Panavia Aircraft GmbH operates the ABC website with general information, as well as options to contact us and make appointments. Panavia Aircraft GmbH attaches great importance to the protection of privacy and observes statutory data protection regulations.
In the following we explain how we handle your personal data.

Information about the person responsible
The person responsible within the meaning of data protection laws, in particular the EU General Data Protection Regulation (GDPR), is:

Panavia Aircraft GmbH
Am Söldnermoos 17
85399 Hallbergmoos
Phone: +49 811 80-0
E-Mail:  info@airport-business-centre.de

Information about the data protection officer (DPO)
We have appointed the following as external data protection officer:

c/o activeMind.legal Rechtsanwaltsgesellschaft mbH
Potsdamer Str. 3
80802 München
E-Mail: panavia@activemind.legal

1.    Rights of those affected

Your data subject rights
you can exercise the following rights at any time using the contact details provided: 

•    Information about your data stored by us and its processing (Article 15 GDPR),
•    Correction of incorrect personal data (Article 16 GDPR),
•    Deletion of your data stored by us (Article 17 GDPR),
•    Restriction of data processing if we are not yet allowed to delete your data due to legal obligations (Article 18 GDPR),
•    Objection to the processing of your data by us (Article 21 GDPR) and
•    Data portability, provided you have consented to data processing or have concluded a contract with us (Article 20 GDPR).

The restrictions in accordance with §§ 34 and 35 BDSG (Bundesdatenschutzgesetz / German Federal Data Protection Act) apply to the right to information and the right to deletion.

If you have given us your consent, you can revoke it at any time with future effect. Processing that took place before the revocation is not affected by this. This also applies to the revocation of declarations of consent that were given to us before the GDPR came into force, i.e. before May 25, 2018.

You can contact a supervisory authority with a complaint at any time, e.g. to the responsible supervisory authority in the federal state of your place of residence or to the authority responsible for us. 

You can find a list of supervisory authorities (for non-public areas) with addresses at: www.bfdi.bund.de/DE/Service/Anschriften/anschriften_table.html 

2.    Processing activities

2.1    Server log files
Collection of general information when you visit our website.

Type and purpose of processing: 
When you access our website, i.e. if you do not register or otherwise submit information, information of a general nature will be automatically collected. This information (server log files) includes the type of web browser, the operating system used, the domain name of your Internet service provider, your IP address and similar.

They are processed in particular for the following purposes:
•    Ensuring problem-free connection to the website
•    Ensuring smooth use of our website
•    Ensuring the technically error-free presentation and optimization of our website
•    Ensuring and evaluating system security and stability, especially to detect misuse

We do not use your data to draw conclusions about you personally. However, we reserve the right to subsequently check the server log files in case there are concrete indications of illegal use.

Legal basis and legitimate interest:
Processing is carried out in accordance with Article 6 Paragraph 1 lit. f of the GDPR based on our legitimate interest in improving the stability and functionality of our website as well as ensuring system security and detecting misuse.

Recipient:
Recipients of the data may be technical service providers who act as contract processors for the operation and maintenance of our website. All service providers are contractually obliged to treat your data confidentially.

Storage period:
Data is stored in server log files in a form that allows the data subjects to be identified for a maximum period of 7 days; unless a security-related event occurs (e.g. a DDoS attack). In case of such an event, server log files are stored until the security-related event has been eliminated and fully clarified.

Provision pre-scribed or required:
The provision of the aforementioned personal data is neither legally nor contractually required. However, without the IP address, the service and functionality of our website cannot be guaranteed. In addition, individual services may be unavailable or restricted.

Objection:
Please read the information about your right to object in accordance with Article 21 GDPR below.

2.2    Contact forms for renting office space (rental) and booking a conference room (conference facility) as well as general contact 

Type and purpose of processing:
There are contact forms on our website that can be used to contact us electronically for the purpose of renting an office and booking conference rooms. If a user takes advantage of this option, the data entered in the input mask will be transmitted to us and stored. 

At the time the message is sent, the following data is also stored:
•    Date and time of the request
•    URL from which the request was made
•    IP address from which the request was made
•    Web browser and operating system used

Alternatively, you can contact us using the email address provided. In this case, the user's personal data transmitted with the email will be stored. This includes the date and time the email was sent, name, email address, IP addresses and information about the servers involved in the email communication. 

You can also contact us using the telephone number provided. We collect log data that includes your telephone number and the duration of the conversation.

Regardless of the type of communication you choose, we collect the content of your request. Your data will be stored for the purpose of individual communication with you.

Legal basis:
The data entered into the contact form is processed on the basis of a legitimate interest (Article 6 Para. 1 lit. f GDPR). 

Our legitimate interest in processing your data is to enable an easy means of contact.

If you contact us to request an offer, the data entered in the contact form will be processed to carry out pre-contractual measures (Article 6 Para. 1 lit. b GDPR).

Recipient:
Recipients of the data may be technical service providers who act as contract processors for the operation and maintenance of our website. All service providers are contractually obliged to treat your data confidentially.

Storage period:
Data will be deleted no later than 6 months after the request has been processed.
If a contractual relationship arises, we are subject to the statutory retention periods. These are generally 6 or 10 years for reasons of proper accounting and tax law requirements.

Provision pre-scribed or required:
The provision of your personal data is voluntary. However, we can only process your request if you provide us with the necessary data and the reason for the request.

Objection:
Please read the information about your right to object in accordance with Article 21 GDPR below.

 

3.    Cookies

A cookie is a small data set that is created when you visit a website and is temporarily stored on the website user's system. If the server of this website is accessed again by the website user, the website user's browser sends the previously received cookie back to the server. 

The server can evaluate the information obtained through this procedure. In particular, cookies can make navigation on a website easier.

Deleting cookies:
You can delete individual cookies or the entire cookie inventory. You will also receive information and instructions on how to delete these cookies or block their storage in advance. Depending on your browser provider, you can find the necessary information under the following links:

•    Mozilla Firefox: https://support.mozilla.org/de/kb/cookies-loeschen-daten-von-websites-entfernen
•    Internet Explorer: https://support.microsoft.com/de-de/help/17442/windows-internet-explorer-delete-manage-cookies
•    Google Chrome: https://support.google.com/accounts/answer/61416?hl=de
•    Opera: www.opera.com/de/help
•    Safari: https://support.apple.com/kb/PH17191?locale=de_DE&viewlocale=de_DE

In addition, you can prevent so-called scripts from loading by default. NoScript allows you to run JavaScript, Java and other plugins only on trustworthy domains of your choice. Information and instructions on how to edit this function can be obtained from your browser provider (e.g. for Mozilla Firefox: https://ad-dons.mozilla.org/de/firefox/addon/noscript/).

Technically necessary cookies

Type and purpose of processing:
We use cookies to make our website more user-friendly. Some elements of our website require that the accessing browser can be identified even after a page change.
 
The purpose of using technically necessary cookies is to simplify the use of websites for users. Some functions of our website cannot be offered without the use of cookies. For this it is necessary that the browser is recognized even after a page change.
 
We need cookies for the following applications:
•    Consent management 

Further below you can find an overview of the cookies used.

Legal basis and legitimate interest:
In this respect, data processing is carried out solely on the basis of our legitimate interest in a user-friendly design of our website and in the documentation of consent in accordance with Article 6 Paragraph 1 lit. f of the GDPR in conjunction with a consideration in accordance with Section 25 Paragraph 2 TTDSG (Telekommunikation-Telemedien-Datenschutz-Gesetz / German Telecommunications-Telemedia Data Protection Act ).

Recipient:
Recipients of the data may be technical service providers who act as contract processors for the operation and maintenance of our website. All service providers are contractually obliged to treat your data confidentially.
We use the Joomla open-source consent management system to obtain, manage and document your consent legally compliant. We have concluded an order processing contract with all service providers.

Storage period:
The data is deleted at the end of each session.

Provision pre-scribed or required:
The provision of the aforementioned personal data is neither legally nor contractually required. However, without this data, the service and functionality of our website cannot be guaranteed. In addition, individual services may be unavailable or restricted.

Objection:
Please read the information about your right to object in accordance with Article 21 GDPR below.

List of cookies (session cookies):
Name of cookie: Joomla 
Provider: Joomla
Storage period: end of session
Purpose: This cookie is a standard session cookie. It stores the session ID in case of user login.

Name of cookie: reDimCookieHint
Provider: reDIM GmbH
Storage period: end of session
Purpose: This cookie is a standard session cookie. It offers the option of completely blocking cookies to prevent them from being stored in the browser.

 

4.    Data security

TLS-encryption:
In order to protect the security of your data during transmission, we use state-of-the-art encryption methods (e.g. TLS) via HTTPS.

Our servers are secured with firewalls and virus protection. Backup and recovery procedures as well as role and authorization concepts are a matter of course for us.

Our employees are obliged to observe the regulations of the GDPR and the BDSG when handling data.

5.    Information about your right to object according to Article 21 GDPR

Right to object on case-by-case basis 

For reasons arising from your particular situation, you have the right to object at any time to the processing of personal data concerning you, based on Article 6 Para. 1 lit. f GDPR (data processing on the basis of a balance of interests ). This also applies to profiling based on this provision within the meaning of Article 4 No. 4 GDPR. 

If you object, we will no longer process your personal data unless we can demonstrate compelling legitimate reasons for the processing that outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims. 

Recipient of an objection
The objection can be made informally with the subject “Objection” and stating your name, address or other identification details to the contact options listed above.

6.    Changes to our privacy policy

We reserve the right to adapt this data protection declaration so that it always complies with current legal requirements or to implement changes to our services in the data protection declaration, e.g. when introducing new services. The new data protection declaration will then apply to your next visit.

7.    Questions about data protection

If you have any questions about data protection, please email us at: 
panavia@activemind.legal

The English version of this privacy policy has been prepared for your convenience only.
Only the German version (17 July 2024) of the data protection declaration is legally binding.

It was created using the data protection declaration generator from active-Mind AG on
April 30, 2024 (www.activemind.de/datenschutz/generatoren/datenschutzerklaerung/).
For German version click here.