GDPR Policy

General Data Protection Regulation (GDPR) Policy

Effective Date: 12-November-2025

1. Introduction

This General Data Protection Regulation (GDPR) Policy explains how travel.techshikkha.com (“we,” “us,” or “our”), as the Data Controller for the website https://travel.techshikkha.com (the “Site”), collects, processes, and protects the personal data of individuals within the European Economic Area (EEA) and the European Union (EU).

We are committed to full GDPR compliance and to protecting your data privacy. This policy is an extension of our main Privacy Policy and provides specific details relevant to EEA residents.

Please read this policy carefully to understand your rights and our practices regarding your personal data. By using our Site, you acknowledge the data processing activities described in this policy.

2. Definitions

  • “Personal Data”: Any information relating to an identified or identifiable natural person (a “Data Subject”). This can include a name, an email address, an IP address, or a cookie identifier.
  • “Data Subject”: An individual whose Personal Data is processed (i.e., you, as a visitor from the EEA).
  • “Data Controller”: The entity that determines the purposes and means of processing Personal Data. For this Site, the Data Controller is techshikkha.com.
  • “Data Processor”: An entity that processes Personal Data on behalf of the Data Controller (e.g., our hosting provider, Google Analytics, Google AdX).
  • “Processing”: Any operation performed on Personal Data, such as collection, recording, storage, use, disclosure, or erasure.
  1. Data Controller Information

For the purposes of the GDPR, the Data Controller is: travel.techshikkha.com Email for GDPR Inquiries: privacy@travel.techshikkha.com Website: https.travel.techshikkha.com

4. Legal Basis for Processing Your Data

We process your Personal Data only when we have a valid legal basis to do so under Article 6 of the GDPR. The specific basis depends on the context of the data collection and processing:

  • Consent (Article 6(1)(a)): We will process your data for specific purposes if you have given us your clear, unambiguous consent. This applies to:
    • Placing non-essential cookies (e.g., for advertising and analytics) on your device. We obtain this via our cookie consent banner.
    • Subscribing you to our newsletter (if you voluntarily opt-in).
    • Responding to you when you submit a query via our Contact Us form. You have the right to withdraw this consent at any time.
  • Legitimate Interests (Article 6(1)(f)): We may process some data based on our legitimate interests, provided these interests are not overridden by your rights and freedoms. Our legitimate interests include:
    • Operating and maintaining the Site to provide our content to you.
    • Ensuring the security and integrity of our Site and network.
    • Analyzing user behavior (on an anonymized or pseudonymized basis) to improve our Site, content, and user experience.
    • Displaying contextual (non-personalized) advertising.
    • Responding to user comments and inquiries.
  • Legal Obligation (Article 6(1)(c)): We may process your data if it is necessary for us to comply with a legal obligation (e.g., responding to a court order or legal request from a law enforcement authority).

5. What Personal Data We Collect and Why

We collect the minimum amount of data necessary. The types of data we collect include:

  • Data You Provide Voluntarily:
    • Contact Forms & Comments: If you contact us via email or our contact form, or if you leave a comment, you may provide Personal Data such as your name and email address. We use this only to respond to your inquiry or to manage comments. (Legal Basis: Legitimate Interest / Consent).
  • Data We Collect Automatically:
    • Log Files & Device Data: Like most websites, our servers automatically collect information when you access the Site. This includes your IP address, browser type, operating system, referring URLs, and timestamps. We use this for security, troubleshooting, and site administration. (Legal Basis: Legitimate Interest).
    • Cookies and Tracking Data: We use cookies to operate and personalize the Site. With your explicit consent, we also use cookies for analytics and advertising. This may include a unique cookie ID. (Legal Basis: Consent).

6. Your Data Protection Rights as a Data Subject

Under the GDPR, you have comprehensive rights regarding your Personal Data. These are:

  1. The Right to Be Informed: You have the right to be informed about how we collect and use your Personal Data. This GDPR Policy serves this purpose.
  2. The Right of Access (Article 15): You have the right to request a copy of the Personal Data we hold about you. This is often called a “Data Subject Access Request.”
  3. The Right to Rectification (Article 16): You have the right to have inaccurate Personal Data corrected, or completed if it is incomplete.
  4. The Right to Erasure (Article 17, “Right to be Forgotten”): You have the right to request the deletion of your Personal Data in certain circumstances (e.g., if it’s no longer necessary, or you withdraw consent).
  5. The Right to Restrict Processing (Article 18): You have the right to request that we “block” or suppress the processing of your Personal Data in certain situations (e.g., if you contest its accuracy).
  6. The Right to Data Portability (Article 20): You have the right to request and receive your Personal Data in a common, machine-readable format and have the right to transmit that data to another controller.
  7. The Right to Object (Article 21): You have the right to object to processing based on legitimate interests or for direct marketing purposes. We will stop processing your data unless we can demonstrate compelling legitimate grounds for the processing.
  8. Rights Related to Automated Decision-Making and Profiling (Article 22): We do not engage in automated decision-making or profiling that has a legal or similarly significant effect on you.

7. How to Exercise Your Rights

To exercise any of the rights listed above, please submit a verifiable request to us via email at: privacy@travel.techshikkha.com

Please title your email “GDPR Data Subject Request.” We will need to verify your identity before processing your request. We will respond to all legitimate requests within one (1) month, as required by law.

8. Data Security

We take the security of your data seriously. We have implemented appropriate administrative, technical, and physical security measures to protect your Personal Data from accidental loss, unauthorized access, alteration, or disclosure. These measures include SSL encryption for data in transit and access controls for our systems.

However, please note that no method of transmission over the Internet or electronic storage is 100% secure.

9. International Data Transfers

travel.techshikkha.com is operated from and hosted on servers that may be located outside of the EEA (e.g., in the United States). Furthermore, some of our Data Processors (e.g., Google) are global companies.

When we transfer your Personal Data outside the EEA, we ensure that a similar degree of protection is afforded to it by implementing at least one of the following safeguards:

  • We will only transfer your data to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.
  • We use specific contracts approved by the European Commission, known as Standard Contractual Clauses (SCCs), which give Personal Data the same protection it has in Europe.
  • For providers based in the US, we may transfer data to them if they are part of a framework that requires them to provide similar protection (such as the EU-U.S. Data Privacy Framework).

By using our Site, you consent to the transfer of your data to these locations.

10. Data Retention

We will only retain your Personal Data for as long as it is necessary to fulfill the purposes for which we collected it.

  • Comment Data: If you leave a comment, the comment and its metadata are retained indefinitely so we can recognize and approve any follow-up comments automatically.
  • Contact Form Data: We may keep contact form submissions for a limited period for customer service purposes, but we do not use the information submitted for marketing.
  • Analytics Data: Anonymized analytics data may be kept for longer periods.

You can request the erasure of your data at any time (see Section 6).

11. Third-Party Data Processors

We share your data with a few trusted third-party Data Processors who provide services on our behalf. These include:

  • Google Analytics: To analyze website traffic. We have enabled IP anonymization.
  • Google AdX (and other Ad Partners): To display advertisements. With your consent, these partners may use cookies to show you personalized ads.
  • Hosting Provider: To host the Site.
  • Security Services (e.g., CDN/Firewall): To protect the Site.

These processors are bound by contract to protect your data and may only use it for the purposes we specify.

12. Cookies and Consent

We use a cookie consent banner to obtain your explicit consent for all non-essential cookies, including advertising and analytics cookies, as required by the GDPR and the ePrivacy Directive. You can manage or withdraw your cookie consent at any time through our cookie settings tool or by clearing your browser’s cookies.

13. Children’s Privacy (COPPA & GDPR)

This Site is not intended for or directed at children. In accordance with GDPR Article 8, we do not knowingly collect Personal Data from individuals under the age of 16 without parental consent. If you are under 16, please do not provide any Personal Data to this Site. If we become aware that we have collected data from a child under 16, we will take steps to delete it immediately.

14. Your Right to Lodge a Complaint

If you are an EEA resident and you feel that we have not addressed your concerns or that we are processing your Personal Data in a way that is not compliant with GDPR, you have the right to lodge a complaint with your local Data Protection Authority (DPA) or supervisory authority.

15. Changes to This GDPR Policy

We may update this policy from time to time. We will notify you of any changes by posting the new policy on this page and updating the “Effective Date” at the top. We encourage you to review this policy periodically.

16. Contact Us

For any questions, concerns, or requests regarding this GDPR Policy, please contact our data privacy team at: Email: privacy@travel.techshikkha.com