StayGhar — Privacy Policy

Introduction:

Sujata Leisure Pvt. Ltd., operating under the brand name StayGhar, values your privacy and is fully committed to safeguarding the confidentiality of the personal information you share with us. As a responsible platform, we act as both a data controller and data processor, ensuring that your data is managed with the utmost care and transparency.

This Privacy Policy outlines how StayGhar and its associated entities handle, store, and secure your personal information (“Personal Information”), whether collected online or ofline.

This policy applies to all individuals and property (Hotel, Homestay, Resort etc.) owner (“Users”) who access, browse, inquire about, or use any products or services offered by StayGhar through our

digital and physical touchpoints. These include (but are not limited to) our mobile app, website, customer service helplines, and partner offices—collectively referred to as “Service Channels”.

For clarity:

“You” or “Your” refers to the User.

“We”, “Us”, or “Our” refers to StayGhar.

“Platform” or “Website” refers to our mobile application, website, and related digital interfaces.

By using any of our platforms or contacting us through any service channel, you are agreeing to the terms of this Privacy Policy. If you do not agree with any part of this policy, we respectfully advise you not to use our services or share your personal information with us.

Please note: This Privacy Policy applies only to StayGhar’s own services and platforms. Any third- party links or partner platforms you may interact with through StayGhar are governed by their own privacy policies. We recommend reviewing their terms and policies separately before engaging with them.

This Privacy Policy is an integral part of your User Agreement with STAYGHAR and all capitalized terms used, but not otherwise defined herein, shall have the respective meanings as ascribed to them in the User Agreement.

Type of Information We Collect and Legal Basis

To deliver our services effectively and responsibly, StayGhar collects certain categories of personal and non-personal information from you, the user. This collection is necessary not only for offering

our core functionalities, but also to comply with applicable laws and fulfill obligations to our service partners.

Personal Information We Collect

Personal information refers to any data you voluntarily provide or that we obtain through lawful means when you register, inquire, or interact with StayGhar through our mobile application, website, call center, or associated sales channels.

This may include, but is not limited to:

1. Information at Registration: Full name, gender, date of birth, marital status, profile photo, Email address, mobile number, address, and emergency contact details, Identification documents (such as Aadhaar, passport, PAN, etc.), Payment and billing details (e.g., credit/debit card numbers, UPI ID, payment history)
2. Service Usage and Booking Data: Travel details and booking history, Guest or co-traveler details you submit on their behalf, Uploaded files (IDs, booking documents, invoices, etc.)

If you provide data for other travelers, you are responsible for ensuring that those individuals have consented to sharing their information with StayGhar for the relevant booking or service.

3. Permissions-Based Data: Contact List Access: Used only to simplify the booking process by allowing you to add guests from your contacts.

Internet Access: Required for syncing bookings, app functionality, and sending real-time notifications. No browsing activity or personal online behavior is monitored.

4. Legal and Regulatory Requirements: PAN, passport, or other government-issued IDs when mandated (e.g., for LRS compliance, international bookings, etc.)
5. Third-Party and Public Sources: Information from linked social profiles (only if you permit) Feedback or data shared through surveys, contests, or customer support interactions

 .ı StayGhar never shares or sells sensitive personal data such as PAN, Aadhaar, vaccination

certificates, or bank details without your prior consent, unless required under applicable law or by an order from a competent authority.

How We Use Your Personal Information

StayGhar collects and uses your information for a variety of reasons directly related to providing, improving, and personalizing our services.

Booking and Account Management

• Completing and managing hotel or homestay bookings
• Displaying saved traveler profiles for faster bookings
• Verifying identity, enabling contactless check-in
• Processing secure payments Communication and Support
• Sending booking confirmations and transaction updates (via SMS, WhatsApp, Email, or app notifications)
• Customer service support via phone, chat, or email
• Verifying and authenticating your account Personalization and Engagement
• Sending personalized greetings on special occasions
• Tailoring content and suggestions based on usage patterns
• Collecting feedback through optional surveys to enhance app experience Offers, Rewards, and Promotions
• Participation in loyalty, referral, or promotional reward programs
• Delivering promotional content, special deals, or newsletters
• Informing you about new services, offers, or updates relevant to your interests

Participation in promotional campaigns and surveys is voluntary. You may opt out at any time via your account settings or by contacting our support team.

Legal and Regulatory Compliance

• Verifying user identity when required by law (e.g., KYC, RBI rules for foreign remittances)
• Sharing information with law enforcement, if legally compelled Data Anonymization and Aggregation

From time to time, StayGhar may use anonymized and aggregated data (which cannot be traced back to any individual) for analytics, product enhancement, or service benchmarking.

Opt-Out and Deletion

If you choose not to share certain information, or if you request deletion of data already shared, we may be unable to fulfill specific services or booking requests. However, we will respect your choice and process your request in accordance with Indian data protection laws.

Data Retention – How Long We Keep Your Information

At StayGhar, we retain your personal information only for as long as it is necessary to fulfill the purposes outlined in this Privacy Policy, including providing you with our services, maintaining your account, handling support queries, and complying with legal or regulatory obligations.

In some cases, we may need to keep your data for longer—such as:

• To meet legal, tax, audit, or compliance requirements
• To resolve disputes or enforce agreements
• To maintain a record of transactions for internal or statutory reporting

Once your data is no longer required for any operational, legal, or regulatory purpose, we ensure it is:

• Permanently deleted, or
• Securely archived in a way that makes it inaccessible for any further processing or use

We regularly review our data retention practices to ensure that we do not store your personal information for longer than necessary.

Automatic Logging of Session Data

Whenever you access or use the StayGhar app or website, certain technical data is automatically recorded for security and analytical purposes. This session data may include details such as:

• Your IP address
• Device operating system
• Browser type and version
• Date, time, and duration of your visit
• Your activity within the app or website (such as pages visited, clicks, )

This information helps us understand user behavior, improve navigation, and enhance the

performance and reliability of our platform. It also supports us in identifying technical issues, such as server errors or loading delays, and in optimizing the overall user experience.

Note: This data does not directly identify you as an individual. However, it may allow us to infer

general information such as your Internet Service Provider (ISP) and the approximate location of your internet connection.

This automatic logging is a standard practice to ensure that our platform runs smoothly and securely.

Sharing of Your Personal Information

At StayGhar, we respect your privacy and handle your personal data responsibly. However, certain information may need to be shared with trusted third parties and partners in order to deliver the services you request or to fulfill legal and operational obligations.

1. Service Providers and Travel Partners

To process your bookings and reservations, we may share relevant personal details with service providers such as:

• Homestays, hotels, and accommodation partners, Mobile Application Owner
• Transportation providers (car rentals, drivers, )

When you make a booking through StayGhar, you grant us permission to share the necessary data with these providers. These entities receive only the information required to deliver the service and are not authorized to use your information for any unrelated purposes.

Please note: While we aim to partner with reliable providers, they may operate under their own

privacy policies, and StayGhar is not responsible for how they handle your data beyond the agreed service scope.

2. Affiliates and Group Companies

To provide you with a better and more customized experience, we may securely share your information within our group of companies, subsidiaries, or sister concerns. This could be for:

• Responding to your queries more efficiently
• Informing you of related services, offers, or support across our network

In the event of a merger, acquisition, asset transfer, or business restructuring, your information may be part of the transferred assets. Any such transfer will be done with appropriate data protection safeguards.

3. Strategic Partners and Vendors

From time to time, we may collaborate with carefully chosen business partners to bring you exclusive offers or value-added services. These may include:

• Co-branded reward programs
• Credit/debit card partnerships

If you opt-in to any of these services, the relevant third party will process your data according to their privacy policy. We recommend reviewing those policies before proceeding.

Additionally, we may engage third-party vendors to perform operational tasks on our behalf—such as payment processing, customer support, or analytics. These partners are bound by contractual confidentiality and data protection obligations.

4. Use of Aggregate and Anonymized Data

We may use anonymized or aggregated user data for purposes like:

• Analyzing user behavior to enhance app performance
• Reporting usage trends to business partners or investors
• Running marketing campaigns or promotional reporting

This data cannot be traced back to any individual and may be used for internal insights or shared with third parties for legitimate business purposes.

5. Surveys, Research & Marketing Projects

Occasionally, we may work with research agencies or marketing consultants to conduct surveys, feedback collection, or pilot testing. If your data is shared for such purposes:

• It is strictly limited to the project scope
• The third party is contractually obligated to protect your data
• Any shared information is handled in accordance with relevant data protection laws

6. Legal Disclosures

We may be required to disclose your personal data in the following situations:

• To comply with legal requirements, court orders, or government requests
• To respond to law enforcement investigations
• To conduct internal audits or regulatory checks
• To prevent fraud, enforce our terms, or protect the rights, safety, or property of StayGhar, our users, or the public

Such disclosures may occur without prior notice, and StayGhar is not liable for any resulting impact from lawful disclosures made in good faith.

PERMISSIONS REQUIRED BY THE STAYGHAR APP

To provide a smooth and personalized booking experience, StayGhar requires access to certain device permissions. These permissions help us enhance usability, ensure security, and offer customized features relevant to your travel preferences. Here’s what we access and why:

Android Permissions

Internet Access:

Required to enable all online functions of the app — such as real-time booking, map access, login, syncing user data, sending OTPs, and fetching updated hotel inventory or rates. Without this, most services won’t function.

Contacts (READ_CONTACTS):

This allows you to:

• Easily share booking details with friends and
• Invite contacts to try the StayGhar
• Send referral
• Discover where your contacts have stayed (if applicable).

This data is synced to our secure servers and not shared with third parties without consent. Device & App History:

Allows us to understand your device environment (OS, model, language settings) and optimize app behavior accordingly.

Camera:

Lets you capture and upload photos or videos of stays, scan QR codes, or update your profile picture directly through the app.

Identity:

Helps auto-fill email fields, link your account with Google/Facebook, and tailor experiences using your login credentials.

Location:

Enables automatic location detection for faster bookings, last-minute hotel suggestions, and location- specific offers.

SMS:

Allows the app to read incoming OTPs to auto-verify mobile numbers and streamline transactions. Phone:

Let’s you call customer support, homestay owners, or vendors directly from the app.

Photo/Media/Files:

Required to store maps and image data for ofline access and better performance in low network areas.

Wi-Fi Connection Info:

Helps us enhance app behavior (like map loading or image quality) when connected to Wi-Fi. Device ID & Call Info:

Used to uniquely identify your device and auto-fill contact info to reduce manual typing. Bluetooth:

Used to enable services like smart-lock-enabled homestay access (only when third-party hardware services are integrated).

Audio/Video:

Lets you record and upload hotel review videos with proper audio support. Phone Number:

Used for seamless registration, UPI setup, fraud prevention, and account verification. IMEI/IMSI:

Required for fraud detection and unique device-user mapping. SIM Serial Number:

Needed for verifying that the mobile number used for UPI matches the active SIM on your device.

iOS Permissions

Notifications:

Allows us to send booking confirmations, refund alerts, exclusive deals, and real-time updates. If disabled, essential updates will be sent via SMS.

Contacts:

Enables social sharing features and personalized hotel recommendations based on your contacts’ travel activity. All data is encrypted and stored securely.

Location:

Auto-detects your nearest city or hotel location for faster bookings, personalized offers, and accurate travel assistance.

Please Note:

All collected data is handled as per our [Privacy Policy] and never sold to third parties. Permissions are requested only to provide a smoother, more secure, and highly personalized experience for you.

HOW WE PROTECT YOUR PERSONAL INFORMATION

At STAYGHAR, securing your personal information is a top priority. All transactions on our platform are protected through TLS (Transport Layer Security) encryption, which ensures that any data you share is securely transmitted. TLS is a trusted encryption protocol that allows your browser to

scramble the information before it’s sent to us.

Our website is equipped with robust security protocols to safeguard against the loss, misuse, or unauthorized alteration of the data in our possession. When you access or update your account details, a secure server is used to protect your information. Once we receive your data, we follow strict internal security policies to ensure it remains safe from unauthorized access at all times.

ELIGIBILITY TO USE STAYGHAR SERVICES

To engage in any transactions with STAYGHAR or to provide valid consent for the processing of your personal information, you must be at least 18 years of age. By accessing or using our services, you confirm that you meet this age requirement.

Changes to This Policy

• We may update this Privacy Policy from time to
• We will notify you via email or in-app notification
• Your continued use after changes means you accept the updated