 years to comply with Indian tax and financial audit laws. Non-transactional account data is retained until you request deletion.

7. Your Statutory Rights

Right to Access

You can request a copy of the personal data we hold about you at any time.

Right to Rectification

You can ask us to correct inaccurate or incomplete information.

Right to Erasure

You can request that we delete your data subject to regulatory audit limitations.

Right to Portability

Request transfer of your data to another service provider in a structured format.

8. Cookies & Digital Tracking

We use cookies and similar tracking technologies to track activity on our Service and hold certain information.

Session Cookies Active
Security Cookies Active
Analytics Pixels Active

9. Advanced Security Measures

Fortified Data Infrastructure

We use AES-256 encryption at rest, TLS 1.3 for data in transit, and regular vulnerability scanning. Access to your personal data is restricted to employees and partners who strictly need it to execute your requested service.

10. International Data Transfers

Your information, including Personal Data, may be transferred to — and maintained on — computers located outside of your state, province, or country where the data protection laws may differ from those of your jurisdiction. Our servers are primarily located in India and Singapore to ensure low-latency access and local compliance.

11. Grievance Redressal Officer

In accordance with Information Technology Act, 2000 and rules made there under, the name and contact details of the Grievance Officer are provided below:

Officer Name: Data Compliance Head, UjjainTravel

Email: [email protected]

Target Response Time: 48 working hours

Privacy. Security. Integrity.

UjjainTravel