Privacy Policy

Effective date: July 15, 2025

Applies to: All global users of osakaconnect.com (Website, App, B2B, B2E, White-label, API, and Supplier Portals)

1. Who We Are

osakaconnect.com ("we," "our," or "us") is the world's first travel hypermarket and AI-powered travel super app, operating in 120+ countries and providing 24 integrated travel services, including air tickets, hotels, visas, cruises, insurance, forex, and more.

We are committed to protecting the privacy and personal data of all users—whether you are a traveler, agent, corporate client, supplier, or partner.

2. Purpose of This Policy

This Privacy Policy explains:

  • What information we collect
  • Why we collect it
  • How we use, store, share, and protect your data
  • What rights and controls you have over your personal information

We follow global privacy regulations including:

  • GDPR (EU)
  • CCPA (California, USA)
  • IT Act (India)
  • Global Data Protection Frameworks

3. Information We Collect

A. Personal Data You Provide

  • Full name, email, phone, gender, date of birth
  • Government ID, passport, visa or travel documents
  • Address and location information
  • Corporate credentials (for B2E users)
  • Payment information (credit/debit card, UPI, etc.)

B. Automatically Collected

  • IP address, device ID, browser info, location (with permission)
  • Access time, page views, actions on the Platform
  • Cookies, session data, usage analytics

C. Third-Party Data Sources

  • Airline or supplier booking confirmations
  • Visa partners or embassies
  • Payment processors
  • CRM or email tools
  • Authorized travel aggregators and API partners

4. Data Sharing & Third-Party Access

We may share your data with trusted entities only for service fulfillment or legal purposes:

  • Airlines, hotel providers, cruise lines, visa processors
  • Forex & insurance partners
  • Payment gateways & verification providers
  • Government authorities, if legally mandated
  • Tech vendors (cloud, hosting, APIs, analytics)

We do NOT sell your data to advertisers.

5. Cross-Border Data Transfer

Your data may be processed in countries outside your jurisdiction (e.g., data centers in Singapore, Germany, or the USA). In such cases, we ensure:

  • Standard Contractual Clauses (SCCs)
  • Data Processing Agreements (DPAs)
  • Encryption in transit and at rest

6. Data Retention Policy

  • Booking and transaction records: Retained as per local law (e.g., 6 years in India)
  • Support and inquiry logs: 1–3 years
  • Inactive accounts: Purged after 3 years
  • Marketing data: Until consent is withdrawn

You may request deletion or anonymization at any time.

7. User Rights

As a global user, you may have the right to:

  • Request access to your personal data
  • Rectify inaccurate data
  • Delete or restrict data (in line with regulations)
  • Withdraw consent for marketing or profiling
  • Port your data (GDPR)
  • Object to automated decision-making
  • File a complaint with a data protection authority

Contact hello@osakaconnect.com for all such requests.

8. Cookies & Tracking

We use cookies for:

  • Login session maintenance
  • Language and preference saving
  • Booking flow continuity
  • Analytics (Google Analytics, Facebook Pixel, etc.)
  • Optional tools like chatbots or personalization

You may control cookies via browser settings or consent banners.

9. Security Protocols

We implement robust physical, administrative, and digital safeguards:

  • SSL/TLS encrypted web & mobile traffic
  • Tokenization of card details via PCI-DSS-compliant gateways
  • 2FA and role-based admin access
  • Security patches, regular code audits, and firewall protection
  • Breach notification within 72 hours (as per GDPR, if applicable)

10. Children's Privacy

We do not knowingly collect or store data of users under 18 years of age. If discovered, such data will be deleted immediately.

11. Marketing & Communication Control

With your explicit consent, we may send:

  • Deals, promotional offers, loyalty benefits
  • Travel updates, itinerary reminders
  • Product announcements

You may unsubscribe at any time using email footer links or by emailing hello@osakaconnect.com.

12. Data Breach Protocol

In the rare event of a data breach, we will:

  • Notify affected users and relevant authorities within 72 hours
  • Investigate and contain the breach promptly
  • Provide guidance on protective measures

13. Policy Updates

We may update this Privacy Policy to reflect legal, operational, or technical changes. The latest version will always be published here with a revised "Effective Date." Continued use signifies acceptance of the updated policy.

14. Governing Law & Jurisdiction

This policy is governed by the laws of the Republic of India, with special respect to global jurisdictional requirements. For international users, applicable data rights remain valid under GDPR, CCPA, and other local data protection laws.

Contact Us

For questions, data access, deletion, or privacy concerns:

Data Protection Officer (DPO)

  • Email: hello@osakaconnect.com
  • Phone: +91-9995017855
  • Address: Osaka Connect.Dot Com, Level 4, KSRTC Bus Terminal, Near Cochin International Airport, Angamaly, Ernakulam, Kerala, India, 683572

osakaconnect.com is fully committed to digital trust, privacy-first design, and global regulatory compliance. We empower users and partners with control, safety, and transparency in every interaction.