Data Protection and Travel Privacy Policy

Effective Date: November 25, 2025

Vandana Travels ("we," "us," or "our") is committed to protecting the privacy of your personal data. This policy details how we collect, use, and secure information necessary for booking and managing your travel arrangements.

1. What Information We Collect (Detailed)

To book your travel, we require specific Personally Identifiable Information (PII) which we collect directly from you:

  • **Booking Data:** Full name, date of birth, gender, passport number, visa details (where applicable), dietary requirements, and flight/hotel preferences.
  • **Contact Data:** Phone number (mobile and landline), email address, and physical address.
  • **Payment Data:** Credit card details (processed securely via third-party gateways and not stored on our servers) or bank transfer details.

We only process sensitive PII (like passport details) strictly for booking purposes and transmitting them securely to airlines, hotels, and visa processing centres.

2. How We Use Your Information (Enhanced Detail)

Your data is used to provide and enhance our travel services:

  1. **Service Fulfillment:** Processing bookings, issuing tickets and vouchers, managing changes/cancellations, and fulfilling special requests (e.g., specific room types or assistance).
  2. **Communication:** Sending essential transactional and service-related messages related to your trip status and itinerary changes.
  3. **Personalization & Improvement:** Analyzing your past travel history to recommend relevant destinations and tailor future offerings.
  4. **Legal Compliance:** Adhering to customs, immigration, and security requirements mandated by destination countries or travel partners.
jetarfewe

3. Cross-Border Data Transfer (Due to Global Travel)

As a travel agency, we operate globally, meaning your personal data will be transferred to and processed in countries outside of India, specifically to the country of your travel destination and the location of our service providers (airlines, hotels). We ensure that these transfers comply with applicable data protection laws and that adequate safeguards are in place to protect your information.

4. Data Retention and Security

We retain your data only for as long as necessary to fulfill the purposes for which it was collected, including for legal, accounting, and reporting requirements (typically 5-7 years for transactional records). We utilize industry-standard security practices, including data encryption and access controls, to protect your PII against unauthorized access or loss.