Customer Support

Telefonische Unterstützung und Beratung unter:

Drohnenpilot.aero

Fliegen Sie eine Drohne in Ihrer Freizeit oder Gewerbe?

Auf Drohnenpilot.aero erfahren Sie alles rund um den Kenntnisnachweis & finden Kurse, Prüfungen sowie Beratungsdienstleistungen!

Zu Drohnenpilot.aero
Aviation Training

Möchtest du dich über die Theorieausbildung zum Privatpiloten informieren?

Aviation Training hilft dir, das richtige Lernmaterial zu finden!

Zu aviation-training.aero

Data protection

Data protection provisions

These data protection provisions apply to the websites of R. Eisenschmidt GmbH: www.eisenschmidt.aerowww.aviation-training.aero and www.eisenschmidt-academy.aero.

We take the protection of your data very seriously. Therefore, at R. Eisenschmidt GmbH we comply with the statutory provisions on data protection (in particular the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG) and the German Telemedia Act (TMG)) as a matter of course and do everything possible to keep your data confidential. In addition, it is important to us for you to know at all times what data we are storing and how we are using them.

Please take a moment to read the following information, which explains how we handle your data. We reserve the right to amend the content of these data protection provisions from time to time to enable us to continue to ensure protection in the future, in particular in conformity with new legal requirements or technical developments. It is therefore advisable to take note of our information and notifications regarding data processing again at regular intervals.

Subjects

1. Controller and data protection officer

2. Visiting and shopping on our websites

  • 2.1 Visiting our websites
  • 2.2 Registering on our websites
  • 2.3 Contact and order forms
  • 2.4 Comments
  • 2.5 Software and apps
  • 2.6 Recipients of data
  • 2.7 Length of storage
  • 2.8 Cookies

3. Integration of web tools

  • 3.1 Trusted Shops: Trustbadge
  • 3.2 Google: reCAPTCHA, Analytics, Maps, Web Fonts, Ad, YouTube
  • 3.3 Bit.ly
  • 3.4 TeamViewer
  • 3.5 Chatbot moin.ai
  • 3.6 Survey tool QuestionPro
  • 3.7 Mandrill

4. Other functions and offers (on our websites and elsewhere)

  • 4.1 Order form (paper)
  • 4.2 E-mail contact
  • 4.3 Newsletter
  • 4.4 Contests
  • 4.5 Social networks

5. Your rights as a data subject

 

1. Controller and data protection officer

The controller within the meaning of the GDPR the BDSG is:

  • R. Eisenschmidt GmbH
  • Board of Managing Directors: Ina-Katharina Coutandin
  • Flugplatz 1
  • 63329 Egelsbach
  • Germany
  • Tel.: +49 (0)6103-20596-0
  • E-mail: info@eisenschmidt.aero

The contact details for our data protection officer are:

  • DFS Deutsche Flugsicherung GmbH
  • Dr Frank Schury – Group Data Protection Officer
  • Riko Pieper – Deputy Group Data Protection Officer
  • VD Division – Group Data Protection and Quality Management
  • Am DFS-Campus 10
  • 63225 Langen
  • Germany
  • Tel.: Dr Frank Schury: +49 (0)6103-707-4220
  • Tel.: Riko Pieper: +49 (0)6103-707-4223
  • E-mail: datenschutzbeauftragter@dfs.de

 

2. Visiting and shopping on our websites

2.1  Visiting our websites

Our websites use SSL or TLS encryption for security reasons and to protect confidential information that is transmitted, such as orders or inquiries you send us. If SSL and TLS encryption is activated, the data you transmit to us cannot be read by third parties.

You can visit our websites without providing us with information about your identity. Each time you access our websites, usage data are transmitted by your internet browser and stored in server log files.

These are the following data:

  • Information on browser type and the version used
  • User’s operating system
  • User’s IP address
  • Date and time of the access
  • Referrer (website from which the user’s system reached our website)

Log files are stored in order to safeguard and optimise the websites’ functionality. These data cannot be used to identify a specific person. Nor will we use the data for marketing purposes in any way. 

2.2  Registering on our websites

On our websites, we offer users the opportunity to register by providing personal data. In this process the data are entered in an input screen and transmitted to and stored in our customer data management system to enable us to process your request and fulfil and manage orders and are also used for the purposes of our own advertising (by post). The data are not shared with third parties (with the exception of the recipients specified in Section 2.6). A contract cannot be concluded if the data are not provided.

The following data, if applicable, are collected during the registration process:

  • Company, department, VAT number
  • First name, surname
  • Address (street, postal code, town, country)
  • E-mail address
  • Date of birth (optional)
  • Telephone number (optional)
  • IP address and referrer

It is necessary for the user to register so that specific content and services can be provided on our websites. The data are processed on the basis of Article 6 (1) points (b) and (c) of the EU General Data Protection Regulation (GDPR) and are needed for these processes:

  • For making purchases in the web shop: To fulfil contracts with the buyer or to perform pre-contractual measures.
  • Use of digital products: Online and download products are only provided for viewing or download following creation of a customer account (in some cases via receipt of a licence key).
  • For creating an offer: To fulfil a request for an offer (pre-contractual measure).
  • For an online training session on our website www.eisenschmidt-academy.aero: In addition to the above data, a user name and password of your choosing (encrypted, not in text form) will be stored. Once you purchase an online training course, you will receive an activation code from us. This code must be entered following registration at eisenschmidt-academy.aero in order to use the respective course. Registration is needed to track the user's learning progress and monitor the length of the course.
  • If registering as a distributor: so that distributor terms can be displayed and documents containing information relevant to distributors can be provided.
  • To use the "Wish List" function. Products can only be saved to the wish list after logging into the customer account. When the wishlist is shared by email, the recipient can see the products on the wishlist via a link, but no other customer data. A customer account is not necessary for the recipient to view the list.

2.3 Contact and order forms

Contact forms that can be used for contacting us electronically are available on our website. If a user selects this option, the data entered in the input screen are transmitted to us and stored so that we can process the request. These data are:

  • First name, surname
  • E-mail address
  • Telephone number (optional)

The other personal data processed during the dispatch process serve to prevent misuse of the contact form and safeguard the security of our information technology systems.

To order brochures and posters, you can fill out a standard form at www.eisenschmidt.aero. The data transmitted to us in this manner are used only for the purpose of sending the print media requested. The following data are entered in this process:

  • Company and department
  • Name
  • Address
  • Telephone and fax number (optional)
  • E-mail address (optional)

At www.aviation-training.aero you can request demo access for the LMS of Aviationexam. For this purpose, the data entered will be forwarded to Aviationexam so that a customer account can be opened. The following data, if applicable, must be entered for this purpose:

  • Association membership
  • Member number
  • User name for Aviationexam
  • Name of association or flight school
  • Address
  • Tax ID
  • Name
  • Telephone number
  • E-mail address

All of these processes are used for contract performance under Art. 6 (1) point (b) GDPR.

On www.eisenschmidt.aero, an e-mail address can be entered for unavailable items in order to receive an e-mail when the corresponding item can be ordered again. After registration, an e-mail is first sent in which the use of the reminder service is confirmed via a link. Only then is the e-mail address saved, so that when the article is available again, an e-mail reminder is sent to remind the user that it can now be ordered. After sending the reminder e-mail, the address will be deleted from our database. For the use of this service only the specification of an e-mail address is necessary. By entering and confirming the e-mail address, the user consents to the processing of the transmitted data in accordance with Art. 6 (1) lit. a.

2.4  Comments

If you comment on an article or a contribution we only collect your personal data (name, e-mail address) to the extent that you have provided it. Processing the data serves the purpose of enabling comments to be made and displayed. By sending the comment you consent under Art. 6 (1) point (a) to the processing of the data transmitted. You can withdraw your consent at any time by notifying us; this will not affect the lawfulness of processing based on consent before its withdrawal. Your personal data will subsequently be erased.

Only the name you provided will be published when your comment is published.

2.5  Software and apps

R. Eisenschmidt GmbH and DFS Deutsche Flugsicherung GmbH are the manufacturers of software applications and apps. Our applications are developed in accordance with the principles of “Privacy by Design” and “Privacy by Default” under Art. 25 GDPR.

Depending on the program, some of the following personal data will be entered for contract performance under Art. 6 (1) point (b) GDPR when software and apps are used:  

  • IP address
  • First and last name
  • Address
  • E-mail address
  • Customer number

By assigning a licence key to a user, we can provide assistance with technical problems. This also allows us to ensure that the applications are used by one person only, in accordance with our licence terms. If usage periods are extended, the data will be used to generate an invoice.

Some applications allow for developer access to voice input. However, this requires a specific request from the customer, and the voice messages will not be stored. 

2.6  Recipients of data

In the course of managing contracts and where applicable advertising by post, we share your personal data with service partners we need in order to manage the contractual relationship or service providers we engage to process data on our behalf under Art. 28 GDPR.

These are, in particular:

  • Postal service providers, customs office, carriers, shipping providers
  • File/data storage media destruction services
  • Manufacturers of printed or personalised products (for AIP VFR and aluminium signs)
  • Web hosters and IT service providers in the context of maintenance and software support
  • Debt collection service providers
  • Dialog marketing and e-mail marketing service providers
  • Google Ireland Limited
  • Payment service providers
  • Banking service providers
  • Remote maintenance tool providers
  • Aviationexam
  • Provider of a chatbot
  • Provider of a Learning Management System (Eisenschmidt Academy)
  • Provier for sending e-mails

We strictly adhere to the statutory requirements in all cases. The extent of the data transmitted is limited to a minimum.

In some cases, the selected payment service providers also collect data themselves if you create an account with them. In this case, you have to register with the payment service provider during the order process using your access data. The privacy statement of the respective payment service provider shall apply in this case.

2.7 Storage period

If data are collected for the provision of a website the data are erased after 21 days as standard procedure.

If an order is concluded the data are initially stored for the duration of the warranty period and thereafter in accordance with statutory retention periods, in particular retention periods under tax and commercial law (6 or 10/12 years). The obligation to retain the data commences at the end of the calendar year in which the contract was fulfilled. 

Upon expiry of the obligation to retain the data the data are fully erased from our customer database unless you have agreed to further processing and use. Erasure always occurs at the beginning of a calendar year.

Customer accounts without an order transaction and access to an online product are deleted after two years unless the customer concerned has agreed to further processing and use. Deletion always occurs at the beginning of a calendar year.

During the use of our software and apps, the personal data will be stored for that time and in order to generate invoices in accordance with the legal retention periods.

Data that the users must enter for registration at www.eisenschmidt-academy.aero and their individual results of the online training courses they use, will be stored for the duration of the relevant course and then for a maximum of five years.

2.8  Cookies

Our website uses cookies. Cookies are small text files that are stored in the internet browser or by the internet browser on a user’s computer system. If a user visits a website, a cookie may be stored on the user’s operating system. This cookie contains a character string that allows the site to uniquely identify the browser when the user visits the site again. We use cookies for the purpose of making our offer more user-friendly, effective and secure. Cookies also enable our systems to recognise your browser even after you have left a page and to offer you services. Some of the functions of our website cannot be offered without using cookies. In order for them to function it is necessary that the browser can be identified even after leaving the page.

We also use cookies on our website for the purpose of analysing the surfing behaviour of the visitors to our pages. This processing is based on Section 15 (3) TMG and Article 6 (1) point (f) GDPR and pursues the legitimate interest in the purposes mentioned above. Technological measures are taken to pseudonymise the data collected from you in this manner. It is therefore no longer possible to attribute the data to you personally. The data are not stored with other personal data concerning you.

Before we process these data or have them processed by the use of cookies, we ask the user of the website for consent, which can be revoked at any time. Before this consent has not been given, only the cookies that are technically necessary for the operation of the website will be set. Cookie settings are managed by the Shopware plugin EU Cookie Directive Pro, which can be accessed at any time here and via the footer on the homepage of the web store. This means that any expressed consent can be revoked at any time.

By selecting the relevant technical settings you can prevent your internet browser from storing cookies and transmitting the data they contain. Any stored cookies can be erased at any time. Please note, however, that you may not be able to make full use of all the functions of this website in this case.

You can find information on how to manage cookies on the most common browsers (including deactivating them) using the links below:

 

3. Integration of web tools

3.1 Trusted Shops: Trustbadge

The Trusted Shops Trustbadge is integrated on this website in order to display our Trusted Shops quality label and any reviews that may have been collected as well as to offer Trusted Shops products to purchasers following an order.

This serves the purpose of our overriding legitimate interest, established on the basis of a balance of interests, in optimising marketing by enabling secure sales transactions pursuant to Article 6 (1) point (f) GDPR. The Trustbadge and the services it advertises are offered by Trusted Shops GmbH. The Trustbadge is provided for data processed on our behalf by a CDN (content delivery network) provider. Trusted Shops GmbH also uses providers in the US. An adequate level of data protection is ensured. For more information on data protection by Trusted Shops GmbH please see: https://www.trustedshops.de/impressum/#datenschutz

When the Trustbadge is accessed the web server automatically stores a server log file which, for example, contains your IP address, the date and time of access, the volume of data transferred and the provider making the request (access data) and documents the access. Some login data will be stored to analyse any security discrepancies in a security database. The log files will be deleted automatically no more than 90 days after creation.

Further personal data are only transferred to Trusted Shops GmbH if you decide to use Trusted Shops products after concluding an order or have already registered for use. The contractual agreement between you and Trusted Shops shall apply. For this purpose, the personal data from the order information will be collected automatically. A neutral parameter that automatically checks hashed e-mail addresses via one-way function will automatically determine whether you have already registered as a buyer for product use. Prior to transmission, the e-mail address will be converted into a hash value that Trusted Shops cannot decrypt. After checking for a match, the parameter will be deleted automatically.

This is required to meet our and Trusted Shops’ overriding, legitimate interest in providing the buyer protection as it relates to the specific order and the transaction review services under Art. 6 (1) point (f) GDPR. Other details, including about filing an objection, can be found in the data protection statement listed above and in the Trusted Shops linked from Trustbadge.

If, during or after your order, you have granted your express consent under Art. 6 (1) point (a) GDPR, we will send your e-mail address to Trusted Shops GmbH, Subbelrather Str. 15c, 50823 Colognë (www.trustedshops.de), so that it can send you a review reminder by e-mail. This consent can be withdrawn at any time by sending a message c/o the contact information listed below or directly to Trusted Shops.

3.2 Google: reCAPTCHA, Analytics, Maps, Web Fonts, Ad

We use various services from Google Ireland Limited (Gordon House, Barrow Street, Dublin 4, Ireland) on our websites. For Google's privacy statement, please see http://www.google.de/policies/privacy/

Google also processes data in the USA. The level of data protection there is assessed by the European Court of Justice as insufficient according to EU standards. There is a risk that personal data transferred to the USA will be evaluated by US authorities within the framework of American data monitoring programs and that EU citizens will not have access to suitable legal protection.

The reCAPTCHA service is designed to distinguish whether information was entered by a person or via automated machine processing. For this purpose, your entries including your IP address and any other data needed by Google is sent to Google and further processed. However, Google will first shorten your IP address in the member states of the European Union or in other member states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the United States and shortened there. On behalf of the operator of this website, Google will use this information to analyse your use of this service. The IP address transferred by your browser by reCAPTCHA will not be consolidated with any other data held by Google. These data are subject to the data privacy provisions of the Google company (see link above) which differ from ours.

We use the Google Ad (formerly: Google AdWords) online advertising program and conversion tracking in relation thereto. This serves the purpose of our overriding legitimate interest, established on the basis of a balance of interests, in optimising the marketing of our website pursuant to Article 6 (1) point (f) GDPR. If you are directed via Google ad to our websites, a cookie is stored on your computer.

These cookies cease to be valid after 30 days, do not contain any personal data and thus do not allow personal identification. If you visit specific internet pages on our website and the cookie has not yet expired, we and Google can recognise that you have clicked on the advertisement and were forwarded to this page. Each Google Ad customer receives a different cookie. There is thus no possibility of cookies being traced via the websites of Ad customers. 

The information collected via the conversion cookie serves to create conversion statistics for Ad customers who have opted for conversion tracking. In this process the customers find out the total number of users who clicked on their advertisement and were forwarded to a page with a conversion tracking tag. However, they do not receive any information with which users can be personally identified. 

If you do not wish to participate in tracking you can object to this use by adjusting your browser software settings to prevent the installation of cookies (deactivation option). You will not be included in the conversion tracking statistics subsequent to this. You can find instructions for this at https://support.google.com/ads/answer/2662922?hl=en

Further information is available at http://www.google.com/policies/technologies/ads/.

We use the Google Analytics web analysis service on our websites. This is only activated when the visitor to the website has given his consent via the cookie banner. This consent can be revoked at any time. The basis for this data collection is thus Art. 6 para. 1 lit a DSGVO. The data processing serves the purpose of analysing this website and its visitors. To this end, on behalf of the operator of this website Google will use the information obtained to analyse your use of the website, compile reports on the website activities and perform further services for the website operator in connection with use of the website and the internet. The IP address transferred by your browser by Google Analytics will not be consolidated with any other data held by Google. Google Analytics uses cookies that allow your use of the website to be analysed. The information generated by the cookies on your use of this website is generally transferred to a Google server in the United States and stored there. IP anonymisation is activated on this website. This ensures Google will first shorten your IP address in the member states of the European Union or in other member states of the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transferred to a Google server in the United States and shortened there. 

You can also prevent cookies from being stored by selecting the relevant technical settings in your browser software; please note, however, that you may not be able to make full use of all the functions of this website in this case. In addition, you can prevent Google from collecting and processing the data generated by the cookie about your use of the website (including your IP address) by downloading and installing the browser plug-in available at the following link: [https://tools.google.com/dlpage/gaoptout?hl=en].

You can install an opt-out cookie to prevent Google Analytics from collecting data across multiple devices. Opt-out cookies prevent your data from being collected on future visits to this website. You must perform the opt-out on all used systems and devices for this to be fully effective. Clicking here will install the opt-out cookie on your terminal device: Deactivate Google Analytics. Click the link again to erase your cookies.

You can find detailed information on terms of use and data protection at https://www.google.com/analytics/terms/de.html or at https://policies.google.com/?hl=en.

In order to provide a map function, the Google Maps service via the Geocoding API Key, Maps JavaScript API Key and Directions API (the provider is also Google Ireland Limited).

When you visit a page of our website that contains Google Maps, your IP address will be sent to Google's servers and stored there. The map content will be sent by Google directly to your browser and integrated by it into the website. Other data that are transmitted: Date and time of your visit, as well as internet address or URL of our website. If you are logged into Google, this information will be associated directly with your account. We have no influence on this data transmission or further processing and use of the data by Google.

Google Maps is used for correct and convenient display of addresses; thus it is a service for our customers, prospective customers and visitors. This is a legitimate interest under Art. 6 (1) point (f) GDPR.

If you do not want Google to collect, process or use information about you from the display of Google Maps, you can deactivate JavaScript in your browser. In this event, the map cannot be displayed. 

We use web fonts provided by Google Ireland Limited for standard display of fonts on our websites. When you access a website, your browser loads the required web fonts to your browser cache in order to correctly display text and fonts.

For this purpose, the browser you use must connect to Google's servers. This notifies Google that our website was accessed via your IP address. No cookies are sent to the Google Fonts API when Google Fonts are used. No Google account data are sent to Google even if you have a Google account. Google only tracks the use of CSS and the fonts used, and stores these data securely. For more information see https://developers.google.com/fonts/faq.

The use of Google Web Fonts is in the interest of the standard, correct display of our online offers. This is a legitimate interest under Art. 6 (1) point (f) GDPR. If your browser does not support web fonts, your computer will use a standard font.

On our websites we have also placed videos that were published on our YouTube channel. These help to make our websites more informative for our customers and thus serve our legitimate interest in an optimal presentation of our offer in accordance with Art. 6 (1) lit. f DSGVO. The extended data protection mode of YouTube is used for the integration of the videos. If a website visitor opens one of our websites on which a video is embedded, a connection to the external YouTube server is established by displaying the preview image. According to YouTube's privacy policy, the data will not be evaluated in this case. When the video is started, the user's IP address is transmitted to YouTube and YouTube learns that the video has been viewed. If the user is logged in to YouTube, this information is associated with the corresponding user account. For more information about YouTube's use of this information, please see the YouTube Privacy Policy at www.google.de/intl/de/policies/privacy/.

3.3 Bit.ly

For the better display of links that direct to one of our websites (such as in newsletters, Facebook posts, print media, and our websites), we use the services of the URL shortener Bitly, Inc. (139 Fifth Avenue, 5th Floor, New York, NY 10010, US). This shortens and renames long URLs. If you click on one of these links, a connection to a Bitly server is established. Your IP address and the location derived from the IP address, the referring website, time and date of access, along with device settings, are tracked. We can view these data and use them based on our legitimate interest under Art. 6 (1) point (f) GDPR to analyse our marketing activities. Further use of the data collected is based on the data privacy policy of Bitly, Inc.: https://bitly.com/pages/privacy?lang=de.

3.4 TeamViewer

Our Customer Support is able to perform remote maintenance via the TeamViewer tool in the event of problems with our software. The provider is TeamViewer GmbH, Jahnstr. 30, 73037 Göppingen, Germany. After download and installation of the execution file (Teamviewer*.exe) you can opt to have a member of our support staff connect to our computer and receive access to your system. This requires that you give our support staff the ID that appears in the window. Only then do you consent to remote maintenance. This establishes a connection to the TeamViewer servers, thereby sending your IP address to TeamViewer GmbH. When performing the remote services, the employee can see your screen, including all information available on it. Thus, in your own interest, you should exit all programs and close everything on the screen that does not pertain to remote maintenance. For more information on data privacy by TeamViewer GmbH please see: https://www.teamviewer.com/de/privacy-policy/

 

3.5 Chatbot moin.ai

If a user opens our website www.eisenschmidt.aero, the chatbot moin.ai starts automatically. Provider of this service is the knowhere GmbH, Fleethaus, Steinhöft 9, 20459 Hamburg. The Chatbot supports a fast communication with the web page visitors and customers. It thus serves our legitimate interest according to Art. 6 (1) lit. f DSGVO in a quick and uncomplicated processing of customer requests.

All data and communication contents are stored only encrypted on servers in Germany. This also applies to data transmission, which is only carried out using SSL encryption. The chatbot collects all data anonymously, except for the information that the user voluntarily sends to the chatbot.    

In order that a user who has already started a conversation with the chatbot can be recognized again after a pause, an anonymous identifier is stored with the user when a conversation is started. This ensures that the user dialog can be continued even after multiple visits to the website without losing the context. This is stored until it is manually deleted. This deletion can be carried out at any time upon customer request.

If a chat message is forwarded to our customer support, a personal data record is collected, in which the e-mail address, name and a subscription, customer, order or invoice number of the user is requested. Only after the user's consent is given will the chat message be created.

3.6 QuestionPro survey tool

We use QuestionPro's web-based software and services for customer surveys and competitions. The provider is QuestionPro GmbH, Friedrichstraße 171, 10117 Berlin, Germany. When participating in a survey, the user is redirected from a link we provide to a web page that has been specially created for that survey. All data entered there will be stored on servers within the European Union and are subject to secure SSL encryption.

All data collected and stored during a survey is the property of the survey administrator, in this case R. Eisenschmidt GmbH. By default, this information is protected by entering our login data. QuestionPro only collects the participating IP addresses, but this information is not used to evaluate user behavior or for monitoring purposes.

Participants in surveys have the right to have their data deleted. For this purpose, a message to our customer support is sufficient.

The QuestionPro privacy policy can be found here: https://www.questionpro.com/de/help/privacy-policy.html

The USA is considered by the European Court of Justice to be a country with a level of data protection that is inadequate by EU standards. There is a risk that data may be processed by U.S. authorities for control and monitoring purposes, possibly without the possibility of legal recourse.

3.7 Mandrill

We use Mandrill to send transactional emails from our websites (order confirmation, shipping confirmation, forgotten password, etc.) and the newsletter. This is a service provided by Mailchimp (The Rocket Science Group, LLC, 675 Ponce de Leon Ave NE, Suite 5000, Atlanta, GA 30308 USA). Mailchimp has its headquarters and offices in the USA. The servers are also located in the USA. This means that data processed by Mailchimp may be transferred to the USA and stored or processed there. Information on Mandrill's data protection can be found in Mailchimp's privacy policy: https://www.intuit.com/privacy/statement/.

With Mandrill, we see the email address received, the time an email was sent, whether the email could be delivered and whether the links it contains were opened. This data can be viewed for 30 days. Only in the case of undeliverable e-mails is the information stored for 90 days.

 There is a Standard Terms of Use Agreement between Eisenschmidt and The Rocket Science Group, part of which is a Data Processing Addendum ("DPA"). You can view this here: https://mailchimp.com/de/legal/data-processing-addendum/#4._Sicherheit It states: [...] Mailchimp will process Customer Data as further described in Appendix A (Data Processing Details) of this DPA only in accordance with Customer's documented lawful instructions as set forth in this DPA, as required to comply with applicable law, or as otherwise agreed to in writing ("Permitted Purposes"). [...]

 The use of Mandrill is in our interest of a clear and easily manageable administration of e-mails and thus in accordance with Art. 6 (1) lit. f DSGVO.

4. Other functions and offers (on our websites and elsewhere)

4.1 Orders outside the web shop

If your order is placed using an order form that was provided to you as a hard copy, your data that is needed to process your request and to fulfil and conclude the order will be entered in our customer data management system and forwarded to the required recipients (listed under 2.6). This serves the purpose of contract performance under Art. 6 (1) point (b) GDPR.

The order form is used as evidence of your order for the storage period listed under 2.7. 

4.2  E-mail contact

You can contact us at one of our e-mail addresses (customer-support@eisenschmidt.aero, info@eisenschmidt.aero, aviation-training@eisenschmidt.aero, copyright@eisenschmidt.aero, media-relations@eisenschmidt.aero, marketing@eisenschmidt.aero, events@eisenschmidt.aero). In this case, the personal data concerning the user that are transmitted with the e-mail are stored.

The data are not shared with third parties in any case. The sole purpose of processing the personal data is to enable us to establish contact.

The legal basis for processing the data transmitted in the course of using the contact form or sending an e-mail is Article 6 (1) point (b) GDPR.

The data sent by e-mail will be erased as soon as they are no longer needed for the purpose for which they were collected. E-mails with content of a pre-contractual or contractual nature are retained for ten years and automatically deleted upon expiry of this period. E-mails with content of a purely informative nature are deleted after two years.

If the user establishes contact with us by e-mail they can object to the storage of their personal data at any time. In such a case, the conversation cannot be continued. Objections to storage can be lodged by post or by e-mail. All personal data that have been stored in the course of establishing contact are erased in this case. It is no longer possible to process/respond to e-mails in this case.

4.3  Newsletter

If you subscribe to our company's newsletter, the data in the respective input mask will be transmitted to the controller. The registration for our newsletter takes place in a so-called double opt-in procedure. I.e. after registration you will receive an e-mail in which you are asked to confirm your registration. This confirmation is necessary so that no one can register with other e-mail addresses.

The data will be used exclusively for sending the newsletter. The data will not be passed on to third parties. An exception exists if there is a legal obligation to pass on the data.

The subscription to the newsletter can be cancelled by the data subject at any time. Likewise, consent to the storage of personal data can be revoked at any time. For this purpose, a corresponding link can be found in each newsletter. Alternatively, it is possible to unsubscribe via the page www.eisenschmidt.aero/newsletter.

The legal basis for the processing of the data after registration for the newsletter by the user is, if the user has given his consent, Art. 6 para. 1 lit. a) DSGVO. The legal basis for sending the newsletter as a result of the sale of goods or services is Section 7 (3) UWG.

 

4.4  Contests

On Facebook, Instagram or our website, as well as at trade fairs and other events, we regularly hold contests that require the collection of personal data in order to participate. At a maximum, we collect the following data to hold these contests:

  • First and last name
  • Address
  • E-mail address
  • Telephone number

These data are used to hold the respective contest and fulfil the contract under Art. 6 (1) point (b), GDPR. The data will be transmitted to third parties only if needed to hold the contest (e.g. to the postal service to send prizes).

The participants’ data will be deleted within one month after the contest ends.

If the prize is sent by post, the data of the winners will be stored in accordance with the legal retention periods.

If we publish the names and/or photos of the winners, this will require express consent by the data subjects.

4.5  Social networks

Our Facebook, YouTube and Instagram pages are for active communications with our customers and prospective customers. We provide information about our products and services, along with special campaigns and events, on these sites.

When you visit our pages on these social networks, your data can be collected and stored automatically for market research and advertising purposes, even outside the European Union. If the aforementioned platforms are headquartered in the US, the following applies: An adequacy decision by the European Commission exists for the United States. This is based on the EU-US Privacy Shield that confirms an adequate level of data privacy for certified companies. To view the current certificate, please go to: https://www.privacyshield.gov/list

Usage profiles are created using pseudonyms from the data collected. These can be used for instance to create personalised ads on the platform and elsewhere. For this purpose, cookies are stored on your device to analyse user behaviour. If the users are also members of the respective platform, data not related to the devices can also be stored in the usage profiles.

The operation of these sites serves to protect our legitimate interest in the optimised presentation of our offer and effective, contemporary information and communications methods with customers and prospective customers under Art. 6 (1) point (f) GDPR. If you are asked to consent to data processing by the respective platform operators, the legal basis for the data processing is Art. 6 (1) point (a) GDPR.

On Facebook, we can use the “insights” data to access various categories. The data come from users that have clicked the “Like” button on our site and are used in anonymous form, so that no individuals can be identified. The following statistics can be accessed:

  • Number of “Likes”
  • The reach (distinguished among organic, viral and paid interactions)
  • Interactions (likes, comments, shares, clicks)
  • Page views
  • Demographic analysis (country of origin, gender, age)
  • Origin of the “Likes”
  • Most frequently accessed tabs

The data privacy statements of the providers contain further information on data processing. They contain detailed information on processing and using data by the providers, as well as contact persons and your related rights and objection options (opt-out) to protect your privacy. 

Facebook:

YouTube (Google)

If you need help, such as for requests for information, please contact us. However, please note that questions about the processing of data or the assertion of user rights are best sent directly to the providers of the relevant platforms, because only they have access to the data.  

5. Your rights as a data subject

As a data subject you have the following rights:

  • The right under Article 15 GDPR, to the extent specified thereunder, to obtain access to the personal data concerning you that we are processing;
  • The right under Article 16 GDPR to obtain without undue delay the rectification of inaccurate personal data concerning you that we are storing or have it completed;
  • The right under Article 17 GDPR to have the personal data concerning you that we are storing erased unless further processing is required
    • for exercising the right of freedom of expression and information;
    • for compliance with a legal obligation;
    • for reasons of public interest; or
    • for the establishment, exercise or defence of legal claims;
  • The right under Article 18 GDPR to restrict the processing of your personal data where
    • you contest the accuracy of the data;
    • the processing is unlawful but you oppose their erasure;
    • we no longer need the data but you require them for the establishment, exercise or defence of legal claims; or
    • you have objected to processing pursuant to Article 21 GDPR;
  • The right under Article 20 GDPR to receive personal data concerning you which you have provided to us in a structured, commonly used and machine-readable format or have them transmitted to another controller;
  • The right under Article 77 GDPR to complain to a supervisory authority. In order to do this you can generally contact the supervisory authority in your place of habitual residence or place of work or the place of our registered office.

If you have any questions regarding the collection, processing or use of your personal data or access to, rectification, blocking or erasure of data, withdrawal of consents granted or objection to a specific use of the data please contact us directly by post or e-mail at:

  • R. Eisenschmidt GmbH
  • Flugplatz 1
  • 63329 Egelsbach
    Germany
  • E-mail: customer-support@eisenschmidt.aero

Furthermore, under Article 21 (1) GDPR you have a right to object to processing based on Article 6 (1) (f) GDPR as well as to processing for direct marketing purposes.

The collection of data for the provision of the websites and storage of the data in log files is essential for the operation of the websites. The user is therefore unable to object to this.

Version 3.3, 30th June 2022

Viewed