Privacy Policy

Privacy Policy

While the Uttar Pradesh State Tourism Development Corporation Ltd (the Corporation) collects certain personal information through its channels from its customers, it also recognises their expectations with regard to privacy, confidentiality and security of the information collected. The Corporation is committed to keep personal information of customers secure and to use it solely for activities related to the Corporation and preventing any misuse thereof. In order to protect the personal information entrusted and disclosed by the customers, the corporation has adopted this privacy policy. This policy will henceforth govern the way in which the UPSTDC collects, uses, discloses, stores, secures and disposes of personal information.


Personal information means any information related to a natural person that is capable to identify such person, either directly or indirectly, solely or in combination with other information available or likely to be available with the Corporation.

  • Provided that, any information available freely or accessible in public domain or furnished under the Right to Information act, 2005 or any other law for the time being in force shall not be treated as sensitive personal information for the purposes of this policy.


This Policy is applicable to personal information collected by the Corporation directly from the customer or through the Corporation's online portals, mobile apps and electronic communications as also any information collected by the Corporation's server from the customer’s browser.

Purpose of Collection and Use of Personal Information

The Corporation collects and uses the personal information from its customers and is used for specific business purposes or for other related purposes or for a lawful purpose to comply with the applicable laws and regulations. The Corporation shall not divulge any personal information collected from the customer, for cross selling or any other purposes.

When the customer makes a payment on the website, the Corporation does not ask for or store your Credit / Debit card details and personal information. All transactions are carried out on the website of the Payment Gateway and are governed by the Payment Gateway’s own privacy policy. The Payment Gateway does not share your financial information with the Corporation.

When a customer visits our website, we may collect and store the date, time and duration of your visit, your web browser version, the pages accessed and the referring page. This information is not linked to customer's personal information. We may also collect other non-identifying data for statistical purposes. Our server may log the customer computer’s IP address, which we do not share with any third parties, and use only for statistical purposes.

Information customers share publicly on social media may be re-published on our site; for example, through a widget. Personal information available in public domain such as a mailing list, online forum, blog, wiki pages, issue tracker or social media channels, may be stored by us, but we will only use it in accordance with this Privacy Statement. However, these are publicly available channels, so we are not responsible for ways in which other parties use the information.

Non-identifying statistical information concerning usage of our products or our websites may be made available to the public.

While Corporation takes the best care possible to protect your personal information collected online, unfortunately it is not possible to guarantee the security of data transmitted over the internet. Therefore, we cannot warrant the security of any information you send to us or receive from us online, particularly through email. We are unable to protect that information until it reaches us. Once we receive your communication, we make best endeavours to keep your information secure.

The customer is responsible for the authenticity of the personal information provided.

The corporation shall not be responsible to honour any commitment under this policy in respect of any information pertaining to customer that is freely available or accessible in public domain or furnished under the Right to Information Act, 2005 or any other law for the time being in force as that shall not be regarded as personal information.

Disclosure of Personal Information

The Corporation shall not disclose any personal information collected by it to any other organization except:

  • where the disclosure has been agreed in a written contract or otherwise between the Corporation and the customer;
  • where the Corporation is required to disclose the personal information to a third party on a need-to-know basis for the purposes of providing any service to the customer,
  • Or where the Corporation is under obligation to disclose the personal information under the provision of any law in force for the time being.

Reasonable Security Practices and Procedures

The Corporation shall keep the personal information secure by maintaining physical, electronic, and procedural safeguards that meet applicable laws. The Corporation shall take reasonable steps and measures to protect the security of the customer’s personal information from misuse and loss, un-authorized access, modification or disclosure. The Corporation maintains its security systems to ensure that the personal information of the customer is appropriately protected and follows the extant standard encryption norms followed for the transmission of information. The Corporation ensures that its employees and affiliates respect the confidentiality of any personal information held by it.

Contact Information

In order to address any discrepancies or grievances related to the personal information residing with the Corporation, the customer may write to the Corporation specifying the grievance.

Notice of change

The Corporation may, from time to time, change this Policy. The effective date mentioned below indicates the last time this Policy was revised or materially changed and no other notice of change will be given.

Cookie policy

Corporation’s digital platforms use various third party services to promote bank's products and services. These third party services use cookies which are downloaded to your device when you visit a website in order to provide a personalized browsing experience. Cookies are used for lots of tasks like remembering your preferences & settings, provide personalized browsing experience and analyze site operations. These cookies collect information about how users use a website, for instance, how often visited pages. All information collected by third party cookies is aggregated and anonymous. By using our website user/s agree that these types of cookies can be placed on his/her device. User/s is free to disable/delete these cookies by changing his/her device / browser settings. The Corporation is not responsible for cookies placed in the device of user/s by any other website and information collected thereto.

Effective Date

10 September, 2019