General Data Protection Regulation/ GDPR
Privacy Notice to the General Data Protection Regulations of Armenian Airlines LLC
This Privacy Notice is intended to inform users about how their personal data will be used in accordance with article 13 of the GDPR (EU General Data Protection Regulation).
We take the greatest possible care and make every effort to process your personal data within the framework of the laws.
We process your personal data in accordance with the following principles (Article 5 of the GDPR /EU General Data Protection Regulation/) and legal grounds (Articles 6 and 9 of the EU General Data Protection Regulation):
- legality, fairness and transparency;
- limitation of use purposes;
- minimum required data;
- neatness;
- limitation of data storage period;
- integrity and confidentiality;
- responsibility.
In addition, we take all necessary security measures to prevent unauthorized processing of your personal data, unauthorized access to your personal data and a disproportionate level of security that may compromise the security of your personal data.
Information about the methods of processing personal data will be included in the headers of our Privacy Notice.
Почтовый адрес:1149. RA, Armavir region, Parakar village, Abrahamyan str. 19
Электронный адрес: info@armenianairlines.am
Телефон: +374 15 71 81 9
Веб сайт: www.armenianairlines.am
- Identification: name, surname, date of birth of the person, gender, nationality, identification document number or passport number;
- Flight Information: information about booking/issued tickets, baggage data, menu selection;
- Contact information: Email address, postal address, phone number, social media contact information;
- Advanced passenger Information: API and PNR passenger data;
- Information about the customer's or buyer's purchases, customer invoices, information about cash receipts, order information, information about searches and queries;
- Risk management: information processed for the purpose of managing commercial/technical/administrative risks;
- Finance: Debit/credit card information, bank IBAN code number, bank account or accounts number;
- Security of money transfers and online payments: information about the IP address, information about entering the site (login) and exiting;
- Confidential closed personal data: health information (personal health information and information about the state of disability).
| PROCESS | CATEGORIES OF PERSONAL DATA IN THIS PROCESS | PURPOSE OF PROCESSING | LEGAL BASIS |
|---|---|---|---|
| The processes of ensuring the sale and presentation of goods/services (booking/ issuing tickets/ baggage receipts/ air waybills, refusal to board an aircraft, cancellation/refusal to fly, transfer to a higher/lower class of service and other operations related to passenger rights) | Passenger identification, сommunication, flight information, finance, advanced passenger information | Implementation of the processes of sale and presentation of goods/services fulfillment of legal obligations/td> | Execution of the contract or execution of procedures at the request or order of the personal data subject prior to the conclusion of the contract (document "GDPR" (EU General Regulation on Personal Data Protection) 6/1/b) compliance with legal (legal) obligations (document "GDPR" (EU General Regulation on Personal Data Protection) 6/1/c) |
| Flight safety processes | Passenger identification, communication, flight information, customer or buyer purchases, risk management, advanced passenger information | Flight safety guarantee Implementation of risk management processes |
Compliance with legal (legal) obligations (document "GDPR" 6/1/c) in our legally protected interests (document "GDPR" 6/1/f) |
| Processes of processing incoming requests, requests/claims | Идентификация пассажира, коммуникация, трансакции, платежи заказчиков, финансы | Processing of applications, requests/claims | Execution of the contract or execution of procedures at the request or order of the personal data subject prior to the conclusion of the contract (document "GDPR" (EU General Regulation on Personal Data Protection) 6/1/b) in our legally protected interests (document "GDPR" 6/1/f) |
| Information security processes | Security of money transfers and online payments | Execution of processes in order to guarantee information security | In our legally protected interests (document "GDPR" 6/1/f) |
Information about the health status of our customers and customers, which is a special type of personal data, may be processed in order to meet their needs for special services due to possible restrictions on their physical movement, to solve any medical problems that may arise during the flight, to provide services on board in accordance with their medical special needs. requirements, to fulfill their legal obligations as passengers, to ensure flight safety and to perform management procedures, aimed at protecting the health of the population, but limited to the conditions provided for by legal norms (based on Article 9/2/a) of the document "GDPR" (EU General Regulation on the Protection of Personal Data), taking into account the legislation of the Republic of Armenia).
- Protection of our company from material/reputational or other damage;
- Specialization and improvement of our products and services;
- Cost optimization.
In accordance with the current national and international legislation, we may disclose your personal data to certain individuals, institutions and organizations in Armenia or other countries in order to be able to present our products and services to you, warn you about possible violations of the law, protect our legitimate interests, as well as to fulfill our contractual obligations:
We may transfer data to the following individuals/institutions/organizations:
- Our business partners and suppliers: ground handling service companies, authorized agents, other service providers (for example, information technology services, payment systems, on-board catering, transportation/hotel accommodation and consulting services);
- Bodies authorized to ensure national security and flight safety in accordance with national and/or international legislation (for example, bodies managing civil aviation facilities, customs, law enforcement agencies);
- Authorities authorized to receive information in accordance with national and/or international legislation (for example, courts, health authorities and regulatory supervisory authorities).
We transfer your personal data by taking all necessary security measures. We follow the guidelines of the legal standards to which we are subject in Armenia, as well as the data transmission standards of the European Union (EU) treaties or the judgment on the sufficiency of measures adopted by the EU Commission when determining and applying in practice proportionate protection measures (article 45 of the GDPR document, the EU General Regulation on the Protection of Personal Data). Your personal data may also be transferred in accordance with Article 49 of the GDPR, the EU General Data Protection Regulation.
Link to the points of the EU Agreement on Data transmission standards (in English)
Link for information on the judgment on the sufficiency of measures adopted by the Commission of the European Union (in English)
You can send a request for a copy of the description of the data protection measures that we apply to our corporate email address info@info@armenianairlines.am
The duration of personal data storage and the legal grounds for the retention periods may vary depending on the country.
If the legal basis for storing your personal data is changed, we will delete your data or anonymize it.
If the legal grounds for our data processing are abolished, or data processing is no longer required to achieve our goals, the statute of limitations has expired, or you have sent a withdrawal of your consent to processing that was based solely on this consent, or the legal requirements for data storage have expired, then we will delete or anonymize your personal data.
According to the legal requirements set out in the document "GDPR", the EU General Regulation on the Protection of Personal Data, you have the following rights:
- The right to withdraw consent (Article 7 of the GDPR document);
- Right of access (Article 15 of the GDPR document);
- The right to clarify personal data (Article 16 of the GDPR document);
- The right to destroy personal data (the "right to be forgotten") (Article 17 of the GDPR document);
- The right to restrict data processing (Article 18 of the GDPR document);
- The right to data portability (Article 20 of the GDPR document);
- The right to object (Article 21 of the GDPR document).
Link for more information (in English).
You can contact us by email info@armenianairlines.am to request a list of your rights.
We may need to confirm your identity in order to review and fulfill your application. We remind you that in order to complete your application and confirm your identity, we will process your personal data in accordance with the document "GDPR", Article 6/1/f.
You can file a complaint with the relevant supervisory authority if you believe that we have processed your personal data in a way that is not in accordance with the laws governing the protection of personal data.
We would like to emphasize that you have the right to revoke any given consent that you previously could have given us for the use of your personal data.
Your review does not affect the legality of our company's actions in processing those personal data that we carried out on the basis of your consent before your withdrawal of consent.
If you have any difficulties in revoking your consent to the processing of your personal data, you can contact us by e-mail for a solution. info@armenianairlines.am.
Cookies are text files that your browser processes and stores in order to provide you with a better quality of service, increase website performance and provide you with a more personalized content viewing experience.
For more information, you can read our File Usage Policy Cookies .
We do not use automatic individual authorization prohibited by Article 22 of the GDPR document (rus: EU General Regulation on Personal Data Protection).
You have the right at any time, for a reason relevant to your situation, to object to the processing of your personal data, including profiling or data specialization on the basis of Article 6(1) (e) or (f) of the GDPR document (rus: EU General Regulation on Personal Data Protection).
If we are unable to provide convincing legal grounds that are more important than the interests, rights and freedoms of the data owner, or if the processing of personal data is necessary for the initiation, implementation or protection of legal claims or claims, then we will stop processing these personal data.
You have the right at any time to object to the processing of your personal data for direct marketing purposes, including data profiling to the extent it is related to direct marketing, if your personal data is used for such purposes.
If you object to the processing of your personal data in connection with the use of direct marketing, we will stop processing your data.
Notwithstanding Directive 2002/58/EC, you may use technical functions to exercise your right to object when using the services provided by the information society.