Quick reference
| Topic | Details |
|---|---|
| Properties | Royal Regency Shimla | Royal Regency Manali |
| Governing law | Laws of India. Jurisdiction: Shimla, Himachal Pradesh |
| Grievance Officer | royalregencyshimla@gmail.com | theroyalregencymanali@gmail.com |
| Check-in | 3:00 PM (early check-in subject to availability & charge) |
| Check-out | 11:00 AM (late check-out subject to availability & charge) |
| Data law | Digital Personal Data Protection Act 2023 + DPDP Rules 2025 |
| Payment gateway | Razorpay Software Pvt. Ltd. (PCI-DSS compliant) |
| GST | Applicable GST numbers displayed on tax invoices at check-out |
| Last updated | 15 June 2026 |
1. Introduction & scope
This document ("Policy") sets out the Privacy Policy, Terms & Conditions, and Guest House Rules of Royal Regency Hotels, operating properties in Shimla and Manali, Himachal Pradesh, India (collectively "the Hotel", "we", "us", "our").
This Policy governs all interactions between the Hotel and any person who: (a) browses our website (royalregency.co.in); (b) makes, modifies, or cancels a reservation; (c) communicates with us by any channel; (d) checks in to, stays at, or checks out from any Royal Regency property; or (e) uses any Hotel facility, amenity, or service.
By using our website, completing a booking, checking in, or otherwise engaging with us, you confirm that you have read, understood, and accept this Policy. Where mandatory law grants you rights that cannot be waived, those rights are unaffected.
2. Who we are & grievance officer
Royal Regency operates premium hospitality properties in Himachal Pradesh, India. The entity operating the specific property you engage with is the Data Fiduciary responsible for your personal information under the Digital Personal Data Protection Act, 2023.
Designated grievance officer
| Role / detail | Information |
|---|---|
| Role | Grievance Officer — Royal Regency Hotels |
| Shimla contact | royalregencyshimla@gmail.com | +91 9805094555 |
| Manali contact | theroyalregencymanali@gmail.com | +91 9816091380 |
| Website | www.royalregency.co.in/contact |
| Response SLA | Acknowledge within 5 working days; resolve within 30 days |
| Escalation | Data Protection Board of India (once formally constituted under DPDP Rules 2025) |
3. Information we collect
We practice data minimisation and collect only what is necessary for the purpose stated.
3.1 Identity & contact data
- Name, email address, phone number, postal/billing address, nationality, date of birth (where required for registration).
- Account & authentication — credentials and profile data if you create an account on our site.
- For foreign nationals: passport number, visa details, country of origin — as required by the Foreigners Act 1946 and Himachal Pradesh Police hotel register rules.
3.2 Reservation & stay data
- Booking dates, room category, rate plan, party composition, special requests.
- Dietary requirements, accessibility needs, or other preferences you voluntarily share.
- Incident reports, complaints, maintenance records, and service notes relating to your stay.
- In-house folio charges: dining, spa, laundry, minibar, telephone, transfers, etc.
3.3 Payment data
- Online payments are processed by Razorpay (Section 8). We receive transaction references, amount, status — not your full card number on our own servers.
- For on-property payments: card terminal receipts and authorisation codes are handled via bank-provided hardware; we do not store raw card data.
- Billing name, GSTIN (if claiming ITC), and invoice details for tax purposes.
3.4 Communication data
- Content of emails, website contact-form submissions, telephone calls (where recorded with notice), SMS, and WhatsApp messages — all treated as personal data under this Policy.
- WhatsApp is commonly used for guest communication at our properties. Messages sent via WhatsApp are retained only as long as necessary to fulfil the service request, after which they are deleted from hotel devices.
3.5 Technical & website data
- IP address, browser type, device model, operating system, pages visited, referral source, session duration.
- Cookie data (see Section 5).
3.6 Legally mandated check-in data
Note: We have no discretion to waive these legally mandated checks. Refusal to provide required identification will prevent check-in.
- Government-issued photo ID (Aadhaar, PAN, passport, driving licence, voter card) for all guests aged 18+.
- C-Form details for foreign nationals as required under Rule 14 of the Registration of Foreigners Rules, 1992.
- Statutory guest register entries as required by Himachal Pradesh Police and applicable state laws.
3.7 CCTV & security data
- Footage from cameras in entrances, lobbies, corridors, parking areas, restaurants, and other public/semi-public areas.
- CCTV is NOT deployed in guest rooms, bathrooms, changing areas, or any private guest space.
4. How we use your information
- Reservation management — Confirm, modify, price, and fulfil bookings; allocate rooms; process upgrades; coordinate early check-in/late check-out.
- Guest communication — Pre-arrival, during-stay, and post-departure correspondence; handling complaints and service requests.
- Payment processing — Collect room charges, F&B, ancillary services; process refunds; manage chargebacks and disputes.
- Legal compliance — Maintain guest registers; submit C-Forms for foreign nationals; issue GST-compliant tax invoices; respond to lawful orders from police, courts, revenue authorities, or tourism bodies.
- Safety & security — Operate CCTV; investigate incidents; prevent fraud, theft, or abuse; protect guests, staff, and property.
- Service improvement — Analyse anonymised usage data; act on guest feedback; improve room quality and amenities.
- Marketing — Send promotional offers and newsletters only where permitted by law and, where consent is required, only after explicit opt-in (see Section 16).
- Dispute resolution — Investigate billing disputes, damage claims, or guest complaints; support legal or insurance claims.
6. Legal bases for processing (DPDPA 2023 & DPDP Rules 2025)
The DPDP Act 2023 was notified on 13 November 2025 along with the DPDP Rules 2025, with full compliance required by 13 May 2027. Royal Regency is a Data Fiduciary under the Act.
| Basis | Application |
|---|---|
| Consent | For optional marketing, non-essential cookies, and certain sensitive data. May be withdrawn at any time. |
| Contractual necessity | Processing required to honour your booking and stay. |
| Legal obligation | Statutory registers, C-Forms, tax invoices, police reporting, court orders. |
| Legitimate interests | Security operations, fraud prevention, service improvement — where not overridden by your privacy rights. |
| Vital interests | In rare emergencies involving risk to life or safety of guests or staff. |
DPDP Act compliance note: Royal Regency is actively implementing the DPDP Rules 2025 framework ahead of the May 2027 full compliance deadline. Penalties for non-compliance can reach INR 250 Crores under the Act.
7. Your rights as a data principal (DPDPA 2023)
- Right to access — Request a summary of personal data we hold about you and how it is being processed.
- Right to correction — Request correction of inaccurate or incomplete personal data.
- Right to erasure — Request deletion of personal data when the purpose is fulfilled and no legal retention obligation applies.
- Right to withdraw consent — Withdraw consent for consent-based processing at any time, without affecting prior lawful processing.
- Right to grievance redressal — Lodge a complaint with our Grievance Officer (Section 2) and escalate to the Data Protection Board of India.
- Right of nomination — Nominate another individual to exercise your data rights in the event of your death or incapacity.
To exercise any right, contact our Grievance Officer. We will acknowledge within 5 working days and resolve within 30 days.
8. Payments & GST
8.1 Online payments (Razorpay)
All online payments on royalregency.co.in are processed by Razorpay Software Private Limited, a PCI-DSS compliant payment gateway. Card details, UPI credentials, and net banking data are submitted directly to Razorpay. Royal Regency does not store your full card number on its own servers. We retain transaction ID, amount, payment status, and billing metadata for accounting, GST compliance, and dispute resolution.
Read Razorpay's privacy practices in their official privacy policy.
8.2 On-property payments
We accept cash, debit/credit cards, and UPI. Card transactions are processed via bank-provided POS terminals. We do not store raw card data from on-property transactions.
8.3 GST on hotel services
GST is charged on the actual invoiced room rate. Cancellation charges attract GST at the same rate as the original booking. Corporate guests requiring ITC must provide GSTIN at check-in; ITC is available only for rooms billed above Rs. 7,500/night at 18% GST.
| Service | GST rate | ITC available? | Notes |
|---|---|---|---|
| Room rate below Rs. 1,000/night | 0% (exempt) | No | Budget segment |
| Room rate Rs. 1,000 – Rs. 7,500/night | 5% | No | Mid-market |
| Room rate above Rs. 7,500/night | 18% | Yes | Luxury/premium |
| Banquet / event halls | 18% | Yes | All tariff levels |
| Restaurant (standalone) | 5% | No | In-hotel dining |
8.4 Authorisation for post-stay charges
By providing a payment method at check-in or during online booking, you authorise the Hotel to charge any outstanding folio balance on departure, including damage assessments, incidental charges, or cancellation fees arising under this Policy.
9. Data sharing & third-party processors
We disclose personal information only as needed to operate the Hotel:
| Recipient | Purpose |
|---|---|
| Payment processors | Razorpay (online); bank POS partners (on-property). |
| Booking platforms | OTA partners (MakeMyTrip, Goibibo, etc.) — only to confirm and manage your reservation. |
| IT & hosting | Website hosting, email, SMS, PMS, and analytics service providers. |
| Professional advisers | Lawyers, chartered accountants, and insurers — under strict confidentiality. |
| Statutory authorities | Police, revenue/tax authorities, courts, immigration — when required by Indian law or lawful order. |
| Emergency services | Medical or emergency responders in life-threatening situations. |
| Corporate transfers | In a merger, acquisition, or asset sale — subject to equivalent data protection. |
We do not sell personal data to unrelated third-party marketers.
10. CCTV & security operations
CCTV cameras operate in public and semi-public areas including entrances, lobbies, reception, corridors, parking, restaurants, and event spaces. Signage is displayed at all camera locations.
- CCTV is NOT deployed in guest rooms, bathrooms, private balconies, or any space where guests have a reasonable expectation of privacy.
- Footage is retained for 30 days and then automatically overwritten, unless preservation is required for an active investigation or lawful police request.
- Access to footage is restricted to senior management, security personnel, and authorised law enforcement.
- CCTV records may be used as evidence in cases of theft, damage, assault, or other unlawful acts on hotel premises.
11. Data retention schedule
| Record type | Retention period |
|---|---|
| Guest booking & folio records | 7 years — Income Tax Act / GST requirements |
| Guest registration cards (Indian nationals) | 1–3 years as directed by HP Police / state rules |
| C-Form data (foreign nationals) | 5 years — Foreigners Act / Registration of Foreigners Rules |
| GST invoices & payment records | 7 years — GST Act 2017 |
| CCTV footage | 30 days (auto-overwritten unless legally required to preserve) |
| Marketing opt-in/opt-out records | Duration of consent + 3 years |
| Web server logs | 90 days |
| Analytics data | 13 months (aggregate/anonymised) |
| WhatsApp / email communications | Duration of guest relationship + 1 year, then deleted |
| Incident & damage reports | Until dispute resolved + 3 years |
12. Reservations, bookings & cancellations
12.1 Making a reservation
A booking is confirmed only upon receipt of a written confirmation from Royal Regency or payment of the applicable deposit/advance. Rates are in Indian Rupees (INR). USD approximate equivalents shown on the website are indicative only; you will be charged in INR.
12.2 Cancellation & refund policy
| Notice period | Charge | Applies to |
|---|---|---|
| 15+ days before arrival | No charge | All bookings |
| 10–14 days before arrival | 20% of total booking value | All bookings |
| 5–9 days before arrival | 50% of total booking value | All bookings |
| 0–4 days / no-show | 100% of total booking value | All bookings |
| Group bookings (10+ rooms) | Separate written agreement applies | See Section 12.4 |
All cancellations must be submitted in writing (email, booking platform, or your account on our website) with your booking reference number. Verbal cancellations are not accepted. Refunds, where applicable, will be processed back to your original payment method in up to 14 business days. Date changes are subject to availability and may be treated as a cancellation of the original booking and creation of a new booking, attracting applicable cancellation charges.
12.3 No-show policy
If you fail to arrive on your check-in date without prior written cancellation notice, 100% of the total booking value will be charged. No refund will be issued.
12.4 Group bookings (10+ rooms)
Bookings of 10 or more rooms, event hire, or wedding/banquet packages are governed by a separate written Group Booking Agreement. Group bookings typically require a non-refundable deposit of 25–50% of total value at the time of booking.
12.5 Date changes
Requests to change reservation dates are subject to room availability and prevailing rates. A date change may be treated as a cancellation of the original booking and creation of a new booking, attracting applicable cancellation charges.
12.6 Force majeure
If the Hotel is unable to honour a confirmed reservation due to a Force Majeure Event — including acts of God, floods, earthquakes, landslides, snowstorms (Shimla/Manali are prone to seasonal road closures), fire, pandemic, epidemic, government order, civil unrest, or terrorism — the Hotel will: (a) notify you as soon as reasonably practicable; (b) offer you an alternative date or property of equivalent category; or (c) refund the full advance paid, without further liability. Force Majeure shall not give rise to any claim for compensation or consequential damages from either party.
13. Check-in, check-out & room policies
13.1 Check-in
- Standard check-in time: 3:00 PM.
- Early check-in (before 3:00 PM) is subject to room availability and may attract an additional half-day charge at the prevailing rate.
- Valid photo ID is mandatory for all guests aged 18 and above at check-in.
- Foreign nationals must produce a valid passport and visa; C-Form will be completed by hotel staff within 24 hours of arrival as required by law.
- Unmarried couples: Royal Regency welcomes all guests irrespective of marital status, as is the law in India. ID of both guests will be recorded as required by statutory registers.
13.2 Check-out
- Standard check-out time: 11:00 AM.
- Late check-out (after 11 AM) is subject to availability. A half-day room charge may apply for check-out up to 6:00 PM; a full day's charge applies thereafter.
- All folio charges must be settled prior to or at check-out.
- Unreturned key cards will be charged at Rs. 500 per card or replacement cost, whichever is higher.
13.3 Room occupancy
- Maximum occupancy is as specified at the time of booking. Additional persons beyond stated occupancy will attract an extra person charge.
- Specific room number preferences are noted but cannot be guaranteed.
- Pets are not permitted at any Royal Regency property unless explicitly agreed in advance in writing.
- Visitors (non-resident guests) are permitted in rooms only with prior intimation to reception and are not permitted to stay overnight unless registered and paying for an additional occupant.
14. Guest responsibilities, conduct & damages
14.1 General house rules
- Guests must comply with all reasonable house rules, staff instructions, and signage on Hotel premises.
- Behaviour that endangers safety, disturbs other guests, is abusive to staff, or violates Indian law may result in immediate eviction without refund of unused nights.
- The Hotel reserves the right to refuse service or accommodation to any person at its reasonable discretion, consistent with applicable law.
- Illegal activities on Hotel premises will result in immediate eviction, forfeiture of the full booking value, and referral to law enforcement.
14.2 Smoking policy
- Smoking (including vaping and e-cigarettes) is prohibited inside all rooms, corridors, restaurants, lobbies, and covered areas.
- Designated smoking areas are available at both properties — please ask reception for locations.
- Violation of the smoking ban will attract a deep-cleaning and odour-remediation charge of Rs. 3,000–Rs. 10,000 per incident.
14.3 Property damage
- Guests are fully liable for any damage to, loss of, or destruction of Hotel property caused by themselves, their invitees, or minors in their care.
- The Hotel will charge the documented cost of repair or replacement plus reasonable labour and procurement costs.
- Where the cost cannot be immediately verified, a provisional hold or deposit may be taken pending the final damage assessment.
- Photographs, CCTV footage, and inventory checks will be used to substantiate damage claims.
- Deliberate or negligent damage may be reported to the police in addition to civil recovery.
14.4 Extraordinary cleaning
Excessive soiling, biological contamination, or misuse of rooms requiring specialist cleaning will attract additional charges of Rs. 2,000–Rs. 15,000 depending on extent and nature, evidenced by vendor invoices.
14.5 Minibar, room service & ancillary charges
- Minibar items consumed during your stay will be added to your folio at the prevailing tariff.
- Minibar inventory is checked at check-out. Consumed but unacknowledged items will be charged to the card on file.
- Room service, spa, laundry, telephone, and transfer charges are added to the folio at the time of service.
14.6 Disputes & billing
Billing disputes must be raised at check-out or within 7 calendar days of departure by email to the relevant property. Charges are assessed in good faith based on inspection records, photographs, and customary tariffs. Nothing in this Policy limits non-waivable consumer rights under the Consumer Protection Act, 2019.
15. Safety, security & emergency procedures
- In the event of a fire or emergency, guests must follow staff instructions and posted evacuation routes. Do not use lifts during a fire.
- The Hotel is not liable for loss of cash, jewellery, or valuables left in rooms. Safe deposit boxes are available at reception.
- The Hotel is not responsible for theft or loss of personal property from vehicles in Hotel parking areas. Parking is at the owner's risk.
- Guests requiring urgent medical assistance should contact reception immediately.
- In cases of a Data Breach affecting guest personal data, the Hotel will notify the Data Protection Board of India and affected guests as required under DPDP Rules 2025.
16. Marketing communications
- We send promotional offers or newsletters only where permitted by law and, where consent is required, only after explicit opt-in.
- You may unsubscribe from marketing emails at any time using the unsubscribe link in any marketing email.
- To opt out of SMS promotions, reply STOP or contact us directly.
- Withdrawal of marketing consent does not affect transactional messages (booking confirmations, invoices, policy notices, safety alerts).
- We do not share your contact details with unrelated third parties for their marketing purposes.
17. Children
Children under 5 years of age stay free when sharing a room with parents and no extra bed is required. Children aged 5–12 may attract an extra person charge when an additional bed is required. For online bookings, children are defined as aged 12 and under; adults are 18 and over.
For data purposes, we do not knowingly collect personal data directly from children under 18 independently of their parent or guardian. If you believe a child's data has been collected without appropriate consent, please contact our Grievance Officer.
18. Cross-border data transfers
We primarily host and process guest data in India. Where data is transferred outside India — for example to cloud hosting, email, or analytics providers with servers abroad — we do so with safeguards required by the DPDP Act 2023 and DPDP Rules 2025, and only to the extent necessary to deliver the service.
19. Information security
We implement appropriate technical and organisational security measures including:
- HTTPS/TLS encryption for all data transmitted on our website and booking engine.
- Access controls restricting personal data access to authorised staff on a need-to-know basis.
- Staff training on data handling, guest privacy, and incident reporting.
- Vendor due diligence and data processing agreements with all processors.
- Regular review of security measures in line with DPDP Rules 2025 requirements.
20. Limitation of liability
- The Hotel is not liable for indirect, incidental, consequential, or punitive losses arising from use of our website, except where prohibited by law.
- The Hotel's liability for website-only claims is limited to the amount paid for the specific online transaction in the preceding 12 months.
- The Hotel is not liable for loss or damage to personal property left in rooms or common areas, including vehicles in Hotel parking, except where caused by our proven negligence.
- Nothing in this Policy excludes liability for death or personal injury caused by our negligence, or any liability that cannot be excluded under the Consumer Protection Act, 2019 or other applicable Indian law.
21. Intellectual property
All content on royalregency.co.in — including text, photographs, logos, graphics, room imagery, and brand elements — is the intellectual property of Royal Regency Hotels or its licensors, protected under the Copyright Act 1957 and Trade Marks Act 1999. No content may be reproduced, distributed, or commercially used without prior written permission.
22. Third-party links & platforms
Our website contains links to third-party platforms including Google Maps, Instagram, MakeMyTrip, Goibibo, and Razorpay. Royal Regency is not responsible for the privacy practices or content of third-party websites. Bookings made through OTA platforms are subject to those platforms' own terms; for your on-property stay, this Policy shall prevail.
23. Severability & waiver
If any provision of this Policy is found invalid or unenforceable, that provision shall be severed without affecting the remaining provisions. Failure by the Hotel to enforce any provision on any occasion shall not constitute a waiver of the right to enforce it in future.
24. Governing law & jurisdiction
This Policy is governed by the laws of the Republic of India. Subject to mandatory consumer or statutory forum requirements, disputes shall be subject to the exclusive jurisdiction of the courts at Shimla, Himachal Pradesh, India. Parties agree to attempt good-faith resolution through our Grievance Officer before initiating formal legal proceedings.
25. Coupons, offers & loyalty points
25.1 Grandfathering of existing coupon holders
- Any coupon codes, promotional credits, or loyalty points earned or issued to a guest prior to the effective date of a policy change will remain valid and honoured at their original value and terms, as at the date they were issued or earned.
- A change in coupon rates, redemption values, or programme structure will not retroactively reduce or invalidate points or coupons already held by guests at the time the change is announced.
- New rates, terms, or programme structures will apply only to coupons issued or points earned after the effective date of the change.
- Guests holding coupons or loyalty points issued prior to a policy change will be given a minimum redemption window of 90 days from the date of notice to redeem their existing coupons or points under the original terms, subject to room availability.
25.2 General coupon terms
- Coupons and promotional codes are non-transferable, non-exchangeable for cash, and valid only for the property, room type, and dates specified at the time of issue.
- Coupons cannot be combined with other promotions or OTA offers unless explicitly stated.
- Royal Regency reserves the right to withdraw or modify future coupon programmes with reasonable prior notice, subject to the grandfathering protections in Section 25.1.
- In the event of suspected fraud, misuse, or abuse of coupon or loyalty programmes, the Hotel reserves the right to cancel the relevant coupons or points and take appropriate action.
26. Changes to this policy
We may revise this Policy periodically to reflect legal changes, operational updates, or changes to our services. The "Version" and "Last Updated" date at the top of this document will change accordingly. For material changes, we will provide notice on our website homepage and, where possible, notify registered guests by email. Continued use of our website or services after the effective date of any revision constitutes acceptance of the updated Policy. We commit to reviewing this Policy as the DPDP Rules 2025 implementation milestones occur (November 2025 — May 2027 phased rollout).