Privacy Policy — TravelTrue Nature
(Compliant with the Digital Personal Data Protection Act, 2023 and DPDP Rules, 2025)
1. Introduction
TravelTrue Nature (“we”, “our”, “us”) is a travel services provider located in Gachibowli, Hyderabad, Telangana, India (GSTIN: 36AXMPC0851C1ZW).
We provide travel booking, itinerary planning, visa assistance, and corporate travel management services to:
- Individual travelers (B2C)
- Corporate clients and their employees (B2B)
This Privacy Policy explains how we collect, use, disclose, store, and protect personal data through our website, applications, and related services (“Platforms”), in compliance with the Digital Personal Data Protection Act, 2023 (“DPDP Act”) and DPDP Rules, 2025.
2. Scope
This Policy applies to personal data processed when you:
- Visit or use our website or mobile applications
- Make travel bookings or inquiries
- Submit travel or identity documents
- Engage with customer support
- Use corporate travel services
- Interact with us via email, forms, or phone
3. Notice — Personal Data We Collect
We collect only data that is necessary and proportionate to provide services.
3.1 IDENTITY & VERIFICATION DATA
- Aadhaar (masked where applicable)
- PAN
- Date of birth
- Nationality
Purpose: Identity verification, fraud prevention, regulatory compliance
3.2 CONTACT INFORMATION
- Full name
- Email address
- Phone number
- Residential or billing address
Purpose: Communication, booking confirmations, service delivery
3.3 TRAVEL DOCUMENTATION
- Passport details
- Visa information
- Travel insurance details
Purpose: Ticketing, visa processing, immigration compliance
3.4 BOOKING & TRAVEL DATA
- PNR numbers
- Itineraries
- Travel preferences
Purpose: Managing reservations and travel services
3.5 PAYMENT & FINANCIAL DATA
- Billing details
- Transaction references
Purpose: Payment processing, GST compliance, accounting
3.6 CORPORATE TRAVEL DATA
- Employee details
- Travel history and reports
- Cost center or department information
Purpose: Corporate travel management and reporting
4. Lawful Basis of Processing
We process personal data based on:
- Consent — When you voluntarily provide data
- Performance of Service — To fulfill travel bookings
- Legal Obligations — Tax, GST, regulatory compliance
You may withdraw consent at any time (see Section 11).
5. Purposes of Processing
Your personal data is used for:
- Booking flights, hotels, and travel services
- Visa and documentation assistance
- Corporate travel reporting and expense management
- Customer support and communications
- Legal and regulatory compliance (including GST and LRS)
- Fraud prevention and security
- Service improvement and analytics
We do not sell personal data.
6. Sharing of Personal Data (Data Processors)
We may share personal data only where necessary with:
- Airlines and global distribution systems (GDS)
- Hotels and accommodation providers
- Visa consulates and processing centers
- Payment gateways and financial institutions
- Corporate clients (for employee travel)
- Government authorities when legally required
All third parties are contractually obligated to maintain confidentiality and security.
7. Cross-Border Data Transfers
For international bookings, personal data may be transferred outside India to travel service providers.
Such transfers occur only when:
- Necessary to fulfill the requested service
- Subject to reasonable safeguards
- In compliance with government-notified restrictions
8. Data Retention
We retain personal data only for as long as necessary:
| Data Category | Retention Period |
|---|---|
| Booking & travel records | Up to 24 months after trip completion |
| Identity/KYC documents | Up to 180 days after service completion unless legally required longer |
| Financial and GST records | Up to 8 years |
| Corporate travel data | As per contractual obligations |
After expiry, data is securely deleted or anonymized.
9. Data Security
We implement reasonable safeguards including:
- Role-based access controls
- Encryption where feasible
- Secure hosting environments
- Confidentiality obligations for staff
While we strive to protect data, no system is completely secure.
10. Children’s Data
Our services are not directed at children.
If minor data is processed for travel bookings, it is based on verified parental or guardian consent.
11. Rights of Data Principals
Under the DPDP Act, you have the right to:
- Obtain a summary of personal data processed
- Request correction or updating of inaccurate data
- Request erasure when data is no longer necessary
- Withdraw consent at any time
- File a grievance
- Nominate a representative
Requests can be made via Section 14.
12. Right to Nominate
You may nominate an individual to exercise your rights in case of death or incapacity.
Verification documents may be required to process such requests.
13. Cookies & Tracking Technologies
We use cookies to:
- Enable essential website functionality
- Analyze traffic and performance
- Remember user preferences
- Provide marketing communications (with consent)
Users may manage cookie preferences via browser settings or cookie banner controls.
14. Grievance Redressal
In accordance with DPDP Rules, 2025:
Grievance Officer
TravelTrue Nature
Email: jagadeesh.choppa@traveltruenature.com
Contact Form: Click here
Address: Gachibowli, Hyderabad, Telangana, India
We will acknowledge and address grievances within applicable legal timelines.
15. Updates to This Policy
We may update this Policy periodically to reflect legal or operational changes.
Updates will be posted with a revised “Last Updated” date.
16. Contact Information
TravelTrue Nature
Gachibowli, Hyderabad, Telangana, India
GSTIN: 36AXMPC0851C1ZW
17. Commitment to Privacy
TravelTrue Nature is committed to processing personal data responsibly, transparently, and in accordance with applicable data protection laws in India.