PRIVACY POLICY
Last updated on April 01, 2025
1. INTRODUCTION
1.1 Who We Are: This Privacy Policy describes how and why Tranquil Library Private Limited ('Company', 'we', 'us', or 'our'), located at Shop No. 66P, Sector-7, Gohana, Haryana 131301, India, collects, stores, uses, shares, and otherwise processes ('process') your personal information when you use our Services.
1.2 Services Covered: This policy applies when you use our services ('Services'), including when you:
Visit our website at www.tranity.in (the "Site"), or any website of ours that links to this Privacy Policy.
Download and use our mobile application Tranity (the "Tranity app"), or any other application of ours that links to this Privacy Policy.
Download and use our mobile application Tranity Partner (the "Tranity Partner app").
Engage with us in other related ways, including sales, marketing, customer support, or events.
1.3 Our Role: We act as the Data Fiduciary (equivalent to a "data controller" in other jurisdictions) responsible for making decisions about how your personal information is processed in connection with our Services under the Indian Digital Personal Data Protection Act, 2023 (DPDPA).
1.4 Your Agreement: Reading this Privacy Policy will help you understand your privacy rights and choices. If you do not agree with our policies and practices, please do not use our Services. By using our Services, you agree to the collection and use of information in accordance with this policy and our Terms of Service.
1.5 Contact Us: If you still have any questions or concerns after reading this policy, please contact our Data Protection Officer (DPO) or Grievance Officer (details in Section 15).
2. SUMMARY OF KEY POINTS
(This summary provides key points from our Privacy Policy, but you can find out more details about any of these topics by using our table of contents below to find the section you are looking for.)
• What personal information do we process? Depending on how you interact with us (as a Member, Partner, or Site visitor) and the Services, we process information you provide (e.g., name, contact details, ID, payment info), information collected automatically (e.g., IP address, device info, usage data), and information from third parties (e.g., social logins, background checks where applicable). (See Section 3)
• Do we process sensitive personal information? We generally do not require sensitive personal data (as defined under DPDPA, e.g., health, biometrics for identification, unless explicitly required for verification with consent). We may process government ID details for verification purposes with your consent or as permitted by law. (See Section 3.1)
• How do we process your information? We process your information to provide, improve, and administer our Services (e.g., facilitate reservations, manage accounts, process payments), communicate with you, ensure security and prevent fraud, and comply with legal obligations. We only process information based on valid grounds like your consent, fulfilling our contract with you, legitimate interests (where applicable and not overriding your rights), or legal requirements. (See Section 4)
• When and with whom do we share personal information? We share information between Members and Partners as necessary for reservations. We also share information with service providers (e.g., payment processors, cloud hosting, analytics), affiliates, for legal compliance, or in connection with business transfers. (See Section 5)
• How do we keep your information safe? We use appropriate technical and organizational measures to protect your information, but no system is 100% secure. (See Section 9)
• What are your privacy rights? Under Indian law (DPDPA), you have rights like accessing, correcting, erasing your data, grievance redressal, and withdrawing consent. (See Section 11)
• How do you exercise your rights? You can often manage your information via account settings or by contacting us/our DPO/Grievance Officer. (See Section 16)
TABLE OF CONTENTS
1. INTRODUCTION
3. WHAT INFORMATION DO WE COLLECT?
○ 3.1. Personal Information You Disclose to Us
○ 3.2. Information Automatically Collected
○ 3.3. Information Collected from Other Sources
4. HOW DO WE PROCESS YOUR INFORMATION (PURPOSES & GROUNDS)?
5. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?
6. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?
7. HOW DO WE HANDLE YOUR SOCIAL LOGINS?
8. WHAT IS OUR STANCE ON THIRD-PARTY WEBSITES?
9. HOW DO WE KEEP YOUR INFORMATION SAFE?
10. HOW LONG DO WE KEEP YOUR INFORMATION?
11. WHAT ARE YOUR PRIVACY RIGHTS (UNDER DPDPA)?
12. DO WE COLLECT INFORMATION FROM MINORS?
13. CONTROLS FOR DO-NOT-TRACK FEATURES
14. DO WE MAKE UPDATES TO THIS POLICY?
15. HOW CAN YOU CONTACT US ABOUT THIS POLICY?
16. HOW CAN YOU REVIEW, UPDATE, OR DELETE YOUR DATA?
3. WHAT INFORMATION DO WE COLLECT?
We collect personal information from different sources: information you provide, information collected automatically, and information from third parties.
3.1. Personal Information You Disclose to Us
In Short: We collect personal information you voluntarily provide when registering, using the Services, expressing interest in us, participating in activities, or contacting us.
Types of Information: The specific information depends on your interaction (Member vs. Partner) and choices:
Contact & Account Information: Name(s), phone number(s), email address(es), mailing/billing address(es), username(s), password, profile picture, contact preferences, date of birth, gender.
Partner-Specific Information: Business name (if applicable), Space details (address, description, amenities, rules, photos/videos), pricing and availability information, bank account details (for payouts), PAN, GSTIN (if applicable).
Member-Specific Information: Reservation details (Space, dates, times), communication history with Partners via the Platform.
Identity Verification Information: To ensure trust and safety, we may request verification information (with your consent or as required/permitted by law), such as:
An image of your government-issued ID (e.g., PAN card, Voter ID, Passport, Driving Licence). We process this only for verification and fraud prevention.
Date of birth, gender.
A selfie for comparison with your ID photo (where offered and with explicit consent).
Payment Information (Members): We may collect data necessary to process your payment if you make reservations. This may include your payment instrument number, the security code associated with it, and other relevant information. This data is primarily processed and stored by our trusted third-party payment processors.
Social Media Login Data: We may provide the option to register using existing social media account details (e.g., Google, Facebook). If you choose this, we collect profile information as described in Section 7 ('HOW DO WE HANDLE YOUR SOCIAL LOGINS?').
Application Data & Mobile Device Access: If you use our application(s), we may collect the following with your access or permission:
Geolocation Information: We may request permission to track location-based information from your mobile device (continuously or while using the app) for location-based services. You can change permissions in your device settings.
Mobile Device Access: We may request access to features like your mobile device's calendar, camera, microphone, reminders, storage, and other features. You can change permissions in your device settings.
Push Notifications: We may request to send push notifications regarding your account or app features. You can opt out in your device's settings.
Communications: Information within messages sent via the Platform, emails, or calls to customer support (calls may be recorded with notice/consent).
Other Information: Feedback, survey responses, forum posts, contest entries, information provided when contacting support.
Sensitive Personal Data: We generally do not process sensitive personal data as defined under DPDPA (e.g., health data, biometric data for identification purposes beyond verification, religious beliefs, caste, etc.). We do not process sensitive information beyond what may be present in government IDs used for verification, which is processed with your consent or as permitted by law.
Accuracy Obligation: All personal information you provide must be true, complete, and accurate. You must notify us of any changes.
3.2. Information Automatically Collected
In Short: We automatically collect certain information (like IP address, browser/device characteristics) when you visit, use, or navigate the Services. This doesn't reveal your specific identity but includes device and usage details.
Types of Information:
Log and Usage Data: Service-related, diagnostic, usage, and performance information automatically collected by our servers. This may include your IP address, device information, browser type/settings, activity in the Services (timestamps, pages viewed, searches, features used), device event information (system activity, error reports, hardware settings).
Device Data: Information about your computer, phone, tablet, or other access device. This may include IP address (or proxy server), device/application identification numbers, location, browser type, hardware model, Internet service provider and/or mobile carrier, operating system, and system configuration information. If using our application(s), we may also collect phone network info, OS/platform, device type, unique device ID, and info about accessed features.
Location Data: Precise or imprecise location data. Collection depends on device type and settings. We may use GPS, IP address, Wi-Fi, and cell towers. You can opt out via device settings, but this may limit service functionality.
Cookies and Similar Technologies: We use cookies, web beacons, pixels, etc., to collect information. See our Cookie Policy (www.tranity.in/policies/cookie) for details.
Purpose: This information is primarily needed to maintain the security and operation of our Services/application(s), for troubleshooting, and for internal analytics and reporting purposes.
Google API: Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
3.3. Information Collected from Other Sources
In Short: We may collect limited data from public databases, marketing partners, social media platforms, identity verification services, and other third parties.
Types of Information:
Public Databases & Marketing Partners: To enhance marketing, offers, services, and update records, we may obtain information like mailing addresses, job titles, email addresses, phone numbers, intent data (user behavior), IP addresses, social media profiles/URLs, and custom profiles for targeted advertising and event promotion.
Social Media Platforms: If you use social login (see Section 7), we receive profile information (e.g., name, email, friends list, profile picture, gender) based on your settings on that platform. Your social media provider's use of your information is not governed by this policy. Collection depends on your privacy settings.
Identity Verification & Background Checks: For fraud prevention and safety, we may use third-party services to verify IDs or conduct background checks (e.g., criminal records) where permitted by law and with your consent if required. This is more common for Partners but may apply to Members in certain situations.
Payment Processors: Confirmation of payments, transaction details (excluding full instrument numbers).
Other Users: Information provided through reviews, dispute resolution processes, or referrals.
4. HOW DO WE PROCESS YOUR INFORMATION (PURPOSES & GROUNDS)?
In Short: We process your information to provide, improve, and administer our Services, communicate with you, for security/fraud prevention, and legal compliance. We may need your consent for certain processing activities.
Legal Grounds (Bases for Processing under DPDPA): We process your personal data based on one or more of the following grounds:
Consent: Where you have given us explicit consent for a specific purpose (e.g., sending marketing communications, processing certain verification data). You can withdraw consent anytime (see Section 11).
Performance of Contract: To fulfill our obligations under the Terms of Service, such as creating your account, facilitating reservations, processing payments, and providing customer support.
Legitimate Interests: For certain specified purposes where processing is necessary, provided it doesn't override your fundamental rights (e.g., improving our services, fraud prevention, internal analytics). We rely on this ground carefully and transparently.
Legal Obligation: To comply with applicable laws (e.g., tax laws like GST/TCS, responding to legal requests from authorities, IT Act compliance).
Purposes of Processing: We process your information for purposes including:
Account Management: Facilitating account creation, login, authentication, and maintenance.
Service Delivery: Providing the core Platform services (listing, searching, reserving spaces/units), processing payments and payouts, fulfilling and managing orders/reservations.
Communication: Responding to inquiries, providing support, sending administrative information (service updates, policy changes), sending transactional messages (reservation confirmations, reminders via email/SMS).
Personalization: Tailoring your experience (e.g., showing relevant Spaces based on location/history).
Marketing & Advertising: Sending promotional communications (with consent/opt-out), delivering targeted advertising (subject to cookie preferences), administering referrals/rewards/contests. See Section 11 for opt-out information.
Platform Improvement: Analyzing usage trends, identifying effective campaigns, evaluating and improving Services, products, marketing, and user experience.
Security & Fraud Prevention: Protecting our Services, monitoring for fraud, verifying identities, conducting risk assessments, enforcing terms and policies.
Legal Compliance: Complying with laws, responding to legal requests, establishing/exercising/defending legal rights.
Feedback: Requesting feedback on your experience.
5. WHEN AND WITH WHOM DO WE SHARE YOUR PERSONAL INFORMATION?
In Short: We share information in specific situations and with specific categories of third parties as outlined below.
Sharing Scenarios:
Between Members and Partners: We share information necessary to facilitate reservations and communication, such as:
Member's name, profile picture (if provided), reservation details shared with the Partner upon confirmation.
Partner's name/business name, profile picture, Space details, rules shared with the Member.
Content of messages exchanged via the Platform.
Reviews posted by Members or Partners.
With Service Providers (Vendors, Consultants, etc.): We share data with third-party vendors, contractors, agents who perform services for us (e.g., payment processing, cloud hosting, data analytics, customer support, marketing, identity verification, security). These parties are contractually obligated to protect your data and only use it for the services they provide to us. Categories include: Ad Networks, Affiliate Marketing Programs, Cloud Computing Services, Data Analytics Services, Finance & Accounting Tools, Payment Processors, Performance Monitoring Tools, Product Engineering & Design Tools, Sales & Marketing Tools, Social Networks, User Account Registration & Authentication Services, Communication & Collaboration Tools, Data Storage Service Providers, Order Fulfilment Service Providers, Testing Tools, Customer Support Tools, Identity Verification Services.
For Legal Reasons: We may disclose information if required by law, legal process (subpoena, court order), or government request, or if we believe disclosure is necessary to:
Comply with legal obligations (including tax reporting like GST/TCS).
Protect the rights, property, or safety of Tranity, our users, or the public.
Prevent or investigate illegal activity, fraud, or security issues.
Enforce our Terms of Service and other policies.
Business Transfers: In connection with a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, your information may be shared or transferred as part of the transaction. We will notify you if your information becomes subject to a different privacy policy.
With Affiliates: We may share information within our corporate group (parent company, subsidiaries, joint venture partners) for operational, administrative, and marketing purposes, requiring them to honor this Privacy Policy.
Business Partners: We may share your information with our business partners to offer you certain products, services, or promotions.
When we use Google Maps Platform APIs: We may share your information with certain Google Maps Platform APIs (e.g., Google Maps API, Places API). Google Maps uses various technologies to estimate location. We may obtain and cache your location. You may revoke consent by contacting us.
Offer Wall: Our application(s) may display a third-party hosted 'offer wall'. This allows third-party advertisers to offer rewards for completing ad offers. Clicking an offer wall takes you to an external site. A unique identifier (like user ID) may be shared with the offer wall provider for crediting and fraud prevention. Offer walls may be displayed based on geographic or demographic data.
With Your Consent: We may share your information for other purposes if you provide explicit consent.
6. DO WE USE COOKIES AND OTHER TRACKING TECHNOLOGIES?
In Short: Yes, we use cookies and similar technologies (web beacons, pixels) to collect and store information, primarily for functionality, security, analytics, and advertising.
Details: Specific information about the technologies we use, their purposes (e.g., security, preferences, basic functions, analytics, advertising), and how you can manage your preferences (e.g., refuse certain cookies) is set out in our separate Cookie Policy: www.tranity.in/policies/cookie. Third parties may also use these technologies on our Services for analytics and tailored advertising.
Google Analytics: We may share information with Google Analytics. Features used may include Remarketing, Display Network Reporting, and Demographics/Interests Reporting. You can opt out via Google's tools (https://tools.google.com/dlpage/gaoptout), Ads Settings, or NAI opt-out pages (https://optout.networkadvertising.org/, https://www.networkadvertising.org/mobile-choice). See Google Privacy & Terms for more.
7. HOW DO WE HANDLE YOUR SOCIAL LOGINS?
In Short: If you register or log in using a third-party social media account (e.g., Google, Facebook, X), we receive profile information from that provider.
Information Received: This typically includes your name, email address, profile picture, and potentially other public profile information or friend lists, depending on the provider and your privacy settings on that platform.
Use of Information: We use this information only for purposes described in this Privacy Policy (e.g., facilitating login, populating profile) or as otherwise made clear to you.
Third-Party Responsibility: We do not control and are not responsible for how your social media provider uses your personal information. Review their privacy policy and manage your settings directly with them.
8. WHAT IS OUR STANCE ON THIRD-PARTY WEBSITES?
In Short: We are not responsible for the safety of information you share with third parties linked from or advertising on our Services.
Explanation: The Services may contain links to external websites, services, or applications not affiliated with us. We don't guarantee anything about these third parties and are not liable for losses/damages from their use. Clicking links means you leave our Services, and this policy no longer applies. Review the third party's privacy policy and contact them directly with questions. Inclusion of a link does not imply endorsement.
9. HOW DO WE KEEP YOUR INFORMATION SAFE?
In Short: We implement reasonable technical and organizational security measures to protect your personal information.
Measures: These measures aim to protect against unauthorized access, alteration, disclosure, or destruction. Examples include encryption (where appropriate), access controls, secure servers, and internal policies.
Disclaimer: However, no internet transmission or electronic storage is 100% secure. While we strive to protect your data, we cannot guarantee absolute security against hackers, cybercriminals, or other unauthorized third parties. Transmission of personal information to and from our Services is at your own risk. Access the Services only within a secure environment.
Data Breach Notification: In the unfortunate event of a personal data breach that is likely to affect your rights and freedoms, we are committed to complying with our obligations under the Digital Personal Data Protection Act, 2023 (DPDPA). This includes assessing the breach and, where required by law, promptly notifying the Data Protection Board of India and the affected individuals in the form and manner prescribed under the DPDPA and associated rules. We maintain internal protocols for handling such incidents to ensure timely response and notification.
10. HOW LONG DO WE KEEP YOUR INFORMATION?
In Short: We keep your information only as long as necessary for the purposes outlined in this policy, unless a longer period is required or permitted by law.
Retention Criteria: The retention period depends on:
The duration you have an active account with us.
Ongoing legitimate business needs (e.g., providing Services, resolving disputes, preventing fraud).
Legal or regulatory requirements (e.g., tax laws, accounting rules, data preservation orders under IT Act).
After Retention Period: When we no longer have a legitimate need to process your information, we will either delete or anonymize it. If deletion isn't immediately possible (e.g., data in backup archives), we will securely store it and isolate it from further processing until deletion is feasible.
11. WHAT ARE YOUR PRIVACY RIGHTS (UNDER DPDPA)?
In Short: Under India's Digital Personal Data Protection Act, 2023, you have certain rights regarding your personal data.
Your Rights Include:
Right to Access Information: You have the right to obtain confirmation whether we process your personal data, access to that data, and a summary of the processing activities.
Right to Correction and Erasure: You have the right to request correction of inaccurate or incomplete personal data and erasure of personal data that is no longer necessary for the purpose it was collected, subject to legal requirements.
Right of Grievance Redressal: You have the right to have readily available means of registering grievances with us via the designated Grievance Officer (see Section 15).
Right to Nominate: You have the right to nominate another individual to exercise your rights on your behalf in case of your death or incapacity.
Right to Withdraw Consent: Where we rely on your consent for processing (which may be express or implied depending on applicable law), you have the right to withdraw it at any time. You can withdraw consent by contacting us (see Section 15). Withdrawal does not affect the lawfulness of processing based on consent before its withdrawal, nor processing on other lawful grounds.
Exercising Your Rights: See Section 16 for how to exercise these rights. We will respond to requests in accordance with the DPDPA timelines and requirements. Note that certain rights may be subject to limitations under the law.
Opting out of marketing communications: You can unsubscribe from marketing emails/SMS anytime via the unsubscribe link, replying 'STOP'/'UNSUBSCRIBE', or contacting us. You will be removed from marketing lists. We may still send necessary service-related messages.
Cookies and similar technologies: Most browsers accept cookies by default. You can usually set your browser to remove/reject cookies. This could affect service features. You may also opt out of interest-based advertising. See Cookie Policy.
Account Information: You can review/change account info or terminate your account by logging into settings or contacting us. Upon termination request, we will deactivate/delete data from active databases, though some info may be retained for fraud prevention, investigations, or legal compliance.
12. DO WE COLLECT INFORMATION FROM MINORS?
In Short: We do not knowingly collect data from children under 13. The Member-facing Services (Tranity app, Site) are intended for users 13 and older, while Partner Services (Tranity Partner app) are restricted to users 18 and older.
Policy: We do not knowingly solicit data from or market to children under 13 years of age. Our Terms of Service require users accessing Member services to be at least 13 years old, and users between 13 and 18 to use the Services only with parental/guardian supervision and agreement to the Terms. Partner services are strictly limited to users 18 years or older.
Action on Discovery: If we learn that we have collected personal information from a user under 13, or from a user between 13 and 18 without the necessary parental/guardian involvement as required by our Terms, we will deactivate the account and take reasonable measures to promptly delete such data from our records.
Reporting: If you become aware of any data we may have collected from children inconsistent with this policy, please contact our DPO/Grievance Officer at grievance-officer@tranity.in.
13. CONTROLS FOR DO-NOT-TRACK FEATURES
Most web browsers and some mobile operating systems include a Do-Not-Track ('DNT') feature. However, there is no uniform technology standard for recognizing and implementing DNT signals. As such, we do not currently respond to DNT browser signals or other mechanisms that automatically communicate your choice not to be tracked online. If a standard is adopted that we must follow, we will update this policy.
15. HOW CAN YOU CONTACT US ABOUT THIS POLICY?
If you have questions, comments, or complaints about this Privacy Policy or our data handling practices, or if you wish to exercise your privacy rights, please contact our designated Data Protection Officer (DPO) / Grievance Officer:
Name: Amit
Address: Tranquil Library Private Limited, Shop No. 66P, Sector-7, Gohana, Haryana 131301, India
Email: grievance-officer@tranity.in
Please provide sufficient detail in your communication for us to address your query or request effectively. You can also reach general support at www.tranity.in/support. For general questions, you may also email privacy@tranity.in.
16. HOW CAN YOU REVIEW, UPDATE, OR DELETE YOUR DATA?
In Short: Based on applicable Indian law (DPDPA), you have rights concerning your personal data.
Reviewing and Updating: You can typically review and update certain personal information directly by logging into your account settings on the relevant App ( Tranity app or Tranity Partner app ).
Access, Correction, Erasure Requests: To request access to the personal information we hold about you, correct inaccuracies not editable via settings, or request deletion of your personal information, please contact our DPO/Grievance Officer using the details in Section 15.
Account Termination: If you wish to terminate your account, you may be able to do so via your account settings or by contacting us. Upon termination request, we will deactivate or delete your account and information from active databases according to our retention policies (see Section 10), though some information may be retained for legal, security, or fraud prevention purposes as permitted by law.
Response: We will respond to your requests in accordance with applicable data protection laws. We may need to verify your identity before processing certain requests.