June 2018

data privacy

Data Privacy Statement of Beechcraft Berlin aviation GmbH

Protecting your data is our concern

We are delighted with your interest in our company and our products or services and also wish to make you feel safe regarding the protection of your personal data during your visit to our internet pages, as we take the protection of your personal data very seriously. Adhering to the provisions of the General Data Protection Regulation and the Federal Data Protection Act (New) is for us a matter of course.

We want you to know when and what data we collect and how we use them. We have taken technical and organizational measures that will ensure that the provisions regarding data protection are observed by both us and external service providers commissioned by us.

Personal data

All data are information on your identity, which includes, for example, details of your name, address, telephone number, email address. This information is always processed in accordance with the General Data Protection Regulation and with other data protection regulations applicable to our company.
To use our internet pages, it is fundamentally not necessary that you disclose personal data. In certain cases, however, processing personal data could be necessary to be able to provide you with the services wanted by you.
The same applies, for example, to the sending of information material and ordered goods or to reply to individual queries. Where this is necessary, we will inform you accordingly.
If there is no statutory basis for processing these personal data, we will obtain the relevant consent from you.
Furthermore, we save and process only data made available to us voluntarily and, if applicable, data collected automatically in a visit to our internet pages (e.g. your IP address and the names of the pages accessed by you, the browser used by you and your operating system, date and time of the access, search engines used, names of the downloaded data).
If you make use of the services, as a rule, only such data will be collected which we require to provide the services. If we ask you for additional data, this is voluntary information. The processing of personal data takes place exclusively for fulfilling the requested service and to safeguard our own justified business interests.

Data which could be processed in a visit to our website:
– base data (names, addresses, etc.)
– content data (text, photos, videos, etc.)
– contact data (email, telephone numbers, etc.)
– metadata (IP addresses, device information, etc.)
– usage data (content visited, pages accessed, etc.)
Affected persons are thus the users of our online offering.

Name and address of the controller

The controller in the sense of the General Data Protection Regulation, other data protection laws applicable in the EU member states and other data protection legal provisions is:

Beechcraft Berlin aviation GmbH
Flughafen BER, ZKS 10 Ost, Geb. X064
Elly-Beinhorn-Ring 4
12529 Schönefeld / Deutschland
Tel. +49 30 6341 18-0
Fax: +49 30 6341 18 11
E-Mail: mail@bba.aero
Website: www.bba.aero

Contact data of the Data Protection Officer

The contact details for our Data Protection Officer are:

Rechtsanwalt Marcel Wetzel
Theodor-Heuss-Platz 4
14052 Berlin
E-Mail: mail@wetzel.berlin
Tel.: 030 / 895 66 150
Fax.: 030 / 895 66 161

Our Data Protection Officer is always available to you for dealing with any queries and suggestions on data protection.

Intended purpose of the personal data

We use the personal data made available by you to answer your queries, to process your orders or to give you access to specified information or offers. To maintain customer relations, it may also be necessary that we or a service provider company commissioned by us use these personal data to inform you of product offers or to carry out online surveys to respond more effectively to the needs and requirements of our customers.
Naturally, we respect it if you do not want to give us your personal data for supporting our customer relationship (especially for direct marketing or for market research purposes). We will not sell or otherwise market your personal data to third parties.

Purpose limitation

We will collect, process and use the personal data made available online by you only for the purpose notified to you. Forwarding your data to a third party will never take place without your explicit consent.
The collection of personal data and their transfer to state institutions and authorities that are entitled to receive them takes place only in the framework of the pertinent provisions or insofar as we are obliged to do so through a court judgement. Our employees and the service provider company commissioned by us are obligated by us to confidentiality and to adherence to the provisions of the General Data Protection Regulation.

Data that are collected automatically by visiting our website

In using our internet pages, for organizational and technical reasons the following data will be saved: the names of the pages accessed by you, the browser used by you and your operating system, the date and time of access, search engines used, the names of data downloaded and your IP address.
The information collected is needed to correctly deliver the content of our internet pages. Moreover, we classify these technical data anonymously and only for statistical purposes for the continuous further optimization of our website and to be able to design our internet offering even more attractively and to provide the information necessary for a criminal prosecution in the event of a cyber-attack to the law enforcement authorities. These data are saved separately from other personal data on secure systems. Conclusions are not drawn on individual persons. Processing takes place based on our justified interest in an efficient and secure website pursuant to Art. 6, Para. 1, lit. f, in combination with Art. 28 General Data Protection Regulation [GDPR].

Legal basis of the processing

If you have given us consent to process your personal data for specified purposes, the processing takes place based on Art. 6, Para. 1 a GDPR. If such processing is necessary to fulfill a contract with you or to initiate such a contract, the processing is based on Art. 6, Para. 1 b GDPR. In some cases, e.g., for meeting tax law obligations, we could be subject to a legal obligation to process personal data, the legal basis of which in such cases is Art. 6, Para. 1 c, GDPR. In rare cases, processing can also take place to protect your vital interests or those of another natural person. In this exceptional case, the processing takes place based on Art. 6, Para. 1 d, GDPR. Finally, processing can also be based on Art. 6, Para. 1 f, GDPR. This is the case if the processing takes place to protect the legitimate interests of our company or of a third party, insofar as your interests, basic rights, and basic freedoms do not outweigh them. Such a justified interest can already be assumed if you are a customer of ours. If the processing of the personal data is based on Art. 6, Para. 1 f, GDPR, our justified interest is the performance of our business activity.

Contact information

Because of statutory provisions, our website contains details which enable rapid electronic contact with us and direct communications with us. This encompasses the details of an email address and, if applicable, a contact form. The user’s information is processed in accordance with Art. 6, Para. 1, lit. b, GDPR.
If you contact us by email or via a contact form, the personal data submitted by you will be saved automatically. These data submitted voluntarily by you to us will be saved for dealing with your concerns or a relevant making contact and will be deleted immediately afterward. There will be no forwarding to a third party.

Automated decision-making

As a conscientious company, we forego performing automated decision-making or profiling.

Provision of personal data

In part, the provision of personal data is prescribed by law or contract law. For this reason, it may be necessary, for example, to conclude a contract, that you make available to us personal data that must be processed by us. For example, if it is obligatory for concluding a contract to provide personal data. Non-provision can result in the contract not being concluded.

Prior to providing the personal data, you can contact our Data Protection Officer. He will explain to you whether the provision of personal data in the individual case is statutorily or contractually prescribed and what would be the consequences of non-provision of these data.

Security

As controller, we have taken technical and organizational security measures in accordance with Art. 32 GDPR. These include especially measures to secure the confidentiality, integrity, and availability of the data. In addition, we have set up processes which ensure the security of the rights of the person affected, the deletion of personal data and an immediate reaction to the endangerment of such data. Moreover, we have already ensured the protection of personal data in the development and selection of hardware and software pursuant to the principles of Art. 25 GDPR. All our employees and persons taking part in the data processing are obligated to adhere to the General Data Protection Regulation and other laws relevant to data protection as well as to treating personal data confidentially.
In cases of the collection and processing of personal data, the information is transmitted in an encrypted form to prevent misuse by third parties of the data. Our security measures are constantly revised in accordance with technological developments.
Nevertheless, internet-based
data transfers can always have security gaps, so that absolute security cannot be guaranteed.

Changes to our privacy policy

We reserve the right to change our security and data protection measures insofar as this is required by technical developments. In these cases, we will also correspondingly adjust our information on data protection. Therefore, please note the relevant, up to date version of our privacy policy.

Links

If you use external links that are offered as part of our website, this privacy policy does not extend to these links. Insofar as we offer links, we guarantee that at the time of placing the link no breach of the applicable law was recognizable on the linked websites. However, we have no influence on the adherence of other providers to the data protection and security provisions. Therefore, please inform yourself about the privacy policies provided on the websites of other providers.

Cookies

When you visit our website, it is possible that we file information in the form of cookies on your computer. Cookies are small text files that are sent by a webserver to your browser and stored on your computer’s hard drive.
In doing so, apart from the internet protocol address, no personal data of the user is saved. This information serves to automatically recognize you on your next visit to our website and to make navigation easier for you. Cookies enable us, for example, to tailor a website to your interests or to save your password so that you not need to enter it every time.
Naturally, you can also view our website without cookies. If you do not want us to recognize your computer, you can prevent the storing of cookies on your hard drive by selecting “do not accept any cookies” in your browser settings. You can also delete already set cookies via your browser. For how that works in detail, please refer to the instructions of your browser’s manufacturer. If you do not accept cookies, however, this can lead to restrictions in the functions of our offering.

Children and young people

Persons under 16 years of age should not transmit any personal data to us without the agreement of their parents or legal representatives. We do not request personal data from children or young people, do not collect these or forward them to third parties.

Rights of the data subject

Right of access by the data subject
Pursuant to Art. 15 GDPR, you can obtain free-of-charge at any time information as well as a copy of the personal data about you saved and processed by us.
In addition, you have the right to request information on whether your personal data are transmitted to a third country or an international organization and which suitable guarantees exist for the transmission.

Right to rectification
Furthermore, in accordance with Art. 16 GDPR, you have the right to demand immediate correction of the incorrect personal data concerned. In addition, you have the right, taking account of the purpose of processing, to demand the completion of incomplete personal data.

Right to erasure respectively right to restriction of processing
In accordance with Art. 17 GDPR, you also have the right to demand that the data about you retained by us be deleted immediately.
Alternative, in accordance with Art. 18 GDPR, you have the right to demand that the processing of your personal data be restricted.

Right to data portability
Pursuant to Art. 20 GDPR, you can ask for the receipt of the issuance of the data concerning you, which you provided to us, in a common and machine-readable format.
Moreover, you can request that your personal data stored by us be transmitted directly by us to another responsible person if this is technically possible and it does not impair the rights and freedoms of another person.

Right to object
Pursuant to Art. 21 GDPR, for reasons arising from your particular situation, you have the right to object at any time to the processing of the personal data concerning you, which follow based on Art. 6, Para. 1 e or f GDPR. This also applies to any profiling or direct advertising pursuant to these provisions.

Right of revocation
You can at any time revoke the consent you gave for the processing of your personal data, pursuant to Art. 7, Para. 3, GDPR, with a future effect.

Right to confirmation
You have the right to request confirmation of whether personal data concerning you are being processed.
To exercise all the rights cited, you can contact our Data Protection Officer Marcel Wetzel direct at +49 30 895 66 160 or mail@wetzel.berlin or any other of our employees.

Right to lodge a complaint with a supervisory authority
Furthermore, pursuant to Art. 77, GDPR, you have the right to appeal to a supervisory authority. As a rule, for this, you can contact the supervisory authority at your usual place of residence or work or our company’s registered office.

Web fonts from Adobe Typekit

This website uses so-called web fonts, which are provided by Adobe Typekit for a uniform representation of fonts.

When you go to a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. To do this, the browser you are using must connect to the Adobe Typekit servers. This will give Adobe Typekit knowledge that our website has been accessed through your IP address. The use of Adobe Typekit web fonts is in the interest of a uniform and attractive presentation of our online services. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f) GDPR. If your browser does not support web fonts, a default font will be used by your computer. For more information about Adobe Typekit web fonts, see https://typekit.com/ or the privacy policy of Adobe Typekit: https://www.adobe.com/de/privacy/policies/typekit.html.