Who does Yatra's Acceptable Use Policy apply to?

Everyone interacting with a Yatra Service: consumers, hotels on Hotel Manager, travel agents on the Travel-Agent Platform, API consumers, security researchers, and job applicants. Specific B2B contracts may add stricter rules on top.

Can I scrape Yatra prices for a comparison tool?

No — automated scraping beyond our published rate limits is prohibited. Legitimate metasearch and price-comparison services should contact support@yatraforfun.com for a commercial data feed.

Is it OK to present a Yatra dummy ticket as a real booking?

No. Dummy tickets are information-only PDFs for visa interviews. Presenting them as confirmed bookings to airlines, immigration officers, or hotels is prohibited and may amount to fraud under the Muluki Penal Code 2074.

What happens if I break this Policy?

Depending on severity: warning, content removal, rate-limit reduction, booking reversal, account suspension, or termination. Criminal violations are referred to Nepal Police. You can appeal any action within 30 days.

How do I report abuse on Yatra?

Email support@yatraforfun.com with subject 'AUP report', or click the 'Report' link on a review, listing, or itinerary. We acknowledge within 24 hours and investigate within 5 business days.

Are fake reviews prohibited?

Yes. Reviews must be written by someone who actually used the product, must not be copied, must not name staff negatively unless conduct was unlawful, and must disclose commercial incentives. Signals of inauthenticity are filtered before publication.

Acceptable Use Policy

Who this Policy applies to

This Acceptable Use Policy ("AUP") applies to every person and business who interacts with a Yatra Service, including:

Consumers — anyone browsing, searching, placing a booking, or buying a dummy ticket on yatraforfun.com or in a Yatra mobile app.
Hotels using Yatra Hotel Manager, whether through the partner dashboard or the channel-manager API.
Travel agents using the Yatra Travel-Agent Platform, its markup engine, wallet, or reseller APIs.
API consumers — developers integrating with any Yatra public or partner API.
Security researchers reviewing the Services under our Vulnerability Disclosure Policy.
Job applicants interacting with the careers or recruitment flows.

The AUP forms part of our Terms of Service and is incorporated by reference into every booking, subscription, and API key. Where a specific agreement (the Hotel Agreement or Agent Agreement) imposes a stricter obligation on a B2B customer, that obligation prevails over the corresponding general rule below.

Five principles

We summarise the rules below in five principles. If in doubt about a specific action, apply these principles first:

Honesty. Do not lie about who you are, where you are travelling, or how you intend to use a Yatra document.
Respect. Treat other users, Yatra staff, Partners, and the people you write about with dignity. No harassment, no threats, no hate.
Security. Do not try to break the Services or to gain access you are not entitled to. Do not export or re-purpose data beyond the booking it relates to.
Legality. Respect Nepali law, the law of the destination country, airline and hotel rules, and international sanctions.
Proportionality. Use automation and bulk actions only within the limits we publish. Excessive or adversarial use harms other customers and Partners.

Prohibited content

You must not upload, post, share, transmit, or generate through any Yatra tool (including the AI itinerary builder, reviews, support chat, or an API request) Content that:

is unlawful under the Muluki Civil Code, 2074 (2017), the Muluki Penal Code, 2074 (2017), or the Electronic Transactions Act, 2063 (2006) — including defamation, obscenity, and incitement;
infringes a third-party copyright, trademark, patent, design, or moral right under the Copyright Act, 2059 (2002) or the Patent, Design and Trademark Act, 2022 (1965);
constitutes child sexual abuse material, grooming, or any content prohibited under the Act Relating to Children, 2075 (2018) or the Human Trafficking and Transportation (Control) Act, 2064 (2007);
harasses, threatens, or targets a person or group based on caste, gender, ethnicity, religion, disability, or sexual orientation — in violation of the Caste-based Discrimination and Untouchability (Offence and Punishment) Act, 2068 (2011) and Part 3 of the Constitution of Nepal;
promotes terrorism, violent extremism, or an organisation sanctioned under a United Nations Security Council resolution or the Asset (Money) Laundering Prevention Act, 2064 (2008);
exposes another person's sensitive personal data (a Yatra staff member, a fellow passenger, a hotel employee) without their lawful consent;
constitutes commercial spam, pyramid schemes, gambling, or any activity forbidden by Nepal Rastra Bank or Department of Tourism directives.

Prohibited conduct

Identity and booking integrity

Do not create an account under a false name, a stolen identity, or using a passport number that is not yours.
Do not enter payment-instrument details that you are not authorised to use.
Do not make a booking for a passenger whose consent you have not obtained.
Do not maintain multiple accounts to abuse promotions, coupons, agent commissions, or wallet credits.

Dummy tickets and visa documents

Do not present a dummy ticket, dummy hotel confirmation, or any Yatra-generated PDF as a confirmed booking to anyone other than a visa officer who is known to accept dummy documentation.
Do not forge, alter, or share Yatra-issued documents.
Do not use Yatra visa-assistance services to submit fraudulent supporting documents to an embassy.

Security and platform integrity

Do not probe, scan, or reverse-engineer the Services outside the scope of our Vulnerability Disclosure Policy.
Do not try to bypass authentication, rate limits, signature verification, idempotency checks, or bot-management rules.
Do not upload malware, web-shells, or files engineered to exploit a parser.
Do not interfere with other users — denial-of-service attacks, credential stuffing, session hijacking, or UI-redress attacks are all prohibited.
Do not hold inventory speculatively — repeated hold-and-release behaviour that deprives other customers of availability is a violation of Section 3(d) of the Consumer Protection Act, 2075 (2018).

Commercial misuse

Do not resell Yatra inventory without an executed Travel-Agent Agreement and a valid travel-agency licence under the Travel and Trekking Agency Rules, 2037 (1981).
Do not frame, iframe, or rebrand Yatra pages without written permission.
Do not scrape prices, content, or availability at a rate exceeding our published limits (see "API rate limits and scraping" below).
Do not impersonate Yatra, its staff, a Partner airline, or a government authority in any communication.

AI itinerary and AI-assisted features

Do not prompt the AI itinerary builder to produce content that violates the "Prohibited content" list.
Do not attempt to exfiltrate system prompts, training data, or internal instructions via prompt-injection attacks.
Do not redistribute AI-generated output as if it were Yatra editorial content, or use it to evade a warranty disclaimer.

API rate limits and scraping

Yatra publishes rate limits and concurrency caps for every public and partner API. Current defaults:

Surface	Default limit	Burst
Anonymous search (flights, hotels)	60 requests / minute per IP	120 / minute
Authenticated search	240 / minute per account	480 / minute
Booking & payment endpoints	10 / minute per account	30 / minute (idempotency-keyed)
Partner API (Hotel or Agent)	Per contract	Per contract
Dummy-ticket generation	5 / minute per account; 50 / day	10 / minute (signed partner)

Automated clients must send a truthful User-Agent header identifying the operator, must honour Retry-After and 429 responses, and must respect our robots.txt. You may not rotate IPs or residential proxies to evade a block.

Price-comparison scraping is not authorised. If you are a legitimate price-comparison or metasearch service, contact [email protected] for a commercial data feed.

Reviews, ratings & user-generated content

Yatra welcomes honest, first-hand reviews. To keep the review corpus useful, we require that:

you have actually used the product (flight, hotel, vehicle, tour) you are reviewing — we bind reviews to the underlying booking reference;
the review is your own work — do not copy from TripAdvisor, Google, or a ghost-writer;
the review does not name individual staff members negatively, unless the conduct was unlawful;
photographs uploaded are yours, or you have permission to share them, and do not include identifying images of other guests without their consent;
undisclosed commercial incentives (paid reviews, barter) are disclosed in the body of the review;
you do not submit reviews on behalf of a competitor, whether to boost or to damage a property.

We may edit for grammar, redact phone numbers and e-mail addresses, remove profanity, and reject a review where the signals are consistent with an inauthentic submission (shared device, no booking, templated language).

Rules for hotels and travel agents

Hotel customers

Load accurate inventory, room counts, occupancy limits, and photos; do not upload stock imagery that misrepresents the property.
Honour the rates you publish through Yatra. Post-booking price increases are a violation of the Hotel Agreement.
Apply the cancellation policy you have agreed in writing with Yatra. Do not impose a new policy at the desk.
Do not use Hotel Manager to harvest guest data for marketing outside your own property, or share guest data with a third party without the guest's consent.
Do not discriminate against a guest on the basis of caste, ethnicity, nationality, religion, or sexual orientation.

Travel-agent customers

Maintain a valid travel-agency licence and PAN/VAT certificate at all times. Provide a renewed certificate on request.
Do not on-sell to a sub-agent unless the sub-agent is contracted to you in writing and covered by your licence.
Do not use the markup engine to hide mandatory taxes from the end consumer — net-of-tax display is fraudulent under the Consumer Protection Rules, 2076.
Do not abuse the wallet for money-laundering, credit arbitrage, or unauthorised remittance.
Safeguard the credentials of every staff sub-account created under your agency.

API keys

API keys are personal to the issued entity. Do not share, sell, rotate-through-staff, or publish an API key. A leaked key must be rotated immediately and the leak reported to us within 72 hours.

Reporting abuse

If you see content or conduct on Yatra that violates this AUP — a fake review, a scraper, a phishing listing, or a safety concern — please report it to:

E-mail: [email protected] with subject "AUP report".
In-product: the "Report" link on every review, listing, and itinerary.
Security reports: please follow our Vulnerability Disclosure Policy.

We acknowledge within 24 hours, investigate within 5 business days, and close with a written outcome (content removed, account suspended, no further action, or referred to Nepal Police as appropriate).

How we enforce this Policy

Depending on severity and history, Yatra may take any of the following steps:

Warning. A single e-mail asking you to stop, where the violation is minor and first-time.
Content removal. Take-down of a review, image, listing, or AI-generated itinerary.
Rate-limit reduction. For noisy or adversarial API clients.
Booking reversal. Cancellation of a suspicious booking with refund of amounts recoverable from the Partner.
Account suspension or termination. Loss of access to the Services, the wallet, and any open B2B agreement.
Legal action and law-enforcement referral. We will cooperate with lawful requests from the Nepal Police, the Department of Revenue Investigation, the Central Investigation Bureau, and — for cross-border matters — Interpol or foreign counterparts.

We try to be proportionate. Where a violation is recoverable (a one-off scraping burst, a mistaken negative review), we prefer engagement and correction over suspension.

Appeals

If you believe an enforcement action was taken in error, you can appeal within 30 days by writing to [email protected] with subject "AUP appeal". An independent Yatra reviewer (different from the person who took the original decision) will respond within 15 business days with either a reversal, a variation, or a reasoned affirmation.

If you remain dissatisfied, the escalation ladder in our Grievance Redressal Policy applies.

Contact

Abuse reports: [email protected] (subject "AUP report").
Security reports: Vulnerability Disclosure Policy.
Appeals: [email protected] (subject "AUP appeal").
Office: Koteshwor-32, Kathmandu, Nepal, Sun–Fri, 09:00–19:00 (NPT) · Sat on-call for emergencies.