Data protection

Data protection information of NICE Aircraft Services & Support GmbH

As of December 2021

We take the protection of your personal data very seriously and want you to feel safe regarding it. Compliance with applicable national and European data protection regulations is a matter of course for us. Personal data is all information that can be related to you personally.

We want you to know when we collect which personal data and how we use it. We have taken technical and organizational measures to ensure that data protection regulations are observed by both us and external service providers.

The following data protection information provides you with an overview of how we process your personal data and your rights under data protection law.

    

Who is responsible for data processing and who can I contact?

(1) The responsible body according to Article 4 Paragraph 7 of the General Data Protection Regulation (GDPR) or service provider according to Section 13 of the Telemedia Act (TMG) is:
    

NICE Aircraft Services & Support GmbH
Cargo City Süd,  Building 640
60549 Frankfurt / Main
Germany
    

(2) You can reach our data protection officer at:
    

NICE Aircraft Services & Support GmbH
Die Datenschutzbeauftragte
Cargo City Süd, Building 640
60549 Frankfurt / Main
Germany    

E-Mail: datenschutz@nice-services.aero
    

Which sources of personal data do we use?

We process personal data received from you when you visit our website, contact us by email or fill out a contact form.

    

Which categories of personal data are processed?

(1) If you visit or use our website purely for information purposes, i.e. if you do not register or otherwise provide us with information, we only collect the personal data that your browser transmits to our server. If you would like to view our website, we collect the following data, which is technically necessary for us to display on our website to you and ensure stability and security (the legal basis is Article 6 paragraph 1 f) GDPR):

  • Your IP address,
  • Date, time and duration of your visit,
  • Content of the request,
  • Access status/HTTP status code,
  • Amount of data transferred in each case,
  • Website from which the request comes,
  • Your browser and operating system..

    

This data is used exclusively for internal statistical purposes.

(2) In addition to the data mentioned above, cookies are stored on your computer when you use our website. Cookies are small text files stored on your hard disk and associated with your browser; they allow certain information to be sent to the location that placed the cookies. Cookies cannot run programs or transmit viruses to your computer.

(3) We use cookies to identify you for subsequent visits if you have an account with us. Otherwise, you would have to log in again for each visit.

(4) Most browsers are set to accept cookies. You can deactivate the cookie storage in your browser at any time or set your browser to receive a message as soon as cookies are sent. We would like to point out, however, that you then may not be able to use all this website's functions.

(5) This information is stored separately from any other data you may have provided to us. In particular, data in the cookies is not linked to your other data.

(6) TTDSG:

The legal basis for storing cookies, device identifiers and similar tracking technologies or information in the end user's terminal equipment and access to this information is the European ePrivacy Directive in conjunction with the Act on Regulating Data Protection and Protecting Privacy in Telecommunications and Telemedia (TTDSG).

Please note that the legal basis for processing personal data collected in this context then arises from the GDPR (Art. 6 Para. 1 S.1 GDPR). The legal basis for processing personal data relevant in each specific case can be found further down in the respective cookie or processing.

The primary legal basis for storing information in the end user's terminal equipment - and therefore in particular for storing cookies - is your consent, Section 25 Para. 1 S.1 TTDSG. Consent is given when you visit our website - although of course this does not have to be given - and can be revoked at any time in the cookie settings.

According to Section 25 Paragraph 2 No. 2 TTDSG, consent is not required if information storage in the end user's terminal equipment or access to information already stored in the end user's terminal equipment is absolutely necessary so that the provider of a telemedia service can supply a telemedia service expressly requested by the user. Cookie settings show you which cookies are classified as absolutely necessary (often referred to as "technically necessary cookies"), fall under the exception of Section 25 Paragraph 2 TTDSG and therefore do not require consent.

    

What happens when you use other functions and offers on our website?

(1) In addition to purely informational use of our website, we offer various services that you can use if you are interested. To do this, you usually have to provide additional personal data that we use to provide the respective service and to which the aforementioned data processing principles apply.

(2) If you contact us by email or a contact form, data you provide (name, email address, telephone number if applicable) will be stored by us in order to answer your questions.

    

Who gets my data?

(1) We have some of the aforementioned processes and services carried out by carefully selected service providers who have been commissioned in accordance with data protection regulations. These external service providers are bound by our instructions and regularly monitored. They will not pass your data on to third parties.

(2) Regarding data transfer to other recipients, we only pass on information about you if legal provisions require this, you have consented or we are authorized to pass it on.

  

EU-US Trans-Atlantic Data Privacy Framework

(DPF), the EU Commission has also recognized the level of data protection for certain companies from the USA as part of the adequacy decision of July 10, 2023, as secure. The list of certified companies and further information about DPF can be found on the website of the US Department of Commerce at https://www.dataprivacyframework.gov/s/participant-search (in English).

    

For what purposes do we process your data and on what legal basis?

We process your personal data in compliance with the applicable statutory data protection regulations. Processing is lawful if the following conditions are met:

  • Consent (Article 6 paragraph 1 a) GDPR: The legality for processing personal data is given if consent is given for processing for specified purposes (e.g. processing your request). Consent given can be revoked at any time with effect for the future. This also applies to revoking declarations of consent provided to us before the GDPR came into force, i.e. before May 25, 2018.
  • Due to legal requirements (Article 6 Paragraph 1 c) GDPR: NICE Aircraft Services & Support GmbH is subject to various legal obligations. These include, among others: commercial and tax retention requirements according to the German Commercial Code and German Fiscal Code, fulfillment of tax control and reporting obligations.
  • As part of balancing of interests (Article 6 Paragraph 1 f) GDPR: If necessary, we process your data beyond actual contract fulfillment to protect the legitimate interests of us or third parties. Examples: Asserting legal claims and defending against legal disputes, ensuring IT security and operations, analyzing and improving the use of our website.

    

Is there an intention to transfer the personal data to a third country or international organization?

An active transfer of personal data to a third country only takes place if this has been expressly stated in the context of the aforementioned services.

    

How long will my personal data be stored and according to which criteria is the duration determined?

(1) Data is stored in accordance with statutory provisions on data processing and in compliance with statutory retention periods. We process and use your data exclusively for the purposes for which you have authorized us and for as long as the data is required for these purposes.

(2) If data is no longer required for the purpose or to fulfill legal obligations, it is usually deleted, unless their further processing - limited and possibly restricted - is necessary for the following purposes:

                                -  Fulfilling commercial and tax law retention obligations:
                           The Commercial Code (HGB) and Tax Code (AO) are mentioned. According to this, retention or documentation periods are specified for up to 10 years

                                -  Preserving evidence within the framework of the statutory limitation period:
                           According to Sections 195 ff. of the German Civil Code (BGB), the regular limitation period is three years, but under special circumstances up to 30 years.

    

What data protection rights do you have?

(1) Every person affected has the right to information in accordance with Article 15 GDPR, rectification in accordance with Article 16 GDPR, erasure in accordance with Article 17 GDPR, processing restriction in accordance with Article 18 GDPR, object in accordance with Article 21 GDPR and data portability in accordance with Article 20 GDPR. Restrictions in Sections 34 and 35 BDSG apply to the right to information and erasure. In addition, there is a right to lodge a complaint with a competent data protection supervisory authority (Article 77 GDPR in conjunction with Section 19 BDSG).

(2) You can revoke your consent to personal data processing at any time with effect for the future. This also applies to revoking declarations of consent given to us before the General Data Protection Regulation came into force, i.e. before May 25, 2018.

(3) You have the right to object at any time to the processing of personal data concerning you based on Article 6 paragraph 1 e) GDPR (data processing in the public interest) and Article 6 paragraph 1 f) GDPR (data processing based on balancing of interests), for reasons arising from your particular situation.

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate grounds for processing that outweigh your interests, rights and freedoms, or processing serves to assert, exercise or defend legal claims.

Objection can be made in any form and should, if possible, be addressed to:

    

NICE Aircraft Services & Support GmbH
Data protection officer
Cargo City Süd, Building 640
60549 Frankfurt / Main  
Germany  

E-Mail: datenschutz@nice-services.aero

    

Is there an obligation to provide personal data and what are the consequences of not providing it?

When using our services, you must provide the personal data necessary to fulfill the purpose or that we are legally obliged to collect. Without this data, we generally will not be able to conclude or execute the contract with you.

    

Data security

We have taken technical and organizational security measures to protect your personal data from loss, destruction, manipulation and unauthorized access. All of our employees and third parties involved in data processing are obliged to handle personal data confidentially in accordance with the GDPR. If personal data are collected and processed, the information is transmitted in encrypted form to prevent misuse of the data by third parties. Our security measures are continually revised in line with technological developments

    

Protection of minors

People under the age of 18 should not send us any personal data without the consent of their parents or guardians. We do not request any personal data from children and young people, collect it or pass it on to third parties.

    

Can data protection information change?

We continually optimize our website and make technical changes where necessary. For this reason, we expressly point out that our data protection information is only valid in the version current at the time of your visit.

  

Social media presence

We maintain fan pages within various social networks and platforms with the aim of communicating with customers, interested parties and users active there and informing them about our services.

We would like to point out that your personal data may be processed outside the European Union, which may result in risks for you (for example when enforcing your rights under European / German law). Please note

Some US providers are certified under the Privacy Shield and have therefore committed themselves to complying with EU data protection standards.

Users' data is usually processed for market research and advertising purposes. For example, user profiles can be created from user behavior and resulting user interests. These usage profiles can in turn be used, for example, to place advertisements within and outside platforms that presumably correspond to user interests. For these purposes, cookies are usually stored on users' computers in which usage behavior and user interests are stored.

In addition, data can also be stored in usage profiles regardless of the devices used by users (especially if the users are members of the respective platforms and are logged in to them).

  

Processing users' personal data is based on our legitimate interests in effectively informing users and communicating with them in accordance with Art. 6 Para. 1 lit. f. GDPR. If users are asked by respective providers to consent to data processing (i.e. they declare their consent, for example, by checking a checkbox or confirming a button), the legal basis for processing is Art. 6 Para. 1 lit. a., Art. 7 GDPR.

Further information on processing your personal data and your options for objecting can be found under the links of the respective provider listed below. Asserting information and other rights of data subjects can also be made to the providers, in which case only they have direct access to the user data and have the relevant information. Of course, we are available to answer any questions you may have and support you if you need help.

Provider:

1. Facebook

- Facebook, -pages, Facebookgroups, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal  Harbour, Dublin 2, Ireland  

-  Joint processing is based on an agreement on joint processing of personal data

- Facebook-privacy policy: https://www.facebook.com/about/privacy/,

- as well as further information about the pages:  https://www.facebook.com/legal/terms/information_about_page_insights_data

- Opt-Out: https://www.facebook.com/settings?tab=ads and http://www.youronlinechoices.com,

- Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active.

2. Instagram

- Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA

- Data protection declaration/opt/out: http://instagram.com/about/legal/privacy/.

3. Twitter

- Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103, USA

-  Data protection declaration: https://twitter.com/de/privacy

- Opt-Out: https://twitter.com/personalization

- Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active.

4. Google/ YouTube

- Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA)

-  Data protection declaration: https://policies.google.com/privacy

- Opt-Out: https://adssettings.google.com/authenticated

- Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active.

5. Pinterest

- Pinterest Inc., 635 High Street, Palo Alto, CA, 94301, USA

-  Data protection declaration/Opt-Out: https://about.pinterest.com/de/privacy-policy.

6. LinkedIn

- LinkedIn Ireland Unlimited Company Wilton Place, Dublin 2, Irland

-  Data protection declaration https://www.linkedin.com/legal/privacy-policy

- Opt-Out: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out,

- Privacy Shield: https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active.

7. Xing

- XING AG, Dammtorstraße 29-32, 20354 Hamburg, Germany

- Data protection declaration/Opt-Out: https://privacy.xing.com/de/datenschutzerklaerung.