Privacy Policy
At Hotel Nilax, Jaipur ("Hotel", "we", "us", "our"), we are committed to protecting your personal data. This Privacy Policy outlines how we collect, use, share, and safeguard your information when you interact with us, including via our website (hereinafter referred to as the “Platform”). It also describes your rights under applicable data protection laws, including the EU General Data Protection Regulation (GDPR) where applicable.
By visiting our Platform or availing of our services, you consent to the collection, use, and processing of your information in accordance with this Privacy Policy. If you do not agree, please refrain from using our services.
​
1. Scope of the Policy
-
This Privacy Policy applies to all guests, website visitors, and individuals interacting with our services.
-
While our services primarily cater to guests in India, if you are accessing the Platform from the EU, we ensure compliance with GDPR regulations where applicable.
​
2. Information We Collect
We may collect the following types of personal data:
a. Personal Identification Information
Name, date of birth, contact details (email, phone number), address, nationality, and identity proof.
b. Sensitive Personal Data
Payment details (credit/debit card information) and, where required, biometric data (e.g., for identity verification).
c. Transactional Information
Details of your bookings, dining, and other services availed.
d. Behavioral Data
Information regarding your preferences, browsing history, and interactions with our website.
e. Communication
Any information you share with us during correspondence, including feedback or inquiries.
​
3. How We Use Your Information
We use your personal data for the following purposes:
-
To facilitate your reservations and provide personalized services during your stay.
-
To process payments and send booking confirmations.
-
To improve our services by analyzing usage trends and preferences.
-
To communicate promotional offers, special discounts, or updates (subject to your consent).
-
To comply with legal and regulatory requirements, including law enforcement requests.
GDPR Compliance for EU Users
If you are located in the EU, we process your personal data based on the following lawful bases:
-
Consent: Where you have provided explicit consent.
-
Performance of a Contract: To fulfill our obligations under a booking or service agreement.
-
Legitimate Interests: For improving our services and ensuring security.
-
Legal Obligation: Compliance with laws or court orders.
​
4. Sharing Your Information
We may share your data with:
-
Service providers for payment processing, logistics, and technology support.
-
Law enforcement or regulatory authorities when required by applicable laws.
-
Our affiliates or group entities to offer improved services.
For EU Users: Transfers of personal data outside the EU will comply with GDPR requirements. We ensure adequate safeguards, such as Standard Contractual Clauses or equivalent mechanisms, for such transfers.
​
5. Data Retention
-
Your personal data will be retained for as long as necessary to fulfill the purposes outlined in this Privacy Policy.
-
Data may be retained longer if required by applicable law or for legitimate purposes (e.g., fraud prevention).
-
You may request data deletion under applicable laws, subject to pending obligations (e.g., unpaid invoices, unresolved claims).
​
6. Your Rights
-Under Indian Laws
You have the right to access, correct, or request deletion of your data by contacting us directly.
-Under GDPR (for EU Users)
You are entitled to the following rights:
-
Right to Access: Request details about the personal data we hold.
-
Right to Rectification: Correct inaccurate or incomplete data.
-
Right to Erasure: Request deletion of your data, subject to legal obligations.
-
Right to Restrict Processing: Limit the use of your data under specific circumstances.
-
Right to Data Portability: Receive your data in a portable format.
-
Right to Object: Opt-out of data processing for direct marketing purposes.
To exercise these rights, please contact our Data Protection Officer (DPO) using the contact details below.
​
7. Security Measures
We employ industry-standard security practices to protect your data against unauthorized access, alteration, or loss. However, no transmission over the internet is entirely secure, and we cannot guarantee absolute security.
​
8. Cookies and Tracking
Our website uses cookies to enhance user experience. By continuing to use our Platform, you consent to our use of cookies. You may disable cookies via your browser settings, though some features may become inaccessible.
​
9. Data Breach Notification
In the event of a data breach that may affect your rights or freedoms, we will notify affected individuals and the relevant supervisory authority in accordance with applicable laws.
​
10. Updates to This Privacy Policy
We may revise this Privacy Policy from time to time. Significant changes will be communicated via email or other appropriate channels. We encourage you to periodically review this page for updates.
​
11. Grievance Redressal and Contact Information
For queries, complaints, or to exercise your data rights, please contact:
​
Name: Madan Lal
Designation: Data Protection Officer
Hotel Address: Hotel Nilax, Jaipur, Rajasthan, India
Email: info@hotelnilax.com
Phone: +91-9928074629