PRIVACY INFORMATION NOTICE

PRIVACY INFORMATION NOTICE - Related to AirbusWorld - Helicopters

Introduction

Airbus S.A.S (also known as, “Airbus”, or “we” or “us”) appreciate your interest in our products, services and business lines and your use of our Web Communities (hereinafter referred as the “Website”).

Your privacy is important to us and we want you to feel comfortable when you use the Website.

Airbus is committed to protecting the rights of individuals in line with the General Data Protection Regulation (reference EU2016/679) of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of Personal Data and on the free movement of such data  (hereinafter referred as : “GDPR”) as well as each applicable national Personal Data protection laws and regulations (collectively referred as “Data Protection Laws and Regulations”). The protection of your privacy and Personal Data is an important concern to which we pay special attention throughout our processes.

However, the Website will include links to other websites or applications which are not necessarily covered by this Privacy Notice. In this event, we encourage you to carefully read the privacy policies of such websites.

This Privacy Notice will inform you of the Personal Data we collect when you access/use the Website; how we use and disclose your Personal Data; how you can control the use and disclosure of your Personal Data; and how we protect your Personal Data.

Which sources and what Personal Data do we use?

Personal Data is information that can be used to identify a person either directly or indirectly (hereinafter referred as “Personal Data”). This definition covers a wide range of data enabling the identification of an individual.

The Personal Data we process under this Privacy Notice are as follows:

  • Identification data: first name, last name, title, nationality
  • Professional data: professional phone number, professional email address, professional fax number, professional mobile phone number, job title, company, function, timezone.
  • IT data /Digital activity data: history of Website records you have accessed
  • Account information: settings and preferences, login

We may collect this Personal Data cumulatively:

  • Directly from you for the information you put in your profile.
  • Indirectly for those Personal Data that we may collect from your Airbus World profile and/or the data provided to Airbus by your local administrator. 

What are the purposes of the processing of your Personal Data?

By using the Website, Airbus will collect and process your Personal Data in accordance with this Notice. Your Personal Data may be used for the following purposes (hereinafter referred as : the ‘Purposes’):

1.             Website Browsers / Administration.

We use your Personal Data for administrative purposes, including to help us better understand how our customers access and use our websites and applications; to provide reports to prospective partners, service providers, regulators, and others; to implement and maintain security, anti-piracy, fraud prevention, and other services designed to protect our customers, partners and us; and to enforce our policies, directives and processes.

2.             Marketing.

To the extent permitted by law, we may use your Personal Data for marketing and promotional purposes, including communications through email or equivalent electronic means. For example, we use your Personal Data, such as your email address, to send news and newsletters, special offers, promotions and competitions, or to otherwise contact you about services or information we think will interest you.

3.             Communication.

We use your Personal Data to communicate with you, including responding to requests for assistance. We can communicate with you in a variety of ways, including email and via your social media accounts if you have agreed, and/or text message.

4.             Community users management.

We may process your Personal Data to manage user communities on the Website, and to provide you relevant content and features.

Our Binding Corporate Rules allow us to transfer Personal Data within our international organisation for Airbus daily business activity and internal organisation, and they include a list of countries where Airbus Affiliates having signed the BCR and which might have access to your Personal Data if relevant.

5.             Customer service.

We use your Personal Data for customer service purposes, including providing services to you, for technical support or other similar purposes and to establish and maintain customer accounts.

6.             Research and development.

We use your Personal Data for research and development purposes, including improving our websites, applications, services, and customer experience and for other research and analytical purposes dedicated to improving our products, services, businesses, operations and processes.

7.             Legal compliance.

We use your Personal Data to comply with applicable legal obligations, including responding to an authority or court order or discovery request.

Where we believe it is necessary to investigate, prevent or take action regarding illegal activities, suspected fraud, situations involving potential threats to the safety of any person or violations of policies, terms, and other policies.

8.             To protect us and others.

We will use your personal information for the above Purposes only, unless we reasonably consider that we need to use it for another reason and that reason is compatible with the original purpose (for preserving particular evidence under the applicable Data Protection Laws and Regulations, or in the context of legal statutes of limitation for example). If we need to use your Personal Data for an unrelated purpose, we will notify you prior this further Personal Data processing and provide you the relevant privacy information notice.

What is the legal basis for processing of your Personal Data?

As a responsible company, we need a lawful basis for collecting and/or processing your Personal Data in accordance with the provisions set out in the GDPR and the relevant applicable Data Protection Laws and Regulations. The legal basis for processing your Personal Data under this Privacy Notice are:

1. To comply with contractual obligations

For Airbus employee(s), we process your Personal Data as part of the performance of employment contract to which you are party in order to complete our respective contractual obligations.

When you subscribe to a particular service through the Website, the purposes of processing your Personal Data are primarily determined by that service and we will process your information so that we can provide that service to you.

2. Within the scope of a legitimate interest

On occasion taking into account the minimum privacy impact for you, the processing of your personal data might be necessary for the following legitimate interest:

  • When you or your legal entity is engaged into a commercial relationship with Airbus, we may have a legitimate interest to process your Personal Data to ensure fluid execution of our respective contractual obligations
  •  
  • For providing you an access to the Website and/or service(s) that have been purchased by your company, when you have been designated as a Website user by your company
  • For General Corporate Operations and Due Diligence
  • For Information, system, network and cyber security within Airbus
  • For fraud detection and prevention and investigation of criminal acts.

Who will receive your Personal Data?

We may disclose your Personal Data to the following recipient(s) on a strict need to know basis and for the purposes as outlined in this Privacy Notice:

  • Airbus SAS and its affiliates, on a need-to-know basis for the purposes as outlined in this Privacy Notice;
  • Authorised persons working for or on behalf of Airbus, including our agents, service providers and advisers providing the variety of products and services we need such as our subcontractors engaged into helping us to provide Website technical support
  • Other authorised third parties in connection with any merger, reorganization, a sale of some or all Airbus assets, or a financing or acquisition of all or a portion of our business by another company.
  • Law enforcement or government authorities or other legal process to comply with applicable law, or in response to any subpoenas, court orders, or to establish or exercise our legal rights or to defend against legal claims.

Which countries and/or regions will Airbus transfer your Personal Data to?

Airbus processes your Personal Data mostly in the EEA and UK.  On occasion Personal Data is transferred to the relevant recipients as described in Section “Who will receive your Personal Data?”, on a need-to-know basis, including entities outside the EEA in France / USA / China / UAE / Russia / Japan / Germany.

This transfer is subject to appropriate safeguards, within Airbus through the legal framework of our Binding Corporate Rules, that can be found on our website www.airbus.com or viewed here Airbus BCR's or through alternative contractual frameworks (so called Standard Contractual Clauses) or relevant adequacy decision where the relevant data recipients as defined in Section “Who will receive your Personal Data?” is engaged to help us providing the community to you.

Our Binding Corporate Rules allow us to transfer Personal Data within our international organisation for Airbus daily business activity and internal organisation, and they include a list of countries where Airbus Affiliates having signed the BCR and which might have access to your Personal Data if relevant.

 

Australia, Belgium, Brazil, Canada, Chile, China, Colombia, , Denmark, , Finland, France, Germany, Hong Kong, Hungary, India, Indonesia, Ireland, Italy, Japan, Kazakhstan, Malaysia, Mexico, Morocco, Netherlands, New Zealand, Nigeria, Norway, Oman, Philippines, Poland, Qatar, Romania, Russia, Saudi Arabia, Singapore, Slovakia, South Africa, South Korea, Spain, Switzerland, Taïwan, Thailand, Tunisia, Turkey, United Kingdom, United Arab Emirates, Uruguay, United States of America.

How long will your Personal Data be stored?

We process and store your Personal Data up to one (1) year after your last interaction with the Website, in accordance with the GDPR or any local data protection laws requirements.

What about the security of your Personal Data?

We use technical and organizational security measures in order to protect the Personal Data we have under our control against accidental or intentional manipulation, loss, destruction and against access by unauthorised persons. Our security procedures are continually enhanced as new technology becomes available.

What are your rights?

Under some circumstances provided by law, you may at any time exercise your data protection rights as listed below:

  • Right to access/obtain a report detailing the information held about you: You have the right to obtain confirmation as to whether or not your Personal Data is being processed by Airbus and if so, what specific personal data is being processed.
  • Right to correct Personal Data: You have the right to rectify or request to have rectified any inaccurate Personal Data concerning you.
  • Right to be forgotten:  In some cases, for instance, when the Personal Data is no longer necessary in relation to the Purposes for which they were collected, you have the right for your Personal Data to be erased.
  • Right to restrict the processing of your Personal Data: You have the right to restrict the processing of your Personal Data, for instance when the processing is unlawful and you oppose the erasure of your Personal Data. In such cases, your Personal Data will only be processed with your consent or for the exercise or defense of legal claims.
  • Right to data portability: You have the right to receive the Personal Data concerning you in a structured, commonly used and machine-readable format and/or transmit those Personal Data to another data controller.
  • Right to object: In some cases required by law, you may ask us to stop processing your Personal Data.

How to exercise your rights and/or contact Airbus in respect of your Personal Data?

If you want to exercise your rights or you are unhappy with the way in which your Personal Data has been processed or should you have any questions regarding the processing of your Personal Data, you may refer in the first instance to the Airbus Data Protection Officer, who is available, at the following email address:

dataprotection@airbus.com or you can write to the address below:

Airbus SAS, Head of Data Protection, 2 rond-point Emile Dewoitine 31700  Blagnac cedex. France

In case of doubt of your identity, we may ask you to justify it by enclosing a copy of any identity document.

Are you obliged to provide your Personal Data?

Personal data are necessary to ensure your identification in MyChatter (Community chat area, where available) and personalisation of data in MyServices.

Under certain circumstances, when some Personal Data are necessary to enter into a contract or to comply with legal obligation, any failure to provide the requested Personal Data may conduct us not being able to fulfil our contractual/legal obligations or to achieve the expected results.

Are your Personal Data the basis for automated decision-making, including profiling?

As a matter of principle, we do not use fully automated decision-making processes. In the event that we should use such processes, we will advise you in advance.

How to ask for assistance to the competent authorities?

If you remain unsatisfied, then you have the right to apply directly to a Data Protection Supervisory Authority. Listed below are the four main European countries where Airbus operates and the relevant Supervisory Authority

FRANCE : CNIL: Supervisory Authority France

GERMANY : Datenschutz-hamburg: Supervisory Authority for Airbus Operations GmbH

or lda Bayern: Supervisoy Authority for Airbus Companies in Bavaria, Germany

or any other competent regional German authority as the case may be

SPAIN : AGPD.Supervisory Authority Spain

UK : ICO: Supervisory Authority UK

Cookies Policy

WHAT ARE COOKIES?

Cookies are small files or amount of information that may be stored to, accessed and remove from your device when you access the Website.

For instance, a “Cookie” may refer to “http cookie”, flash cookie” (used by some applications or website relying on Flash technology), local storage area of your internet browser, unique identifier calculated from your internet browser characteristics (also known as “browser fingerprinting”), or unique identifiers related to your device or your internet browser (device serial number, MAC address, Android ID, advertising ID, etc...)].

Cookies allows us to recognize your device and store information about your preferences or past actions. We may use Cookies:

  • to record the preferences of our users,
  • to enable us to optimize the design of our Website,
  • to ease navigation, and increase the user-friendliness of our Website,
  • to analyze the usage our Website, and/or to identify the most popular sections of our Website,
  • to provide content that is more accurately suited to your needs, and, in doing so, improve our Website. Cookies can be used to determine whether there has been any contact between us and your device in the past,
  • to facilitate secure online access so that you do not need to enter your user ID and password again when you access our Website

WHICH COOKIES DO WE USE?

Cookies contain Personal Data. The table below aims to inform you about the type and purpose of each cookies, and the type of Personal Data processed inside, and that we may use on our Website:

NAME OF COOKIE PURPOSE RETENTION PERIOD COOKIE TYPE
BrowserId Used to collect metrics, such as the number of visitors to a community. Long Functional
Autocomplete Used to determine whether the browser remembers a user’s login ID. Long Functional
clientSrc Used to authenticate a user. Session Required
Inst Used to redirect a user to the correct server. Session Functional
Oid Used to redirect a user to the correct  server and assist the user for the next login. Long Functional
Oinfo Used to track the state of a customer's org. Long Functional
Sid Used to authenticate a user. Session Required
sid_Client Used to authenticate a user. Session Required
_ga A third-party cookie that’s used if the community admin chooses to track community users with a Google Analytics tracking ID. Long Functional
force-stream Used to redirect server requests for sticky sessions. Long Required
renderCtx Used to track community context. Session Required
Webact Used to collect metrics per page view for personalization. Long Functional
directMessageInboxVisitTimestamp

 

Used by Direct Message to determine the last visit to the inbox. Long Functional
<userId>feeds Used to store a user's feed settings selection. Long Functional
RRetURL Used to redirect user logins. Session Required
RSID Used to redirect user logins. Session Required
Pctrk Used to track public page views by guest users. Session Functional
CLEAR_LOCAL_STORAGE Empty all stored keys  1 day Functional
COOKIE_SUPPORT Indicate if the user is a support member 365 days Functional
GOOGLE_ANALYTICS User information to send to GA Session Functional
JSESSIONID Liferay node name Session Functional
LFR_SESSION_STATE_20210 Liferay technical cookie Session Functional
LFR_SESSION_STATE_4403011 Liferay technical cookie Session Functional
GUEST_LANGUAGE_ID Liferay technical cookie 365 days Functional
SAML_SP_SESSION_KEY User saml token Session Functional
keycopter_cookie_accept Indicate if the user has accepted cookies 365 days Functional
keycopter_hide_warning Indicate if the user has decided to hide the warning messages 365 days Functional
keycopter_hide_welcome Indicate if the user has decided not to display the welcome message anymore 365 days Functional
_hjClosedSurveyInvites Hotjar cookie. This cookie is set once a visitor interacts with a Survey invitation modal popup. It is used to ensure that the same invite does not re-appear if it has already been shown. 365 days Functional
_hjDonePolls Hotjar cookie. This cookie is set once a visitor completes a poll using the Feedback Poll widget. It is used to ensure that the same poll does not re-appear if it has already been filled in. 365 days Functional
_hjMinimizedPolls Hotjar cookie. This cookie is set once a visitor minimizes a Feedback Poll widget. It is used to ensure that the widget stays minimizes when the visitor navigates through your site. 365 days Functional
_hjDoneTestersWidgets Hotjar cookie. This cookie is set once a visitor submits their information in the Recruit User Testers widget. It is used to ensure that the same form does not re-appear if it has already been filled in. 365 days Functional
_hjIncludedInSample Hotjar cookie. This session cookie is set to let Hotjar know whether that visitor is included in the sample which is used to generate funnels. 365 days Functional
_hjShownFeedbackMessage This cookie is set when a visitor minimizes or completes Incoming Feedback. This is done so that the Incoming Feedback will load as minimized immediately if they navigate to another page where it is set to show. 365 days Functional
_hjid https://help.hotjar.com/hc/en-us/articles/115011669147Hotjar cookie. This cookie is set when the customer first lands on a page with the Hotjar script. It is used to persist the Hotjar User ID, unique to that site on the browser. This ensures that behavior in subsequent visits to the same site will be attributed to the same user ID. 365 days Functional
_hjRecordingLastActivity This should be found in sessionStorage (as opposed to cookies). This gets updated when a visitor recording starts and when data is sent through the WebSocket (the visitor performs an action that Hotjar records). Session Functional
hjTLDTest When the Hotjar script executes we try to determine the most generic cookie path we should use, instead of the page hostname. This is done so that cookies can be shared across subdomains (where applicable). To determine this, we try to store the _hjTLDTest cookie for different URL substring alternatives until it fails. After this check, the cookie is removed. Session Functional
_hjUserAttributesHash User Attributes sent through the Hotjar Identify API are cached for the duration of the session in order to know when an attribute has changed and needs to be updated. Session Functional
_hjCachedUserAttributes This cookie stores User Attributes which are sent through the Hotjar Identify API, whenever the user is not in the sample. These attributes will only be saved if the user interacts with a Hotjar Feedback tool. Session Functional
_hjLocalStorageTest This cookie is used to check if the Hotjar Tracking Script can use local storage. If it can, a value of 1 is set in this cookie. The data stored in_hjLocalStorageTest has no expiration time, but it is deleted immediately after creating it so the expected storage time is under 100ms. N/A Functional
_hjptid This cookie is set for logged in users of Hotjar, who have Admin Team Member permissions. It is used during pricing experiments to show the Admin consistent pricing across the site. Session Functional
_hjAbsoluteSessionInProgress The cookie is set so Hotjar can track the beginning of the user's journey for a total session count. It does not contain any identifiable information. 30 minutes Functional

 

segment_id

 

This cookie is set to distinguish users for a/b testing experimentations within Hotjar. 365 days Functional
hjSiteLang This cookie is set when a page that supports multiple languages on hotjar.com is visited. This allows us to always load the content in the preferred language when available. 365 days Functional
X-Access-Key Keeps your website session alive. Session Functional
NREUM New Relic cookie which is only created in browsers that do not support the Navigation Timing API.  Session Functional
NRAGENT New Relic cookie, created only when a token is handed out to an end user by the New Relic server.  Session Functional
optimizely* Cookies set by Optimizely to run tests on hotjar.com. Read more Decided by Optimizely Functional
__hs*, hubspotutk, hsPagesViewedThisSession, hsfirstvisit Cookies set by HubSpot to keep track of visitors on hotjar.com. Decided by HubSpot Functional
mp_* Cookies set by Mixpanel to run track usage on hotjar.com. Decided by Mixpanel Functional
__distillery Cookies set by Wistia for its video player. Decided by Wistia Functional
intercom-* Cookies set by intercom for its in-app messaging system. Decided by Intercom Functional
_fbp Used by Facebook to deliver a series of advertisement products such as real time bidding from third party advertisers. 3 months Functional
       

 

HOW CAN YOU DISABLE OR DELETE COOKIES?

When the Cookies we use are strictly necessary for technical reasons, they are marked as “mandatory” on the table above. Those Cookies does not require consent from you. However, if you choose not to accept Cookies that are strictly necessary for the provision of our services provided by our Website, it may result in a reduced availability of such services.

You can prevent Cookies from being stored on your device by setting your browser to not accept cookies. The exact instructions for this can be found in the manual for your browser. You can also delete Cookies already on your device at any time through your browser’s settings.

To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit  www.aboutcookies.org or www.allaboutcookies.org.

Modification of the Privacy Notice

Airbus will update this Privacy Notice from time to time in order to reflect the changes in our practices and services and also to remain compliant to Data Protection Laws and Regulations. We will inform you of any substantial modification in how we process your Personal Data.