Privacy Information

The protection of privacy on the internet is of great importance for the future of internet-based business models. The protection of your personal data is important to us. With this privacy information, we would like to inform you about which personal data we collect about you in the context of our services and our website, why we use and share this data, how long we store the data, what rights you have, and how you can exercise them.

When we refer to data below, we mean your personal data. This includes all information by which you can be identified directly or indirectly as a person.

Please read the following information carefully.

Note on the transmission of third-party data by you: If you transmit personal data relating to your spouse, partner, relatives, or other third parties, please inform them about the processing of their personal data by us and refer them to this privacy information. If necessary, consent from these individuals for the data transmission may be required.

WHO WE ARE

The controller responsible for the data processing described here is:
aeroPS GmbH
Antonstraße 15
01097 Dresden

(hereinafter “aeroPS”)
support@aerops.com

WHERE WE OBTAIN YOUR DATA AND WHAT DATA WE USE

If you use the website for informational purposes only, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you access our website purely for informational purposes, we collect the following access data, which is technically necessary for us to display our website and ensure stability and security. This access data includes the IP address, date and time of the request, time zone difference to Greenwich Mean Time (GMT), content of the request (i.e. the specific page accessed), access status/HTTP status code, amount of data transferred in each case, referrer URL (previously visited page), operating system and its interface, browser type, language and version of the browser software, and notification of successful retrieval.

If you use our services, in particular payment processing services for pilots and airports, we also process the following personal data: master personal data, contact data (in particular email), login data, contract processing data, data required by legal minimum requirements for invoicing, and other payment information.

We also receive your personal data if you contact us via contact form or email. Personal data here includes, for example, name, address, email address, and telephone number.

FOR WHAT PURPOSES DO WE PROCESS YOUR DATA?

We process personal data in accordance with the provisions of the European General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG) for the following purposes and on the following legal bases:

To fulfill pre-contractual and contractual obligations (Art. 6(1)(b) GDPR) and due to legal requirements (Art. 6(1)(c) GDPR):

When you contact us (via contact form or email), your details are processed to handle the inquiry and its processing.

For the initiation, execution, administration, and performance of contractual relationships, as well as for customer service purposes, including the recording of phone calls, emails, and other contact requests;

To comply with legal and regulatory requirements and any resulting control and reporting obligations;

Based on legitimate interests (Art. 6(1)(f) GDPR):

We process your data to safeguard legitimate interests of ours or third parties where necessary. In particular, we pursue the following legitimate interests:

  • Improving the quality of our products and services, reviewing and optimizing procedures for needs analysis and direct customer approach, as well as measures for customer retention and service improvement;
  • Advertising (including prize draws) or conducting customer satisfaction and opinion surveys, provided you have not objected to the use of your data for this purpose;
  • Assertion of legal claims and defense in legal disputes;
  • Ensuring IT security and IT operations of aeroPS, particularly the security of the website (see above under “Where we obtain your data and what data we use”).

Based on your consent (Art. 6(1)(a) GDPR):

For certain processing activities (e.g. via contact forms or for the use of certain cookies), we will inform you separately and request your explicit consent (e.g. for advertising or analytics purposes). Please note that you can withdraw your consent at any time with effect for the future. Withdrawal can be made, among other ways, using the contact details provided above.

WITH WHOM WE SHARE YOUR DATA (RECIPIENTS)

Within aeroPS, those departments that require your data to fulfill our contractual and legal obligations will have access to it, in compliance with applicable data protection laws. Processors engaged by us may also receive data for these purposes. These include companies in the categories of payment processing, customer service, IT services, telecommunications, consulting, sales, and marketing.

Outside aeroPS, we only share information about you with third parties if one of the legal bases listed above applies or if you have given your consent. In this context, we share your data with the following recipients:

  • Airports
  • Other public authorities, where there is a legal obligation for aeroPS

ARE DATA TRANSFERRED TO A THIRD COUNTRY OR AN INTERNATIONAL ORGANIZATION?

The data provided is processed by aeroPS and external service providers both within and outside the European Economic Area (EEA). Accordingly, aeroPS may transfer your personal data to countries outside the EEA for the purposes described in this privacy information, including countries whose laws may not provide a level of data protection comparable to that within the EEA. Such transfers are subject to standard contractual clauses in accordance with the EU Commission Decision 2021/914/EU or any successor version, as a contractual framework ensuring an adequate level of protection. You can request a copy of these clauses at support@aerops.com.

HOW LONG WE STORE YOUR DATA

To the extent that aeroPS processes your personal data within the legally permissible framework or based on your consent, aeroPS will store your personal data only as long as necessary for the purposes stated above, or until you object to the use of your data (where processing is based on legitimate interests), or until you withdraw your consent (where applicable). However, if longer storage is required by law, aeroPS will process your data until the applicable retention period expires.

For security reasons (e.g. to investigate misuse or fraud), log file information is stored for a maximum of 30 days and then deleted. Data required as evidence is exempt from deletion until the respective incident has been fully clarified.

YOUR RIGHTS

With regard to your data and our processing of it, you have the following rights:

  • Right of access (Art. 15 GDPR): You may request information about your stored personal data at any time;
  • Right to rectification (Art. 16 GDPR): You may request correction of inaccurate or incomplete data;
  • Right to erasure (Art. 17 GDPR): You may request deletion of your data where legally permissible;
  • Right to restriction of processing (Art. 18 GDPR): You may request restriction of processing under certain conditions;
  • Right to data portability (Art. 20 GDPR): You may receive your data in a structured, commonly used, machine-readable format and transmit it to another controller;

To exercise these rights, please contact us using the details provided above.

RIGHT TO LODGE A COMPLAINT

If you believe that aeroPS is not processing your personal data in accordance with these requirements or applicable data protection laws, you may lodge a complaint with a supervisory authority in an EEA member state where you reside or where aeroPS is established.

RIGHT TO OBJECT (ART. 21 GDPR)

You have the right to object, on grounds relating to your particular situation, at any time to the processing of your personal data based on Art. 6(1)(e) or (f) GDPR.

If you object, we will no longer process your data unless we can demonstrate compelling legitimate grounds that override your interests, rights, and freedoms, or the processing serves the establishment, exercise, or defense of legal claims.

Please send your objection to support@aerops.com or to the contact details provided above.

IS THERE AN OBLIGATION TO PROVIDE DATA?

Within the scope of our website, you must provide the personal data that is technically necessary or required for IT security purposes. Without this data, you cannot use our website.

For contract processing or when contacting us via form or email, you only need to provide the personal data necessary to process the contract or your request. Otherwise, we cannot process your request or fulfill the contract.

ARE MY DATA USED FOR AUTOMATED DECISION-MAKING INCLUDING PROFILING?

We do not use automated decision-making processes, including profiling.

USE OF COOKIES

We use cookies on our website. Cookies are small text files, usually consisting of letters and numbers, that are stored on the user’s computer when visiting certain websites.

These cookies are essential for the functioning of our website.

By default, we only use necessary cookies. Necessary cookies enable core functionalities of our website. The website cannot function properly without these cookies. Required cookies can only be prevented through appropriate browser settings.

We do not use cookies that are not necessary for the functioning of the website.

SOCIAL MEDIA PLUGINS

On our website, we use social media plugins from Facebook and Instagram based on Art. 6(1)(f) GDPR. The underlying advertising purpose constitutes a legitimate interest within the meaning of the GDPR. Responsibility for compliant operation lies with the respective providers. These plugins are integrated using the so-called two-click method to best protect users.

Facebook

Our website uses social media plugins from Facebook to make usage more personal. For this purpose, we use the “LIKE” or “SHARE” button.

When you access a page containing such a plugin, your browser establishes a direct connection to Facebook servers. The plugin content is transmitted directly to your browser and integrated into the website.

Through this integration, Facebook receives the information that your browser has accessed the corresponding page, even if you do not have a Facebook account or are not logged in. This information (including your IP address) is transmitted directly to a Facebook server in the USA and stored there.

If you are logged into Facebook, your visit can be directly assigned to your account. Interactions (e.g. clicking “LIKE”) are also transmitted and stored.

Facebook may use this information for advertising, market research, and tailored design of its services. Profiles may be created for usage, interests, and relationships.

If you do not want Facebook to associate your visit with your account, please log out before visiting our website.

Further details: https://www.facebook.com/about/privacy/

Instagram

Our website also uses social plugins from Instagram, operated by Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA.

Plugins are marked with the Instagram logo (e.g. camera icon).

When accessing a page with such a plugin, your browser connects directly to Instagram servers. Instagram receives the information that your browser accessed the page.

If logged into Instagram, your visit can be assigned to your account. Interactions are also transmitted and stored.

If you do not want Instagram to associate your visit, please log out beforehand.

Further details: https://help.instagram.com/155833707900388

Contact