Privacy & Security Policy

1. Introduction

Onaride Mobility Services (Onaride) is a government-registered company under the Startup India initiative and MSME (Udyam) registration, proudly based in Burla–Sambalpur, Odisha, India.

We are a self-driving (you drive the car) car rental company committed to offering safe, verified, and affordable vehicle rentals while maintaining the highest standards of data protection and user privacy.

Your trust and security are at the heart of our operations. This Privacy & Security Policy explains how Onaride collects, uses, and safeguards your personal information when you use our website, make bookings, or interact with our services.

By using our platform, you agree to the terms and practices described in this document.

2. Information We Collect

For the purpose of identity verification, booking management, and legal compliance, Onaride collects only the information essential to serve you, including:

• Full name, contact number, and email address
• Government-issued identification (e.g., Driving License, Aadhaar Card, etc.)
• Pickup and drop-off details
• Payment and transaction details (processed securely via Razorpay)
• Any information voluntarily submitted during inquiries or customer communication

We collect this data solely for legitimate service, verification, and compliance purposes.

3. Purpose of Data Collection

Your information is used strictly to:

• Confirm and manage bookings for self-drive vehicles
• Verify your identity and driving credentials as per government norms
• Prevent fraudulent or unauthorized rentals
• Provide customer support and communicate important updates
• Improve our platform's performance and user experience

We do not sell, trade, or rent your personal data to any third party.

4. Data Storage and Security

All customer data is securely stored on Amazon Web Services (AWS) servers through our Neon database infrastructure, which complies with international and Indian data protection standards.

We maintain strong security practices, including:

• SSL (Secure Socket Layer) encryption for all online communications
• Encrypted data storage and restricted access control
• Regular server security audits and system updates
• Data access limited only to authorized Onaride personnel under confidentiality agreements

This ensures your data remains fully protected and confidential at every stage.

5. Payment Security

All payments made through the Onaride platform are processed exclusively via Razorpay, a PCI-DSS-certified and RBI-authorized payment gateway.

We do not store your full banking or card details on our servers. Razorpay ensures end-to-end encryption, fraud detection, and multi-layer security to protect all online transactions.

6. Legal & Government Compliance

Onaride operates under full compliance with Indian data protection and IT laws, including:

• The Information Technology Act, 2000 (IT Act)
• The Information Technology (Reasonable Security Practices and Procedures and Sensitive Personal Data or Information) Rules, 2011
• The Digital Personal Data Protection Act, 2023

As a Startup Udyam and MSME-registered company, Onaride upholds all required standards of lawful data collection, processing, and privacy preservation in accordance with the Government of India's business and digital security guidelines.

7. Data Retention

Your data is retained only for as long as necessary to fulfill its intended purpose or as mandated by law. Once your booking or verification process is complete, data is securely archived or deleted unless required for legitimate legal or regulatory reasons.

8. Your Rights

You have the right to:

• Access your personal data held by Onaride
• Request correction of inaccurate or outdated information
• Withdraw consent for data use (where applicable)
• Request deletion of your personal data post-service completion

To exercise these rights, please email us at onaridedotin@gmail.com.

9. Third-Party Services

We use trusted and verified third-party platforms such as Razorpay, AWS, and Google APIs solely to deliver secure and efficient services. All such partners are bound by their respective privacy policies and are compliant with both Indian and global data security standards.

10. Updates to This Policy

Onaride may update or modify this Privacy & Security Policy periodically to reflect technological, legal, or operational changes. Any revisions will be published on this page, and users are encouraged to review the policy periodically.

11. Contact Information

For privacy-related questions, concerns, or data access requests, please contact: