TripXL Logo
Blogs 9593606606 Partner With Us Customer Login
  • Exclusive Deals Background
TripXL Logo
calendar-clockCustomer Login

Privacy Policy

Learn about our privacy practices and how we protect your data.

TripXL Holidays Privacy Policy

TripXL Holidays Private Limited ("we," "us," "our," or "TripXL") operates the website tripxl.com ("Website") and associated mobile applications ("App"). We are committed to protecting your privacy by ensuring the highest standards of data protection, in full compliance with the Digital Personal Data Protection Act, 2023, the Information Technology Act, 2000, and the General Data Protection Regulation (GDPR). This Privacy Policy ("Policy") outlines how we collect, use, disclose, transfer, and store your personal information when you access or use our Website and App. By continuing to use our services, you acknowledge and consent to the practices described in this Policy. If you do not agree with any part of this Policy, you are advised to discontinue using our services.

Collection of Personal Data
We collect personal data that identifies you as an individual, including but not limited to your name, email address, contact number, sensitive data (e.g., health or dietary requirements), residential address, IP address, and payment details.

This data is collected under the following circumstances:

  • When you make a reservation or select a package on our Website or App.

  • When you register with us, request information, subscribe to newsletters, participate in contests, or provide feedback.

  • When you set up an account, participate in surveys, or engage with us through any online or offline events.


Use of Personal Data

The personal data we collect is utilized for the following purposes:

  • To provide services as per your request.

  • To resolve disputes, troubleshoot issues, and ensure the security of our services.

  • To process payments and manage related fees.

  • To enhance and personalize your experience on our platform.

  • To carry out marketing and promotional activities, with your explicit opt-in consent where required.


Data Minimization

We adhere to the principle of data minimization by collecting only the personal data essential for providing our services and improving your experience. This includes data necessary for booking, processing payments, and offering personalized services.

 

Data Anonymization and Aggregation

We may anonymize and aggregate personal data for purposes such as analyzing travel trends, improving our offerings, and conducting market research. Anonymized data is used solely for legitimate business purposes and does not identify individual users.

 

Sharing of Personal Data

We may share your personal data with:

  • Our corporate entities, affiliates, and third-party partners to prevent fraud, provide co-branded services, or comply with legal obligations.

  • Our parent company and subsidiaries to enhance your browsing experience.

  • Legal authorities, if required by law or necessary to protect the rights, property, or safety of our users.

  • Authorized third-party service providers (e.g., payment processors, travel partners) solely to the extent necessary for them to perform their functions, and who are contractually obligated to protect your data.

Please note that all personal data shared with us is encrypted during storage and transmission.

 

Retention of Personal Data

Your personal data will be retained only as long as necessary to fulfill the purposes for which it was collected, including compliance with legal and regulatory obligations. Certain data may be retained post-account closure for legal compliance, security, or fraud prevention. Specific retention timelines include:

  • Financial transaction data: Retained for a period of seven years for legal compliance and audit purposes.

  • User profile information: Retained as long as the account is active and for up to one year following account deactivation. Upon meeting the retention period, data will be deleted permanently. 

Protection of Personal Data

We implement stringent security measures, including encryption (in transit and at rest), access controls, and regular audits, to protect your personal data from unauthorized access, alteration, disclosure, or destruction. However, please note that data transmission over the internet is inherently insecure, and we cannot guarantee the absolute security of your information.

 

Data Breach Notification

In the event of a data breach that compromises your personal data, we will promptly notify you and the relevant regulatory authorities, as required by law, and take immediate steps to mitigate any potential harm.

 

Third-Party Data Processors

We may engage third-party service providers, including payment processors and travel partners, to facilitate bookings, process payments, and deliver related services. These third parties have access to your personal data only to the extent necessary to perform their functions and are periodically audited to ensure compliance with data protection obligations.

 

Children’s Privacy

Our services are not intended for individuals under the age of 18. We do not knowingly collect personal data from minors without parental consent. However, with verified parental consent, we may collect data necessary to provide the requested services for minors, such as flight bookings or visa applications.

 

Cookies and Similar Technologies

We use cookies and similar technologies to enhance your experience on our Website and App. Cookies help us tailor our services to your preferences. You may manage your cookie settings through your browser or opt out of interest-based advertising by visiting the relevant third-party websites.

 

Automated Decision-Making and Profiling

We may use automated tools to tailor travel recommendations and offers based on your preferences and previous bookings. You have the right to request human intervention in such decisions, express your views, and contest any automated decisions that significantly affect you.

 

Legal Basis for Processing Data

We process your personal data primarily to fulfill our contractual obligations, such as processing bookings and delivering travel services. We may also process your data based on your consent, to comply with legal obligations, or for our legitimate business interests, such as improving our services.

 

International Data Transfers

As part of our global operations, your personal data may be transferred to and processed in countries other than your own. We take appropriate measures, such as Standard Contractual Clauses (SCCs), to ensure that such transfers comply with applicable data protection laws and that your data remains protected.

 

Links to Third-Party Websites

Our Website and App may contain links to third-party websites and services. We are not responsible for the privacy practices or content of these external sites. We advise you to review their privacy policies before providing any personal information.

 

Confidentiality

Any confidential information provided by us to users, or personal data collected from users, will be treated as confidential, except where disclosure is required by law or permitted by this Policy.

 

User Rights

Users have the following rights concerning their personal data:

  • Right to Information: To understand how their data is being processed.

  • Right to Access: To request access to their personal data.

  • Right to Rectification: To request correction of inaccurate or incomplete data.

  • Right to Erasure: To request the deletion of personal data when it is no longer required or has been unlawfully processed.

  • Right to Restriction: To request the limitation of data processing under certain conditions.

  • Right to Data Portability: To request the transfer of data to another data controller.

  • Right to Object: To object to data processing for specific purposes, such as direct marketing.


Sharing of Traveler Photos and Videos

By submitting travel photos or videos, users grant us a non-exclusive, worldwide, royalty-free license to use, reproduce, and distribute the materials in any medium. Users confirm they have the legal right to grant this license and that their submissions do not infringe on any third-party rights.

 

Opt-Out Choices

Users may opt out of receiving promotional communications from us by following the instructions provided in the emails or by contacting us directly.

 

Grievance Redressal Mechanism

We have established a grievance redressal mechanism to address any concerns related to privacy or data protection. Users may contact our Grievance Officer, who will respond to inquiries within 30 days, in accordance with applicable laws.

 

Compliance with Laws

We comply with all applicable data protection and privacy laws, including but not limited to the Digital Personal Data Protection Act, 2023, General Data Protection Regulation (GDPR), the Indian Information Technology Act, 2000, and other relevant regulations.

 

Amendments to the Privacy Policy

We reserve the right to amend this Privacy Policy at any time. Any changes will be effective immediately upon posting on our Website. Continued use of our services following the posting of changes will indicate acceptance of the revised Policy.

 

Grievance Officer

For any grievances or concerns regarding this Privacy Policy, users may contact our Grievance Officer:

 

Mr. Dhruv Kandoi

TripXL Holidays Private Limited 

Times Square, Sevoke Rd, 

Ward 43, Siliguri - 734001, 

West Bengal, India

Contact: +91 85094 61791

Email: customercare@tripxl.com