Data Privacy Policy

Aneeras LLP, as the developer and operator of the Tripknot Platform, acts as the Data Fiduciary under the DPDP Act, 2023, and is responsible for the processing of personal data of individuals (Data Principals) who use Tripknot within India.

Aneeras obtains free, specific, informed, unconditional, and unambiguous consent from Data Principals before processing their personal data, through a clear plain-language notice presented in the Tripknot app at registration or first use. You may withdraw consent at any time by contacting legal@aneeras.com.

• Right to Information: Obtain information about personal data processed by Aneeras via Tripknot
• Right to Correction and Erasure: Correct inaccurate data and request erasure of data no longer needed
• Right to Grievance Redressal: Have grievances addressed by Aneeras within legally prescribed timelines
• Right to Nominate: Nominate someone to exercise these rights in the event of death or incapacity

• Maintain complete and up-to-date records of all personal data processed through Tripknot
• Implement appropriate technical and organizational security measures for all Tripknot user data
• Notify the Data Protection Board and affected users of any data breach as prescribed by law
• Not retain personal data beyond the period necessary for stated purposes
• Designate and publicly name a Grievance Officer at Aneeras prior to Tripknot's public launch

Any transfer of personal data outside India collected through Tripknot will be conducted only to countries permitted by the Central Government under the DPDP Act, or through mechanisms prescribed by law.

• Identifiers: Name, email, phone, IP address, device ID, Tripknot username
• Usage and Activity: Browsing history on Tripknot, searches, feature interactions, clickstream data
• Geolocation: GPS coordinates collected with consent for trip planning and discovery
• Inferences: Travel preferences, behavioral profiles, personalization data derived from Tripknot usage
• Operator Info (B2B only): Business name, category, professional contact details of listing operators

• Account Management on Tripknot — Contractual necessity
• Trip Planning and Recommendations — Contractual necessity / Legitimate interests
• Business Listing Services — Contractual necessity
• Marketing Communications — Consent
• Analytics and Platform Improvement — Legitimate interests
• Fraud Prevention and Security — Legitimate interests / Legal obligation
• Legal Compliance (Aneeras) — Legal obligation

• Right of Access (Article 15): Obtain a copy of your personal data held by Aneeras
• Right to Rectification (Article 16): Correct inaccurate data
• Right to Erasure (Article 17): Request deletion under specific circumstances
• Right to Restriction (Article 18): Restrict processing in certain situations
• Right to Portability (Article 20): Receive data in a portable format
• Right to Object (Article 21): Object to processing based on legitimate interests

Contact support@aneeras.com to exercise GDPR rights. You may also lodge a complaint with your national data protection authority.

• Right to Know: Categories and pieces of personal information collected in the past 12 months
• Right to Delete: Request deletion of personal information, subject to legal exceptions
• Right to Opt-Out of Sale: Aneeras does not sell your personal information
• Right to Non-Discrimination: Aneeras will not discriminate for exercising CCPA rights

• AES-256 encryption for data at rest on all Tripknot servers
• TLS 1.2 or higher for all data in transit
• Role-based access controls and least-privilege principles across Aneeras systems
• Regular security assessments and vulnerability testing
• Data breach notification to regulators and users as required by law

For all data privacy inquiries relating to the Tripknot Platform: Aneeras LLP | Email: support@aneeras.com | Website: www.tripknot.in