Privacy Policy

Last updated: [Insert Date]

Welcome to Atlas.
This Privacy Policy explains how Atlas AI Pvt. Ltd. (“Atlas”, “we”, “us”, “our”) collects, uses, shares, and protects personal information when you visit our website, use our mobile/concierge platform, or interact with services we provide to hotels and their guests.

Atlas is committed to protecting your privacy and handling your data in a transparent, secure, and lawful manner.
This Policy is designed to comply with the EU General Data Protection Regulation (GDPR) and the Digital Personal Data Protection Act (DPDP), India.

If you have any questions, contact us at tech@exploreatlas.ai

1. Who We Are

Atlas AI Pvt. Ltd.
Registered in India
215 Mahalaxmi Industrial Estate
Email: tech@exploreatlas.ai

Atlas provides a digital concierge and guest-experience platform used by hotels to enhance guest stays, manage service requests, and book experiences.

2. What This Policy Covers

This Policy applies to:

  • Visitors to our website (including Squarespace-hosted pages)

  • Hotel guests who use the Atlas concierge platform

  • Hotel staff and concierge teams who use our dashboard

  • Anyone interacting with our services, support, or communication tools

3. Personal Data We Collect

A. Information You Provide

Guests & Users

  • Name, email address, phone number

  • Reservation details (check-in/out dates, room type, booking ID)

  • Preferences (dietary, service requests, experiences)

  • Chat messages and communication logs

  • Optional: ID/passport copy (if uploaded), special accommodations

Hotel Staff

  • Name, role, email, and login credentials

  • Activity logs and usage analytics

B. Information Collected Automatically

When you visit our website or app:

  • Device information (IP address, browser type, OS)

  • Usage analytics and interaction logs

  • Cookies and tracking technologies (Squarespace analytics, optional Google Analytics)

C. Information From Hotels or Partners

Hotels may share:

  • Guest reservation data

  • Pre-arrival information

  • Guest preferences or notes

  • Service requests

Hotels are responsible for ensuring they have proper guest consent before sharing such data with Atlas.

4. How We Use Personal Data

We use your information to:

Provide and enhance our services

  • Manage concierge requests

  • Connect guests with verified suppliers

  • Facilitate bookings and confirmations

  • Deliver messages, reminders, and notifications

Improve service experience

  • Monitor platform usage and performance

  • Conduct analytics to improve user experience

  • Develop new features

Ensure security

  • Detect and prevent fraud

  • Maintain login and access controls

  • Monitor security incidents

Legal compliance

  • Maintain audit logs

  • Support data subject rights under GDPR/DPDP

5. Legal Bases for Processing (GDPR)

We process personal data under the following lawful bases:

  • Performance of a contract — delivering concierge and booking services

  • Legitimate interest — improving services, ensuring security, supporting concierge teams

  • Consent — for sensitive data (dietary/medical or passport uploads), marketing communications

  • Legal obligation — maintaining transaction records

6. How We Share Personal Data

We do not sell personal data.
We may share data only with:

Partner Hotels

To deliver concierge and guest-experience services.

Verified Suppliers

Only when a guest requests a service (e.g., driver, tour, restaurant).

Service Providers / Sub-Processors

To operate our platform (e.g., hosting, messaging, analytics).
Examples include:

  • Cloud infrastructure providers

  • Messaging/WhatsApp API providers

  • Email delivery platforms

These partners are bound by strict contracts to protect data.

Legal/Regulatory Authorities

If required by law.

7. International Data Transfers

Atlas may store data in India, the EU, or other approved jurisdictions.
Where EU personal data is transferred internationally, we apply:

  • Standard Contractual Clauses (SCCs)

  • Other GDPR-approved transfer mechanisms

8. Data Retention

We retain personal data only for as long as necessary:

  • Guest data: stay duration + 365 days

  • Hotel staff accounts: for the duration of employment/relationship

  • Transaction and audit logs: as required by law

  • Anonymized/aggregated data may be kept longer for analytics

9. Your Rights (GDPR & DPDP)

Depending on your jurisdiction, you may have rights to:

  • Access a copy of your data

  • Correct inaccurate data

  • Request deletion (“right to be forgotten”)

  • Restrict processing

  • Object to processing

  • Request data portability

  • Withdraw consent (for consent-based processing)

To exercise these rights, email: tech@exploreatlas.ai

We aim to respond within 30 days.

10. Cookies and Tracking (Squarespace Notice)

Our website (hosted on Squarespace) may use:

  • Essential session cookies

  • Squarespace analytics cookies

  • Optional third-party analytics (if enabled), such as Google Analytics

Users can control cookies via browser settings or cookie banners.

If you want, I can also create a Cookie Banner text compliant with EU rules.

11. Data Security

We use industry-standard security measures, including:

  • TLS 1.2+ encryption in transit

  • AES-256 encryption at rest

  • Role-based access control

  • Multi-factor authentication for admin accounts

  • Firewalls and intrusion monitoring

  • Regular penetration testing and security audits

12. Children’s Data

Atlas does not knowingly collect data from children under 16 without parental consent.
Hotels are responsible for ensuring lawful collection of minors’ data.

13. Changes to This Policy

We may update this Privacy Policy periodically.
The “Last updated” date will reflect the most recent version.

14. Contact Us

For privacy questions, complaints, or data rights requests:

Atlas AI Pvt. Ltd.
Email- tech@exploreatlas.ai
215 Mahalaxmi Industrial Estate
Lower Parel
Mumbai 400013