Introduction

CSN Dandiyas is a ticket booking system for Navratri and related events. This policy applies to the website, subdomains, and related customer support channels operated by CSN Dandiyas. It outlines what data is collected, why it is collected, and the rights available.

Data Collection

Information provided directly is collected when an account is created, a ticket is booked, support is contacted, or forms are submitted. This may include name, email, phone, address, attendee names, preferences, and payment details processed through payment gateways. Limited automated data such as IP address, device information, browser type, and pages visited via cookies or similar technologies is also collected.

• Account and booking data: identity details, contact details, order history, and seat selections.
• Payment and billing: card or UPI metadata processed by PCI-compliant providers; tokens may be stored, not full card numbers.
• Technical data: IP, device identifiers, cookies, and logs for security and performance.

Cookies and Tracking

Cookies and similar technologies are used to keep users signed in, remember preferences, measure site performance, and prevent fraud. Browser settings can be adjusted to refuse cookies, but some features may not function properly. Separate cookie banners or settings may be provided for granular choices.

Data Usage

Personal data is used to process orders, issue tickets and confirmations, provide customer support, personalize communications, improve services, and comply with legal requirements such as tax and accounting. Marketing communications are sent only where permitted and can be opted out at any time.

• Service delivery: booking management, QR/entry verification, and event notifications.
• Safety and integrity: fraud prevention, abuse detection, and security monitoring.

Legal Bases

Depending on location, processing relies on consent, performance of a contract (fulfilling ticket purchases), compliance with legal obligations, and legitimate interests such as securing systems and improving services, balanced against individual rights.

Data Sharing

Data is shared only with service providers and partners who help operate the platform, including payment processors, email/SMS providers, analytics, hosting, and event organizers, under appropriate contracts and confidentiality obligations. Data may be disclosed to law enforcement where required by law.

Data Protection

Administrative, technical, and physical safeguards are implemented, including HTTPS/TLS encryption in transit, restricted access, least-privilege controls, and periodic security reviews, recognizing that no method of transmission over the Internet is entirely secure.

Data Retention

Personal data is retained only for as long as necessary for the purposes stated, including fulfilling bookings, complying with legal obligations, resolving disputes, and enforcing agreements, after which data is deleted or anonymized consistent with retention policies.

User Rights

Subject to applicable law, rights may include access, correction, deletion, restriction, portability, and objection to certain processing as well as the ability to withdraw consent at any time without affecting prior lawful processing. Requests can be submitted via the contact details below.

International Transfers

If data is transferred outside the home jurisdiction, appropriate safeguards such as contractual protections or equivalent mechanisms are used to protect information consistent with applicable privacy laws and industry best practices.

Children’s Privacy

The service is not directed to children under the relevant age of consent in a jurisdiction