Welcome to Delight Departures. We are committed to protecting your personal information and your right to privacy. This Privacy Policy explains what information we collect, why we collect it, how we use it, and what rights you have in relation to it. By using our website, services or communicating with us, you agree to the practices described in this policy.
Delight Departures is a travel agency based in Bengaluru, Karnataka, India, specialising in international group tours and customised private travel experiences. We operate the website www.delightdepartures.com and related digital services.
For the purposes of this Privacy Policy, "we", "us" or "our" refers to Delight Departures. "You" refers to the individual accessing our website or using our services as a customer, prospective customer, or visitor.
We collect personal information that you voluntarily provide to us and information that is automatically collected when you visit our website. The types of information we may collect include:
A. Information You Provide Directly
- Contact Details: Full name, email address, phone number, and WhatsApp number when you enquire about or book a trip.
- Travel Information: Passport details, nationality, date of birth, travel dates, destination preferences, dietary requirements, and medical information where relevant to your trip.
- Payment Information: Transaction reference numbers. Note: we do not store full card numbers or banking credentials — payments are processed through secure third-party gateways.
- Communications: Messages, enquiries, feedback, reviews and testimonials submitted through our website, WhatsApp, email or social media.
- Group Member Details: Names, ages and passport information of co-travellers when you book for a group.
B. Information Collected Automatically
- Device & Browser Data: IP address, browser type and version, operating system, screen resolution, and device identifiers.
- Usage Data: Pages visited, time spent on pages, links clicked, referring URLs, and navigation paths through our website.
- Cookies & Similar Technologies: Session cookies, persistent cookies, and pixel tags. See Section 5 for full details.
- Location Data: Approximate geographic location derived from your IP address (we do not collect precise GPS location).
We use the personal information we collect for the following purposes:
| Purpose | Information Used | Legal Basis |
|---|---|---|
| Processing tour bookings and travel arrangements | Name, contact details, passport info, travel preferences | Contract performance |
| Visa applications and travel documentation | Passport details, photos, nationality, DOB | Contract performance |
| Customer support and responding to enquiries | Contact details, communication history | Legitimate interest |
| Sending booking confirmations and trip updates | Email, phone, WhatsApp number | Contract performance |
| Marketing emails, offers and newsletters | Email address, travel preferences | Consent (opt-in) |
| Improving website performance and user experience | Usage data, device data, cookies | Legitimate interest |
| Fraud prevention and security | IP address, payment transaction refs | Legal obligation |
| Testimonials and marketing content (with consent) | Name, review text, travel photos/videos | Consent |
We do not sell, rent or trade your personal information to third parties for their own marketing purposes. We share your information only in the following circumstances:
- Travel Service Providers: Airlines, hotels, resorts, transport companies, and local tour operators — to the extent necessary to fulfil your booking. These parties are contractually required to handle your data securely.
- Visa & Government Authorities: Indian and foreign government authorities, embassies and consulates, as required for visa processing and border clearance.
- Payment Processors: Secure payment gateway providers (e.g., Razorpay, PayU) who process transactions on our behalf. They are PCI-DSS compliant and do not store your full card details with us.
- Technology Partners: Website hosting, email delivery, CRM and analytics providers who process data on our behalf under strict data processing agreements.
- Legal Requirements: Where required by law, court order, regulatory authority, or to protect the legal rights of Delight Departures or our customers.
- Business Transfers: In the event of a merger, acquisition or sale of business assets, your information may be transferred — you will be notified in advance of any such transfer.
Our website uses cookies and similar tracking technologies to enhance your browsing experience, analyse website traffic and deliver relevant content. A cookie is a small text file placed on your device when you visit our website.
| Cookie Type | Purpose | Duration |
|---|---|---|
| Essential / Functional | Enable core website features such as navigation, form submissions and session management. Cannot be disabled without breaking site functionality. | Session |
| Analytics | Collect anonymous data on how visitors use our website (e.g., Google Analytics) to help us improve page performance and content. | Up to 2 years |
| Marketing / Retargeting | Track visits across websites to show you relevant advertisements on platforms such as Google Ads, Facebook and Instagram. | Up to 1 year |
| Preference | Remember your settings and preferences such as language, region and previously viewed packages. | Up to 1 year |
You can manage or disable cookies at any time through your browser settings. Please note that disabling certain cookies may affect the functionality of our website. For more information on managing cookies, visit www.allaboutcookies.org.
We take the security of your personal information seriously and implement appropriate technical and organisational measures to protect it from unauthorised access, alteration, disclosure or destruction. Our security measures include:
- SSL / TLS Encryption: All data transmitted between your browser and our website is encrypted using industry-standard SSL/TLS protocols (HTTPS).
- Access Controls: Personal data is accessible only to authorised Delight Departures staff and service partners who need it to process your booking or provide support.
- Secure Storage: Data is stored on secure servers with firewalls, regular backups and access logging.
- Payment Security: All payment transactions are processed through PCI-DSS certified payment gateways. We do not store full card numbers on our systems.
- Staff Training: Our team is trained in data privacy best practices and confidentiality obligations.
We retain your personal information only for as long as necessary to fulfil the purposes for which it was collected, or as required by applicable law. Our general retention periods are:
| Data Type | Retention Period | Reason |
|---|---|---|
| Booking & travel records | 7 years | Tax, legal & audit compliance |
| Passport & visa documents | 1 year after trip completion | Regulatory compliance; deleted thereafter |
| Customer enquiry records | 3 years | Customer service & dispute resolution |
| Marketing consent records | Until you withdraw consent | Proof of consent |
| Website analytics data | 26 months | Standard Google Analytics retention |
| Payment transaction records | 7 years | Financial & tax compliance |
When data is no longer required, it is securely deleted or anonymised. You may request earlier deletion of your data subject to the exceptions described in Section 8.
Under applicable Indian data protection law (the Digital Personal Data Protection Act, 2023) and general best practices, you have the following rights regarding your personal data:
- Right to Access: You may request a copy of the personal information we hold about you at any time.
- Right to Correction: You may ask us to correct any inaccurate or incomplete personal information.
- Right to Erasure: You may request that we delete your personal data, subject to legal and contractual obligations that require us to retain certain records.
- Right to Withdraw Consent: Where we process your data based on consent (e.g., marketing emails), you can withdraw consent at any time without affecting the lawfulness of prior processing.
- Right to Data Portability: You may request your personal data in a structured, commonly used format to transfer to another service provider.
- Right to Object: You may object to our processing of your personal data for direct marketing purposes.
- Right to Nominate: You may nominate a person to exercise your data rights on your behalf in case of death or incapacity, as provided under Indian law.
Our website may contain links to third-party websites such as hotel booking platforms, airline websites, review platforms (Google, TripAdvisor), social media platforms (Instagram, YouTube, Facebook, WhatsApp) and payment gateways.
These websites operate independently and have their own privacy policies. We have no control over, and accept no responsibility for, the content or privacy practices of any third-party website. We encourage you to review the privacy policy of any website you visit through a link on our site.
Our website and services are not directed at children under the age of 18. We do not knowingly collect personal information directly from minors. If you are a parent or guardian making travel arrangements that include a minor, you are responsible for providing their information on their behalf and ensuring you have the authority to do so.
Travel-related information for minors (e.g., passport details included in group bookings) is collected solely for the purpose of completing the travel arrangements and is handled with the same care as adult data.
We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements or business operations. When we make material changes, we will:
- Update the "Last Updated" date at the top of this page.
- Post a prominent notice on our website homepage for a reasonable period after the change.
- Where required, send an email notification to customers with active bookings or marketing subscriptions.
We encourage you to review this Privacy Policy periodically. Your continued use of our website or services after any changes constitutes your acceptance of the updated policy.
If you have any questions, concerns or requests relating to this Privacy Policy or how we handle your personal information, please do not hesitate to contact us through any of the following channels. We are committed to resolving any concerns promptly and transparently.
We aim to respond to all privacy-related enquiries within 30 business days. For urgent matters, please contact us by phone or WhatsApp.