Privacy Policy

We collect information that you provide directly to us when you create an account, submit an RFP, list a venue, or communicate through the platform. This includes:

• Account Information: Name, email address, phone number, organization name, designation, and role (HR Manager, Venue Owner, Attendee).
• Organization Details: Company name, registered address, GST number (for venue owners), and company size.
• Event Information: Event details, dates, attendee counts, budget ranges, and specific requirements submitted through RFPs.
• Venue Information: Property details, photographs, pricing, amenities, capacity information, and location data provided by venue owners.
• Communications: Messages exchanged between HR managers and venue owners through our in-platform messaging system.
• Usage Data: Information about how you interact with the platform, including pages visited, features used, search queries, and time spent on the Service.

We use the information we collect to:

• Provide, maintain, and improve the Retreatry platform and its features.
• Facilitate connections between HR managers seeking venues and venue owners with available properties.
• Process and manage RFPs, proposals, and event bookings.
• Send you transactional notifications, including RFP updates, proposal responses, and booking confirmations.
• Provide customer support and respond to your inquiries.
• Analyze usage patterns to improve user experience, develop new features, and optimize platform performance.
• Verify user accounts and prevent fraudulent activity.
• Comply with legal obligations and enforce our Terms of Service.

We do not sell your personal information to third parties. We may share your information in the following circumstances:

• Between Platform Users: When you submit an RFP, relevant details are shared with venue owners whose properties match your requirements. When venue owners submit proposals, their information is shared with the requesting HR manager.
• Service Providers: We may share information with trusted third-party service providers who assist us in operating the platform, such as cloud hosting, email delivery, and analytics services.
• Legal Requirements: We may disclose information when required by law, regulation, or legal process, or when we believe in good faith that disclosure is necessary to protect our rights, your safety, or the safety of others.
• Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.

We implement industry-standard security measures to protect your personal information against unauthorized access, alteration, disclosure, or destruction. These measures include:

• Encryption of data in transit using TLS/SSL protocols.
• Secure storage of passwords using industry-standard hashing algorithms.
• JWT-based authentication with automatic token refresh for secure session management.
• Role-based access controls to ensure users can only access data relevant to their role.
• Regular security audits and vulnerability assessments.

While we strive to protect your information, no method of electronic transmission or storage is 100% secure. We cannot guarantee absolute security of your data.

Under applicable Indian data protection laws, including the Digital Personal Data Protection Act, 2023 (DPDPA), you have the following rights:

• Right to Access: You may request a summary of your personal data that we process.
• Right to Correction: You may request correction of any inaccurate or incomplete personal data.
• Right to Erasure: You may request deletion of your personal data, subject to our legal obligations to retain certain information.
• Right to Grievance Redressal: You may raise concerns about our data processing practices with our Grievance Officer.
• Right to Nominate: You may nominate another individual to exercise your data rights in the event of your death or incapacity.

To exercise any of these rights, please contact our Grievance Officer at privacy@retreatry.com.

We use cookies and similar tracking technologies to enhance your experience on the platform. The types of cookies we use include:

• Essential Cookies: Required for the platform to function properly, including authentication tokens and session management.
• Analytics Cookies: Help us understand how users interact with the platform so we can improve the experience.
• Preference Cookies: Remember your settings and preferences, such as language and display options.

You can control cookie settings through your browser preferences. Please note that disabling essential cookies may affect the functionality of the Service.

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. We will notify you of any material changes by posting the updated policy on this page and updating the "Last updated" date.

For significant changes, we will provide additional notice through email or an in-platform notification. Your continued use of the Service after the effective date of the revised Privacy Policy constitutes your acceptance of the changes.

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: