Regulamentul general privind protecția datelor

Preliminary

This section represents the entire online privacy policy applicable to our activities. This section explains the following aspects: the types of information we collect, how we use, share and protect it. At the same time, here you will also find the rights and options that users have in terms of using, accessing and correcting their personal data.

Airtravelrights.com processes personal data within the EU. Our activities are regulated in accordance with the General Data Protection Regulation (EU) 2016/679 (RGPD), which is a directly binding piece of legislation. The GDPR protects the fundamental rights and freedoms of natural persons, in particular their right to the protection of personal data.

Personal data

Personal data means any information relating to an identified or identifiable natural person. Personal data includes all types of information that can directly or indirectly lead to the identification of a person, such as names, dates of birth, home addresses, e-mail addresses, telephone numbers, etc.

Applicable principles

This section is based on compliance with the following data protection principles:

  • The processing of personal data is done legally, correctly and transparently;
  • The collection of personal data is carried out only for specified, explicit and legitimate purposes and the data is not subsequently processed in a manner incompatible with these purposes;
  • The collection of personal data must be adequate, relevant and limited to what is necessary in relation to the purpose for which it is processed;
  • Personal data must be correct and, if necessary, updated;
  • All reasonable steps must be taken to ensure that personal data that is inaccurate in relation to the purposes for which it is processed is promptly deleted or rectified;
  • Personal data must be kept in a form that allows identification for a period that is no longer than is necessary for the purpose for which it is processed;
  • All personal data must be kept confidential and stored in a manner that ensures adequate security;
  • Personal data will not be communicated to third parties unless the transfer is necessary for Intârziat.ro to provide the services established in the contract;
  • You have the right to request access, rectification, deletion of personal data or restriction of processing or to object to processing, as well as the right to data portability.

Collection and use of personal data

If you want to benefit from our services and send us information, you will need to provide personal data so that we can operate and improve our business activities and services. Personal data may be sent via our website, email, other electronic or software solutions accepted by us, postal services or telephone. All personal data is collected in accordance with the General Data Protection Regulation. We will process personal data only to the extent that this is necessary for the determined, explicit and legitimate purpose of providing our services.

 

We mainly collect personal data such as names, dates of birth, home addresses, email addresses, telephone numbers, passport/ID card numbers and numerical identification codes. We collect this personal data for the purpose of carrying out the services offered by Airtravelrights.com as they appear in the “Terms and conditions” section. This is the main commercial activity of Airtravelrights.com

 

We also collect personal data for other legal purposes, such as statistics, administration and communication, IT administration and security, physical security, authentication and authorization systems, support systems, collaboration in internal projects and organizational teams and activities.

 

We purchase flight data from third parties, for example information about flights delayed or canceled at a certain time, etc. This information is not personal data, but we later combine it with personal data. This service is used only to inform about the likelihood of an eligible claim and the initiation of the compensation procedure will be done on request for eligible claims.

Use of personal data and cookie policy

We will use personal data for the purpose for which it was collected and will retain it for no longer than is necessary for that purpose. We may retain information as long as the account is active or as necessary to provide services, comply with legal obligations, or for any of the purposes listed above. Access to personal data is strictly limited to Airtravelrights.com staff and its controlled subsidiaries and affiliates, who have appropriate authorization and a clear limitation on the use of the data.

Our website uses cookies or similar technologies to provide the best user experience and to perform trend analysis, website administration, track user movements around the site and collect demographic information about our user base. on the whole. Cookies are small text files placed on your device to track usage patterns and record personal preferences. Our cookies do not contain information that can directly identify individuals. We collect certain information automatically through the use of cookies and tracking technologies, such as Internet Protocol (IP) addresses, browser type, Internet Service Provider (ISP), referring/exit pages, files viewed on the Site our (eg HTML pages, graphics), operating system, date/time stamp and/or click data to analyze trends at an aggregate level and to administer the site.

It is possible to control the use of cookies at the individual browser level, but if you choose to disable cookies, this may limit the use of certain features or functionality on our website or service.

For more information on the use of cookies, also access the Policy on the use of cookies

Exchange of personal data

We will only transfer personal data to third parties if the following conditions are met:

  • you have given your consent;
  • is intended for a purpose directly related to the original purpose for which the personal data were collected;
  • is necessary for the preparation, negotiation and execution of the User Agreement;
  • it is necessary due to legal obligation, administrative order or court decision;
  • it is necessary for the establishment or protection of certain rights or for defenses in court;
  • it is necessary to respond to the legal requests of public authorities, for example to comply with the requirements of national security bodies and the police
  • serves to prevent misuse or other illegal activities, such as deliberate attacks, to ensure data security.

Security of processing

The security of your personal data is very important to us. We will process personal data securely, apply and maintain appropriate technical and organizational measures and to generally accepted standards to protect personal data against accidental or unlawful destruction or loss, alteration, disclosure or unauthorized access, in particular when when the processing involves the transmission of data over a network, against all other unlawful forms of processing. Questions related to the security of personal data can be addressed to the data protection officer (DPO) [email protected].

Your personal data protection rights

You have the right to request at any time: access, rectification, deletion of personal data, restriction of processing or to oppose processing, as well as the right to data portability. To help us update your personal data, we advise you to inform us of any changes or discrepancies. To view and/or edit personal data or to receive information about how long we intend to keep personal data or other questions related to access to personal data or if you want us to provide you with information about the holding or processing of any of your personal data, on behalf of a third party, please contact the Data Protection Officer (DPO), [email protected]. We will respond to your request as quickly as possible.

Emails for marketing purposes and advertising preferences

After consent, we are authorized to send marketing emails. This specific form of consent must be freely given, informed and unambiguous. These requirements are met when you opt-in to receive marketing emails.

You will always have the right to contest, upon request and free of charge, the processing of your personal data related to direct marketing activities without the need for specific justifications. You can do this by using the “Unsubscribe” link in emails you receive from us. You also have the possibility to request this via [email protected] so that your personal data will no longer be processed for direct marketing.

Marketing emails contain information that we think may be of interest, such as the latest news about our products and services.

Responsibility

This section is the responsibility of our legal team, which has overall responsibility for ensuring data compliance. The Data Protection Officer (DPO) ensures daily compliance with this section and is involved in all matters related to the protection of personal data.

We are responsible for and can at any time demonstrate compliance with the GDPR (General Data Protection Regulation) as well as our principles set out in this section. We will keep records of the processing activities under our responsibility, containing the information required by the GDPR and, if applicable, we will make them available to the supervisory authority upon request.

Complaints

You have the right to file a complaint regarding the processing of your personal data. All requests and complaints will be dealt with in a timely manner by the Data Protection Officer (DPO) in accordance with internal procedures. Complaints can be sent to the Data Protection Officer (DPO) at [email protected].

If you believe that the processing of your personal data violates the GDPR (General Data Protection Regulation), you can also file a complaint with a supervisory authority.