Top of page
Service area
Service menu
Main content area

Privacy policy

Instructions for handling personal data

We appreciate your interest in our website and our other digital channels. With the privacy policy shown here, we would like to inform you about the type, scope and purpose of the personal data collected, used and processed by us.

The following table of contents should enable you to get started in our privacy policy as quickly and easily as possible.

Contents

A. General provisions on data processing


1. Subject of this privacy policy

The protection of your personal data is a great and very important concern for us. In the following, we would like to inform you in detail of the data collected during your visit to our website, the use of our offers there and how the data is processed or used by us. Furthermore, we will also inform you of which accompanying protective measures we have taken in terms of technology and organisation.

The processing of personal data, such as the name, address, e-mail address or telephone number of a data subject, is always in accordance with the applicable data protection regulations. By means of this Privacy Policy we would like to inform you of the nature, extent and purpose of the personal data collected, used and processed by us and whether you are affected by data processing.

Although we, as the controller responsible for processing personal data, have implemented numerous technical and organisational measures, internet-based data transmission can in principle have security gaps. Therefore, absolute protection cannot be guaranteed. We kindly ask you to take this into account when using our website.

2. Definitions

This Privacy Policy uses terms that have been specified by the legislator in the General Data Protection Regulation (GDPR). You can retrieve the GDPR under the following link:

https://eur-lex.europa.eu/legal-content/EN/TXT/PDF/?uri=CELEX:32016R0679&from=EN (PDF)

The purpose of our Privacy Policy is to inform you in a simple and understandable way of the processing of your personal data on our website.

3. Name and address of the controller

The controller under data protection law is: 

Flughafen Dortmund GmbH 

Flugplatz 21
44319 Dortmund 

Germany 


PO Box 13 02 61

44319 Dortmund


Phone: +49.231.9213-01

Telefax: +49.231.9213-125

E-mail: service@dortmund-airport.de

Internet: www.dortmund-airport.de

4. Contact details of the data protection officer

Dortmunder Stadtwerke AG (DSW21)
Data Protection Officer
Deggingstraße 40
44141 Dortmund
Germany
E-mail: datenschutz@dortmund-airport.de

5. Deletion and blocking of personal data/storage period

Unless otherwise stipulated for the respective processing of personal data in chapter B of this Privacy Policy, the data which we store shall be erased as soon as they are no longer necessary for the purpose for which they were collected, and erasure does not contradict any statutory retention requirements. If the data of the data subject are not erased because they are required for other and legally permissible purposes, the processing of such is restricted. This means that the data are blocked and not processed for other purposes. This applies, for example, to data of the data subject which must be kept for commercial or tax reasons.

According to the legal requirements, data are retained for six years in accordance with Art. 257(1) HGB [German Commercial Code] (trading books, inventories, opening balance sheets, annual financial statements, trade letters, accounting documents, etc.) and for ten years pursuant to Art. 147(1) AO [German Fiscal Code] (accounts, records, management reports, accounting documents, commercial and business letters, etc.).

6. Rights of the data subject

6.1 Right to confirmation

Each data subject has the right, as granted by the European regulators, to require the controller to confirm whether personal data relating to the data subject are being processed. If a data subject wishes to make use of this right of confirmation, they can contact our data protection officer or another employee of the controller at any time.

6.2 Right to information

Any data subject affected by the processing of personal data has the right at any time to obtain from the controller any information free of charge concerning the personal data stored about them and to receive a copy of that information. Furthermore, the data subject shall have access to the following information:

  • The purposes of processing;
  • The categories of personal data being processed;
  • The recipients or categories of recipients to whom the personal data has been disclosed or is still being disclosed, in particular to recipients in third countries or to international organisations;
  • Where possible, the planned duration of storage of the personal data;
    Or, where this is not possible, the criteria for determining this duration;
  • The existence of a right to rectification or erasure of the personal data concerning the data subject or of a restriction of processing by the controller and of a right to object to such processing;
  • The existence of a right of appeal to a supervisory authority;
  • If the personal data are not collected from the data subject:
  • All available information concerning the origin of the data;
  • The existence of automated decision-making, including profiling, pursuant to Art. 22(1) and (4) GDPR and - at least in such cases - meaningful information on the logic involved and the scope and intended impact of such processing regarding the data subject.

In addition, the data subject has a right to know whether personal data have been transferred to a third country or to an international organisation. If this is the case, the data subject is furthermore entitled to receive information on the appropriate guarantees in connection with the transfer.

If a data subject wishes to make use of this right to information, they can contact our data protection officer or another employee of the controller at any time.

6.3 Right to rectification

Any data subject affected by the processing of personal data has the right to demand the immediate correction of incorrect personal data concerning them. Furthermore, the data subject has the right, under consideration of the purposes of the processing, to request the completion of incomplete personal data by means of a supplementary declaration.

If a data subject wishes to make use of this right to rectification, they can contact our data protection officer or another employee of the controller at any time.

6.4 Right to erasure

Any data subject affected by the processing of personal data has the right to require the controller to immediately erase personal data concerning them, provided that one of the following reasons is satisfied and that processing is not required:

  • The personal data have been collected or otherwise processed for purposes for which they are no longer necessary;
  • The data subject withdraws their consent which was the basis for processing pursuant to Art. 6(1) lit. a GDPR or Art. 9(2) lit. a GDPR, and no other legal basis for processing exists;
  • The data subject lodges a complaint against the processing pursuant to Art. 21(1) GDPR, and no superior legitimate reasons for the processing exist, or the data subject lodges a complaint against the processing pursuant to Art. 21(2) GDPR;
  • The personal data were processed unlawfully;
  • The erasure of personal data is necessary to fulfil a legal obligation under EU law or the law of the Member States to which the data subject is subject;
  • The personal data were collected in relation to information society services offered pursuant to Art. 8(1) GDPR.

Insofar as one of the above reasons applies and a data subject wishes to arrange for the erasure of personal data stored with Flughafen Dortmund GmbH, they may contact our data protection officer or another employee of the controller at any time. The data protection officer for Flughafen Dortmund GmbH or another employee will ensure that the request for erasure is fulfilled without delay.

If the personal data have been made public by Flughafen Dortmund GmbH, and if our company is responsible for erasing personal data as the controller pursuant to Art. 17 (1) GDPR, Flughafen Dortmund GmbH shall take appropriate measures, taking into account the available technology and the implementation costs, including those of a technical nature, to inform other data controllers processing the published personal data that the data subject has requested erasure by all other data controllers of any links to such personal data or copies or replications of such personal data insofar processing is not necessary. The data protection officer of Flughafen Dortmund GmbH or another employee will arrange the necessary measures in individual cases.

6.5 Right to restriction of processing

Any data subject affected by the processing of personal data has the right to require the controller to restrict the processing if any of the following conditions apply:

  • The accuracy of the personal data is denied by the data subject, for a period of time that allows the controller to verify the accuracy of the personal data;
  • The processing is unlawful, the data subject rejects erasure of the personal data and instead requests restriction of the use of the personal data;
  • The controller no longer requires the personal data for processing purposes, but the data subject requires it to assert, exercise or defend legal claims;
  • The data subject has lodged a complaint against the processing according to Art. 21(1) GDPR and it is not yet clear whether the legitimate interests of the controller outweigh those of the data subject.

Insofar as one of the above reasons applies and a data subject wishes to demand the restriction of personal data stored with Flughafen Dortmund GmbH, they may contact our data protection officer or another employee of the controller at any time. The data protection officer of Flughafen Dortmund GmbH or another employee will then initiate the restriction of processing.

6.6 Right to data portability

Any data subject affected by the processing of personal data has the right to receive personal data relating to them, which was provided to a controller by the data subject, in a structured, common and machine-readable format. The data subject also has the right to transfer these data to another controller without being hindered by the controller, to whom the personal data were provided, insofar as processing is based on consent pursuant to Art. 6(1) lit. a GDPR or Art. 9(2) lit. a GDPR or a contract pursuant to Art. 6(1) li. b GDPR, and the processing is performed using automated processing, unless the processing is necessary to fulfil a task which is in the public interest or which is performed in exercise of a public authority which has been assigned to the controller.

Furthermore, in exercising their right to data portability pursuant to Art. 20(1) GDPR, the data subject has the right to effect that the personal data be transmitted directly from one controller to another, insofar as this is technically feasible and provided the rights and freedoms of others are not affected by such.

In order to assert the right to data portability, the data subject may contact the data protection officer appointed by Flughafen Dortmund GmbH or another employee of the controller at any time.

6.7 Right to object

Any data subject affected by the processing of personal data has the right, at any time, to object to the processing of personal data concerning them pursuant to Art. 6 (1) lit. e or f GDPR for reasons arising from their particular situation. This also applies to profiling based on these provisions.

Flughafen Dortmund GmbH will no longer process your personal data in the event of objection, unless we can prove compelling reasons for processing that are worthy of protection and which outweigh the interests, rights and freedoms of the data subject, or processing serves the purpose of enforcing, exercising or defending legal claims.

If Flughafen Dortmund GmbH processes personal data in order to undertake direct advertising, the data subject has the right to object to the processing of personal data for the purpose of such advertising at any time . This also applies to profiling, insofar as such is associated with such direct advertising. If the data subject objects to processing by Flughafen Dortmund GmbH for the purposes of direct advertising, then Flughafen Dortmund GmbH will no longer process the personal data for these purposes.

In addition, the data subject has the right, for reasons arising from their particular situation, to object to the processing at Flughafen Dortmund GmbH of personal data relating to them for scientific or historical research purposes or for statistical purposes pursuant to Art. 89(1) GDPR, unless such processing is necessary for fulfilment of a task in the public interest.

In order to exercise the right to object, the data subject can contact the data protection officer of Flughafen Dortmund GmbH or another employee directly. The data subject is also free, in the context of the use of information society services, notwithstanding Directive 2002/58/EC, to exercise their right to object by means of automated procedures using technical specifications.

6.8 Automated individual decision-making, including profiling

Any data subject affected by the processing of personal data has the right, granted by the European regulators and authorities. not to be subject to a decision based solely on automated processing, including profiling, which has a legal effect on the data subject or similarly affects the data subject insofar as the decision:

  • Is not necessary for the conclusion or performance of a contract between the data subject and the controller, or;
  • Is permitted by Union or Member State legislation to which the controller is subject, and where such legislation contains appropriate measures to safeguard the rights and freedoms and legitimate interests of the data subject; or
  • Involves the express consent of the data subject.

If the decision to conclude or execute a contract between the data subject and the controller is necessary or if such a decision is made with the explicit consent of the data subject, Flughafen Dortmund GmbH shall take appropriate measures to safeguard the rights and freedoms as well as the legitimate interests of the data subject, including at least the right to effect the intervention of a person on the part of the controller, the right to present their own position, and the right to challenge the decision.

If the data subject wishes to exercise their rights regarding automated decision-making, they may contact our data protection officer or another employee of the data controller at any time.

6.9 Right to withdraw consent under data protection law

Any data subject affected by the processing of personal data has the right to withdraw consent to the processing of personal data at any time.

If the data subject wishes to assert their right to withdraw consent, they may contact our data protection officer or another employee of the data controller at any time.

Any data subject can contact our data protection officer at any time with any questions or suggestions regarding data protection.

6.10 Right to complain to a data protection supervisory authority

Any data subject affected by the processing of personal data has the right to lodge a complaint with a data protection supervisory authority regarding our processing of their personal data. The data protection supervisory authority responsible for our location is:

Landesbeauftragte für Datenschutz und Informationsfreiheit NRW [State Data Protection and Freedom of Information Officer for NRW]
Postfach 20 04 44
40102 Düsseldorf
Phone: +49.211.38424-0
Fax: +49.211.38424-10
E-mail: poststelle@ldi.nrw.de

7. Legal basis of processing

Unless otherwise specified in the description of the respective data processing procedure in the following Chapter B of this Privacy Policy, the following provisions apply.

Art. 6 (1) lit. a GDPR acts as the legal basis for Flughafen Dortmund GmbH’s processing operations where consent must be obtained for a specific processing purpose.

If the processing of personal data is required to execute a contract to which the data subject is a party, the processing is based on Art. 6 (1) lit. b GDPR. The same applies to processing operations that are necessary for carrying out pre-contractual measures, for example in the case of enquiries about our services and products.

If Flughafen Dortmund GmbH is subject to a legal obligation which requires the processing of personal data, the processing is based on Art. 6(1) lit. c GDPR.

In rare cases, the processing of personal data may be required in order to protect the vital interests of the data subject or another natural person. In this case, the processing is based on Art. 6 (1) lit. d GDPR.

Finally, processing operations may be based on Art. 6 (1) lit. f GDPR. Processing operations that are not covered by any of the aforementioned legal bases are based on this legal basis if the processing is necessary to safeguard a legitimate interest of Flughafen Dortmund GmbH or a third party, provided that the interests, basic rights and fundamental freedoms of the data subject do not take precedence. Such processing operations are permitted for us in particular since they have been specifically mentioned by the European legislator (see Recital 47 clause 2 GDPR).

8. Consideration of legitimate interests

Unless otherwise governed in the description of the respective data processing procedure in Chapter B of this Privacy Policy and the processing of personal data is based on Art. 6 (1) lit. f GDPR, we have a legitimate interest in undertaking our business activity and in the financial interest associated therewith.

9. Data protection when using our contact information

If you use the contact information provided on our website (such as our e-mail address or fax number) to contact us, the personal data you provide will only be processed for the purpose of making contact.

If the reason for contacting us an interest in our services or products or in the execution of a contract existing with us, the legal basis is Art. 6 (1) lit. b GDPR. In all other cases of making contact with us, we have a legitimate interest in data processing pursuant to Art. 6 (1) lit. f GDPR since you initiated the communication.

We store the data required for execution of contract until the expiry of the statutory warranty and, if applicable, contractual guarantee periods. We retain the data required under commercial and tax law for the periods specified by law, usually for ten years (see Art. 257 HGB, Art. 147 AO). The data processed for the implementation of pre-contractual measures will be erased as soon as the measures have been carried out and evidently no contract has been concluded.

The personal data stored by us on the basis of a legitimate interest will be stored until the purpose aim by the contact has been achieved. You have the right to object to data processing performed on the basis of Art. 6 (1) lit. f GDPR which does not serve direct marketing purposes for reasons that arise from your particular situation at any time. In the case of direct advertising, however, you can object to the processing at any time without stating your reasons.

Recipients of personal data processed according to this stipulation are IT service providers (in particular hosters), with whom we have concluded a corresponding data processing agreement pursuant to Art. 28 GDPR.

10. Data protection in applications and in the application process

We collect and process personal data from applicants for the purposes of carrying out the application process and therefore on the grounds of a pre-contractual measure in the sense of Art. 6 (1) lit. b GDPR or our legitimate interest in hiring employees pursuant to Art. 6 (1) lit. f GDPR.

The processing can also be carried out electronically, for example, if an applicant submits corresponding application documents by electronic means, for example by e-mail or via our contact form. If we conclude a contract of employment with an applicant, the data transmitted will be stored for the purpose of executing the employment relationship in compliance with the statutory provisions. If no employment contract is concluded with the applicant by the controller, the application documents will be automatically erased two months after the announcement of the rejection decision, unless other legitimate interests of the controller contradict erasure. Other legitimate interest in this sense includes a burden of proof in a proceeding under the German General Equal Treatment Act (AGG; Allgemeines Gleichbehandlungsgesetz), for example.

Due to the digitised recording of the applications received, the recipients of the personal data processed are our IT service providers (in particular hosters) with whom we have concluded corresponding data processing contracts in the sense of Art. 28 GDPR.

11. Changes to this privacy policy

Flughafen Dortmund GmbH reserves the right to amend this Privacy Policy at any time with effect for the future. The latest version is available on the website. Please visit our website regularly to inform yourself of the applicable Privacy Policy.

B. Special provisions regarding data processing on our website


1. Collection and use of your data

The extent and nature of the collection and use of your data depends on whether you visit our website for the retrieval of information or to use services offered by us, such as ordering a newsletter or booking a parking space, or registering as applicable.

2. Informative use/collected data/cookies

The extent and nature of the collection and use of your data depends on whether you visit our website for the retrieval of information or to use services offered by us, such as ordering a newsletter or booking a parking space, or registering as applicable.

(1) In the event of purely informative use of the website, e.g. if you do not make a booking via our website or otherwise provide us with information, we will only collect the personal data that your browser transmits to our server. If you wish to view our website, we collect the following data which is technically required in order for us to display our website to you and to ensure its stability and security (legal basis Art. 6 (1) (1) lit. f GDPR):

  • IP address;
  • Date and time of request;
  • Time zone difference to Greenwich Mean Time (GMT);
  • Content of the request (specific page);
  • Access status/HTTP status code;
  • Volume of data transmitted;
  • Website which the request comes from;
  • Browser;
  • Operating system and its GUI;
  • Language and version of the browser software.

(2) The data processed in accordance with para. 1 of this provision will be used for the stated purposes for a period of max. 30 days and then erased.

3. Use of cookies and similar technologies

In addition to the aforementioned data, cookies and similar technologies (e.g. pixel tags, web beacons) are stored on your computer when you use our website. These cookies and similar technologies are referred to below as “cookies”. Cookies are small files which normally consist of letters and numbers. These files are placed on your computer, tablet, mobile phone or similar device when you use the device to visit a website.

Cookies cannot run programs or transmit viruses to your computer. They serve to make the website more user-friendly and effective overall. The cookies used on our website can be divided into four categories: technologically necessary cookies (para. 3.1); functional cookies (para. 3.2); and cookies for marketing and analysis purposes (para. 3.3) and advertising cookies (para. 3.4). You are subsequently able to decide for yourself whether you wish to allow the use of cookies for the purposes stated. You can change your settings at any time. Please note that blocking certain types of cookies may cause your use of our websites to be impaired.

3.1 Technologically necessary cookies

(1) This website uses technologically necessary cookies. The use of technologically necessary cookies is required in order to guarantee the secure and orderly running of our website and its functionalities. These cookies are used to enable basic website functions, to save your privacy preference settings, to provide a secure authentication procedure for logging in to your user account which meets the technical requirements of your end device, and to allow forms to be filled in, for example.

(2) Data processing using technologically necessary cookies is performed either on the grounds of our legitimate interest in the functionality of our website pursuant to Art. 6 (1) lit. f GDPR; or It is performed on the grounds of Art. 6(1) lit. c in order to collect and manage those consents legally stipulated for the use of cookies, as is the case when setting user cookies.

The user data collected by technologically necessary cookies is not used to generate user profiles.

(3) The technologically necessary cookies are erased when the browser is closed.

(4) If you do not want these cookies to be saved, please deactivate ‘Allow Cookies’ in your web browser. However, please note this may lead to a restriction in the functioning of our website. You can also erase permanently stored cookies at any time through your browser.

(5) Recipients of the data processed according to the above paragraphs are IT service providers (in particular hosters), with whom we have concluded corresponding data processing agreements pursuant to Art. 28 GDPR.

3.1.1 Usercentrics

We use cookie consent technology from Usercentrics GmbH, Rosental 4, 80331 Munich, Gemany (hereinaftrr “Usercentrics”) on our website in order to obtain your consent to saving certain cookies on your end device, and in order to document this in a manner that complies with data protection law. You can also use this technology to withdraw your consent with effect for the future.

Usercentrics uses a cookie in order to be able to assign consent(s) given, and the withdrawal of such, to your person. The data collected by Usercentrics is processed on our behalf and on the basis of a data processing agreement. We use Usercentics in order to obtain and manage the legally stipulated consents for the use of cookies. The legal basis for this is Art. 6 (1) lit. c GDPR. For more information, please see the Usercentrics website: https://usercentrics.com/de/.

3.1.2 Google Tag Manager

(1) Based on our legitimate interest in sensible technological and financial use in the sense of Art. 6 (1) lit. f GDPR, we use a plug-in provided by the Google Tag Manager web service on our sub-page https://parken.dortmund-airport.de. Google Tag Manager is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).

(2) Google Ireland Limited is connected to Google LLC. Google LLC is based in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043) and is certified under the US-European “Privacy Shield” agreement which guarantees that the level of data protection applicable in the EU is upheld. (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

(3) Using the Google Tag Manager, we can embed and manage website tags centrally and via a user interface. Tags are small sections of code which can track your activities on our website, for example. To do this, sections of JavaScript code are embedded in our website’s source code. These tags frequently originate from the Google products described in this Privacy Policy, such as Google Analytics. However, tags from other companies may also be embedded and managed.

(4) The Tag Manager itself is a domain that does not use cookies and does not save data. It functions simply as a “manager” of the implemented tags. The data are captured by the individual tags of the different web analysis tools. The data generated by the Google Tag Manager are sent to the individual tracking tools and are not saved. Details on data processing can be found under the individual tool descriptions in this Privacy Policy.

3.1.3 New Relic

Based on our legitimate interest (i.e. interest in guaranteeing technical and financial operation of our website in the sense of Art. 6 (1) lit. f GDPR), we use a plug-in from New Relic. This service is provided by New Relic Inc., 188 Spear Street, Suite 1200 San Francisco, CA 94105, USA.

New Relic is certified under the Privacy Shield Agreement which guarantees compliance with European privacy legislation (www.privacyshield.gov/participant?id=a2zt0000000TNPiAAO&status=Active).

This service allows statistical evaluations to be made about the speed of the website. Through the plug-in, New Relic is informed that a user has accessed the corresponding page of the website. For this purpose, New Relic collects system data on add-ons, browsers, hardware and software used, as well as usage times, so-called application data, for which cookies are set in your browser. If you are logged in as a user at New Relic, New Relic can assign the visit to your account. If you are not a member of New Relic, it is still possible for New Relic to obtain and store your IP address. The purpose and scope of data collection, as well as how New Relic processes and uses the data, and user privacy settings can be found in New Relic’s privacy policy.

If you are a member of New Relic and you do not want New Relic to collect information about you on our sites in order to associate it with your member data stored on New Relic, you must log out of New Relic before visiting our website.

3.1.4 CloudFlare

On the basis of our legitimate interest in the secure technical use of our online presence in the sense of Art. 6 (1) lit. f GDPR, we use functions from CloudFlare on our website. These are provided by CloudFlare Inc., 665 3rd St. #200, San Francisco, CA 94107, USA, hereinafter referred to as “CloudFlare”. The information generated by the cookie regarding use of the website by the users is usually transmitted to a server in the USA or the European Economic Area and stored there.

CloudFlare is certified under the US-European “Privacy Shield” data protection treaty which guarantees compliance with the level of data protection applicable in the EU. Further information regarding the Privacy Shield Framework can be found on the Privacy Shield List of the US Department of Commerce at https://www.privacyshield.gov.

CloudFlare provides a globally available Content Delivery Network with DNS. Technologically speaking, the transfer of information between your browser and our website is diverted via the CloudFlare network. CloudFlare is thus able to analyse data traffic between users and our websites in order to identify and prevent attacks on our services, for example. CloudFlare also sometimes saves cookies on your computer for the purposes of optimisation and analysis.

CloudFlare collects statistical data regarding visits to our website. Access data include: Name of the website accessed, file, date and time of access, volume of data transferred, notification of successful access, browser type and version, user operating system, referrer URL (the page visited beforehand), IP address and the provider making the query. CloudFlare uses these log data for statistical evaluations for the running, security and optimisation of our presence. CloudFlare stores data logs only for as long as necessary, and these data are in most cases erased within 24 hours. CloudFlare does not save any personal data (e.g. your IP address). However, there is some information which CloudFlare saves for an indefinite period as part of its permanent logs in order to improve the overall performance of the CloudFlare Resolver and to identify potential security risks. You can read about exactly which permanent logs are saved at https://www.cloudflare.com/application/privacypolicy/. All data that CloudFlare collects (permanently or temporarily) are purged of all personal data. All permanent logs are also anonymised by CloudFlare.

3.2 Functional cookies

(1) This website uses so-called functional cookies. These allow us to provide you with certain information (such as map sections for your journey to the airport, or videos about our services) where we use third-party services for this purpose.

(2) Data processing using functional cookies is performed solely on the basis of your consent pursuant to Art. 6 (1) lit. a GDPR. You can give your consent to the use of these functional cookies individually or in general, and you can withdraw your consent for the future at any time using our website’s cookie settings. If you do not want us to use certain cookies or cookies in general, you can instead prevent these from being saved on your end device by changing the settings of your end device and/or internet browser accordingly. You can choose “Do not allow cookies” in your browser settings. Please refer to the relevant Help function of your internet browser for details of the process for managing and erasing cookies in your internet browser’s settings. You can also deactivate all cookies using free internet browser add-ons.

(3) You can erase saved cookies at any time under the system settings of your end device and/or internet browser. You can also activate the “Do not track” function on your end device. If this function is activated, your end device will inform the respective service that you no longer wish to be recorded by the service.

(4) Recipients of the data processed according to the above paragraphs are IT service providers (in particular hosters) and the respective service providers, with whom we have concluded corresponding data processing agreements pursuant to Art. 28 GDPR.

(5) Please note that the functionality and functional scope of our website may be restricted depending on your cookie settings. Information on the services we use which employ functional cookies, as well as further options for deactivating these, can be found below.

3.2.1 Google Maps

Based on your explicit consent pursuant to Art. 6 (1) lit.a GDP, we use a plug-in from the Google Maps internet service. Google Maps is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).

Google Ireland Limited is connected to Google LLC. Google LLC is based in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043) and is certified under the US-European “Privacy Shield” agreement which guarantees that the level of data protection applicable in the EU is upheld (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

By using Google Maps on our website, information about the use of this website and your IP address will be transmitted to and stored on a Google server in the United States. We have no knowledge of the exact content of the submitted data or its use by Google. The company denies in this context the connection of the data with information from other Google services and the collection of personal data. However, Google may transmit the information to third parties.

If you disable Javascript in your browser, you prevent the running of Google Maps. In this case, you cannot use the map display on our website. Learn more about the Google Maps privacy policy and terms of use here: https://cloud.google.com/maps-platform/terms/.

3.2.2 YouTube videos

Based on your explicit consent pursuant to Art. 6 (1) li. a GDPR, we use YouTube elements, with which videos saved to www.youtube.com can be played directly from our website. These are all embedded in the “enhanced privacy mode”, which means that if you do not play the video, you will not transfer any data about you as a user to YouTube. The data specified in the following are transmitted only when you play the videos. We have no influence on this data transfer.

YouTube is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).

Google Ireland Limited is connected to Google LLC. Google LLC is based in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043) and is certified under the US-European “Privacy Shield” agreement which guarantees that the level of data protection applicable in the EU is upheld (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

By visiting the website, YouTube is informed that you have accessed the corresponding sub-page of our website. In addition, the data specified under B. para. 2(1) of this Privacy Policy are also transferred. This happens regardless of whether YouTube provides a user account that you are logged in to, or if there is no user account. When you are logged in to Google, your data will be assigned directly to your account. If you do not wish to associate the data with your profile on YouTube, you must log out before activating the button. YouTube stores your data as usage profiles and uses them for the purposes of advertising, market research and/or custom design of its website. Such an evaluation is performed in particular (even for users who are not logged in) to provide appropriate advertising and to inform other users of the social network about your activities on our website.

You also have a right to object to the creation of these user profiles; to do this you must contact YouTube.

For more information on the purpose and scope of your data collection and processing by YouTube, please read the YouTube privacy policy. You can also get more information about your rights and privacy settings here: https://www.google.com/intl/en/policies/privacy.

3.2.3 Issuu online publications

Elements from the web service Issuu (operated by Issuu Inc. - 131 Lytton Ave - Palo Alto - CA 94301 - USA) are integrated into this website. These allow us to publish and disseminate, and allow you to view, magazines and catalogues.

The content we archive on Issuu (brochures, flyers etc.) can thus be reproduced directly on our website. As soon as you view the e-paper provided by us, data are transferred to the Issuu server detailing the time and duration of use.

Issuu also relies on the Google Analytics service described above under para. 3.3.1. This is Issuu’s own tracking procedure which we have no influence over. You can prevent tracking by Google Analytics by using the deactivation options described there.

If you have an Issuu user account and do not want Issuu to collect data about you via this website and to associate these data with your member data saved with Issuu, you must log out of your Issuu user account before visiting this website.

If you have activated the “Do not track” setting in your browser, external Issuu plug-ins will not be loaded without your consent. Instead, you will simply be made aware of this option. You can find a detailed overview of the use of cookies and other information on data protection in Issuu’s Privacy Policy: https://issuu.com/legal/privacy.

3.3 Cookies for marketing purposes and for analysing reach and performance

(1) Cookies for marketing purposes (also called “marketing cookies”) are used so that we can provide you with interest-based content and commercial advertising regarding our offers, and obtain more accurate reports on the performance of campaigns. Some of these cookies are provided by third-party providers, i.e. from our chosen marketing and social media partners. These providers accordingly receive information on your use of our website and may collate this information with other data which they might have obtained from you somewhere else.

Cookies for analysing reach and performance (also called “analysis cookies”) are intended to allow us to analyse the use of our website. Some of these cookies are provided by third-party providers. By using such cookies, we can count visits to our websites, and track which websites visitors to our pages come from, for example. This way, we can find out which parts of our website are accessed particularly frequently, and how you move about our website, for example. We can thus calculate the overall performance of our website and improve it, and optimise content.

(2) Data processing using marketing and analysis cookies is performed solely on the basis of your consent pursuant to Art. 6(1) lit. a GDPR. You can give your consent to the use of these functional cookies individually or in general, and you can withdraw your consent for the future at any time using our website’s cookie settings. If you do not want us to use certain cookies or cookies in general, you can instead prevent these from being saved on your end device by changing the settings of your end device and/or internet browser accordingly. You can choose “Do not allow cookies” in your browser settings. Please refer to the relevant Help function of your internet browser for details of the process for managing and erasing cookies in your internet browser’s settings. You can also deactivate all cookies using free internet browser add-ons.

(3) You can erase saved cookies at any time under the system settings of your end device and/or internet browser. You can also activate the “Do not track” function on your end device. If this function is activated, your end device will inform the respective service that you no longer wish to be recorded by the service.

(4) Recipients of the data processed according to the above paragraphs are the operators of the respective services, our IT service providers (in particular hosters) and the respective service providers, with whom we have concluded corresponding data processing agreements pursuant to Art. 28 GDPR.

(5) Please note that the functionality and functional scope of our website may be restricted depending on your cookie settings. Information on the services we use which employ functional cookies, as well as further options for deactivating these, can be found below.

3.3.1 Google Analytics

Based on your explicit consent pursuant to Art. 6 (1) lit. a GDPR, we use Google Analytics, a web analysis service from Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”). Google uses cookies. The information generated by the cookie about the use of the website by the users is usually transmitted to a Google server in the USA and stored there.

Google Ireland Limited is connected to Google LLC. Google LLC is based in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043) and certified under the US-European “Privacy Shield” agreement which guarantees that the level of data protection applicable in the EU is upheld. (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

We use the addition “_gat._anonymizeIp” for web analytics via “Google Analytics”. By means of this addition, the IP address of the internet connection of the data subject will be shortened and anonymised by Google if the access to our website is from a Member State of the European Union or from another state party to the Agreement on the European Economic Area.

The purpose of the Google Analytics component is to analyse visitor flows on our website. Among other things, Google uses the data and information obtained to evaluate the use of our website, to compile online reports for us showing the activities on our websites, and to provide other services related to the use of our website.

Google Analytics places a cookie on the user’s device. By using this cookie, Google is able to analyse the usage of our website. Each time you visit any of the pages on our website that incorporate a Google Analytics component, the internet browser on the data subject’s device will be automatically prompted by the Google Analytics component to submit data to Google for online analysis. As part of this technical process, Google will be aware of personal data, such as the IP address of the data subject, which allows Google to track the origin of the visitors and clicks, and to subsequently facilitate commission settlements, among other things.

The cookie stores personal information, such as access time, the location from which access was made and the frequency of site visits by the data subject. Each time you visit our website, your personal data, including the IP address of the internet connection used by the data subject, is transferred to Google and its partner companies in the United States. These personal data are stored by Google for 14 months. Google may share these personal data, collected through this technical process, with third parties.

You can stop cookies being saved at any time by changing the settings of your browser software accordingly; however, please be aware that in such case you may not be able to use all functions of this website to the full extent. You can also prevent Google from capturing the data generated by this cookie regarding your use of the website (incl. your IP address) and from processing these data by downloading and installing the browser plug-in available from this link: https://tools.google.com/dlpage/gaoptout.

This browser add-on informs Google Analytics via JavaScript that no data and information about website visits may be transmitted to Google Analytics. Installation of the browser add-on is considered by Google to be an objection. If the data on the data subject’s device are later erased, formatted, or reinstalled, the data subject must reinstall the browser add-on to disable Google Analytics. If the browser add-on is uninstalled or disabled by the data subject or any other person within their sphere of control, it is possible to reinstall or reactivate the browser add-on.

You can also prevent data capture by using an opt-out cookie. If you would like to prevent your data from being captured in the future when you visit this website, please click here: Deactivate Google Analytics.

Additional information and Google's privacy policy can be found at:

https://www.google.de/intl/de/policies/privacy/ and https://www.google.com/analytics/terms/de.html.

Google Analytics is explained in more detail at: https://www.google.com/intl/de_de/analytics/.

3.3.2 DoubleClick Ad

Based on your explicit consent pursuant to Art. 6 (1) lit.a GDP, we use a plug-in from the DoubleClick internet service. Google DoubleClick Ad is operated by Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”).

Google Ireland Limited is connected to Google LLC. Google LLC is based in the USA (1600 Amphitheatre Parkway, Mountain View, CA 94043) and is certified under the US-European “Privacy Shield” agreement which guarantees that the level of data protection applicable in the EU is upheld. (https://www.privacyshield.gov/participant?id=a2zt000000001L5AAI&status=Active).

DoubleClick Ad uses cookies in order to display relevant advertisements for users, to improve reports on campaign performance, or to avoid a user seeing the same adverts multiple times. Using a cookie ID, Google records which adverts are displayed in which browser, thus allowing it to prevent these from being displayed multiple times. Using cookie IDs, DoubleClick Ad can also record so-called conversions which refer to advertising queries. This is the case when a user sees a DoubleClick advert and later accesses the advertiser’s website using the same browser and buys something on it, for example. According to Google, DoubleClick cookies do not contain any personal information.

Because of the marketing tools used, your browser automatically establishes a direct connection with the Google server. We have no influence on the scope and further use of the data that are collected by Google through the use of this tool, and therefore inform you, to the best of our knowledge: Where DoubleClick Ad is embedded, Google is notified that you have accessed the corresponding part of our online presence or clicked on one of our advertisements. If you are registered with a Google service, Google can allocate this visit to your account. Even if you are not registered or logged in with Google, it is possible that the provider will discover and save your IP address.

You can prohibit involvement in this tracking process in various ways:

  1. By changing the settings of your browser software accordingly; in particular, the prevention of third-party cookies will mean that you will not be shown any third-party advertisements;
  2. By deactivating cookies for conversion tracking, by changing your browser settings such that cookies from the domain https://www.googleadservices.com are blocked, https://www.google.de/settings/ads, whereby this setting is restored when you erase your cookies;
  3. By deactivating interest-related adverts from providers who are part of the “About Ads” self-regulation campaign via the link https://www.aboutads.info/choices, whereby this setting is restored when you erase your cookies;
  4. By permanently deactivating ads in the browsers Firefrox, Internet Explore or Google Chrome using the link https://www.google.com/settings/ads/plugin.

You can find further information on DoubleClick Ad at https://www.google.de/doubleclick and https://policies.google.com/privacy.

3.3.3 Facebook Custom Audiences and Facebook Marketing services

With the help of Facebook Pixel, it is on the one hand possible for Facebook to determine the visitors to our website as a target group for the display of advertisements (so-called “Facebook ads”). Accordingly, we use Facebook Pixel to display the Facebook ads we have created only to those Facebook users who have shown an interest in our website or who have certain features (e.g. interests in certain topics or products, determined by their visits to websites), which we transmit to Facebook (so-called “custom audiences”). With the help of Facebook Pixel, we also want to ensure that our Facebook ads are in line with the potential interest of users and are not annoying. With the help of the Facebook Pixel, we can also understand the effectiveness of the Facebook ads for statistical and market research purposes, in which we see whether users were redirected to our website after clicking on a Facebook ad (so-called “conversion”).

The site also uses Facebook's Remarketing feature “custom audiences” (“Facebook”). This allows users of the website to be shown interest-based advertisements (“Facebook ads”) as part of their visit to the social network Facebook or other websites that also use the process. We are interested in showing you advertisements that are of interest to you in order to make our website more interesting to you.

To prevent the collection of your data by means of Facebook Pixel on our website, please click on the following link: Facebook opt-out notice: When you click the link, an “opt-out” cookie will be saved on your device. If you erase the cookies in this browser, then you will have to visit the link again. Furthermore, the opt-out only applies within the browser you use and only within our web domain on which the link was clicked.

You can also object to the use of cookies for distance measurement and promotional purposes via the deactivation page of the Network Advertising Initiative (https://optout.networkadvertising.org/) and in addition the US website (https://www.aboutads.info/choices) or the European website (https://www.youronlinechoices.com/uk/your-ad-choices/).

Based on your explicit consent pursuant to Art. 6(1) lit. a GDPR, we use the so-called “Facebook pixel” from the Facebook social network which is operated by Facebook Inc., 1 Hacker Way, Menlo Park, CA 94025, USA or, if you reside in the EU, Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland (“Facebook”).

Facebook is certified under the Privacy Shield Agreement which guarantees compliance with European privacy legislation (https://www.privacyshield.gov/participantid=a2zt0000000GnywAAC&status=Active)

3.4 Cookies for displaying advertising 

(1) Cookies for displaying advertising (also called “advertising cookies”) are used in order to be able to integrate interest-based content for advertising purposes and commercial advertising from third parties into our website. These cookies are generally placed by third-party providers, i.e. partners selected by us, such as is the case for participation in our affiliate programme, for example. These providers accordingly receive information on your use of our website and may collate this information with other data which they might have obtained from you somewhere else.

(2) Data processing using advertising cookies is performed solely on the basis of your consent pursuant to Art. 6(1) lit. a GDPR. You can give your consent to the use of these functional cookies individually or in general, and you can withdraw your consent for the future at any time using our website’s cookie settings. If you do not want us to use certain cookies or cookies in general, you can instead prevent these from being saved on your end device by changing the settings of your end device and/or internet browser accordingly. You can choose “Do not allow cookies” in your browser settings. Please refer to the relevant Help function of your internet browser for details of the process for managing and erasing cookies in your internet browser’s settings. You can also deactivate all cookies using free internet browser add-ons.

(3) You can erase saved cookies at any time under the system settings of your end device and/or internet browser. You can also activate the “Do not track” function on your end device. If this function is activated, your end device will inform the respective service that you no longer wish to be recorded by the service.

(4) Recipients of the data processed according to the above paragraphs are the operators of the respective services, our IT service providers (in particular hosters) and the respective service providers, with whom we have concluded corresponding data processing agreements pursuant to Art. 28 GDPR.

(5) Please note that the functionality and functional scope of our website may be restricted depending on your cookie settings. Information on the services we use which employ functional cookies, as well as further options for deactivating these, can be found below.

3.4.1 AWIN Partner programme

Based on your explicit consent pursuant to Art. 6 (1) lit. a GDPR, we use components provided by AWIN on our website. AWIN is a German affiliate network and acts as an interface between merchants and affiliates.

Affiliate marketing is an internet-based form of sales that allows commercial operators of websites, the so-called merchants or advertisers, to show advertising, which is usually remunerated via click or sale commissions, on third-party websites, which are also called sales partners, affiliates or publishers. The merchant makes available through the affiliate network an advertising medium, i.e. an advertising banner or other suitable means of internet advertising, which is subsequently incorporated for advertising by an affiliate on its own website or advertised via other channels, such as keyword advertising.

AWIN is operated by AWIN AG, Eichhornstraße 3, 10785 Berlin, Germany.

AWIN places a cookie on the information technology system of the person concerned. Cookies are explained above. AWIN’s tracking cookie does not store any personal data. Only the identification number of the affiliate, i.e. the partner mediating the potential customer, as well as the ordinal number of the visitor of a website and of the clicked advertising medium are stored. The purpose of the storage of this data is the processing of commission payments between a merchant and the affiliate, which are processed via the affiliate network, i.e. AWIN.

The data subject can prevent the setting of cookies through our website, as described above, at any time by means of a corresponding setting on the internet browser used and thereby permanently object to the setting of cookies. Applying this setting to the internet browser used would also prevent AWIN from placing a cookie on the information technology system of the data subject. In addition, cookies already placed by AWIN can be erased at any time via the internet browser or other software programs.

You can access AWIN’s latest data protection guidelines at https://www.awin.com/de/rechtliches/privacy-policy.

3.4.2 Booking.com Partner programme

Based on your explicit consent pursuant to Art. 6 (1) lit. a GDPR, we place cookies from the Booking.com partner programme on our website. This programme was designed to provide a medium for websites to earn advertising commissions by placing and displaying advertising and links to Booking.com (so-called affiliate system). The cookies used by Booking.com allow the origin of bookings to be tracked. As a result, Booking.com can recognise that you have clicked on the partner link on our website and subsequently made a booking on booking.com.

For more information on data usage and opt-out options, please refer to the Booking.com privacy policy: https://www.booking.com/content/privacy.de.html.

3.4.3 Get Your Guide Partner Programme

Based on your explicit consent pursuant to Art. 6 (1) lit. a GDPR, we use cookies from the Get Your Guide partner programme on our website. On our pages, Get Your Guide integrates ads and links to the Get Your Guide page, where we can earn money through advertising cost reimbursement (the so-called affiliate system). Get Your Guide uses cookies to understand the origin of the bookings. As a result, Get Your Guide can recognise that you have clicked on the partner link on our website and subsequently made a purchase on GetYourGuide.de.

For more information about Get Your Guide’s data usage and opt-out options, please read the Get Your Guide privacy policy: https://www.getyourguide.de/privacy_policy.

4. Use of offers on our website

Insofar as you wish to make use of the services offered on our website, such as paid bookings in our online shop or the ordering of a newsletter, you will need to provide additional personal data. Details can be found in the following regulations.

4.1 Data processing for the purpose of concluding a contract

(1) Personal data that you provide to us during the booking process is required for a contract with us (e.g. information about the contracting party) or legally necessary (e.g. tax regulations). Failure to provide your personal data would mean that the contract could not be concluded with you. For some payment methods, we require the necessary payment data in order to pass it on to a payment service provider commissioned by us.

If you send us an enquiry by e-mail, via a contact form before conclusion of contract, if you or make a reservation via our website, we process the data received in this way to carry out pre-contractual measures and answer your questions about our services or products, for example.

You can voluntarily create a customer account, through which we can save your data for later purchases. When you create an account on our online shop (e.g. for booking parking spots) under “Register” the data you provide are stored irrevocably. You can always delete all other data, including your user account, in the customer area.

Th data you enter are thus processed for the purpose of executing the contract or for carrying out pre-contractual measures pursuant to Art. 6 (1) (b) GDPR and for fulfilling legal obligations pursuant to Art. 6(1) lit. c GDPR.

(2) Recipients of personal data processed according to this stipulation are payment service providers, delivery service providers, IT service providers (in particular hosters), with whom we have concluded corresponding data processing agreements pursuant to Art. 28 GDPR.

(3) We store the data required for execution of the contract until the expiry of the statutory warranty and, if applicable, contractual guarantee periods. We retain the data required under commercial and tax law for the periods specified by law, usually for ten years (see Art. 257 HGB, Art. 147 AO). The data processed for the implementation of pre-contractual measures will be erased as soon as the measures have been carried out and evidently no contract has been concluded.

4.2 Contact forms

(1) If you voluntarily use our contact forms, you will be asked to provide your first name, last name, e-mail address, telephone number, if any, and the reason for your request/contact (message). Only your e-mail address is a mandatory field for your request. The information will be collected and stored solely in order to answer your request.

(2) The legal basis for processing your personal data is the consent you explicitly give pursuant to Art. 6(1) lit. a GDPR, and our legitimate interest in responding to your query regarding our services or offers, and in verifying potential misuse of the e-mail addressed used for this purpose pursuant to Art. 6(1) lit. f GDPR.

(3) We store the information provided by you via the contact form until fulfilment of the purpose of your request. In addition, we store the personal data saved pursuant to para. 1 for a maximum of one month after receipt of the confirmation.

(4) Recipients of the data processed according to this stipulation are IT service providers (in particular hosters), with whom we have concluded corresponding data processing agreements pursuant to Art. 28 GDPR.

4.3 Newsletter

(1) With your consent and by stating your e-mail address, you can subscribe to our newsletter which will inform you of our latest interesting offers. The goods or services advertised are named in the declaration of consent. The only requirement for receiving the newsletter is that you provide your e-mail address.

(2) To register for our newsletter, we use the so-called double opt-in procedure. This means that after you have registered, we will send you an e-mail to the e-mail address specified in which we ask you to confirm that you wish to receive the newsletter. If you do not confirm your registration within 24 hours, your information will be blocked and automatically erased after one month. In addition, we store your IP addresses and times of registration and confirmation. The purpose of the procedure is to prove your registration and, if necessary, to be able to investigate possible misuse of your personal data. After you confirm your order of the newsletter, we will store the information you provide in accordance with para. 2 for the purpose of sending the newsletter and to verify possible misuse of your e-mail address in accordance with para. 2.

(3) Furthermore, we make a performance measurement by attaching a so-called “web beacon” to each newsletter, i.e. a pixel-sized file which is retrieved from our server when the newsletter is opened. As part of this, information will be collected about the browser you are using, the ID of the click, your e-mail address and specific e-mailing information, your IP address or DNS name, and the time of retrieval. This information is used to improve the technical performance of services based on the technical data, or audiences and their reading habits based on their locations (which can be determined using the IP address) or access times. Statistical surveys also include determining whether the newsletters are opened, when they are opened and which links are clicked. For technical reasons, this information can be assigned to the individual newsletter recipients. However, it is not our goal to observe individual users. Rather, the evaluations allow us to recognise the reading habits of our users and to adapt our content to them or to send different content according to the interests of our users.

(4) The legal basis for processing your personal data is the consent you explicitly give pursuant to Art. 6 (1) lit. a GDPR and, with respect to data processed according to para. 2, our legitimate interest in verifying potential misuse of the e-mail address used for this purposes pursuant to Art. 6 (1) lit. f GDPR.

(5) You can withdrawal your consent to the sending of the newsletter and unsubscribe from the newsletter at any time. You can declare withdrawal of consent by clicking on the link provided in each e-mail newsletter or by e-mail to newsletter@dortmund-airport.de or by sending a message to the contact details stated in the imprint.

(6) Your e-mail address will only be saved for newsletter delivery for the duration of the requested registration. The other data stored in accordance with para. 1 will be erased by us after a maximum of one month after your cancellation.

(7) Recipients of the data processed according to this stipulation are IT service providers (in particular hosters), with whom we have concluded corresponding data processing agreements pursuant to Art. 28 GDPR.

4.4 Registration and use of our DTMinside and DTMaviation Club portals

(1) Users have the opportunity to register on the website of Flughafen Dortmund GmbH by providing personal data and confirming the terms of use stipulated for certain portals, such as DTMinside or DTMaviation Club. What personal data are transmitted to Flughafen Dortmund GmbH results from the respective input mask which is used for the registration.

(2) The registration of the data subject under voluntary provision of personal data allows Flughafen Dortmund GmbH to offer the company in question content or services which, due to the nature of the case, can only be offered to registered users and thus serves to carry out pre-contractual measures in accordance with Art. 6 (1) (b) GDPR or our legitimate interest pursuant to Art. 6 (1) (f) GDPR. Registered persons are free to modify the personal data given at registration at any time or to erase such completely from the database of the controller.

(3) By registering on our website, the IP address assigned by the internet service provider (ISP) of the data subject, and the date and time of registration are also stored. These data are stored on the grounds of our legitimate interest pursuant to Art. 6(1) lit. f GDPR, since this is the only way that misuse of our services can be prevented, and since these data allow crimes committed to be investigated where necessary. In this respect, the storage of these data is required by us for security purposes. We store this data for a maximum of one month after registration.

(4) Recipients of personal data processed according to this stipulation are IT service providers (in particular hosters), with whom we have concluded a corresponding data processing agreement pursuant to Art. 28 GDPR.

(5) Flughafen Dortmund GmbH must provide information to any data subject upon request at any time with regards to which personal data have been stored concerning the data subject. Furthermore, Flughafen Dortmund GmbH must rectify or erase personal data upon request or notice of the data subject, insofar as this does not conflict with any statutory storage requirements. A data protection officer named in this Privacy Policy and all employees of Flughafen Dortmund GmbH are available to the data subject in this context as contacts.

5. Social plug-ins

Our website does not use any “social plug-ins”. We only have links to the following social media services:

Facebook
Service provider: Facebook Inc., 1601 S. California Avenue, Palo Alto, CA 94304, USA
Please see the privacy policy of Facebook at www.facebook.com/help for information on how these data are collected and how they are used. You can find ways to protect your privacy within Facebook at: https://www.facebook.com/policy.

YouTube
Service provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Please see the privacy policy of Google for details of what data is collected and how it is used: https://www.google.com/privacy
Privacy preference settings can be found at: https://www.google.com/dashboard.

Twitter
Service provider: Twitter Inc., 795 Folsom St., Suite 600, San Francisco, CA 94107, United States
Please see the privacy policy of Twitter for details on how this data is collected and how it is used: https://www.twitter.com/privacy
You can find ways to protect your privacy at: https://www.twitter.com/settings.

Xing
Service provider: XING AG, Dammtorstrasse 30, 20354 Hamburg, Germany.
Please see the privacy policy of Xing for details on how these data are collected and how they are used: https://www.xing.com/privacy
This provides information on the collection, processing and use of personal data by Xing. In addition, Xing has posted privacy notices for the XING share button at: https://www.xing.com/app/share?op=data_protection.

Instagram
Service provider: Instagram LLC, 1601 Willow Rd, Menlo Park CA 9402, United States
Regarding what data are collected here and how they are used, please refer to the privacy policy of Instagram: https://instagram.com/about/legal/privacy/

6. Security measures

We take organisational, contractual and technical security measures according to the state of the art to ensure that the data protection regulations are adhered to and in order to protect the data processed by us against accidental or intentional manipulation, loss, destruction, or access by unauthorised persons.

One of the security measures is the encrypted transfer of data between your browser and our server.

C. Special explanation of the use of optical monitoring devices (video application) at Dortmund Airport

The above general privacy notices are supplemented and explained below in relation to video usage in our facilities.

Video devices are used by Flughafen Dortmund GmbH and the authorities operating in the airport facilities. Flughafen Dortmund GmbH is solely responsible for its own use of the video data.

1.1 Collection and use

  • Purposes for which the personal data is processed:
  • To protect against violence against customers, passengers and workers,
  • To protect against violence against our facilities and systems,
  • To improve law enforcement by preserving evidence in the event of vandalism, property damage, theft and other criminal acts,
  • To ensure technical flight-(guest) safety,
  • To enforce claims for damages.

1.2 Legal basis for processing 
The processing and use is necessary for the enforcement of the stated purposes and is based on Art. 6 (1) (f) GDPR and § 4 BDSG 2018.

1.3 Consideration of legitimate interests
The legitimate interests of the controller within the meaning of Article 6 (1) (f) GDPR are:

  • Observance of facility regulations
  • Prevention
  • Law enforcement

1.4 Recipients of personal data
The data is only released on request of the law enforcement authorities (police, prosecutors and courts).

1.5 Storage duration 
The duration of storage is up to 14 days. 

1.6 Exercise of the rights of the data subject 

The image data of our video equipment contains personally identifiable information which we ourselves cannot assign to a particular person. Please note that any access to this data constitutes an interference with the personal rights of the persons depicted. In order to avail yourself of your rights of access, restriction of processing or data portability, a legal arrangement is required to allow us to access the data for these purposes. The right to data deletion is implemented within the scope of the storage limitation. Correction of video data is not possible.