Legal

Privacy Policy

Effective date: 5 June 2026 · Version: 2.0 · Last updated: 5 June 2026

RAHÉ Collective ("RAHÉ", "we", "us", or "our") designs and delivers bespoke events and is committed to handling personal information with care, discretion, and respect. This Privacy Policy describes what data we collect, why we collect it, the legal bases on which we process it, how it is used, protected, retained, and shared, and the rights available to you under Indian law.

This Policy is governed by the Information Technology Act, 2000 ("IT Act") and the Rules framed thereunder, the Digital Personal Data Protection Act, 2023 ("DPDP Act") once and as it is brought into force.

By engaging RAHÉ, sharing your data with us, or accessing the RAHÉ Lounge, you confirm that you have read and understood this Policy.

1. Definitions

For clarity, the following terms have the meanings set out below.

  • Personal Data - any information relating to an identified or identifiable natural person.
  • Sensitive Personal Data - personal data that requires heightened protection, including financial information, health data, biometric data, and dietary/allergy data when it reveals health information.
  • Data Principal / Data Subject - the individual to whom the personal data relates.
  • Data Fiduciary / Data Controller - the entity that determines the purpose and means of processing personal data. RAHÉ is a Data Fiduciary in respect of all data covered by this Policy.
  • Data Processor - a third party that processes data on behalf of a Data Fiduciary. Our execution and vendor partners and technology providers act as Data Processors where relevant.
  • Processing - any operation performed on personal data, including collection, recording, storage, use, disclosure, or deletion.
  • Client - an individual, family, or organisation that engages RAHÉ's services.
  • Guest - an individual invited to or attending an event managed by RAHÉ.
  • Lounge - the RAHÉ Lounge, our proprietary digital client portal.
  • SOW - the Statement of Work executed between RAHÉ and a Client.

2. Who This Policy Applies To

This Policy applies to:

  • Clients - individuals or families who enquire about or engage RAHÉ's services.
  • Event guests - individuals whose details are shared with us as part of guest list management, RSVP coordination, and on-day logistics.
  • Website and Lounge visitors - anyone who accesses our digital properties, whether or not they engage our services.
  • Contacts - individuals who communicate with us via our website, WhatsApp, telephone, or email, including referrals.
  • Vendors and execution partners - individuals at our supplier organisations whose contact information we hold for service delivery.
  • Job applicants - individuals who apply for roles at RAHÉ (see Section 14).

3. What Information We Collect

Client Identity & Contact Information

Collected when you first reach out to us and maintained in your client account:

  • Full legal name, salutation, and preferred name
  • Phone number(s), email address(es)
  • Physical residential address and billing address (if different)
  • Company name, designation, and GSTIN (where applicable)
  • Preferred communication channel, language, and best time to be reached
  • Names, relationships, and contact details of additional authorised contacts (e.g., family members, executive assistants, or trusted advisors to be copied on important communications)
  • Government-issued identification details where required for permits, venue access, or regulatory compliance (e.g., PAN for tax invoicing above prescribed thresholds, passport/ID for international vendor coordination)

Event & Enquiry Information

Collected when an enquiry comes in:

  • Event type, tentative date(s), location, and estimated guest count
  • Overall budget range and initial vision or brief
  • Source of enquiry (website, WhatsApp, referral, press, social media, etc.)
  • Referrer name and relationship, where applicable
  • Time-sensitivity and decision-making timeline

Discovery & Requirements Data

Collected in detail during and after your discovery call via our requirement form. This is our most comprehensive data category:

Venue & Logistics

  • Venue shortlists, confirmed locations, access and load-in requirements
  • Guest accommodation requirements, room blocks, hotel preferences
  • Transport needs - full guest transport, VIP-only, airport transfers, intra-city movement
  • Permits required (noise, fire, alcohol, drone, traffic, public-place, etc.)
  • Day-of family point of contact: name and phone number
  • Security requirements, including private security or VIP protocols

Food & Beverage

  • Menu type, cuisine preferences, bar service preferences
  • Dietary restrictions and food allergies (see Section 5 - Sensitive Personal Data)
  • Religious or cultural food observances
  • Tasting requirements, attendees, and feedback
  • Execution and vendor partner meal planning
  • Alcohol service preferences and licensing details

Creative & Aesthetic

  • Décor scope, references, mood boards, colour palette
  • Must-have elements and things to avoid
  • Theme and vibe descriptions, function-specific creative direction
  • Entertainment type, specific artists requested, programme structure, run-of-show
  • Photography and video style, reference artists, delivery timelines, usage rights preferences
  • Styling scope (bride, groom, family), look references, body measurements where shared for fittings coordination

Gifts & Invitations

  • Invitation type, design preferences, and quantities
  • Recipient list details (overlapping with Section 3.5)
  • Gift tiers and per-guest favour budget
  • Personalisation details (monograms, dates, names)

Cultural & Ceremonial Information

  • Religious or cultural rituals to be performed
  • Officiant or priest details, including their requirements
  • Family customs and sequencing preferences

Client Profile & Relationship Data

Stored in your ongoing client account to enable a long-term relationship:

  • Important personal dates - birthdays, anniversaries, and other significant occasions (used to personalise our outreach and for milestone planning)
  • Aesthetic preferences and things to avoid at an account level
  • Cuisine preferences and personal dietary notes
  • Music preferences, do-not-play lists
  • Decision-making style, communication preferences, and relationship notes
  • History of past events managed by RAHÉ, including dates, scope, and outcomes
  • Client tier status (based on cumulative engagement and other internal criteria)
  • Referral records - names of contacts you have introduced to RAHÉ and the outcomes of those introductions
  • Your assigned RAHÉ lead planner and the full service team
  • Conflict or sensitivity notes (e.g., estranged relationships, deceased family members, custody considerations) - recorded only where necessary for tactful planning

Guest Data

Collected via our Guest RSVP module during the live project stage, after you share a guest list with us:

  • Full name, phone number, and email address
  • Postal address (where invitations are sent physically)
  • Guest group or relationship category (family, friends, colleagues, plus-ones, etc.)
  • Functions the guest is attending
  • RSVP status, including +1 details
  • Dietary restrictions and food allergies (see Section 5)
  • Table assignment, seating chart placement
  • VIP status, protocol notes
  • Special requirements - accessibility, mobility assistance, hearing assistance, nursing infants, etc.
  • Travel details where guests are coordinating arrivals through us (flight numbers, arrival times, accommodation)
  • Photographs provided for guest identification or security badging at high-profile events

Financial & Payment Data

  • Payment milestone statuses and timestamps
  • Invoice records: amount, GST, billing name, billing address, due dates, payment dates, and reference numbers
  • Coupon and discount code usage
  • Onboarding fee payment confirmations
  • Refund and credit-note records
  • Foreign exchange information for international clients (currency of payment, conversion records)
  • TDS deduction records where applicable

Note: RAHÉ does not directly collect or store credit card, bank account, or UPI credentials. Payments are completed via your chosen method through licensed payment gateways or direct bank transfer; we only record confirmation and timing. Payment gateway providers operate under their own privacy policies and PCI-DSS obligations.

Digital Signature & Contractual Records

  • Your full legal name as entered during SOW sign-off
  • IP address and approximate location at the time of signature
  • Device and browser metadata captured at signature
  • The timestamp of signature (date and time, including time zone)
  • The version of the SOW you signed and a stored copy of the signed document
  • Amendments, addenda, and change orders, with their respective signatures

Communications & Content

  • Client feedback on proposals and concepts
  • Shared notes between the RAHÉ team and yourself
  • Change requests and revision instructions
  • Category alignment discussion notes
  • WhatsApp, email, telephone, and in-person meeting notes where relevant to your event record
  • Call logs and, where you have been notified and consented, call recordings for quality and accuracy
  • Lounge in-app messages and comments

Post-Event Media

  • Photographs and videos uploaded via the RAHÉ Lounge gallery
  • Media delivery records (highlight reels, full films, album specifications)
  • Captions and categorisation attached to gallery content
  • Behind-the-scenes content captured by RAHÉ for internal training or, with your separate written consent, marketing use

Website, Lounge & Technical Data

Collected automatically when you visit our website or the Lounge:

  • IP address and derived approximate geographic location
  • Device type, operating system, browser type and version, screen resolution
  • Referring URL and pages viewed within our properties
  • Session duration, click paths, and interaction events
  • Crash reports, error logs, and performance traces
  • Login timestamps and authentication events (success and failure)
  • Two-factor authentication metadata where enabled (not the codes themselves)

Marketing & Engagement Data

Where you have given consent:

  • Email subscription status and segment membership
  • Open and click events from our newsletters
  • Event attendance at RAHÉ-hosted previews, showcases, or industry events
  • Survey and feedback responses
  • Testimonials, quotes, and reviews you have provided

Vendor & Execution Partner Data

For individuals at our supplier organisations:

  • Business contact details (name, role, phone, email)
  • Company name, address, GSTIN, PAN
  • Bank details for payouts
  • Insurance and compliance certifications
  • Performance and reliability notes maintained internally

4. Sources of Information

We collect personal data from the following sources:

  • Directly from you - through enquiries, forms, calls, meetings, the Lounge, and our website.
  • From third parties acting on your authority - your designated authorised contacts, family members, executive assistants, or other vendors you instruct to share information with us.
  • From your guests - via the RSVP module, where guests submit their own information.
  • From referrers - when an existing client or partner introduces you to us, they may share basic contact details and context.
  • From public sources - for venue research, vendor due diligence, or to verify information you have provided.
  • Automatically - via the technical means described in Section 3.10.

5. Sensitive Personal Data (Dietary, Health, Allergy & Other Special Categories)

Certain information we collect is treated as sensitive personal data and is subject to additional protection. This includes:

  • Dietary restrictions, food allergies, and intolerances
  • Health conditions disclosed for event planning purposes (e.g., mobility limitations, pregnancy, recent surgery affecting transport or seating)
  • Religious or community affiliations where revealed by ceremonial requirements
  • Financial information beyond basic billing data
  • Government identification numbers
  • Biometric or photographic data used for identification at high-security events

RAHÉ collects sensitive personal data solely for legitimate event-planning, safety, and compliance purposes:

  • It is shared only with the execution and vendor partners directly responsible for the relevant scope (e.g., dietary data goes to caterers; mobility data goes to venue and transport coordinators).
  • It is never used for profiling, marketing, or shared with any third party beyond the operational scope of your event.
  • Guests' sensitive data is provided to us by you (the Client) or by the guest directly via RSVP. By sharing such information about a guest, you confirm that the guest has consented to you sharing it with us, or that you have other lawful authority to do so.
  • Sensitive personal data is deleted, anonymised, or aggregated at the end of the applicable retention period set out in Section 9, unless we are required to retain it for longer under law.

6. Legal Bases for Processing

We process personal data on one or more of the following legal bases:

Processing Activity Legal Basis
Responding to enquiries, providing quotes Steps taken at your request prior to entering a contract
Planning and delivering your event Performance of the contract (the SOW)
Sharing data with execution and vendor partners for delivery Performance of the contract; legitimate interest in coordinated delivery
Processing guest RSVPs and dietary data Consent (yours, on behalf of guests where applicable); legitimate interest in guest safety
Issuing invoices and maintaining financial records Legal obligation (Income Tax Act, GST law, Companies Act where applicable)
Marketing communications Consent, withdrawable at any time
Lounge analytics and service improvement Consent for non-essential analytics; legitimate interest for essential operation
Maintaining your client account between events Legitimate interest in long-term relationship management, with your continued engagement
Responding to legal claims or regulatory requests Legal obligation; legitimate interest in defending our rights
Profile and preference data for personalisation Consent and legitimate interest in tailored service

Where we rely on consent, you may withdraw it at any time without affecting the lawfulness of processing carried out before withdrawal. Where we rely on legitimate interests, we have assessed that our interests do not override your rights and freedoms; you may object at any time.

7. How We Use Your Information

Purpose Description
Service delivery Planning, coordinating, and executing your event across all confirmed workstreams.
Communication Sending updates, sharing proposals and SOWs, coordinating approvals, and responding to queries.
Guest management Coordinating RSVPs, dietary planning, seating, accessibility, and on-day logistics.
Execution & vendor coordination Sharing relevant event details with shortlisted and confirmed execution and vendor partners.
Billing & invoicing Generating and sending invoices, tracking payment milestones, issuing receipts, and statutory reporting.
Relationship management Personalising your experience, tracking preferences across events, and managing referrals.
Legal & compliance Maintaining records required by law, including SOW sign-offs, financial records, and statutory permits.
Safety & risk management Ensuring guest safety, including allergy management, accessibility, and emergency contact protocols.
Service improvement Understanding what worked well and where we can do better - internally and in aggregated, non-identifiable form.
Marketing (with consent) Inviting you to RAHÉ showcases, newsletters, and previews of new offerings.
Security and fraud prevention Detecting unauthorised access to the Lounge, fraudulent payments, or misuse of our services.

We do not use your personal data for automated decision-making that produces legal or similarly significant effects, and we do not engage in profiling for advertising or behavioural targeting.

8. Data Sharing & Third Parties

RAHÉ does not sell, rent, or trade your personal information. We share data only in the limited circumstances set out below.

Execution and Vendor Partners

We share relevant event details - dates, scope, guest counts, specific requirements, and (where applicable) dietary, accessibility, or VIP data - with shortlisted and confirmed execution and vendor partners (caterers, florists, photographers, videographers, decorators, sound and light providers, transport providers, hotels, makeup artists, entertainers, security agencies, etc.) solely to enable them to quote for and deliver services for your event.

  • Execution and vendor partners receive only what they need for their specific scope.
  • All partners working on confirmed scope are bound by confidentiality terms, either as part of their engagement with RAHÉ or via the SOW with you.
  • Partners act as independent controllers for data they collect directly from you (e.g., a photographer's own files), or as our processors where they handle our records - the applicable role is determined by the nature of the engagement.

Technology Partners (Sub-processors)

The Lounge, our internal systems, and our communications infrastructure rely on third-party providers. Categories include:

  • Cloud hosting and storage providers
  • Email and calendar providers
  • Communication platforms (e.g., WhatsApp Business)
  • Payment gateways (which operate under their own privacy policies)
  • Analytics, error-monitoring, and customer-support tools
  • Document signing and contract management platforms

These providers act as our processors under data processing agreements that require them to process data only on our instructions, maintain appropriate security, and not use your data for their own purposes. A current list of our material sub-processors is available on request to grievance@rahecollective.com.

Professional Advisors

We may share data with our auditors, lawyers, tax advisors, or insurers where necessary for them to advise us, and subject to professional confidentiality obligations.

Legal Compliance

We may disclose personal data if required by law, court order, summons, regulatory authority, or to:

  • Comply with statutory obligations under the IT Act, DPDP Act, Income Tax Act, GST law, and other applicable legislation
  • Respond to lawful requests from law enforcement
  • Establish, exercise, or defend legal claims
  • Protect the vital interests of any person (e.g., medical emergency at an event)

Business Transfer

In the event of a merger, acquisition, restructuring, financing, or sale of all or part of our business, your data may be transferred to the acquiring or successor entity, subject to confidentiality obligations and under the same protections as this Policy. We will notify you of any such transfer that materially affects how your data is processed.

With Your Consent

We may share your data for any other purpose with your express consent - for example, featuring your event in a press feature, case study, or social media post.

9. Data Security

We take reasonable technical and organisational measures to protect your personal data from unauthorised access, use, disclosure, alteration, or destruction. These include:

Technical measures

  • Encryption of data in transit (TLS 1.2 or higher) for the Lounge and our administrative systems
  • Encryption at rest for sensitive fields in our primary data store
  • Authentication and access control on the Lounge, including support for strong passwords and (where enabled) two-factor authentication
  • Regular backups and tested recovery procedures
  • Logging and monitoring of access to sensitive records
  • Patching and update protocols for systems we control

Organisational measures

  • Role-based access: team members and partners see only what they need for their function
  • Data minimisation: we collect and share the minimum necessary for each purpose
  • Confidentiality obligations in all employment and partner contracts
  • Onboarding and periodic refresher training on data handling
  • Documented procedures for handling data subject requests and incidents

Contract and document handling

  • Digital signatures are timestamped and stored with audit trails
  • Original signed documents are retained in segregated, restricted storage

Communication security

  • We encourage secure channels (email with TLS, WhatsApp end-to-end encryption) for sensitive discussions

No method of transmission over the internet or storage system is 100% secure. While we strive to use commercially acceptable means to protect your data, we cannot guarantee absolute security. If you believe your data has been compromised, please contact us immediately at grievance@rahecollective.com.

10. Data Breach Notification

In the event of a personal data breach that is likely to result in a risk to your rights:

  • We will notify the relevant regulatory authority (including the Data Protection Board of India once functional under the DPDP Act) within the timelines required by law.
  • We will notify affected Data Principals without undue delay, providing a description of the breach, likely consequences, and the measures we are taking to address it and mitigate harm.
  • We maintain an internal breach register documenting all incidents, whether or not they trigger notification requirements.

11. Data Retention

We retain personal data for as long as necessary to deliver your event, fulfil our legal obligations, and protect our legal interests. Our standard retention guidelines:

Data category Retention period
Enquiry data where no contract is signed 12 months from last contact, then deleted or anonymised
Client account and event data 7 years post-event (aligned with financial and legal record-keeping requirements under Income Tax Act, GST law, and Limitation Act)
Guest RSVP data (excluding dietary) Deleted or anonymised within 90 days of event completion
Guest dietary and accessibility data Deleted within 90 days of event completion
Photo and video gallery content 12 months post-event in the Lounge, then archived or deleted unless you request continued archival
Internal master copies of event media 3 years post-event, for portfolio and warranty purposes, then archived or deleted
SOW and signed documents 7 years (legal compliance)
Financial records (invoices, payment records, tax filings) 8 years (Income Tax Act / GST law requirements)
Communications logs (email, WhatsApp, call notes) 3 years post-event, or 7 years where part of contract performance records
Lounge access logs and security events 12 months
Marketing preferences and subscription data Until you withdraw consent or request deletion
Job applicant data (unsuccessful) 12 months, unless you consent to longer retention for future opportunities
Vendor contact and performance data Duration of the relationship plus 3 years
Breach register entries 5 years from incident closure

Where data is retained for legal compliance only, we restrict access and use to those purposes. At the end of the applicable period, data is securely deleted, destroyed, or irreversibly anonymised.

12. Your Rights

Under applicable Indian data protection law (IT Act, 2000 and the DPDP Act, 2023), and - where applicable to you - comparable foreign laws, and as a matter of our own commitment, you have the following rights:

  • Access: Request a summary of, and confirmation about, the personal data we hold about you and how it is processed.
  • Correction and updating: Ask us to correct inaccurate or incomplete data.
  • Erasure / Deletion: Request deletion of your data (subject to our legal retention obligations and legitimate ongoing purposes).
  • Portability: Request a copy of your data, where applicable, in a structured, commonly used, machine-readable format.
  • Restriction: Ask us to restrict processing of your data in specific circumstances (e.g., while a correction request is being assessed).
  • Objection: Object to specific uses of your data, including for marketing or post-event relationship management.
  • Withdrawal of consent: Where we rely on consent, you may withdraw it at any time. Withdrawal does not affect the lawfulness of processing before withdrawal and may affect our ability to continue providing services that depend on that data.
  • Nomination (DPDP Act): Nominate another individual to exercise your rights in the event of your death or incapacity.
  • Grievance redressal: Raise a grievance with our designated officer (Section 18).
  • Complaint to a regulator: Lodge a complaint with the appropriate data protection authority.

13. How to Exercise Your Rights

To exercise any of these rights, email us at grievance@rahecollective.com with sufficient information to identify you and the nature of your request. We may ask you to verify your identity before responding, particularly for requests involving sensitive data or deletion.

We will respond to verified requests within 30 days of receipt. Where a request is complex or we receive a high volume of requests from you, we may extend this period by up to a further 30 days and will inform you of the extension. There is no fee for reasonable requests; manifestly unfounded or excessive requests may incur a reasonable charge or be refused, with reasons.

14. Job Applicants

If you apply for a role at RAHÉ, we collect:

  • Your CV and supporting documents
  • Contact details and right-to-work information
  • Interview notes and assessment outcomes
  • References, where you have authorised us to contact them

We use this data solely to assess your application and, if you are hired, to onboard you. Unsuccessful applicants' data is deleted after 12 months unless you consent to longer retention to be considered for future roles.

15. Children's Data

Our services are contracted with adults (aged 18 or over). However, guest lists and event scopes regularly include minors.

  • If you include a child's name, dietary restrictions, photograph, or other details in materials shared with us, you confirm that you are the parent or legal guardian, or that you have the lawful authority to provide this information on the child's behalf.
  • We use children's data solely for on-day safety, logistics, and the agreed scope of the event.
  • We do not knowingly market to children, and we do not engage in any profiling of children.
  • We will not publish identifiable images of children in our portfolio or marketing without specific, separate written consent from the parent or legal guardian.

If you believe a child's data has been provided to us without proper authority, please contact us immediately and we will investigate and, where appropriate, delete the data.

16. Cookies & Digital Tracking

The RAHÉ Lounge is a live digital platform. When you access it (or our public website), certain data may be collected automatically to enable the platform to function and to improve your experience.

Essential Cookies & Session Data

These are necessary for the Lounge to operate. They cannot be switched off without affecting access:

  • Session authentication tokens - to keep you logged in securely during your visit.
  • Local storage - used to save your preferences (e.g., last viewed section, active project) so the Lounge remembers your state between visits.
  • Security tokens - to protect against unauthorised access and cross-site request forgery.
  • Load-balancing and routing cookies - to ensure stable performance.

Functional & Analytics Data

With your consent, we may collect the following to improve the Lounge experience:

  • Page navigation patterns - which sections you visit and how frequently, to prioritise improvements.
  • Error and performance logs - to identify and fix technical issues quickly.
  • Device and browser type - to ensure the Lounge renders correctly on your device.
  • Feature usage events - to understand which tools are most valuable.

We use Microsoft Clarity, a third-party analytics service provided by Microsoft, to understand how visitors use our website and the RAHÉ Lounge through behavioural metrics, heatmaps, and session replay (recordings of page interactions such as clicks, scrolls, and navigation). This is captured using first- and third-party cookies and similar technologies. Sensitive input fields are masked. We use this strictly to improve usability and never to build advertising profiles or to sell your data. For more information on how Microsoft processes this data, see the Microsoft Privacy Statement.

We do not use advertising cookies, third-party advertising pixels, retargeting tags, or cross-site behavioural advertising, and we do not sell your personal data. Our analytics, including Microsoft Clarity heatmaps and session recordings, are used solely to improve our website and the Lounge, and are not used to make automated decisions about you.

Your Choices

  • You may clear local storage and session data at any time via your browser settings. Doing so will log you out of the Lounge and reset your saved preferences.
  • Functional analytics can be opted out of by contacting us at grievance@rahecollective.com or via in-Lounge settings where available.
  • Essential session data cannot be disabled without affecting access to the platform.
  • Most browsers allow you to block or delete cookies generally; please refer to your browser's help documentation.

17. Automated Decision-Making and AI Tools

We do not subject your data to automated decision-making that produces legal or similarly significant effects on you. We do not use AI tools to make decisions about your engagement, pricing tier, or service eligibility.

We may use AI-assisted productivity tools internally for tasks such as drafting communications, summarising notes, or organising information. Where such tools are used:

  • We do not input sensitive personal data into general-purpose, public AI tools.
  • Any AI tools used to process client data are evaluated for security and contractually obligated not to train on or retain our inputs.
  • Final decisions and client-facing communications remain the responsibility of our human team.

18. Grievance Officer & Contact Information

We have designated a Grievance Officer to address concerns relating to this Policy or your personal data.

Grievance Officer RAHÉ Collective Email: grievance@rahecollective.com Subject line: Privacy - Grievance Officer

HQ27, B-660, Sector 27, Gurgaon, Haryana 122009, India

For general privacy questions, you may also contact us at the same email address. We aim to acknowledge receipt of grievances within 7 working days and resolve them within 30 days.

If your grievance is not resolved to your satisfaction, you may escalate to:

  • The Data Protection Board of India.

19. Third-Party Websites and Links

Our website, the Lounge, and our communications may contain links to third-party websites, vendor portals, or social media platforms. We are not responsible for the privacy practices of these third parties. We encourage you to read their privacy policies before sharing your information with them.

20. Marketing Communications

If you have consented to receive marketing from us, we may send you:

  • Newsletters about RAHÉ's work, design point of view, and behind-the-scenes content
  • Invitations to RAHÉ-hosted previews, showcases, and partner events
  • Announcements about new services or offerings

You may opt out at any time by:

  • Clicking the "unsubscribe" link in any marketing email
  • Emailing grievance@rahecollective.com with the subject "Unsubscribe"
  • Adjusting your preferences in the Lounge

Opting out of marketing does not affect transactional and service communications about events you have engaged us for.

21. Use of Event Imagery in RAHÉ's Marketing

Photographs and videos captured at events are sometimes used by RAHÉ for portfolio and marketing purposes. This use is always subject to your separate, specific consent, which will be documented in the SOW or in a separate release.

  • You may consent to general portfolio use, restricted use (e.g., website only, no social media), or no use at all.
  • You may withdraw consent for future use at any time by writing to us. We will remove the relevant content from RAHÉ-controlled channels within a reasonable period; we cannot recall content already published in third-party media, press, or shared by guests.
  • Vendor partners (e.g., photographers) often have their own portfolio rights subject to the agreements you sign with them.

22. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in law, our services, or our practices.

  • The "Effective date" at the top of this Policy will be updated when any change is made.
  • For material changes, we will notify you via email or a prominent notice in the Lounge promptly before the change takes effect.
  • For non-material changes (clarifications, formatting, typo corrections), we may update the Policy without separate notice.
  • We will maintain prior versions of the Policy and make them available on request.

Your continued use of our services after a material change becomes effective constitutes acceptance of the updated Policy. If you do not agree with a material change, you may exercise your rights under Section 13, including withdrawal of consent and request for deletion, subject to our legal retention obligations.

23. Governing Law and Jurisdiction

This Policy is governed by and construed in accordance with the laws of India. Any disputes arising out of or in connection with this Policy or our processing of your personal data are subject to the exclusive jurisdiction of the competent courts at New Delhi, India, without prejudice to your statutory rights to approach the Data Protection Board of India or other competent regulatory authority.

24. Contact

RAHÉ Collective
Email: grievance@rahecollective.com
Registered office address: HQ27, B-660, Sector 27, Gurgaon, Haryana 122009