This Privacy Statement informs you about the type of personal data that is
collected and received through our website zerog.aero (“website”) and about
how we use, share, retain and protect such personal data.
Who we are
We are zeroG GmbH (“we”, “zeroG” or “us”) , a 100% subsidiary of Lufthansa Systems, and have our registered office at Am Messeplatz 1, D-65479, Raunheim, Germany - Registration: Amtsgericht Darmstadt HRB 94073. We are the controller responsible for the processing of personal data through the website.
How we obtain personal data
We receive personal data through our website, e.g. our contact-form. Personal data means any information relating to an identified or identifiable natural person.
We collect personal data that you choose to voluntarily provide to us for your use of the website. In addition, we collect certain personal data by using cookies, including similar technologies such as local storage when you visit the website.
To gather website statistical data to analyse how our users use the website, such as which pages are visited, how long pages were visited and the paths taken by visitors to our website as they move from page to page.
The types of personal data we may obtain
We may receive the following personal data from you:
Name and contact details (such as name, address, email, username, fax and phone numbers); if provided by you
Your resume and motivational letter when submitting an unsolicited applictation. For applying to posted open positions, please visit www.be-lufthansa.com
Traffic data (such as your Internet usage).
We may collect other types of personal data if required under applicable law or if necessary for the purposes listed below.
How we may use personal data
We may use the personal data we collect and receive for the following purposes:
To answer questions you have regarding our services.
For recruitment purposes.
To analyse how the website is used, such as which pages are visited, how long pages were visited and the paths taken by visitors to our website as they move from page to page.
To verify compliance with applicable legal requirements and our policies.
How we may share personal data
We may share the personal data we collect and receive on a need to know basis with the following third parties:
Service providers; e.g. Lufthansa Group HR, Transport, IT.
Competent public authorities or other third parties, if required by law or reasonably necessary to protect the rights, property and safety of ourselves or others.
We may also transfer your personal data in the event that we sell or transfer all or a portion of our business or assets on a need to know basis. Should such a sale or transfer occur, we will use reasonable efforts to direct the transferee to use personal data you have provided to us in a manner that is consistent with applicable law and this Privacy Statement.
We do not sell, rent or trade your personal data.
The integration of social networks
At various places on our website, zeroG provides social network features in the form of links to our social media platforms and contacts.
The basic provision of the plugin on our website is based on our legitimate interest for marketing purposes, Art. 6 (1)(f) GDPR.
zeroG can be contacted and our offers are accessible without utilizing social media networks. If you use the additional features, please note the following information about data handling:
1. Linking to zeroG in social networks
Linking to zeroG or one of our social media posts, e.g. our LinkedIn page, involves simple links to other providers’ websites. With such a link, zeroG does not transmit any personal information to this other provider. However, zeroG would like to draw your attention to the fact that, in principle, the third parties are able to identify the source of a visit, at the very least. zeroG has no influence over how third parties treat data; likewise zeroG and the Lufthansa Group’s Privacy Statement do not cover third-party websites.
2. Forwarding and recommendation functions for zeroG content (e.g. ‘Share’ and ‘Like’ buttons)
At various places in zeroG´s online content zeroG gives you the option of sharing and recommending its content on social networks. By doing so, zeroG is offering you a convenient alternative to copying and sending links.
When you visit zeroG pages and use the recommendation functions, zeroG communicates the URL to the social network you have picked. A number of networks then immediately supplement the link with an excerpt of the content provided by zeroG. With most social networks, you are asked for confirmation before this is saved or forwarded.
Please note that zeroG has neither knowledge of nor influence on how social networks deal with the information you share with them and whether this information is made available to other websites. zeroG recommends that you read their privacy policies carefully in each case.
How we protect personal data
We maintain appropriate technical and organizational security safeguards designed to protect your personal data against accidental, unlawful or unauthorized destruction, loss, alteration, access, disclosure or use. However, due the inherent open nature of the Internet, we cannot guarantee that communications between you and us or the personal information stored is absolutely secure. We will notify you of any data breach that is likely to have unfavorable consequences for your privacy in accordance with applicable law.
To ensure the highest possible security for the transmission of your data between your web browser and our internet system, we use the Secure Socket Layer (SSL) encrypting technology. SSL enables an encrypted communication respectively transfer of documents via the internet between web browser and web server. The URL of a website with SSL connection to your browser starts with http://https://.
How Long We Retain Personal Data
We retain personal data for as long as necessary to fulfil the purposes for which we receive the personal data, except if required otherwise by applicable law. Corresponding burdens of proof and duties of retention arise from, amongst others, the Commercial Code, Tax Code, and Money Laundering Act. These prescribe retention periods up to ten years. Typically, we will retain most of the personal data until we have handled your request or your application for an open position at zeroG.
In certain circumstances, personal data are kept for the period of time during which claims against zeroG may be enforced (statutory limitation period of three to thirty years).
zeroG is committed to ensuring fair and transparent data processing. That is why it is important to us that data subjects can not only exercise their right to object but also the following rights where the respective legal requirements are satisfied:
You have the following rights in relation to your personal data:
Right of Access, Art. 15 GDPR; i.e. the right to obtain, at reasonable intervals and free of charge, information on whether or not your personal data are being processed and to receive the personal data that is being processed in an intelligible form;
Right of Rectification, Art. 16 GDPR; i.e. the right to have your personal data rectified, blocked or deleted if your personal data are incorrect, incomplete, inaccurate, irrelevant, outdated or processed unlawfully.
Right to Erasure (“Right to be forgotten”), Art. 17 GDPR; i.e. the right to object on legitimate grounds to the processing of your personal data.
Right to Data Portability, Art. 20 GDPR: i.e. to receive the personal data that is being processed in an intelligible form.
You have the right to object, on reasons relating to your particular situation, at any time to processing of personal data concerning you which is based on point (e) or (f) of Article 6(1) GDPR, including profiling based on those provisions.
The controller shall no longer process your personal data unless the controller demonstrates compelling legitimate grounds for the processing which override your interests, right and freedoms or processing is necessary for the establishment, exercise or defence of legal claims.
Where your personal data are processed for direct marketing purposes, you have the right to object at any time to processing of personal data, which includes profiling to the extent that it is related to such direct marketing.
Where you object to processing for direct marketing purposes, the personal data concerning you shall no longer be processed for such purposes.
To exercise your rights, please contact us using our contact details set out below. In order to process your request and for identification purposes, please note that we will process your personal data in accordance with Art. 6(1)(c) GDPR. We will respond to your request within the applicable statutory term.
Updates to this Privacy Statement
We may update this Privacy Statement from time to time. We will notify you of any significant changes to this Privacy Statement on the website or through other appropriate communication channels. All changes shall be effective from the date of publication, unless otherwise provided in the notification.
How to Contact Us
If you have any comments or inquiries about the information in this Privacy Statement, if you would like us to update your personal data, or to exercise your rights, please contact us by email at firstname.lastname@example.org
zeroG Data Protection Coordinator
Am Messeplatz 1
If you have any further queries regarding data protection in connection to our website or services, please contact our Group Data Protection Officer for the Lufthansa Group:
Dr. Barbara Kirchberg-Lennartz
Deutsche Lufthansa AG
D-60546 Frankfurt am Main