testt
5125
Skip to main content
Policy

Privacy policy

Last updated: 05 July 2026

This policy explains what information Rosae collects when you book a private theater on rosae.in, why we collect it, and what rights you have under Indian law.

Who we are

Rosae is operated by QUANTELLOVENTURES PRIVATE LIMITED, a company incorporated in India, with its registered office at 67 Jyothi Nivas College Road, 5th Block, Industrial Area, Koramangala, Bengaluru, Karnataka 560095.

Data Protection contact: [email protected] / 96321 62334.

What information we collect

Information you give us

  • Name, phone number, email address (booking)
  • Number of guests, date, slot, theater preference (booking)
  • Payment method metadata — we do not store full card details (handled by the payment gateway)
  • Optional account info (password hash, profile preferences) if you create an account
  • Messages you send us via WhatsApp, contact form, or email

Information collected automatically

  • Device, browser, and operating system info
  • IP address (truncated for analytics)
  • Cookies (see Cookies section)
  • Analytics events (page views, button clicks, booking funnel)

Information from third parties

  • Payment confirmation status from the payment gateway
  • Optional Google login profile (name, email) if you sign in with Google

Information we do NOT collect

  • Biometric or facial-recognition data
  • Criminal background data
  • Co-guest personal information beyond head count

Why we collect it

  • To confirm and fulfil your booking
  • To send you booking confirmations, reminders, and changes via SMS, WhatsApp, or email
  • To accept payments and issue invoices
  • To keep bookings and payments secure, and to detect, prevent, and investigate fraud or misuse of our services
  • To improve our website and theaters using aggregate analytics
  • To respond to your support requests
  • To comply with Indian tax (GST) and consumer-protection law
  • To send marketing messages — only if you have opted in

How we share information

  • Payment gateway — to process the advance and balance refunds
  • WhatsApp Business / SMS gateway — to send booking notifications
  • Analytics providers — Google Analytics (anonymised), Meta Pixel (advertising)
  • Email service provider — for transactional and marketing emails
  • Indian government / law enforcement — only when legally compelled

We do NOT sell your personal data to third parties.

Cookies

  • Essential cookies — login session and booking-flow state (required for the site to work)
  • Analytics cookies — Google Analytics (anonymised), to understand how the site is used
  • Advertising cookies — Meta Pixel and Google Ads, used to measure and improve our advertising

Analytics and advertising cookies run by default to help us measure and improve the site and our advertising. You can opt out at any time in Cookie settings, by choosing “Reject non-essential” on the first-visit banner, or through your browser settings; blocking non-essential cookies will not stop you from booking. For more detail, see our cookie policy.

You can also opt out of personalised advertising directly with the providers — through Google’s Ads Settings and Meta’s ad-preference controls — in addition to your browser settings.

Data retention

  • Booking records — 7 years (Indian tax requirement)
  • Account data — until you delete your account
  • Marketing opt-in — until you unsubscribe
  • Analytics — 14 months (Google Analytics default)
  • Support messages — 2 years

Your rights under DPDP Act 2023

  • Right to access your personal data
  • Right to correct inaccurate data
  • Right to erase data (subject to retention requirements above)
  • Right to grievance redressal
  • Right to nominate another individual to exercise your rights in case of incapacity

To exercise any right, email [email protected]. We respond within 30 days.

Marketing communications

  • We will only send marketing WhatsApp or email messages if you have opted in.
  • Every message has a one-tap unsubscribe.
  • Booking-related transactional messages (confirmation, reminder, refund status) are not marketing and continue regardless.

Data security

  • Data is protected in transit with industry-standard transport encryption (TLS). Sensitive ID-proof images are access-controlled to authorised staff, every staff view is logged, and they are automatically deleted after your show date.
  • Passwords are hashed using bcrypt or equivalent.
  • We do not store full payment-card details.

CCTV at our venues

For safety and security, the entrance and common waiting areas at our venues are monitored by CCTV. To protect your privacy, there are no cameras inside the private theater rooms themselves. Any footage is kept only as long as needed for security and is shared only with the authorities on a valid legal request.

ID verification at check-in

To verify guest age and identity for a booked session, our reception may record each guest’s gender and date of birth and, where a guest provides one, a photo of a government ID (any ID other than full Aadhaar). You may also upload these in advance from your ticket page. This information is used solely to verify identity and age for the session you booked — never for marketing, profiling, or sharing, including with our food-ordering partner.

Retention. The ID photo is automatically deleted a set number of days after your show date by an automated job that records a deletion log. We keep only the derived verification facts — date of birth, gender, and the date the ID was checked — so that a returning guest’s check-in is faster. You can ask us to delete an ID photo sooner at any time by emailing [email protected].

Security. ID photos are stored securely with access restricted to authorised Rosae staff, and every staff view of an ID photo is logged.

Children. We do not collect ID photos of guests under 18 — for a minor, only a date of birth is entered — and we never profile or market to any guest on the basis of their date of birth.

Aadhaar. We never require Aadhaar. We ask guests to use a Driving Licence, Voter ID, Passport or PAN, and if Aadhaar is used we accept only a masked Aadhaar. We never record Aadhaar numbers.

Children

Rosae’s services are intended for users 18 and older. We do not knowingly collect personal data from anyone under 18.

Changes to this policy

Material changes will be notified via email or WhatsApp at least 7 days before they take effect.

Grievance officer

  • Name: To be appointed
  • Email: [email protected]
  • Address: 67 Jyothi Nivas College Road, 5th Block, Koramangala, Bengaluru 560095
  • Response time: within 7 days for acknowledgment, 30 days for resolution.

See also our terms and conditions and refund policy.