Rubix company logo with colorful geometric cube design on the left and text 'RubiX' on the right.
Rubix Model Who is it for? About Us
Partner with Rubix
Partner with Rubix
Privacy

 Privacy Policy

Effective Date: January 28, 2026
This is some text inside of a div block.

Sense7 Creative Labs LLP ("we," "us," "our," or "Company") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website https://www.rubixstack.com (the "Site") and use our services (collectively, the "Services"). Please read this Privacy Policy carefully. By accessing or using our Services, you acknowledge that you have read, understood, and agree to be bound by this Privacy Policy.

1. Introduction

RubiX (the “trading brand name” for the Company) operates as a B2B tourism marketplace for its business customers (that is, the tourism and art/culture suppliers) and extends as a distribution platform that enables online trip aggregators, digital travel agencies, and consumer-facing travel platforms to list, distribute, manage, and transact tourism products and services. Depending on the context, RubiX may act as a data controller or as a data processor/service provider processing personal data on behalf of its business customers in accordance with their instructions and applicable agreements.

2. Information We Collect

We collect information that you provide directly to us, information we obtain automatically when you use our Services, and information from third-party sources.

2.1 Personal Information You Provide

When you register for our Services, subscribe to newsletters, complete forms, or contact us, we may collect:

  • Contact information (name, email address, phone number, postal address)
  • Account credentials (username, password)
  • Business information (company name, role, industry)
  • Payment information (processed securely through third-party payment processors)
  • Communication preferences and feedback

2.2 Information Collected Automatically

When you access our Services, we automatically collect certain information, including:

  • Device information (IP address, browser type, operating system, device identifiers)
  • Usage data (pages visited, time spent, click patterns, referral sources)
  • Location data (general geographic location based on IP address)
  • Cookies and similar tracking technologies

When our Services are accessed via APIs, SDKs, embedded tools, or system integrations, we may automatically collect technical and operational data such as request logs, timestamps, system identifiers, error reports, and performance metrics to operate, secure, and optimize the Services.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, operate, and maintain our Services
  • To process transactions and send transactional communications
  • To respond to your inquiries, requests, and provide customer support
  • To send you marketing communications (with your consent where required)
  • To personalize and improve your experience with our Services
  • To analyze usage patterns and enhance our Services
  • To detect, prevent, and address fraud, security issues, and technical problems
  • To comply with legal obligations and enforce our Terms of Service
  • To process personal data on behalf of our business customers, including tourism/art culture suppliers, online trip aggregators, demand platforms, among others, in accordance with their instructions and applicable contractual obligations

4. Legal Basis for Processing

For users in European Economic Area (EEA), we process your personal data based on:

  • Consent: You have given clear consent for us to process your personal data for specific purposes
  • Contract: Processing is necessary for the performance of a contract with you
  • Legal obligation: Processing is necessary to comply with the law
  • Legitimate interests: Processing is necessary for our legitimate interests or those of a third party

Where RubiX acts as a data processor, the applicable legal basis for processing personal data is determined by the relevant data controller (such as an online trip aggregator, tourism supplier, or demand platform), and such processing is governed by our contractual arrangements, including data processing agreements.

For individuals located in India, RubiX processes personal data in accordance with the Digital Personal Data Protection Act, 2023, including principles relating to lawful purpose, data minimization, reasonable security safeguards, and user rights, as applicable.

5. Information Sharing and Disclosure

We do not sell your personal information. We may share your information in the following circumstances:

5.1 Service Providers

We may share your information with third-party service providers who perform services on our behalf, such as payment processing, data analysis, email delivery, hosting services, customer service, and marketing assistance. These service providers are contractually obligated to protect your information and use it only for the purposes for which we disclose it to them.

5.2 Business Transfers

If we are involved in a merger, acquisition, financing, reorganization, bankruptcy, or sale of assets, your information may be transferred as part of that transaction.

5.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency), or to protect our rights, privacy, safety, or property, or that of our users or the public.

5.4 Marketplace and Distribution Partners

As part of operating a B2B tourism marketplace and distribution platform, RubiX shares relevant personal and transactional information with demand platform partners, online trip aggregators and other ecosystem participants as necessary to enable bookings, service fulfilment, payment processing, cancellations, customer support, reporting, and compliance with legal or regulatory obligations. Such sharing is limited to what is necessary for the applicable transaction or service.

6. Data Retention

We retain personal information for as long as necessary to fulfill contractual obligations with our business customers, enable travel and booking services, comply with legal and regulatory requirements applicable to the travel and tourism industry, resolve disputes, and enforce our agreements. When we no longer need your information, we will securely delete or anonymize it.

7. Data Security

We implement appropriate technical and organizational security measures to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include encryption, secure servers, access controls, and regular security assessments. However, no method of transmission over the Internet or electronic storage is 100% secure, and we cannot guarantee absolute security.

8. Your Rights and Choices

Depending on your location, you may have the following rights regarding your personal information:

  • Access: Request access to your personal data
  • Correction: Request correction of inaccurate or incomplete data
  • Deletion: Request deletion of your personal data
  • Restriction: Request restriction of processing
  • Portability: Request transfer of your data to another service
  • Objection: Object to processing of your personal data
  • Withdraw Consent: Withdraw your consent at any time where processing is based on consent

To exercise any of these rights, please contact us at the email address provided below. We will respond to your request within a reasonable timeframe as required by applicable law in the respective jurisdiction. 

Where RubiX processes personal data on behalf of a business customer, requests relating to such data may need to be directed to the relevant data controller. RubiX will reasonably cooperate with its business customers to facilitate the exercise of data subject rights in accordance with applicable law in the respective jurisdiction. For individuals located in India, RubiX processes personal data in accordance with the Digital Personal Data Protection Act, 2023, including principles relating to lawful purpose, data minimization, reasonable security safeguards, and user rights, as applicable.

9. Marketing Communications and Opt-Out

You may opt out of receiving marketing emails from us by clicking the "unsubscribe" link in any marketing email we send, or by contacting us directly. Please note that even if you opt out of marketing communications, we may still send you transactional emails related to your account or Services.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and track information about your use of our Services. Cookies are small data files stored on your device. You can manage your cookie preferences through your browser settings. Types of cookies we use include:

  • Essential Cookies: Necessary for the operation of our Services
  • Analytics Cookies: Help us understand how visitors interact with our Services
  • Marketing Cookies: Used to deliver relevant advertisements

In certain cases, cookies or similar technologies may be used in connection with embedded services, white-label implementations, or partner-integrated environments, subject to applicable agreements and consent requirements.

11. Third-Party Links

Our Services may contain links to third-party websites or services that are not owned or controlled by us. We are not responsible for the privacy practices of these third parties. We encourage you to review the privacy policies of any third-party sites you visit.

12. Children's Privacy

Our Services are not intended for individuals under the age of 18\. We do not knowingly collect personal information from children under 18\. If we become aware that we have collected personal information from a child under 18, we will take steps to delete such information.

13. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. These countries may have data protection laws that differ from those of your country. We take appropriate safeguards to ensure that your personal information remains protected in accordance with this Privacy Policy when transferred internationally.


Where required by law, such transfers are protected through appropriate safeguards, including standard contractual clauses, data processing agreements, or other lawful transfer mechanisms.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for other operational, legal, or regulatory reasons. We will notify you of any material changes by posting the new Privacy Policy on this page with a new effective date. Your continued use of our Services after any changes indicates your acceptance of the updated Privacy Policy.

15. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us at:

Email: privacy@rubixstack.com
Website: https://www.rubixstack.com
Address: Sense7 Creative Labs LLP, Bengaluru, Karnataka, India