Anaveda

Effective Date: 04/27/2026

Last Updated: 04/27/2026

1. Who This Policy Applies To

This Privacy Policy applies to visitors to our website, customers who inquire about or book tours with us, newsletter subscribers, and individuals whose personal information we process in connection with delivering our tours.

We serve customers in the United States, including California, the European Union, the United Kingdom, and internationally. Where applicable, we comply with the EU General Data Protection Regulation, the UK GDPR, the New York SHIELD Act, the California Consumer Privacy Act as amended by the California Privacy Rights Act, and other relevant privacy laws.

For purposes of applicable data protection laws, Anaveda LLC is the controller of the personal information described in this Privacy Policy.

2. Information We Collect

2.1 Information You Provide to Us

We collect personal information you provide when you submit an inquiry or contact form, request a quote, make a booking, subscribe to our newsletter, or communicate with us by email or phone.

This may include your name, email address, phone number, postal address, passport number, nationality, date of birth, emergency contact details, travel preferences, dietary preferences, accessibility requests, and other information necessary to arrange or deliver travel services.

2.2 Information About Co-Travelers

When one person makes a booking on behalf of a group, we may collect personal information about all travelers in the group, including names, passport details, nationalities, dates of birth, emergency contact information, and travel preferences.

If you provide us with personal information about other travelers, it is your responsibility as the lead booker to inform those individuals that their data will be shared with us and processed in accordance with this Privacy Policy.

2.3 Information About Minors

We may collect and process personal information about minors when provided by a parent, legal guardian, or lead booker for purposes of arranging travel services.

We do not knowingly collect personal information directly from children for marketing purposes.

2.4 Information We Collect Automatically

When you visit our website, we may automatically collect technical information such as your IP address, browser type, device information, pages viewed, referring links, and general usage information.

This information may be collected through server logs, cookies, analytics tools, or similar technologies.

2.5 Payment Information

We issue an invoice for all bookings prior to receiving payment. Payment may be made by credit or debit card through Stripe, Inc., or by ACH bank transfer directly to our bank account.

Anaveda does not store full card details. Card data is handled directly by Stripe under its own privacy policy and PCI-DSS compliance program. For ACH payments, your banking information is received and processed by our bank or payment processor. Anaveda does not independently store your full routing or account numbers.

2.6 Health, Accessibility, Dietary, Pregnancy, and Safety Information

We do not require customers to disclose health, dietary, accessibility, pregnancy, or medical information unless such information is necessary to assess safety, arrange requested accommodations, comply with supplier requirements, or deliver the requested travel services.

Where you choose or are asked to provide such information, we treat it as sensitive personal information and handle it with additional care.

Where required by law, we process health, accessibility, dietary, pregnancy, or medical information only with your explicit consent, to protect vital interests, to arrange requested accommodations, to assess safety, to comply with legal obligations, or as otherwise permitted by applicable law.

Please note that if you choose not to share health or physical information that is material to your ability to participate in a tour, Anaveda may be unable to accommodate certain needs and cannot be held responsible for difficulties or inability to participate that result from that decision.

3. How We Use Your Information

We use your personal information to:

Respond to inquiries and provide quotes;
Process and manage bookings;
Arrange and deliver travel services, including accommodations, transportation, flights, permits, activities, and ground arrangements;
Communicate with you about your trip;
Process payments and prevent fraud;
Provide customer support;
Send newsletters or marketing communications where you have opted in;
Improve our website, services, and customer experience;
Comply with legal, tax, accounting, regulatory, and safety obligations;
Protect the rights, property, safety, and security of Anaveda, our customers, suppliers, and others.

Contacting you by email or phone in connection with an active or past booking is based on our contractual relationship with you and does not require separate marketing consent. Newsletter communications require your opt-in and can be withdrawn at any time through the unsubscribe link in any email.

4. Legal Bases for Processing — EU and UK Customers

For customers in the EU or UK, we process personal data on the following legal bases:

Contract performance — fulfilling your booking and delivering travel services;
Legitimate interests — communicating about your booking, improving our services, preventing fraud, and operating our business;
Consent — sending newsletters and, where required, processing certain sensitive information;
Legal obligation — complying with applicable laws, tax, accounting, and regulatory duties;
Vital interests — responding to emergencies involving health or safety.

5. How We Share Your Information

We do not sell your personal information. We share personal information only as necessary to deliver our services, operate our business, or comply with the law.

5.1 Third-Party Service Providers and Travel Partners

We may share personal information with:

Stripe, Inc. — card payment processing;
Banks and payment processors — ACH and other payment processing;
Kit.com — newsletter management and email marketing;
Airlines — when booking flights on your behalf, we may share your name, passport details, date of birth, nationality, and other required passenger information;
Hotels and accommodations — we may share your name, booking details, rooming information, and other details necessary to complete reservations;
Ground operators, local guides, drivers, and activity providers — we may share your name and relevant booking details. In some cases, such as trekking permits, protected area entries, or regulated activities, passport details may be shared;
Technology and business service providers — such as website hosting, email, document storage, accounting, analytics, fraud prevention, and customer communication tools;
Professional advisors — such as lawyers, accountants, insurers, and auditors, where necessary.

Hotels in India, in accordance with local regulations, may record your passport or government-issued ID at check-in. This is done directly by the hotel upon your arrival and is a requirement of Indian law, not a practice controlled by Anaveda.

5.2 Legal Requirements and Safety

We may disclose your information if required by law, court order, governmental authority, or regulatory process, or if necessary to protect the rights, property, or safety of Anaveda, our customers, suppliers, or others.

5.3 International Data Sharing

Some of the third parties we work with, including hotels, airlines, ground operators, guides, permit offices, and transportation providers, may be located outside your home country, including in India.

When we share your information with these partners, that information may be processed in countries that do not provide the same level of data protection as your home jurisdiction. India is not currently recognized as providing an equivalent level of data protection to the EU or UK.

Where required by applicable law, we rely on appropriate safeguards or legally recognized transfer mechanisms for international transfers of personal information. These may include contractual safeguards, transfers necessary to perform requested travel services, explicit consent where appropriate, or other mechanisms permitted by applicable data protection laws.

6. Data Retention

We retain personal information for as long as necessary to fulfill the purposes described in this Privacy Policy, unless a longer retention period is required or permitted by law.

In general:

Booking and transaction records are retained for a minimum of seven years for accounting, tax, and legal compliance;
Passport and travel document details are deleted within 12 months after completion of your tour, unless longer retention is required by law, supplier requirements, dispute resolution, or safety obligations;
Health, accessibility, dietary, pregnancy, and medical-related information is retained only for as long as reasonably necessary to arrange and deliver the relevant travel services, address safety issues, or comply with legal obligations;
Newsletter subscriber data is retained until you unsubscribe or request deletion, subject to suppression-list requirements;
Website analytics data is retained in accordance with our analytics provider’s standard retention periods.

7. Cookies and Tracking Technologies

Our website may collect basic technical information through server logs, cookies, analytics tools, pixels, or similar technologies.

We may use these technologies to improve website functionality, understand website traffic, analyze visitor behavior, remember preferences, and improve our services.

If we use analytics cookies, advertising cookies, pixels, or similar tracking technologies that require consent under applicable law, we will provide appropriate notice and controls, including a cookie consent mechanism for EU and UK visitors where required.

You may also manage cookies through your browser settings.

8. Your Privacy Rights

8.1 All Customers

You may contact us to request that we:

Provide access to the personal information we hold about you;
Correct inaccurate personal information;
Delete personal information, subject to legal retention requirements;
Restrict or object to certain processing, where applicable;
Opt you out of marketing communications.

We will respond to privacy requests within the timeframe required by applicable law.

8.2 EU and UK Customers

EU and UK customers may have additional rights, including:

The right of access;
The right to rectification;
The right to erasure;
The right to restrict processing;
The right to object to processing;
The right to data portability;
The right to withdraw consent where processing is based on consent;
The right to lodge a complaint with a data protection authority.

We will respond to EU and UK privacy requests within one month. In complex cases, we may extend this by up to two additional months, in which case we will notify you of the extension and the reason within the first month.

9. California Privacy Notice

This section applies to California residents and supplements the rest of this Privacy Policy.

California law gives consumers rights including the right to know what personal information a business collects and how it is used and shared, the right to delete personal information subject to exceptions, the right to correct inaccurate personal information, the right to opt out of sale or sharing, the right to limit certain uses of sensitive personal information, and the right not to be discriminated against for exercising privacy rights.

9.1 Applicability

Anaveda may not currently meet the statutory thresholds that make a business subject to the full requirements of the California Consumer Privacy Act as amended by the California Privacy Rights Act. However, because we serve California customers and value privacy, we provide the following disclosures and will respond to California privacy requests as required by applicable law.

9.2 Categories of Personal Information We May Collect

In the preceding 12 months, we may have collected the following categories of personal information:

Category	Examples
Identifiers	Name, email address, phone number, postal address, passport number, IP address
Customer records information	Billing information, booking details, travel documents, payment-related information
Protected classification information	Age or date of birth, nationality, and other information required for travel arrangements
Commercial information	Booking history, requested tours, purchased travel services, transaction records
Internet or electronic network activity	Website usage, pages viewed, browser type, referring links
Geolocation information	General location inferred from IP address or travel itinerary information you provide
Sensitive personal information	Passport details, government-issued ID information, health, accessibility, dietary, pregnancy, or safety-related information where provided
Inferences	Travel preferences, interests, or preferences based on inquiries or booking history

9.3 Sources of Personal Information

We may collect personal information from:

You directly;
Lead bookers or co-travelers;
Travel companions, parents, guardians, or emergency contacts;
Payment processors;
Airlines, hotels, ground operators, guides, and other travel suppliers;
Website analytics or technical systems;
Communications with you by email, phone, forms, or other channels.

9.4 Purposes for Collecting Personal Information

We collect personal information for the purposes described in Section 3, including responding to inquiries, preparing quotes, managing bookings, arranging travel services, processing payments, providing customer support, complying with legal obligations, preventing fraud, protecting safety, and improving our services.

9.5 Disclosure of Personal Information

In the preceding 12 months, we may have disclosed personal information to the categories of recipients described in Section 5, including payment processors, airlines, hotels, ground operators, local guides, transportation providers, newsletter providers, technology providers, professional advisors, and government or regulatory authorities where required.

9.6 Sale or Sharing of Personal Information

Anaveda does not sell personal information for money.

Anaveda also does not knowingly sell or share the personal information of individuals under 16 years of age.

If we use advertising cookies, pixels, or similar technologies in a way that constitutes “sharing” under California law, we will provide any required notice and opt-out mechanism, such as a “Do Not Sell or Share My Personal Information” link or equivalent privacy control.

9.7 Sensitive Personal Information

We collect sensitive personal information only as necessary to provide requested travel services, arrange accommodations, comply with supplier or legal requirements, protect safety, process payments, or for other purposes permitted by law.

We do not use sensitive personal information to infer characteristics about you beyond what is necessary to provide, manage, or improve requested travel services.

9.8 California Privacy Rights

Subject to applicable law and exceptions, California residents may request to:

Know the categories of personal information we collect, use, disclose, sell, or share;
Access specific pieces of personal information we hold about them;
Correct inaccurate personal information;
Delete personal information;
Opt out of the sale or sharing of personal information;
Limit certain uses or disclosures of sensitive personal information;
Not be discriminated against for exercising privacy rights.

California’s official CCPA materials state that privacy policies should explain consumer privacy rights and how to exercise them, including rights to know, delete, correct, opt out of sale or sharing, limit certain sensitive information use, and non-discrimination.

9.9 How to Submit a California Privacy Request

California residents may submit privacy requests by contacting us at:

Email: legal@anaveda.com

Phone: +1-516-330-0367

Mail: Anaveda LLC, New York, USA

Please include “California Privacy Request” in the subject line or message.

We may need to verify your identity before fulfilling a request. Verification may require matching information you provide with information we already maintain, such as your name, email address, phone number, booking information, or other details.

9.10 Authorized Agents

California residents may designate an authorized agent to submit a privacy request on their behalf. We may require proof that the agent is authorized to act for you and may also require you to verify your identity directly with us, unless prohibited by law.

9.11 Non-Discrimination

We will not discriminate against you for exercising your privacy rights. This means we will not deny services, charge different prices, provide a different level of service, or suggest that you may receive different treatment because you exercised your rights, except as permitted by law.

10. Data Security

We implement reasonable administrative, technical, and physical safeguards designed to protect personal information, consistent with the New York SHIELD Act and other applicable requirements.

These safeguards may include access controls, encrypted transmission where appropriate, limited internal access, secure record handling, reputable third-party processors, account security practices, and appropriate deletion or disposal practices.

No method of electronic transmission or storage is completely secure, and we cannot guarantee absolute security. In the event of a data breach affecting your rights, we will notify affected individuals and regulators as required by law.

11. Contact Us

Anaveda LLC

New York, USA

Email: legal@anaveda.com

Phone: +1-516-330-0367

Website: https://anaveda.com

12. Changes to This Policy

We may update this Privacy Policy from time to time. The revised version will be posted with an updated “Last Updated” date.

For material changes, we will notify customers by email where we have their contact details or by other legally required means.