Updated on May 30, 2018
Although this translation has been executed with the greatest possible care and diligence, the original German version of this document shall be binding for resolving any disputes that may arise.
The Controller within the meaning of the General Data Protection Regulation (hereinafter “GDPR”) and other national data protection laws of the member states as well as further data protection regulations is:
Frankfurt Airport Services Worldwide
60547 Frankfurt am Main, Germany
Board of Executives: Dr. Stefan Schulte (Chairman), Anke Giesen, Michael Müller, Dr. Matthias Zieschang
Amtsgericht Frankfurt am Main HRB 7042
Phone: +49 (0)69 690-0
(hereinafter “Fraport, or “we” or “us”)
In addition, we link to or integrate services of other providers. Separate data privacy policies and rules may apply to these third-party services. For more information, please refer to the data privacy policies posted on the corresponding websites or within the services.
2. Capture and Use of Data While Using Our Services
2.1 General Information
Personal data are defined as all data that can be assigned to a certain individual (e.g. name, address, phone number, and e-mail address).
When you visit our websites and use our services, user data are automatically captured both for providing and administering the services and for security purposes. They include, for example, the IP address that has been assigned to you by your Internet provider, the website, if any, from which you have linked to us, the pages you visit, your browser type (including the version and language), the type and attributes (e.g. screen resolution) of the device you are using to visit us, device IDs (e.g. your MAC address or a comparable ID) and information on your operating system, the date and duration of your visit, and additional information on your use of our services (e.g. searches, pages viewed, and items clicked).
All of these data are processed and used for the above-mentioned purposes and stored for a limited time. They do not permit us—except in the special cases discussed further below—to draw any conclusions about the identity of a natural person. The MAC address is only stored in anonymized form. Without such data we cannot or not fully provide our services to you.
The collection and processing of the respective personal data is carried out on the basis of Art. 6 Sec. 1 Sent. 1 lit. b GDPR (purpose of contract) to the extent necessary to enable you to use our services.
Furthermore, in particular cases processing is necessary for safeguarding the legitimate interests pursued by us or by a third party (Art. 6 Sec. 1 Sent. 1 lit. f GDPR). Our interest in processing relevant data such as browser type or other log files in particular is to ensure the functionality and security of our IT systems and to optimize the website.
You may visit and use many of our services without registering or identifying yourself. Some services, however, require prior registration.
Your data will not be disclosed to any other parties unless this is essential for fulfilling the contract or safeguarding legitimate interests of Fraport, we for this purpose contract other companies (such as technical service providers, payment service providers, logistics service providers) to perform certain services or work to facilitate the operation, security and availability of our IT systems, or when we are required by law to do so (e.g. in response to official requests). More detailed information on these and other aspects can be found below and in the separate data privacy policies and information for individual services.
Your data will only be transferred to a third country or an international organization, when it is necessary for the performance of the contract, to safeguard the legitimate interests of Fraport or in the course of engaging a service provider (usually as processor), or when we are required by law to do so. In any case, we will inform you of such a transfer according to the statutory provisions and particularly with regard to whether or not an adequacy decision of the EU Commission exists, or using suitable or appropriate guarantees.
2.2 Cookies and Internet Technologies
Cookies are small text files that are stored locally in the cache of your Internet browser. To optimize user-friendliness we use temporary cookies that are stored in your terminal device for a set period of time. These cookies allow us, among other things, the recognition of the web browser, to prevent entered data from being lost during an interruption (e.g. because the Internet collection is lost) or when switching to another of our services and back again.
You can prevent cookies from being stored on your computer or device by appropriately setting your browser, whereby in this case you will not e.g. be shown offers tailored to your interests anymore and neither login nor re-registration are possible. Please note that you will nevertheless still be shown advertising in our services.
The data captured with the above-mentioned technologies are not used to personally identify you as the website user unless you have explicitly given permission for this to be done, and are not merged with any personal data of the pseudonym’s user unless you have explicitly allowed us to do so in another context or it is permitted by law. At any time you may also revoke your permission and forbid Fraport to capture and process any more such data.
The use of relevant technologies is carried out either on the basis of a law permitting such use (e.g. Para. 15 Sec. 3 Telemedia Act) or for the safeguard of our legitimate interests (Art. 6 Sec. 1 Sent. 1 lit. f GDPR), in particular for ensuring the functionality and security of our IT systems and the provision of advertisement tailored to your interests.
2.3 Use of Analytics and Tracking Tools
We use various analytics and tracking tools (by, amongst others, embedding advertising networks) on our website. The processing of data by such analytics and tracking tools is necessary to safeguard our legitimate interests (Art. 6 Sec. 1 Sent. 1 lit. f GDPR).
Our interest in the data processing is, amongst others, to optimize the website and the services. In addition, the services help to increase the usability of our services and therefore the satisfaction of the users and customers. Furthermore, they enable us to provide advertisement tailored to your interests. For more details on how to object to the use of such services, please refer to the following notes.
2.3.1 Use of etracker
We use the services of etracker GmbH, Hamburg, Germany to analyze usage data on this website.Cookies are used, which enable the statistical analysis of the use of this website by its visitors as well as the display of usage-relevant content or advertising. Cookies are small text files that are stored by the Internet browser on the user's device. etracker cookies do not contain any information that could identify a user.
The data generated with etracker is processed and stored by etracker solely in Germany by commission of the provider of this website and is thus subject to strict German and European data protection laws and standards.In this regard, etracker was checked, certified and awarded with the ePrivacyseal data protection seal of approval.
The data processing is based on the on the legal basis of Art. 6 Section 1 lit f (consent) of the EU General Data Protection Regulation (GDPR) to optimize our online offer and our website. As the privacy of our visitors is very important to us, etracker anonymizes the IP address as early as possible and converts login or device IDs into a unique key with which, however, no connection to any specific person can be made with. etracker does not use it for any other purpose, combine it with other data or pass it on to third parties.
You can revoke your consent at any time. Your objection has no detrimental consequences for you.
Further information on data protection with etracker can be found here.
2.3.2 CI360 von SAS
Deactivate CI360 Webtracking
2.4 Data security
Our websites use the widely-used SSL- system (Secure Socket Layer) in conjunction with the respectively highest level of encryption that is supported by your browser (usually a 256 bit encryption). If your browser does not support this encryption, a 128 bit v3 technology is used instead. You can recognize whether the contents of our website are transferred encrypted by a key or a lock icon displayed in the lower status bar of your browser, which is displayed as encrypted (marked with a key icon).
We also use appropriate technical and organizational security measures to prevent accidental or intentional manipulation, partial or total loss, destruction or access by unauthorized persons as far as possible. These measures are continuously adapted according to the technological development.
2.5 Your rights, questions or suggestions
As far as the processing of your personal data is based on consent (Art. 6 Sec. 1 Sent. 1 lit. a GDPR or Art. 9 Sec. 2 lit. a GDPR) you have the right to withdraw your consent at any time with effect for the future, without affecting the lawfulness of the processing based on the consent before its withdrawal.
You may also object to the use of your personal data for advertising purposes by means of direct advertising at any time to Fraport AG, Frankfurt Airport, 60547 Frankfurt am Main, if and to the extent it is carried out on the basis of a legitimate interest of Fraport. Furthermore, you may object to the use of your personal data at any time for reasons that arise from your particular situation. We will inform you hereupon separately for each processing operation.
In addition, you have the right to at any time obtain information about personal data stored by Fraport about you, rectification or deletion or restriction of processing, and in certain cases a right to data portability.
Under [please add URL] we have set up a website for the implementation of the GDPR by Fraport AG, which also gives you the opportunity to contact us directly and to conveniently assert your rights. We recommend you to assert your above-mentioned rights on the above-mentioned website’s dedicated features (such as our Inquiry Form) to allow for the most timely processing of your request.
Of course, you will still be able to send your requests directly to Fraport's data protection officer by other means:
Data protection officer
Fraport AG – VA1
60547 Frankfurt am Main
Finally, you have the right to lodge a complaint with a competent regulatory authority if you believe that the processing of your personal data violates data protection requirements.
For further questions or suggestions concerning data protection please contact the data protection officer of Fraport.
3. Use of Additional Services and Services Requiring Registration
3.1 Frankfurt Airport Parking Shop
You can purchase as a guest services from Fraport at Frankfurt Airport Parking Shop. In this connection, you may additionally register for the Rewards Program. Additional data policy statements and requirements may apply to these services; they are communicated during registration, ordering, or use.
3.2 Information and Related Services
If you book our services, you can subscribe to or cancel our newsletters and customer survey. Additional information is provided by service-specific notes and requirements that are communicated in connection with service requests and registration.
3.3 Necessity of provision and legal basis
Unless previously (and subsequently under the letters B.) described otherwise, the collection and processing of the corresponding personal data is carried out for the purpose of providing the respective service (e.g. car park booking at Fraport Airport) and is therefore required in order to be able to offer and provide you with the respective services. The legal basis for data processing is then Art. 6 Sec. 1 Sent. 1 lit. b GDPR (purpose of contract). In the event of non-provision of the required personal data, we therefore cannot or not fully provide you with the services offered by us or third parties.
3.4 Duration of storage of your personal data
We only process and store your data for as long as it is necessary for the provision of our services. Storage can go on as long as claims against Fraport can be asserted against the provided services and/or we may require the relevant data for purposes of legal defense. In addition, we are often required by law to keep the data for a longer period of time, usually for a period of 6 to 10 years for retention purposes.
B. Special Data Privacy Notes and Consent for the Use of Frankfurt Airport Parking Shop
1. General Information on Use of Your Personal Data
The following special data privacy notes deal with handling of the personal data of anyone who uses Frankfurt Airport Parking Shop as a guest via Fraport’s websites, (mobile) Web services, the Fraport App, or other services that are reachable via these, and they may change from time to time.
When you register for and use the services of Frankfurt Airport Parking Shop, you provide us with personal data (e.g. name, address, payment data, e-mail address). We store and use these data—provided that you have given us special permission to do so or it is allowed by law—to process your orders. For fulfilling your orders, we also relay your data to reliable payment service providers.
2. Consent to the Use of Personal Data for Customer Care and Advertising
When booking our services on Frankfurt Airport Parking Shop, you may submit an extended privacy statement for the use of personal data for the purposes of customer service and advertising by activating the respective checkbox. In this case, by activating the checkbox you declare that you have taken note of these special data protection notices and give the following declaration of consent:
I hereby consent to the use of my personal data (e.g. membership number, purchase history with the date, time, article numbers, and prices for each purchase, names of connected retailers, modes of payment, coupon data) that are provided to Fraport AG (hereinafter “Fraport”) or automatically captured by Fraport during registration for and participation in the Rewards Program of the services of the Airport Portal via the various available channels (websites of Fraport, (mobile) Web services, the App, purchases made in physical shops, the hotline, e-mails) for storing in Fraport’s central databases of prospects and customers, carrying out market, opinion and customer satisfaction surveys, and sending me current information and offers and surveys on any aspect of the airport itself or the merchandise and services that are normally offered there by Fraport and all partner companies operating at the airport (e.g. operators of shops at Frankfurt Airport).
I hereby give my consent for Fraport to merge personal data of mine that are provided to Fraport or automatically captured by Fraport from me or partner companies participating in the Rewards Program in connection with registering for and participating in the Rewards Program with other personal data of mine that are already stored in Fraport’s central databases of prospects and customers (e.g. user data after registration for and use of the Airport Portal or Frankfurt Airport Online Shopping and data from my participation in special campaigns or promotions such as prize draws) and to use them for the previously mentioned advertising purposes.
I hereby give my explicit consent for my personal data to be statistically evaluated by Fraport for customer care and advertising purposes as described in the foregoing. I consent to being assigned to different interest and customer groups on the basis of my profile and utilization data so that personalized customer care can be offered and appropriate advertising displayed to me. I consequently also consent to participating partner companies contacting the individual interest and customer groups via Fraport.
I am aware that Fraport enables me to use the services of the Airport Portal that require registration (e.g. the use of the Frankfurt Airport Parking Shop) free of additional charge. In return, by granting this consent, I authorize Fraport to use my personal data for the above-mentioned purposes.
At any time you may withdraw your consent until further notice free of charge by sending a corresponding statement to Fraport AG, Frankfurt Airport, 60547 Frankfurt am Main, Germany, without affecting the lawfulness of processing carried out on the basis of the consent before its withdrawal. Such a withdrawal covers all of the statements made in Section 2, which constitutes one single consent. A partial withdrawal regarding individual aspects of the consent is not possible.
To the extent that it is necessary to obtain declarations of consent in order to carry out advertising activities, these activities are only conducted after the relevant permissions have been obtained. The right to use personal data (to carry out advertising activities amongst others) when permitted by law or sanctioned by specially obtained declarations of consent is not affected by the foregoing declaration of consent or its revocation. These data privacy notes, including the declaration of consent, can be called up and viewed in your customer account at any time.
3. Additional Notes on Data Privacy