Short version: Essential cookies only keep the site working. We use privacy-preserving analytics with no cross-site tracking. Zero advertising or retargeting cookies. Manage your preferences at any time via the Cookie Preference Centre in the footer.
1. What Are Cookies
Cookies are small text files stored on your device by websites you visit. We also use similar technologies including localStorage and sessionStorage for preference persistence. This policy governs all such technologies on viaje.in and in the Viaje app, and is compliant with the IT (Reasonable Security Practices) Rules, 2011, the EU ePrivacy Directive, the UK Privacy and Electronic Communications Regulations, Japan's Act on Protection of Personal Information (APPI), South Korea's PIPA, and equivalent regulations in other jurisdictions where we operate.
2. Essential Cookies — Cannot Be Disabled
These are strictly necessary for the Platform to function. Disabling them will break core functionality. They include: viaje-session (authenticated login token, session-scoped), viaje-theme (dark/light mode preference), viaje-lang (language selection — backed by our internal localisation system, not a third-party API), viaje-curr (currency preference), __csrf (cross-site request forgery protection, session-scoped, security-critical), and cookieconsent (records your cookie preference choices). Legal basis: legitimate interest (platform security and essential functionality).
3. Analytics & Performance
We use Google Analytics 4 with IP anonymisation enabled, and privacy-preserving aggregated analytics for product improvement. No personally identifiable information is collected through analytics. No persistent cross-site tracking cookies are set. Analytics data is not shared with advertising networks. You may opt out via the Cookie Preference Centre or by enabling the "Do Not Track" signal in your browser. Legal basis: legitimate interest using anonymised, aggregated data.
4. Preference Cookies
These remember your choices to provide a personalised experience: preferred destinations and travel styles (used to calibrate AI recommendations), recently viewed listings, notification settings, and search history. Legal basis: consent. Withdraw via Cookie Preference Centre at any time.
5. Marketing Cookies
We use marketing cookies only with your explicit consent, solely to measure the effectiveness of Viaje's own campaigns — not to serve advertising. We do not use Google Ads conversion tracking, Meta Pixel, TikTok Pixel, or any retargeting or cross-site tracking technology of any kind. If you see Viaje advertisements on external platforms, those are served through those platforms' own systems using hashed email lists submitted directly by Viaje — no device-level tracking cookies are involved. Legal basis: consent. Withdraw at any time.
6. Third-Party Scripts
Certain Platform features embed third-party scripts that may set their own cookies: payment widgets (Cashfree, Razorpay, CCAvenue, PayU, Payoneer) set PCI-DSS compliant session tokens required for transaction security; Google Maps or equivalent mapping services may set session cookies for map interaction; weather API integrations may set a session identifier. These are governed by the respective provider's privacy policies. We minimise third-party script loading and review all integrations for privacy compliance before deployment.
7. Managing Your Preferences
Use the Cookie Preference Centre (accessible via "Cookie Settings" in the footer) to manage non-essential cookies. You may also manage cookies through your browser settings or device privacy controls. Blocking essential cookies will impair core Platform functionality. The "Do Not Track" browser signal is respected for analytics cookies.
8. International Users
For EEA and UK users, non-essential cookies require explicit opt-in consent per the ePrivacy Directive and UK PECR. For California users, the CCPA right to opt out of the "sale" of personal data applies — Viaje does not sell personal data and analytics are configured to respect Global Privacy Control (GPC) signals. Japanese and South Korean users may contact legal@viaje.in for jurisdiction-specific cookie inquiries.
9. Changes
Material changes to this policy will be notified via an updated cookie consent prompt. Version history available on request at legal@viaje.in. Report translation errors or accessibility issues in this policy to report@viaje.in.