Privacy Policy for TajMahalGuesthouse.com
1. Introduction
At TajMahalGuesthouse.com, we prioritize and are deeply committed to protecting your personal data and privacy rights. This Privacy Policy sets out how we collect, use, disclose, and protect your personal information in accordance with the applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). We recognize the importance of safeguarding your personal information and ensuring it is used lawfully, fairly, and transparently.
2. Scope of the Policy and Data Controller Responsibility
This Privacy Policy applies to all individuals who visit or interact with TajMahalGuesthouse.com, whether through browsing the website, contacting us, creating accounts, or making reservations. The data controller for all personal data processed through this website is TajMahalGuesthouse.com. Our data protection practices are designed to protect all personal information in our control and ensure full compliance with data protection regulations.
For any inquiries regarding this policy or your data, you may reach us at: [email protected].
3. Categories of Data We Process
We collect and process the following categories of personal data:
3.1. Usage Data
Includes information automatically collected when you visit our website, such as your IP address, browser type and version, time zone setting, operating system, browsing habits, page views, referral URLs, and session duration.
3.2. Account Data
When you create an account or make a reservation, we collect and use your full name, billing and shipping addresses, email address, and contact telephone number.
3.3. Profile Data
We compile data related to your preferences, prior stays, feedback, and interaction behavior to optimize your experience on TajMahalGuesthouse.com.
3.4. Communication Data
Covers data exchanged through emails and web forms, including customer support inquiries, feedback, or any other messages exchanged with our team.
3.5. Technical Data
Includes device type, screen resolution, browser plug-in types and versions, system and platform configurations that help optimize website functionality across devices.
3.6. Transaction Data
Refers to the processing records of bookings, payments, reservation confirmations, order histories, and invoice details.
3.7. Preference Data
Includes information relating to your marketing and communication preferences, language settings, product or service preferences.
4. Legal Bases for Processing Personal Data
We process your personal data under the following legal grounds:
– Consent: For sending you marketing communications, and installing non-essential cookies.
– Contract: To fulfill reservations or service agreements with you.
– Legal Obligation: To comply with applicable legal and regulatory obligations.
– Legitimate Interests: For analytics, site security, fraud detection, and improving site functionality—only where such interests do not override your data protection rights.
5. Your Rights Under GDPR and CCPA
You have the following rights concerning your personal data:
– Right of Access: You may request access to the personal data we hold about you.
– Right to Rectification: Request correction of inaccurate or incomplete personal information.
– Right to Erasure: Request deletion of your data under certain conditions.
– Right to Restrict Processing: Request limitation on how your data is processed.
– Right to Data Portability: Receive your data in a structured, commonly used format.
– Right to Object: Object to processing based on legitimate interests or direct marketing.
– Right to Non-Discrimination (CCPA): You will not receive discriminatory treatment for exercising your privacy rights.
To exercise any of these rights, please contact us at [email protected].
6. Security Measures
We implement a broad range of technical and organizational safeguards to protect your personal data, including:
– End-to-end encryption during data transmission.
– Secure server environments with limited access.
– Regular security audits and vulnerability assessments.
– Role-based access and staff privacy awareness training.
– Daily system backups to prevent data loss.
7. International Data Transfers
Personal data collected via TajMahalGuesthouse.com may be stored or processed outside your country of residence. Where cross-border transfers are necessary, we rely on Standard Contractual Clauses approved by the European Commission and other lawful mechanisms to ensure data remains protected under applicable standards.
8. Data Retention
We retain your personal data only as long as necessary to fulfil the purposes for which it was collected, including:
– Usage Data: up to 12 months, for analytics and security.
– Account Data: retained as long as your account remains active.
– Transaction Data: up to 7 years, for financial and legal obligations.
– Communication Data: retained for up to 2 years post-resolution.
– Preference Data: until updated or withdrawn by the user.
Once retention periods expire, data is securely erased or anonymized.
9. Cookie Policy
Our website uses cookies and similar tracking technologies for the following purposes:
– Essential Cookies: Required for site functionality and security.
– Functional Cookies: Enable enhanced features such as remembering your preferences.
– Analytics Cookies: Help us understand how visitors use TajMahalGuesthouse.com.
– Performance Cookies: Monitor site performance and improve user experience.
These technologies do not access data from your device without your consent.
10. Cookie Management and Legal Compliance
In compliance with GDPR and CCPA, we provide full transparency and enable granular control over your cookie choices. You may:
– Accept or reject non-essential cookies via our cookie banner.
– Modify cookie preferences at any time within site settings.
– Opt out of analytics tracking using browser-specific tools or an opt-out mechanism if applicable.
11. Protection of Children’s Privacy
TajMahalGuesthouse.com does not knowingly collect personal information from children under the age of 13. If we become aware that such information has been unintentionally collected, we take immediate steps to delete it. Parents or guardians may contact us at [email protected] to request deletion.
12. Policy Updates
We may periodically update this Privacy Policy to reflect changes in law, our services, or data handling practices. When significant modifications occur, users will be notified via website alerts or via email where applicable. Continued use of the site implies consent to the revised policy.
13. Contact Us
If you have any questions, concerns, or requests in relation to this Privacy Policy or your personal data, please contact us at:
Email: [email protected]
Addressing privacy responsibly is core to our operation. TajMahalGuesthouse.com fully complies with applicable laws and consistently reviews our policies to uphold your data rights. Please do not hesitate to reach out with any privacy-related concerns.