CARAVAN TOURISM INDIA – PRIVACY POLICY
1. INTRODUCTION AND PURPOSE
This Privacy Policy ("Policy") governs the collection, processing, storage, protection, and usage of personal data of all individuals ("Data Principals" / "You" / "Users") who access, register, or transact on the caravan tourism platform operated by Caravan Tourism India ("Platform" / "We" / "Us" / "Our"). The Platform provides end-to-end services including caravan rental marketplace, fixed route tours, ancillary services, consultancy, vehicle sales, and investment opportunities across India.
This Policy is designed to ensure transparency, fairness, and compliance with the Digital Personal Data Protection (DPDP) Act, 2023, the DPDP Rules, 2025, and all applicable Indian data protection legislation. By accessing or using the Platform, you explicitly consent to the terms outlined herein.
2. DEFINITIONS
"Data Principal" means any individual to whom personal data relates, including users, vendors, guests, employees, and representatives.
"Personal Data" means any information that directly or indirectly identifies an individual, including but not limited to: name, contact information, identification documents (Aadhaar, Voter ID, Driving License, Passport), address, email, mobile number, payment details, booking history, communications, device information, location data, and any other information collected through the Platform.
"Sensitive Personal Data" means personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, trade union membership, genetic data, biometric data for identification purposes, health data, sex life or sexual orientation data, and financial data.
"Child" means any individual below 18 years of age as defined under DPDP Act, 2023.
"Data Fiduciary" means Caravan Tourism India, the entity that determines the purposes and means of processing personal data and is responsible for ensuring compliance with data protection laws.
"Data Processor" means any person who processes personal data on behalf of the Data Fiduciary.
"Processing" means any operation performed on personal data, including collection, recording, organization, structuring, storage, adaptation, retrieval, consultation, use, disclosure by transmission, erasure, or destruction.
"Consent" means a freely given, specific, informed, and unambiguous affirmation of willingness to process personal data.
"Verifiable Parental Consent" means consent obtained from a parent or lawful guardian of a Child through age verification and identity verification mechanisms as prescribed under DPDP Rules, 2025.
3. INFORMATION WE COLLECT
3.1 Information Collected Directly from Users
3.1.1 Registration and Account Information
• Full name, date of birth, gender, blood group, existing medical condition (if any)
• Mobile number and email address (verified via OTP)
• Government-issued identification documents (Aadhaar, Voter ID, Driving License, Passport)
• Document number, document type, and uploaded document images
• Address and address proof documents
• User category (Individual, Organisation, Travel Agent)
3.1.2 Payment and Financial Information
• Bank account details (name, account number, IFSC code, branch)
• Payment method preferences
• Transaction history and invoices generated through the Platform
• GST registration details (if applicable)
• Financial records for refunds and settlements
3.1.3 Booking and Service Information
• Caravan rental bookings, dates, duration, vehicle selection
• Fixed route tour selections, dates, and participant count
• Ancillary service selections (charging, water refilling, parking, activities)
• Guest/traveler details (names, ages, emergency contacts)
• Booking preferences, special requests, accessibility requirements
• Vehicle damage reports, incident details, and photographic evidence
3.1.4 Communication Data
• Email correspondence, chat messages, feedback, and support inquiries
• Call recordings (if enabled by user consent)
• Complaint and grievance details
• Review ratings and textual feedback
• Complaints and dispute details
3.1.5 Vehicle and Vendor-Specific Data (for Vendors)
• Vehicle registration certificate, insurance documents, pollution certificate
• Vehicle specifications, photographs, maintenance records
• Staff details, qualifications, training certifications
• Business registration documents, PAN, GST certificates
• Bank statements and financial records
• Insurance policy documents and third-party liability coverage details
• Driving licenses and background check documents for staff
3.1.6 Device and Technical Information
• IP address, device type, operating system
• Browser information and cookies
• Device identifiers, mobile network information
• Access logs and timestamps
• Pages viewed, links clicked, features used
• Referral source and platform activity data
3.2 Information Collected Indirectly
3.2.1 Automated Collection
• Cookies and Tracking Technologies: The Platform uses cookies, web beacons, pixels, and similar technologies to track user behavior, preferences, and platform usage patterns.
• Location Data: GPS coordinates and location history when users access location-based services (if permission granted).
• Analytics: Aggregated and anonymized usage data through third-party analytics providers.
3.2.2 Information from Third Parties
• Payment Gateways: Payment status, authorization tokens, transaction confirmations from UPI, Net Banking, Credit/Debit Card processors
• Verification Services: Identity verification results from authorized service providers
• Government Data: Information shared by government authorities in response to lawful requests
• Third-Party Service Providers: Data from partners providing ancillary services (charging stations, water refill centres, recreational activity providers)
3.2.3 Information Inferred or Derived
• User preferences based on booking patterns and search history
• Risk profiles based on transaction patterns (for fraud detection)
• Behavioural patterns and engagement metrics
3.3 Data Minimization Principle
The Platform collects only necessary and adequate personal data required for the stated purposes. Unnecessary or excessive data collection is strictly prohibited. Users are not required to provide personal data beyond what is explicitly requested for account creation and service delivery.
4. PURPOSE OF DATA PROCESSING
4.1 Primary Purposes
The Platform processes personal data for the following lawful and explicit purposes:
4.1.1 Service Delivery
• Creating and maintaining user accounts
• Processing caravan rental bookings and fixed route tour reservations
• Facilitating payment collection and settlement
• Delivering end-to-end services (rental, tours, consultancy, sales)
• Managing vendor onboarding, verification, and compliance
• Generating invoices and financial records
• Coordinating ancillary services (charging, water refilling, parking, activities)
4.1.2 Verification and Compliance
• Verifying user identity through government-issued documents
• Conducting vendor verification for vehicle quality, safety, legal compliance
• KYC (Know Your Customer) compliance
• Anti-money laundering (AML) and fraud detection
• Regulatory compliance and reporting to government authorities
• GST compliance and tax reporting
4.1.3 Safety and Security
• Vehicle and traveler safety monitoring via GPS and onboard cameras (Dashcam, CCTV)
• Incident reporting and accident documentation
• Damage assessment and liability determination
• Background checks for staff working with caravans
• Fraud prevention and detection
• System security and access control
4.1.4 Communication and Support
• Responding to user inquiries and support requests
• Sending service-related notifications (booking confirmations, cancellations, updates)
• Grievance redressal and complaint resolution
• Seeking user feedback and reviews
• Sending regulatory disclosures and legal notices
4.1.5 Quality Assurance and Improvement
• Monitoring service quality and performance metrics
• Analyzing booking patterns and user preferences
• Improving Platform features and user experience
• Identifying service gaps and operational inefficiencies
• Conducting user satisfaction surveys
4.1.6 Vendor and Financial Management
• Processing vendor onboarding, documentation, and compliance checks
• Managing vendor ratings, reviews, and performance metrics
• Processing vendor payments and settlement
• Maintaining vendor compliance records
• Audit trails for financial transactions