Privacy Policy
Effective date: 08 October 2025
Welcome to Shree Narayan Ganga Aarti, accessible at https://bookgangaarti.com. This Privacy Policy explains how we collect, use, disclose, and protect your information when you visit our website or make a booking for our services. By using our site, you agree to this policy.
1) Information We Collect
- Identity & Contact: Name, email, phone, occasion/event details, and booking preferences.
- Transaction & Payment: Booking amount, order IDs, payment status, and method. We do not store card/UPI details; these are processed securely by our payment gateway (e.g., Razorpay).
- Technical/Usage Data: IP address, device/browser type, pages visited, timestamps, referring URLs, session data, and error logs.
- Cookies & Similar: Small files to keep you signed in, remember preferences, enable analytics/anti-fraud, and improve UX. You can control cookies in your browser; blocking some may impact features.
- Communications: Emails, calls, chat messages, and support tickets.
2) How We Use Your Information
- To create and manage bookings, invoices, and receipts.
- To communicate confirmations, reminders, and service updates.
- To personalize content, offers, and user experience.
- To monitor performance, detect/prevent fraud, debug, and improve our website and services.
- To comply with law, enforce policies, and protect our rights.
- With your consent where required (e.g., marketing communications; you can opt out anytime).
3) Third-Party Processors (Examples)
We share data with trusted providers strictly to run our services; they must keep your data confidential and secure:
- Payments: Razorpay (payment processing, anti-fraud, settlement).
- Infrastructure/Hosting: AWS (e.g., S3/CloudFront/Lambda for hosting, storage, and operations).
- Networking/CDN/Security: Cloudflare or equivalent.
- Email/SMS: SMTP providers and SMS gateways (booking emails/alerts).
- Analytics & Logs: Web analytics and error logging tools to improve reliability and UX.
We do not sell your personal information.
4) Cookies & Analytics
- Essential cookies enable core functions (auth, security, load balancing).
- Analytics cookies help us measure traffic and performance. You can opt out via your browser. If we present a cookie banner, your choices there will be honored.
- Do Not Track: Industry standards are evolving; we will honor applicable settings where feasible.
5) Payments
Payments are processed by Razorpay or similar gateways. We receive payment confirmations and status, but we do not store full card or UPI credentials on our servers.
6) Data Security
We use reasonable administrative, technical, and physical safeguards to protect your data. However, no method of transmission or storage is completely secure, and we cannot guarantee absolute security.
7) Data Retention
- Booking, invoice, and communication records are retained for as long as needed to provide services and meet legal/tax requirements.
- Analytics/log data may be kept for a shorter duration, sufficient for troubleshooting and service improvement.
- When no longer required, data is deleted, aggregated, or anonymized.
8) Your Choices & Rights
- You may access, update, or delete certain information by contacting us (see Section 12).
- You may opt out of non-essential communications at any time.
- Depending on your location, you may have additional rights under applicable data protection laws. We will honor valid requests as required by law.
9) International Transfers
We may process data in countries other than your own (e.g., via global cloud providers). Where required, we implement appropriate safeguards to protect your information.
10) Children’s Privacy
Our services are not directed to children under 13. If you believe a child provided personal data, please contact us so we can delete it.
11) Changes to This Policy
We may update this policy from time to time. Changes take effect when posted on this page. We’ll adjust the “Effective date” accordingly.
12) Contact Us
Note: This policy provides general information. It does not constitute legal advice. If you serve users in specific jurisdictions (e.g., EU/UK), ensure your practices and notices meet those local requirements.
