Privacy Policy

Intodia respects the privacy of all travelers using the service and is committed to handling personal information responsibly. This Privacy Policy describes how personal data is collected, used, and stored when accessing the website or communicating with the service. It also outlines rights available under applicable data protection laws such as GDPR, where relevant.

Intodia serves foreign visitors traveling India. This Privacy Policy applies to all interactions across the website, communication channels, and the service experience.

For any questions about this Privacy Policy or how information is handled:

Email: privacy@intodia.com

Depending on your interaction with us, we may collect the following data:

Identity & Contact Details: Name, email address, or communication ID

Travel Information: Planned trip dates, regions or cities to be visited

Transaction Data: Access type purchased (Solo, Duo, etc.), amount paid, payment method (via third-party gateway)

Communication Data: Messages exchanged through email or message-based channels within the Intodia platform during service fulfillment.

Other Information: Only when explicitly provided by the traveler for service execution purposes. Not stored beyond the duration of the request.

Technical Data: Device type, browser information, and IP address (only for site analytics or error logs)

We do not collect passport numbers, visa documents, or precise location unless voluntarily provided for service delivery.

Your personal data is used only for the following purposes:

To activate and deliver Intodia services

To contact you with relevant updates about your access

To verify access tiers (e.g., Solo, Duo)

To improve response accuracy based on your travel profile

To step in during moments of disruption or upon explicit traveler request.

To comply with legal obligations (e.g., fraud prevention)

Under GDPR, we rely on the following legal bases:

Performance of a contract: Most of our data use is necessary to deliver the service you paid for.

Consent: For optional communication preferences or cookie tracking (if applicable).

Legitimate interest: To prevent abuse, ensure secure delivery of services, or improve the service.

We only share your data when necessary to operate our service. This includes:

Payment Processors: When you pay, your payment details are handled securely by third-party gateways (e.g., PayPal). We do not store card or bank details.

Platform Channels: Message-based channels within the Intodia platform are used to deliver real-time services. Messages you send or receive may be processed through their systems.

Cloud Infrastructure: Hosting or backup services may store your service records securely. These providers are bound by data processing agreements.

We do not sell, rent, or trade your data to advertisers under any condition.

Some of the third-party tools or platforms we use may store or process data outside the EU/EEA (e.g., in India or the United States). Where this happens, we ensure your data is protected under standard contractual clauses or equivalent safeguards recognized by GDPR.

We keep personal data only as long as necessary:

Service Records: Retained up to 120 days after the last day of your declared trip.

Email or Service Logs: Archived for up to 12 months for quality assurance or resolution purposes.

Anonymized Usage Data: May be retained for analytics without any personally identifiable link.

Data is also deleted earlier under the following circumstances: trip cancellation before arrival, confirmed refund processed, or account closure upon traveler request.

You may also request early deletion at any time by writing to privacy@intodia.com.

If you are a resident of the EU/EEA, you have the following rights:

Access: Know what personal data we hold and receive a copy.

Rectification: Request corrections to incorrect or outdated information.

Erasure: Ask us to delete your data ("right to be forgotten").

Restriction: Limit how we process your data in certain situations.

Objection: Stop us from using your data under legitimate interest grounds.

Data Portability: Receive your data in a readable format for transfer.

Lodge Complaint: File a complaint with a supervisory authority if your data rights are violated.

To exercise any of these, email us at privacy@intodia.com

We use the following methods to keep your information secure:

Encrypted communication platforms

Restricted access to tools and messaging records

Secure payment processors

Routine audits and backups to detect and respond to risks

We use essential cookies to ensure our website functions securely and smoothly. Occasionally, we may use privacy-respecting analytics tools to understand site usage without identifying individuals. No cookies are used for advertising, retargeting, or profiling. You can adjust your browser settings to control or disable cookies at any time.

Intodia is not intended for use by individuals under the age of 18. If we learn that a minor has shared personal data with us, we will delete that data promptly.

We may revise this policy from time to time. If we make significant changes, we will update the date at the top and notify you by email or on the website.