Privacy Policy

Your privacy and data security are our top priorities

Last Updated: October 12, 2025

1. Introduction

Riverside Hut ("we," "us," or "our") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website or use our services.

By using our website and services, you consent to the data practices described in this policy. If you do not agree with this policy, please do not use our website or services.

This policy is compliant with the Information Technology Act, 2000, and the Digital Personal Data Protection Act, 2023 of India.

2. Information We Collect

2.1 Personal Information

When you make a booking or contact us, we may collect:

  • Contact Information: Name, email address, phone number, mailing address
  • Booking Details: Preferred dates, number of guests (adults/children), package selection
  • Special Requests: Dietary requirements, accessibility needs, special occasions
  • Identity Information: Age verification for certain bookings

2.2 Payment Information

Payment transactions are processed through secure third-party payment gateways (Razorpay). We do not store complete credit card or debit card information on our servers. We may retain transaction IDs, payment dates, and amounts for accounting and record-keeping purposes.

2.3 Automatically Collected Information

When you visit our website, we automatically collect:

  • Device Information: IP address, browser type, operating system
  • Usage Data: Pages visited, time spent on pages, links clicked
  • Cookies and Tracking: See our Cookies section below
  • Analytics Data: Website traffic patterns and user behavior (via Google Analytics)

2.4 Communications

If you contact us via email, phone, or contact forms, we retain records of those communications, including the content and any information you provide.

3. How We Use Your Information

We use the collected information for the following purposes:

3.1 Service Delivery

  • Processing and confirming bookings
  • Managing reservations and guest check-in
  • Providing requested services and accommodations
  • Communicating booking details and updates

3.2 Customer Support

  • Responding to inquiries and support requests
  • Resolving issues and handling complaints
  • Providing information about our services

3.3 Business Operations

  • Maintaining booking records and financial transactions
  • Generating invoices and receipts
  • Conducting internal analytics and reporting
  • Preventing fraud and ensuring security

3.4 Marketing (with Consent)

  • Sending promotional offers and updates (you can opt-out anytime)
  • Sharing news about new packages and services
  • Conducting customer satisfaction surveys

3.5 Legal Compliance

  • Complying with legal obligations and regulations
  • Protecting our legal rights and interests
  • Cooperating with law enforcement when required

4. Data Storage and Security

4.1 Storage Location

Your data is stored securely using Supabase, a trusted cloud database service. Data is encrypted both in transit (using SSL/TLS) and at rest.

4.2 Security Measures

We implement industry-standard security measures to protect your data:

  • Encrypted data transmission (HTTPS/SSL)
  • Secure database access controls
  • Regular security audits and updates
  • Limited employee access on a need-to-know basis
  • Password protection and authentication

4.3 Data Retention

We retain your personal information for as long as necessary to provide services, comply with legal obligations, resolve disputes, and enforce agreements. Booking records are typically retained for 7 years for accounting and legal purposes. You may request deletion of your data (subject to legal retention requirements) by contacting us.

5. Third-Party Services

We use trusted third-party services to operate our website and process bookings. These services have their own privacy policies:

5.1 Payment Processing

Razorpay - Secure payment gateway for online transactions

Payment information is collected and processed directly by Razorpay. We do not store complete card details. Review Razorpay's privacy policy for details on how they handle payment data.

5.2 Database and Hosting

Supabase - Cloud database for storing booking and user data

Booking information, guest details, and transaction records are stored securely in Supabase with encryption and access controls.

5.3 Analytics

Google Analytics - Website traffic and usage analysis

We use Google Analytics to understand how visitors use our website. This includes anonymized data about pages visited, time spent, and user interactions. Google Analytics uses cookies to collect this information. You can opt-out using browser extensions or cookie settings.

5.4 Email Communications

Resend - Email delivery service for booking confirmations and communications

Booking confirmations, invoices, and updates are sent via Resend's email service.

We do not sell or rent your personal information to third parties for marketing purposes.

6. Cookies and Tracking Technologies

6.1 What Are Cookies?

Cookies are small text files stored on your device when you visit our website. They help us provide a better user experience and understand how our website is used.

6.2 Types of Cookies We Use

Essential Cookies

Required for website functionality, such as maintaining your session and processing bookings. These cannot be disabled.

Analytics Cookies

Help us understand visitor behavior and improve our website. These are provided by Google Analytics.

Preference Cookies

Remember your settings and preferences for a personalized experience.

6.3 Managing Cookies

You can control cookies through your browser settings:

  • Block all cookies
  • Accept cookies from specific websites
  • Delete existing cookies
  • Set preferences for third-party cookies

Note that blocking certain cookies may impact website functionality and your ability to make bookings.

7. Your Rights and Choices

Under Indian data protection laws, you have the following rights:

7.1 Right to Access

You can request a copy of the personal information we hold about you.

7.2 Right to Correction

You can request correction of inaccurate or incomplete personal information.

7.3 Right to Deletion

You can request deletion of your personal data, subject to legal retention requirements and legitimate business needs (e.g., accounting records, ongoing bookings).

7.4 Right to Opt-Out of Marketing

You can unsubscribe from promotional emails at any time by clicking the unsubscribe link in our emails or contacting us directly.

7.5 Right to Withdraw Consent

Where we process data based on consent, you can withdraw that consent at any time.

7.6 Right to Lodge a Complaint

If you believe your data protection rights have been violated, you can lodge a complaint with the appropriate data protection authority in India.

8. Data Sharing and Disclosure

8.1 When We Share Data

We may share your information in the following situations:

  • Service Providers: Third-party vendors who help us operate our business (payment processing, email services, hosting)
  • Legal Requirements: When required by law, court order, or government authority
  • Business Transfers: In the event of a merger, acquisition, or sale of assets
  • Safety and Security: To protect rights, property, or safety of Riverside Hut, our guests, or others
  • With Your Consent: When you explicitly authorize us to share your information

8.2 What We Don't Do

  • We do not sell your personal information to third parties
  • We do not rent or lease customer lists
  • We do not share data for third-party marketing without consent

9. Children's Privacy

Our services are intended for adults aged 18 and above who can enter into binding contracts. We do not knowingly collect personal information from children under 18 without parental consent. When children are included in bookings, their information is provided by the adult making the reservation.

If you believe we have inadvertently collected information from a child without proper consent, please contact us immediately so we can remove it.

10. Data Breach Notification

In the unlikely event of a data breach that affects your personal information, we will:

  • Promptly investigate and assess the breach
  • Notify affected individuals within the timeframe required by law
  • Inform relevant authorities as required
  • Take steps to mitigate harm and prevent future breaches
  • Provide guidance on protective measures you can take

11. International Data Transfers

While our primary operations are in India, some of our third-party service providers (such as cloud hosting) may store or process data in other countries. When data is transferred internationally, we ensure appropriate safeguards are in place to protect your information in accordance with applicable data protection laws.

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make material changes, we will:

  • Update the "Last Updated" date at the top of this policy
  • Notify you via email if you have an active booking or account
  • Display a notice on our website

We encourage you to review this policy periodically. Continued use of our services after changes constitutes acceptance of the updated policy.

13. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or how we handle your personal information, please contact us:

Email

admin@riversidehut.com

For privacy-related inquiries, please use subject line: "Privacy Request"

Address

Kattoorkadavu Church 2nd Ring Road, Karanchira
Thrissur, Kerala 680702
India

Your Consent

By using our website and services, you acknowledge that you have read and understood this Privacy Policy and consent to the collection, use, and disclosure of your personal information as described herein.

For more information about our terms of service, please review our Terms & Conditions.