This privacy statement explains personal data and the processing of personal data and their purposes
It explains your rights, what we do to ensure your personal data are safe and how long HELI AND CO get them stored.
This privacy statement applies on personal data you should have send via our website for informations (www.heliandco.com), when registering for a flight, applying for a pilot function or other.
Personal data requested by HELI AND CO are quite limited but directly or indirectly identifying you. I.e. your name, email address, telephone number, date of birth, medical certificate,…
Processing personal data
Processing personal data according to the General Data Protection Regulation (GDPR) is the collection, use, organisation, storage, consultation, adaptation or alteration, retrieval, recording, disclosure by forwarding, dissemination or otherwise making available, combining, blocking, erasure or destruction of personal data.
We process your personal data for the following purposes:
- direct contact with you, for flight planning or the implementation of an agreement,
- exchange of information about our fleet, schedule and offers,
- HELI AND CO does not use your data for diffusion of newsletters and promotion. if so, HELI AND CO will request your permission.
- We may be asked by authorities to process your personal information to fullfil legal obligations, customs purpose, to investigate complaints and to prevent fraud.
HELI AND CO will never sell your personal information to third parties. We don't draw up profiles of you and we don't take automated decisions that can have sgnificant consequences for you.
In order to take care of your personal data, we conclude a processing agreement with companies if those companies process your data in our assignment.
Personal data processed
In order to carry our operations, we may process the following personal data:
- First and last name,
- Phone number,
- E-mail address,
- Date of birth,
- Passport number,
- ID number
- Company name,
- Professional experiences,
- Followed trainings,
- Medical certficate
Who we may share Personal Data with
We may share personal data with third parties only to the extent necessary to perform our missions – domestic or international civil aviation, air police, customs, partner helicopter operators.
In the case of transfers of personal data to third parties that are located in a country that is not subject to an adequacy decision by the European Commission, we will only transfer your personal data to third parties provided that there are contractual arrangements with them to ensure that processing of personal data is consistent with the obligations set out in the GDPR.
Personal data are personal and should remain personal and do not go public or are processed unlawfully.
We have policies that aim to ensure that all our staff, contractors and others that we work with and who process any personal data held by us or on our behalf, are aware of and abide by their duties under the GDPR.
We therefore implemented appropriate technical and organisational measures to safely handle your personal data.
To secure your personal data we use security software such as a virus scanner and firewall, passwords for electronic systems, a secure internet connection, backups.
All premises and data centres used by us for IT infrastructure are secured by access control systems and only a limited number of staff members and, on occasion, reputable and trusted third party IT suppliers that are subject to appropriate data protection and confidential obligations, have supervised physical or remote access to our IT infrastructure and systems.
Storage personal data
We do not store your personal data longer than strictly necessary for carrying out the purposes. If there are legal requirements applicable to the storage, the personal data are no longer stored than required by law.
We will delete personal data that are no longer required in an appropriate and secure manner.
Wish to know which personal data we processed?
Send an email to firstname.lastname@example.org with a request for access to your data. You will receive a response to the request within two weeks.
Are your personal data incorrect, incomplete, irrelevant for the purposes for which they are processed or otherwise in breach of the GDPR or other legislation?
Send an email to email@example.com with a request for correction of your personal data.
Correction also means addition, deletion or even blocking of your personal data.
You also have the right to object to the processing of your personal data, the right to have less data processed, the right to withdraw permission and you have given and the right to data portability.
Send your request to firstname.lastname@example.org or contact us by phone: +3242358130. You will receive a response to the request within two weeks.
We review our policies and procedures regularly and we reserve the right to amend the terms of this Privacy Statement from time to time at our absolute discretion.
Any amended Privacy Statement will be posted on our website and you are encouraged to visit our website from time to time to ensure that you are aware of our latest policies in relation to the protection of your personal data.