top of page
BANNER 970x250.png

update 25.Nov.2024

1. Introduction

This Privacy Policy outlines how Skylift Aviation GmbH ("Skylift Aviation," "we," "us," or "our") collects, processes, and protects your personal data in compliance with the General Data Protection Regulation (GDPR) and other applicable data protection laws. By using our services, you consent to the practices described in this policy.

2. Data Controller

The data controller for your personal data is:

Skylift Aviation GmbH
Josefsplatz 6 / 102
1010 Vienna, Austria
Email: office@skylift-aviation.net

3. Personal Data We Collect

We may collect the following types of personal data:

3.1 Data You Provide Directly

  • Name

  • Email address

  • Phone number

  • Billing and shipping address

  • Payment details (processed securely by third-party providers)

  • Professional details (e.g., company name, job title)

3.2 Data We Collect Automatically

  • IP address

  • Browser type and version

  • Operating system

  • Referring website

  • Date and time of access

  • Clickstream data

  • Cookies and tracking data as per our Cookie Policy

3.3 Sensitive Data

We do not intentionally collect sensitive personal data (e.g., health, religion, or political opinions). If such data is provided, it will only be processed with your explicit consent.

3.4 Children’s Data

Our services are not intended for children under the age of 16, and we do not knowingly collect personal data from children. If we become aware that we have inadvertently collected data from a child, we will delete it promptly.

4. Data Protection Principles

We are committed to processing data in accordance with our responsibilities under GDPR. As outlined in Article 5 of the GDPR, personal data shall be:

  • Processed lawfully, fairly, and in a transparent manner in relation to individuals.

  • Collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes.

  • Adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed.

  • Accurate and, where necessary, kept up to date.

  • Kept in a form that permits identification of data subjects for no longer than is necessary for the purposes for which the data are processed.

  • Processed in a manner that ensures appropriate security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction, or damage using appropriate technical or organizational measures.

5. Purpose of Data Processing

Your personal data is processed for the following purposes:

5.1 Contractual Obligations

  • To provide services and products requested by you

  • To process payments and manage invoices

  • To communicate with you regarding services

5.2 Legitimate Interests

  • Improving our services and website

  • Ensuring the security of our systems

  • Marketing and promotional activities (with the option to opt out)

5.3 Legal Obligations

  • Complying with legal requirements, such as tax and accounting regulations

6. Legal Basis for Processing

We process your personal data based on the following legal grounds:

  • Performance of a Contract: Processing necessary for the fulfillment of contractual obligations.

  • Consent: For specific purposes, such as email marketing, where you have explicitly agreed.

  • Legitimate Interests: When processing is necessary for our legitimate business interests, provided this does not override your rights.

  • Legal Obligations: To comply with legal and regulatory requirements.

  • Vital Interests: When processing is necessary to protect the vital interests of you or another person.

7. Data Sharing and Recipients

We may share your personal data with:

  • Service providers and partners (e.g., payment processors, IT support)

  • Regulatory authorities or law enforcement agencies when required by law

  • Third parties involved in a corporate transaction (e.g., merger or sale)

We ensure that all third-party recipients comply with GDPR requirements. Skylift Aviation does not sell or rent your personal data to third parties.

8. Data Retention

We retain your personal data only as long as necessary to fulfill the purposes outlined in this policy or as required by law. Retention periods include:

  • Contractual and billing data: 7 years (to comply with tax regulations)

  • Marketing data: Until you opt out or withdraw consent

  • Website usage data: Up to 2 years

9. Your Rights

Under GDPR, you have the following rights:

9.1 Access

You have the right to request access to your personal data and obtain a copy.

9.2 Rectification

You can request corrections to inaccurate or incomplete data.

9.3 Erasure

You have the right to request deletion of your data ("right to be forgotten"), subject to legal retention obligations.

9.4 Restriction

You can request that we restrict processing of your data under certain circumstances.

9.5 Data Portability

You can request a copy of your data in a structured, machine-readable format.

9.6 Objection

You have the right to object to data processing for direct marketing or legitimate interests.

9.7 Withdraw Consent

Where processing is based on consent, you can withdraw it at any time.

To exercise your rights, contact us at: office@skylift-aviation.net

10. Data Security

We implement technical and organizational measures to protect your personal data against unauthorized access, loss, or destruction. This includes:

  • Encrypted data transmission (e.g., SSL/TLS)

  • Secure data storage

  • Access controls and regular security audits

11. International Data Transfers

If personal data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards, such as standard contractual clauses or equivalent mechanisms. Any such transfers will be performed in compliance with GDPR requirements.

12. Cookies

We use cookies to enhance your experience on our website. For details on the types of cookies we use and how to manage them, please refer to our Cookie Policy.

13. Complaints

If you believe we have violated your rights under GDPR, you have the right to lodge a complaint with a supervisory authority. In Austria, you can contact:

Austrian Data Protection Authority
Barichgasse 40-42
1030 Vienna, Austria
Email: dsb@dsb.gv.at

14. Hosting and Security Measures

We use secure hosting providers to ensure your data is protected against unauthorized access and other risks. Our hosting partners comply with GDPR and implement industry-standard safeguards.

15. Profiling and Automated Decision-Making

Skylift Aviation does not use your personal data for profiling or automated decision-making processes that have legal or significant effects on you.

16. Updates to This Policy

We may update this Privacy Policy from time to time. Any changes will be posted on our website with a revised "Last Updated" date. Continued use of our services constitutes acceptance of the updated policy.

Banner CBT_VCR 300x600.jpg
Skylift Aviation Logo

SKYLIFT AVIATION GMBH

Josefsplatz 6 | 102 

1010 Vienna

AUSTRIA

M: consulting@skylift-aviation.net

P: +43 664 400 31 68

FN 446938 m | VAT 70311824

Privacy Policy (GDPR Compliant)

of Skylift Aviation GmbH

bottom of page