Data priva‌cy infor‌mation

General matters

1. Information about gathering personal data

(1) We provide information about how we gather personal data when people use our website in the following text. Personal data involves any data that specifically refers to you as a person – e.g. your name, address, e-mail addresses or user behaviour.

(2) The Controller according to Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR) is Mitteldeutsche Flughafen AG, Terminalring 11, 04435 Flughafen Leipzig/Halle, info@mdf-ag.com. You can reach our data protection officer at datenschutz@mdf-ag.com or via our postal address; please address your letter to the “Data Protection Officer”.

(3) In addition to purely providing information on our website, we offer various services, which you can use if you are interested in them. You will normally have to specify more personal data to use them and we will use this to provide the service in question; the principles governing data processing, which are cited in the relevant sections, then apply to this work.

2. Passing on data to third parties

(1) We only pass on your personal data to third parties if:

  • you have specifically provided your consent for this according to Article 6 Para. 1 Sentence 1 (a) of the GDPR,
  • passing on the data is necessary to assert, exercise or defend legal claims according to Article 6 Para. 1 Sentence 1 (f) of the GDPR and no reason exists to assume that you have an overriding interest, which needs to be protected, in not having your data passed on,
  • a statutory obligation exists for passing on data according to Article 6 Para. 1 Sentence 1 (c) of the GDPR, and
  • this is legally permissible and is necessary to handle contractual relations with you according to Article 6 Para. 1 Sentence 1 (b) of the GDPR.

(2) We sometimes make use of outside third parties to process your data. We have carefully selected and commissioned them; they are bound by our instructions and we regularly check them. We inform you in the relevant sections of the appropriate services whether we involve any service partners or not.

(3) We may also pass on your personal data to third parties if agreements are concluded or similar services are provided by us together with other partners. You can obtain more detailed information about this in the relevant sections.

(4) If our service providers or partners have their headquarters in a country outside the European Economic Area, we will inform you about the consequences of this in our description of the service in the relevant section.

3. Your rights

(1) You have the following rights as far as we are concerned with regard to any personal data involving you:

  • the right to information,
  • the right to have data corrected or deleted,
  • the right to have the processing work restricted,
  • the right to object to any processing work,
  • the right to data portability.

(2) You also have the right to lodge a complaint to a data protection supervisory authority about our processing of your personal data.

Visitor tours at Dresden

This service is included on our website by means of an iframe.

Flughafen Dresden GmbH, Flughafenstrasse, 01109 Dresden, info(at)dresden-airport(dot)de, is the Controller according to Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR). You can contact our data protection officer at datenschutz(at)dresden-airport(dot)de or use the postal address just mentioned; please address your letter to the “Data Protection Officer”.

Tour bookings

In order to book tours at Dresden Airport, you have the opportunity of contacting us on the phone or by e-mail. If you are contacting us by e-mail, please note the section entitled „MAKING CONTACT BY E-MAIL OR THE CONTACT FORM“.

If you contact us on the phone, we store the data that you give us (your surname, your first name, possibly your phone number and address for booking enquiries, your e-mail address) so that we can answer your questions and/or process your enquiry. This data is processed on the basis of Article 6 Para. 1 (b) of the GDPR in order to complete a contract or perform pre- contractual measures. We process the data that you voluntarily make available to us on the basis of your consent according to Article 6 Para. 1 (a) of the GDPR. You can cancel the consent that you have given us at any time. You will find more detailed information in the appropriate section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Any data that accumulates in this connection is deleted once it is no longer necessary to store it or you have cancelled your consent – if the processing work has taken place on the basis of your consent. If it is not possible to delete it because of statutory retention periods or other circumstances, we will restrict the processing work.

Visitor tours at Leipzig/Halle

This service is included on our website by means of an iframe.

Flughafen Leipzig/Halle GmbH, Terminalring 11, 04435 Flughafen Leipzig/Halle, info@leipzig- halle-airport.de, is the Controller according to Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR). You can contact our data protection officer at datenschutz@leipzig-halle- airport.de or use the postal address just mentioned; please address your letter to the “Data Protection Officer”.

Tour bookings

You have the opportunity of contacting us on the phone or by e-mail in order to book tours at Dresden Airport. If you are contacting us by e-mail, please note the section entitled “MAKING CONTACT BY E-MAIL OR THE CONTACT FORM”..

If you contact us on the phone, we store the data that you give us (your surname, your first name, possibly your phone number and address for booking enquiries, your e-mail address) so that we can answer your questions and/or process your enquiry. This data is processed on the basis of Article 6 Para. 1 (b) of the GDPR in order to complete a contract or perform pre- contractual measures. We process the data that you voluntarily make available to us on the basis of your consent according to Article 6 Para. 1 (a) of the GDPR. You can cancel the consent that you have given us at any time. You will find more detailed information in the appropriate section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Any data that accumulates in this connection is deleted once it is no longer necessary to store it or you have cancelled your consent – if the processing work has taken place on the basis of your consent. If it is not possible to delete it because of statutory retention periods or other circumstances, we will restrict the processing work.

Cookies

When you use our website, cookies are also stored on your computer in addition to the data that is stored, as mentioned in “VISITS TO THE WEBSITE”. Cookies are small text files that are stored on your hard drive and assigned to the browser that you are using; thanks to them, particular information flows to the place that sets the cookie. Cookies cannot execute any programmes or transfer viruses to your computer. They are there to help make the Internet services more user-friendly and more effective overall.

Our website uses the following kinds of cookies and we explain their scope and way of operating below:

  • Transient cookies (cf. paragraph a)
  • Persistent cookies (cf. paragraph b)
  • Tracking cookies (cf. the section entitled „GOOGLE ANALYTICS“)

a) Transient cookies are automatically deleted when you close your browser. They particularly include session cookies. They store a so-called session ID, with which various enquiries by your browser can be assigned to the joint session. This makes it possible to recognise your computer again if you return to our website. The session cookies are deleted when you close your browser.

b) Persistent cookies are automatically deleted after a pre-defined time and this may differ, depending on the type of cookie. You can delete the cookies in the security settings of your browser at any time. The system cookies, which we use, are stored for 24 hours.

c) You can configure your browser setting in line with your wishes and, for example, reject the acceptance of third-party cookies or any cookies. However, we would point out that you may not be able to make use of all the functions of this website, if you do this.

Activating and using the cookies that are required for technical reasons takes place on the legal basis of a legitimate interest (Article 6 Para. 1 (f) of the GDPR). You have a right to object to this. You will find more detailed information about this in the relevant section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

We process any cookies, which are not necessary for the technical operations, on the basis of your consent (Article 6 Para. 1 (a) of the GDPR). You have the right to cancel your consent at any time. You can find more detailed information in the relevant section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Fire training at Leipzig/Halle

This service is included on our website by means of an iframe.

Flughafen Leipzig/Halle GmbH, Terminalring 11, 04435 Flughafen Leipzig/Halle, info@leipzig- halle-airport.de, is the Controller according to Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR). You can contact our data protection officer at datenschutz@leipzig-halle- airport.de or use the postal address just mentioned; please address your letter to the “Data Protection Officer”.

Enquiries about dates and booking courses
We have to gather and process personal data about you from the contact form so that we can process your enquiries about dates or make bookings for courses.

Please take note of the section on this entitled: “MAKING CONTACT BY E-MAIL OR THE CONTACT FORM”.

If you contact us on the phone, we store the data that you give us (your surname, your first name, possibly your phone number and address for booking enquiries, your e-mail address) so that we can answer your questions and/or process your enquiry. This data is processed on the basis of Article 6 Para. 1 (b) of the GDPR in order to complete a contract or perform pre- contractual measures. We process the data that you voluntarily make available to us on the basis of your consent according to Article 6 Para. 1 (a) of the GDPR. You can cancel the consent that you have given us at any time. You will find more detailed information in the appropriate section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Any data that accumulates in this connection is deleted once it is no longer necessary to store it or you have cancelled your consent – if the processing work has taken place on the basis of your consent. If it is not possible to delete it because of statutory retention periods or other circumstances, we will restrict the processing work.

Photo and filming enquiries at Dresden airport

If you wish to shoot film, take photos or conduct a survey among passengers and guests at our airport, you can get in touch with us about this using our contact form.

If you make any enquiries at Dresden Airport, the Controller according to Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR) is Flughafen Dresden GmbH, Flughafenstrasse, 01109 Dresden, info@dresden-airport.de. You can contact our data protection officer at datenschutz@dresden-airport.de or use the postal address just mentioned; please address your letter to the “Data Protection Officer”.

You will find more details about processing and storing your data in the section entitled “MAKING CONTACT BY E-MAIL OR THE CONTACT FORM”.

If you contact us on the phone, we store the data that you give us (your surname, your first name, possibly your phone number and address for booking enquiries, your e-mail address) so that we can answer your questions and/or process your enquiry. This data is processed on the basis of Article 6 Para. 1 (b) of the GDPR in order to complete a contract or perform pre- contractual measures. We process the data that you voluntarily make available to us on the basis of your consent according to Article 6 Para. 1 (a) of the GDPR. You can cancel the consent that you have given us at any time. You will find more detailed information in the appropriate section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Any data that accumulates in this connection is deleted once it is no longer necessary to store it or you have cancelled your consent – if the processing work has taken place on the basis of your consent. If it is not possible to delete it because of statutory retention periods or other circumstances, we will restrict the processing work.

Photo and filming enquiries at Leipzig/Halle airport

If you wish to shoot film, take photos or conduct a survey among passengers and guests at our airport, you can get in touch with us about this using our contact form. If you make any enquiries at Leipzig/Halle Airport, the Controller according to Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR) is Flughafen Leipzig/Halle GmbH, Terminalring 11, 04435 Flughafen Leipzig/Halle, info@leipzig-halle-airport.de. You can contact our data protection officer at datenschutz@leipzig-halle-airport.de or use the postal address just mentioned; please address your letter to the “Data Protection Officer”.

You will find more details about processing and storing your data in the section entitled “MAKING CONTACT BY E-MAIL OR THE CONTACT FORM”.

If you contact us on the phone, we store the data that you give us (your surname, your first name, possibly your phone number and address for booking enquiries, your e-mail address) so that we can answer your questions and/or process your enquiry. This data is processed on the basis of Article 6 Para. 1 (b) of the GDPR in order to complete a contract or perform pre- contractual measures. We process the data that you voluntarily make available to us on the basis of your consent according to Article 6 Para. 1 (a) of the GDPR. You can cancel the consent that you have given us at any time. You will find more detailed information in the appropriate section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Any data that accumulates in this connection is deleted once it is no longer necessary to store it or you have cancelled your consent – if the processing work has taken place on the basis of your consent. If it is not possible to delete it because of statutory retention periods or other circumstances, we will restrict the processing work.

Google Analytics

If you have given us your consent, Google Analytics is used on this website; this is a website service provided by Google Ireland Limited. This usage involves the operating mode known as »Universal Analytics«. As a result, it is possible to assign data, sessions and any interaction across different devices to a pseudonymous user ID and therefore analyse the activities of any user across different devices.

Google Analytics makes use of so-called »Cookies«, they are text files that are stored on your computer and enable an analysis of the way that you use the website. The information that is generated by the cookie about your use of this website is normally transferred to a Google server in the USA and stored there. If IP anonymisation has been activated on this website, Google will, however, first abbreviate your IP address within the member states of the European Union or in other countries that have signed the Agreement on the European Economic Area. We would point out that Google Analytics has been extended to include IP anonymisation on this website in order to guarantee that IP addresses are logged in an anonymous form (so-called IP masking). The IP address transferred by your browser as part of Google Analytics is not combined with any other Google data. You can find more information about usage conditions and data privacy at: https://www.google.com/analytics/terms/de.html or at: https://policies.google.com/.

Purposes of processing
Google will use this information on behalf of the operator of this website to assess your usage of the website, compile reports about the website activities and perform other services associated with the use of the website and the Internet for the website’s operator.

Legal basis
The legal basis for using Google Analytics is your consent according to Article 6 Para. 1 (a) of the GDPR. You can find more details here: https://gdpr-info.eu/art-6-gdpr/

Recipients / categories of recipients
The recipient of the data that is gathered is Google.

Forwarding data to third countries
The personal data is transferred to the USA under the EU-US Privacy Shield on the basis of the adequacy decision adopted by the

The storage time for data
The data that we send, which is linked to cookies, user names (e.g. user ID) or advertising IDs is automatically deleted after 14 months. Once the storage period has been completed, the data is automatically deleted once a month.

Data subject rights
You can cancel your consent with regard to the future at any time by preventing the storage of the cookies; you do so by making the appropriate setting in your browser software; we would, however, point out that you may not be able to make full use of all the functions of this website, if you do this. You can also prevent Google from logging the data generated by the cookie and related to your usage of the website (including your IP address) or from processing this data by downloading and installing this browser add-on: https://tools.google.com/dlpage/gaoptout?hl=en

Objecting the declaration of consent for Google Analytics tracking prevents the future collection of your data when you visit this website. In order to prevent the acquisition by Universal Analytics across different devices, you have to carry out the opt-out on all used systems. This is done by deleting the Google Analytics opt-in cookie. If you click here, the opt-in cookie will be deleted: Delete opt-in cookie.

Google Maps

We include the maps provided by Google by means of the “Google Maps” service. The data that is processed may particularly include users’ IP addresses and location data, but this may not be gathered without their consent (this is normally completed as part of the settings on their mobile devices).

Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland; parent company: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; website: https://maps.google.de; data privacy statement: click here; Privacy Shield (guaranteeing the data privacy level when data is processed in the USA): click here; Opt-out opportunity: Opt-Out-Plugin: click here; Settings for the display of advertisements: click here.

Handling request for Dresden airport

This service is included on our website by means of an iframe.

The Controller in the sense of Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR) is Flughafen Dresden GmbH, Flughafenstrasse, 01109 Dresden, info@dresden-airport.de. You can contact our data protection officer at datenschutz@dresden-airport.de or use the postal address just mentioned; please address your letter to the “Data Protection Officer”.

If you contact us as part of a handling request, we store the data of the specified contact partner (surname, first name, address data – normally a business address – and e-mail) so that we can answer the enquiry and process it. This data is processed on the basis of Article 6 Para. 1 (b) of the GDPR in order to complete a contract or perform pre-contractual measures. We process the data that you voluntarily make available on the basis of your consent in line with Article 6 Para. 1 (a) of the GDPR. You can cancel the consent that you have given us at any time. You will find more detailed information in the appropriate section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Any data that accumulates in this connection is deleted once it is no longer necessary to store it or you have cancelled your consent – if the processing work has taken place on the basis of your consent. If it is not possible to delete it because of statutory retention periods or other circumstances, we will restrict the processing work.

Handling request for Leipzig/Halle airport

This service is included on our website by means of an iframe.

The Controller in the sense of Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR) is Flughafen Leipzig/Halle GmbH, Terminalring 11, 04435 Flughafen Leipzig/Halle, info@leipzig-halle-airport.de. You can contact our data protection officer at datenschutz@leipzig- halle-airport.de or use the postal address just mentioned; please address your letter to the “Data Protection Officer”.

If you contact us as part of a handling request, we store the data of the specified contact partner (surname, first name, address data – normally a business address – and e-mail) so that we can answer the enquiry and process it. This data is processed on the basis of Article 6 Para. 1 (b) of the GDPR in order to complete a contract or perform pre-contractual measures. We process the data that you voluntarily make available on the basis of your consent in line with Article 6 Para. 1 (a) of the GDPR. You can cancel the consent that you have given us at any time. You will find more detailed information in the appropriate section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Any data that accumulates in this connection is deleted once it is no longer necessary to store it or you have cancelled your consent – if the processing work has taken place on the basis of your consent. If it is not possible to delete it because of statutory retention periods or other circumstances, we will restrict the processing work.

Making contact by e-mail or the contact form

If you contact us by e-mail or using the contact form, we store the data that you give us (your surname, your first name, possibly your phone number and address for booking enquiries, your e-mail address) so that we can answer your questions and/or process your enquiry. This data is processed on the basis of Article 6 Para. 1 (b) of the GDPR in order to complete a contract or perform pre-contractual measures. We process the data that you voluntarily make available to us on the basis of your consent according to Article 6 Para. 1 (a) of the GDPR. You can cancel the consent that you have given us at any time. You will find more detailed information in the appropriate section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Any data that accumulates in this connection is deleted once it is no longer necessary to store it or you have cancelled your consent – if the processing work has taken place on the basis of your consent. If it is not possible to delete it because of statutory retention periods or other circumstances, we will restrict the processing work.

Booking a car park space at Dresden

This service is included on our website by means of an iframe.

The Controller in the sense of Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR) is Flughafen Dresden GmbH, Flughafenstrasse, 01109 Dresden, info@dresden- airport.de. You can contact our data protection officer at datenschutz@dresden-airport.de or use the postal address just mentioned; please address your letter to the “Data Protection Officer”.

You must create a user account in advance in order to use the online tool to book a car park space. The following data is required for this:

Your surname, first name, address, country, e-mail address and a password for the user ID./p>

In order to be able to complete your booking, we require your payment data, such as data about your credit card or EC card or details to be passed on to PayPal.

Once the booking has been completed, we will send you a QR code. This is either located on the invoice, which is sent in digital form, or on your mobile phone. Your data related to the booking is stored in this QR code. This then enables you to obtain an appropriate ticket at the entry point to the car park. All the data that we gather is required in order to conclude and perform the agreement (Article 6 Para. 1 (b) of the GDPR).

According to the statutory retention periods in the German Fiscal Code and Commercial Code, this data must be kept for up to 10 years.

In order to offer you this service, we forward your data to the company that processes the order. The latter is contractually obliged to protect your data at least to the same degree as we ourselves do.

Booking a car park space at Leipzig/Halle

This service is included on our website by means of an iframe.

The Controller in the sense of Article 4 Para. 7 of the EU General Data Protection Regulation (GDPR) is Flughafen Leipzig/Halle GmbH, Terminalring 11, 04435 Flughafen Leipzig/Halle, info@leipzig-halle-airport.de. You can contact our data protection officer at datenschutz@leipzig-halle-airport.de or use the postal address just mentioned; please address your letter to the “Data Protection Officer”.

You must create a user account in advance in order to use the online tool to book a car park space. The following data is required for this:

Your surname, first name, address, country, e-mail address and a password for the user ID.

We require your payment data, such as data about your credit card or EC card, in order to complete your booking.

The data available on your credit/EC card is then forwarded to the car park barrier. This is done so that you can open the barrier with your credit/EC card.

This data is processed on the basis of Article 6 Para. 1 (b) of the GDPR in order to complete a contract or perform pre-contractual measures. We process that data that you voluntarily make available on the basis of your consent in line with Article 6 Para. 1 (a) of the GDPR. You can cancel the consent that you have given us at any time. You will find more detailed information in the appropriate section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

Any data that accumulates in this connection is deleted once it is no longer necessary to store it or you have cancelled your consent – if the processing work has taken place on the basis of your consent. If it is not possible to delete it because of statutory retention periods or other circumstances, we will restrict the processing work.

According to the statutory retention periods in the German Fiscal Code and Commercial Code, this data must be kept for up to 10 years.

In order to offer you this service, we forward your data to the company that processes the order. The latter is contractually obliged to protect your data at least to the same degree as we ourselves do.

Dresden airport in the social media networks

Dresden Airport maintains online accounts within social media networks in order to communicate with active users there or offer information about itself there.

We would point out at this juncture that it is possible that user data is processed outside the European Union if you visit these networks. This may expose users to risks, because it may be difficult for users to assert their rights, for example. As for US providers that are certified under the Privacy Shield or offer comparable guarantees of safe data protection levels, we would point out that they therefore promise to comply with the data privacy standards that apply within the EU.

User data within social media networks is normally processed for market research and advertising purposes too. It is therefore possible that usage profiles are drawn up on the basis of usage behaviour and the user’s resulting interests, for example. The usage profiles can then be used to display advertisements that probably reflect the user’s interests, both inside and outside the networks, for example. To achieve this, cookies are normally stored on the user’s computer and the usage behaviour and interests of the user are stored in them. It is also possible that data may be stored in the usage profiles, regardless of the devices that the user employs (particularly, if the user is a member of the relevant platforms and has logged in with them).

We would refer you to the data privacy statements and specifications published by the operators of the relevant networks if you wish to obtain a detailed description of the types of processing in each case and the opt-out opportunities.

Even if you are making enquiries about information or asserting data subject rights, we would also point out that they can be most effectively asserted with the providers themselves. Only these providers have access to the user’s data and can directly adopt appropriate measures and provide information. If you still require some assistance, you can contact the following address:

Flughafen Dresden GmbH
Data Protection Officer
Flughafenstraße
01109 Dresden
Datenschutz(at)dresden-airport(dot)de

The types of data that are processed involve the following: user-related data (e.g. names, addresses), contact data (e.g. e-mail, phone numbers), content data (e.g. text input, photos, videos), usage data (e.g. websites visited, interest in content, access times), meta/communications data (e.g. information on devices, IP addresses).

The persons concerned are: users (e.g. website visitors, users of online services).

The purposes of the processing work: contact enquiries and communications, tracking (e.g. profiling based on interests/behaviour, usage of cookies), remarketing, measuring coverage (e.g. access statistics, recognising repeat visitors).

Legal basis: legitimate interests (Article 6 Para. 1 Sentence 1 (f) of the GDPR).

Services and service providers that are used:

Instagram: social media network; service provider: Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA; website:https://www.instagram.com; data privacy statement: http://instagram.com/about/legal/privacy.

Facebook: social media network; service provider: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; parent company: Facebook, 1 Hacker Way,
Menlo Park, CA 94025, USA; website: https://www.facebook.com; data privacy statement: https://www.facebook.com/about/privacy; Privacy Shield (guaranteeing the data privacy level when data is processed in the USA): https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active; opt-out opportunities: settings for advertisements: https://www.facebook.com/settings?tab=ads; additional information on data privacy: Agreement on Joint Processing of Personal Data on Facebook Sites: https://www.facebook.com/legal/terms/page_controller_addendum; data privacy information for Facebook sites: https://www.facebook.com/legal/terms/information_about_page_insights_data.

Twitter: The airport makes use of the technical platform and the services of Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103 U.S.A. for the short message service that it provides. Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland is responsible for processing any data related to people who live outside the United States.

We would point out that you alone are responsible for making use of the Twitter short message service that is offered here and its functions. This particularly applies to using the interactive functions (e.g. share, like/don’t like).

You will find the details about the data that Twitter processes and for what purposes the company uses it in Twitter’s data privacy statement: https://twitter.com/de/privacy

Twitter Inc. is committed to the principles of the EU-US Privacy Shield. You can find more details about it here: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active

The airport does not have any influence on the type or amount of data that Twitter processes, the type of processing and usage or any forwarding of this data to third parties. In this sense, it does not have any effective control opportunities either. If you use Twitter, Twitter Inc. will log, transfer, store, disclose and use your personal data and transfer it, store it and use it, regardless of whether you live in the United States, Ireland or any other country where Twitter Inc. has business operations.

Firstly, Twitter processes the data that you have voluntarily entered, such as your name and user name, your e-mail address, your phone number or the contacts in your address book, if you upload or synchronise this information.

Secondly, Twitter also assesses the content that you have shared with a view to discovering which topics are interesting for you; it stores and processes confidential messages that you send directly to other users and it can determine where you are by using your GPS data, information about wireless networks or your IP address in order to send you advertisements or other content.

For evaluation purposes, Twitter Inc. may use analysis tools like Twitter or Google Analytics. The airport does not have any influence on the use of these kinds of tools by Twitter Inc. and has not been informed about any such potential use either. If Twitter Inc. makes use of these kinds of tools for the airport account, the airport has not commissioned this work or given it its blessing or supported it in any other way. The data that is obtained through the analysis process is not made available to the airport either. The airport can only see certain, non-personal information about Tweet activity, e.g. the number of profile or link clicks generated by a particular Tweet, via its account. The airport does not have any opportunity of preventing or stopping the use of these kinds of tools on its Twitter account either.

Finally, Twitter also receives information if you view content, for example, even if you have not created an account. This so-called “log data” may involve an IP address, the type of browser, the operating system, information on the website that was accessed prior to this and the sites that you have accessed, your location, your mobile phone provider, the terminal device that you are using (including the device ID and usage ID), the search terms that you use and cookie information.

Twitter is able to log your visits to these websites and assign them to your Twitter profile via the Twitter buttons or widgets that are embedded in websites and by using cookies. Content or advertisements can then be tailored to you by means of this data.

You have opportunities to restrict the processing of your data in the general settings of your Twitter account and in the “Data privacy and security” menu. You can also restrict Twitter’s access to contact and calendar data, photos, location data etc. on mobile devices (smartphones, tablet computers) in the settings available there. However, this depends on the operating system that you are using.

You can obtain further information about these issues from the following Twitter support sites:
https://support.twitter.com/articles/105576# 
https://help.twitter.com/de/search?q=datenschutz

You can find out about the opportunity to view your own data at Twitter here:
https://support.twitter.com/articles/20172711#

You will find information about the conclusions that Twitter draws about you here:
https://twitter.com/your_twitter_data

You will find information about the current personalisation and data privacy setting options here (with further information):
https://twitter.com/personalization

You also have the opportunity of requesting information via the Twitter data privacy form or the archive requirements:
https://support.twitter.com/forms/privacy
https://support.twitter.com/articles/20170320#

LinkedIn: Social media network; service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; website: https://www.linkedin.com; data privacy statement: https://www.linkedin.com/legal/privacy-policy; Privacy Shield (guaranteeing the data privacy level when data is processed in the USA): https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active; opt-out opportunity: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Leipzig/Halle airport in the social media networks

Leipzig/Halle Airport maintains online accounts within social media networks in order to communicate with active users there or offer information about itself there.

We would point out at this juncture that it is possible that user data is processed outside the European Union if you visit these networks. This may expose users to risks, because it may be difficult for users to assert their rights, for example. As for US providers that are certified under the Privacy Shield or offer comparable guarantees of safe data protection levels, we would point out that they therefore promise to comply with the data privacy standards that apply within the EU.

User data within social media networks is normally processed for market research and advertising purposes too. It is therefore possible that usage profiles are drawn up on the basis of usage behaviour and the user’s resulting interests, for example. The usage profiles can then be used to display advertisements that probably reflect the user’s interests, both inside and outside the networks, for example. To achieve this, cookies are normally stored on the user’s computer and the usage behaviour and interests of the user are stored in them. It is also possible that data may be stored in the usage profiles, regardless of the devices that the user employs (particularly, if the user is a member of the relevant platforms and has logged in with them).

We would refer you to the data privacy statements and specifications published by the operators of the relevant networks if you wish to obtain a detailed description of the types of processing in each case and the opt-out opportunities.

Even if you are making enquiries about information or asserting data subject rights, we would also point out that they can be most effectively asserted with the providers themselves. Only these providers have access to the user’s data and can directly adopt appropriate measures and provide information. If you still require some assistance, you can contact the following address:

Flughafen Leipzig/Halle GmbH
Data Protection Officer
Terminalring 11
04435 Flughafen Leipzig/Halle
datenschutz@leipzig-halle-airport.de

The types of data that are processed involve the following: user-related data (e.g. names, addresses), contact data (e.g. e-mail, phone numbers), content data (e.g. text input, photos, videos), usage data (e.g. websites visited, interest in content, access times), meta/communications data (e.g. information on devices, IP addresses).

The persons concerned are: users (e.g. website visitors, users of online services).

The purposes of the processing work: contact enquiries and communications, tracking (e.g. profiling based on interests/behaviour, usage of cookies), remarketing, measuring coverage (e.g. access statistics, recognising repeat visitors).

Legal basis: legitimate interests (Article 6 Para. 1 Sentence 1 (f) of the GDPR).

Services and service providers that are used:

Instagram: social media network; service provider: Instagram Inc., 1601 Willow Road, Menlo Park, CA, 94025, USA; website:https://www.instagram.com; data privacy statement: http://instagram.com/about/legal/privacy.

Facebook: social media network; service provider: Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland; parent company: Facebook, 1 Hacker Way,
Menlo Park, CA 94025, USA; website: https://www.facebook.com; data privacy statement: https://www.facebook.com/about/privacy; Privacy Shield (guaranteeing the data privacy level when data is processed in the USA): https://www.privacyshield.gov/participant?id=a2zt0000000GnywAAC&status=Active; opt-out opportunities: settings for advertisements: https://www.facebook.com/settings?tab=ads; additional information on data privacy: Agreement on Joint Processing of Personal Data on Facebook Sites: https://www.facebook.com/legal/terms/page_controller_addendum; data privacy information for Facebook sites: https://www.facebook.com/legal/terms/information_about_page_insights_data.

Twitter: The airport makes use of the technical platform and the services of Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103 U.S.A. for the short message service that it provides. Twitter International Company, One Cumberland Place, Fenian Street, Dublin 2 D02 AX07, Ireland is responsible for processing any data related to people who live outside the United States.

We would point out that you alone are responsible for making use of the Twitter short message service that is offered here and its functions. This particularly applies to using the interactive functions (e.g. share, like/don’t like).

You will find the details about the data that Twitter processes and for what purposes the company uses it in Twitter’s data privacy statement: https://twitter.com/de/privacy

Twitter Inc. is committed to the principles of the EU-US Privacy Shield. You can find more details about it here: https://www.privacyshield.gov/participant?id=a2zt0000000TORzAAO&status=Active

The airport does not have any influence on the type or amount of data that Twitter processes, the type of processing and usage or any forwarding of this data to third parties. In this sense, it does not have any effective control opportunities either. If you use Twitter, Twitter Inc. will log, transfer, store, disclose and use your personal data and transfer it, store it and use it, regardless of whether you live in the United States, Ireland or any other country where Twitter Inc. has business operations.

Firstly, Twitter processes the data that you have voluntarily entered, such as your name and user name, your e-mail address, your phone number or the contacts in your address book, if you upload or synchronise this information.

Secondly, Twitter also assesses the content that you have shared with a view to discovering which topics are interesting for you; it stores and processes confidential messages that you send directly to other users and it can determine where you are by using your GPS data, information about wireless networks or your IP address in order to send you advertisements or other content.

For evaluation purposes, Twitter Inc. may use analysis tools like Twitter or Google Analytics. The airport does not have any influence on the use of these kinds of tools by Twitter Inc. and has not been informed about any such potential use either. If Twitter Inc. makes use of these kinds of tools for the airport account, the airport has not commissioned this work or given it its blessing or supported it in any other way. The data that is obtained through the analysis process is not made available to the airport either. The airport can only see certain, non-personal information about Tweet activity, e.g. the number of profile or link clicks generated by a particular Tweet, via its account. The airport does not have any opportunity of preventing or stopping the use of these kinds of tools on its Twitter account either.

Finally, Twitter also receives information if you view content, for example, even if you have not created an account. This so-called “log data” may involve an IP address, the type of browser, the operating system, information on the website that was accessed prior to this and the sites that you have accessed, your location, your mobile phone provider, the terminal device that you are using (including the device ID and usage ID), the search terms that you use and cookie information.

Twitter is able to log your visits to these websites and assign them to your Twitter profile via the Twitter buttons or widgets that are embedded in websites and by using cookies. Content or advertisements can then be tailored to you by means of this data.

You have opportunities to restrict the processing of your data in the general settings of your Twitter account and in the “Data privacy and security” menu. You can also restrict Twitter’s access to contact and calendar data, photos, location data etc. on mobile devices (smartphones, tablet computers) in the settings available there. However, this depends on the operating system that you are using.

You can obtain further information about these issues from the following Twitter support sites:
https://support.twitter.com/articles/105576# 
https://help.twitter.com/de/search?q=datenschutz

You can find out about the opportunity to view your own data at Twitter here:
https://support.twitter.com/articles/20172711#

You will find information about the conclusions that Twitter draws about you here:
https://twitter.com/your_twitter_data

You will find information about the current personalisation and data privacy setting options here (with further information):
https://twitter.com/personalization

You also have the opportunity of requesting information via the Twitter data privacy form or the archive requirements:
https://support.twitter.com/forms/privacy
https://support.twitter.com/articles/20170320#

LinkedIn: Social media network; service provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland; website: https://www.linkedin.com; data privacy statement: https://www.linkedin.com/legal/privacy-policy; Privacy Shield (guaranteeing the data privacy level when data is processed in the USA): https://www.privacyshield.gov/participant?id=a2zt0000000L0UZAA0&status=Active; opt-out opportunity: https://www.linkedin.com/psettings/guest-controls/retargeting-opt-out.

Travel agency platform

(1) If you would like to use our travel agency platform, you must register by specifying your surname and first name as well as your title, your e-mail address, a password that you choose yourself and a user name that you can freely select. It is not necessary to provide your real name – a pseudonym is acceptable. We use the so-called double opt-in procedure for registration, i.e. your registration has only been completed if you first confirm your registration through a confirmation e-mail, which is sent to you for this purpose, and you click on the link that it contains. If you do not provide this confirmation within 24 hours, your registration is automatically deleted from our database. You must specify the data mentioned above – but you are free to provide any other information on a voluntary basis.

If you have confirmed your registration, we will check the legitimacy of your registration and activate your access if our check is positive. We will send you another confirmation e-mail for this purpose. If the check is negative, we will immediately delete your data.

(2) If you use our platform, we store the necessary data about you in order to complete the agreement until we finally delete your access. The legal basis for this is Article 6 Para. 1 (b) of the GDPR. We also continue to store any voluntary data that you have specified during the time that you use the portal, if you do not object to this use. The legal basis for this is Article 6 Para. 1 (a) of the GDPR. If you wish to cancel your consent, please read the section entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”.

(3) The link is encrypted using TLS technology in order to prevent any unauthorised access by third parties to your personal data, particularly your financial data.

(4) We involve outside providers in order to make this service available to you. We have carefully selected and commissioned them, they are bound by our instructions and we regularly check them. They have also been bound by a contract to adopt the same protective precautions as we do to protect your personal data.

Visits to the website

Gathering personal data when you visit our website

If you only use our website for information purposes, i.e. if you do not register or send us any other information, we only gather the personal data that your browser sends to our server. If you wish to view our website, we gather the following data, which is technically essential for us so that we can display our website for you and guarantee its stability and reliability (the legal basis is Article 6 Para. 1 Sentence 1 (f) of the GDPR – please bear in mind the section on this topic entitled “CANCELLING OR OBJECTING TO THE PROCESSING OF YOUR DATA”

  • The IP address
  • The date and time of the enquiry
  • The time zone difference in terms of Greenwich Mean Time (GMT)
  • The content of the request (specific page)
  • The access status/HTTP status code/li>
  • The amount of data transferred in each case
  • The website, from which the request comes
  • The browser
  • The operating system and its user interface
  • The language and version of the browser software
  • Cookies – you can find more information about them in the relevant section entitled “COOKIES”

Cancelling or objecting to the processing of your data

1. Cancellation

If you have granted your consent to have your data processed, you can cancel it at any time. This kind of cancellation, however, does not affect the legitimacy of the processing work on your personal data until you have sent us your cancellation. The legitimacy of any processing work that has taken place up to this time is not affected by your cancellation.

2. Objection

(1) If we base the processing of your personal data on a balancing of interests, you can lodge an objection to the processing work. If you make use of this kind of objection, we would ask you to outline the reasons why we should not continue to process your personal data as we have done in the past. If your objection is justified, we will check the circumstances and will either halt the processing of your data or adapt it or indicate to you our mandatory reasons that need to be protected, on the basis of which we will continue to process the information.

(2) You can naturally object to the processing of your personal data for the purposes of advertising and data analysis at any time. You can inform us of your objection to advertising by using the following contact data:

Contact:
Mitteldeutsche Flughafen AG
Data Protection Officer
Terminalring 11
04435 Flughafen Leipzig/Halle
Mail: datenschutz(at)mdf-ag.com

Binding character

The German version of the data protection information is legally binding.