Data Protection
Privacy Policy and Information about Cookies
We, Condor Flugdienst GmbH ("Condor"), recognise the importance of protecting your personal data and your privacy. In this Privacy Policy, we define how we collect, store, process and share with partners personal data from our customers and potential customers.
We collect your personal data via our websites ("Sites"), our call centres, our mobile applications ("Apps"), our questionnaires/surveys or our social media channels.
Our Privacy Policy applies to the following companies
This Privacy Policy applies to the sale of flight tickets, goods and services offered by Condor. Condor operates the following website: www.condor.com.
Personal data that we collect
When you make a booking with us, we will collect, store and process certain personal data about you. Read on to find out more.
Personal data that you provide to us
When you make a booking or other type of purchase or send us an enquiry, we will ask you for the following information: Your name, title, address, e-mail address, telephone number, date of birth, payment information and personal travel preferences. If you are paying by credit card, we will also ask you to provide details of the cardholder, the card number, the expiry date and the card verification number (CVC/CVV). For SEPA Direct Debit, we require the following information: Name of the bank account holder, the IBAN, the BIC, the address, as well as the e-mail address and telephone number. Payment information may also be forwarded to payment service providers in encrypted form. If you, as the person registering for the trip, specify persons as fellow travellers, we require their name, title and date of birth. We need to collect this information in order to be able to process the trip and other services you request from us. As the person registering for the trip, please make the contents of this Privacy Policy available to your fellow travellers. If you have provided an emergency contact, please also inform this person accordingly.
For flights to certain countries, Condor must provide so-called Secure Flight Data and Advance Passenger Information (API) for each passenger. In practice, secure flight data means title/gender, first name, last name, date of birth and Redress Number (i.e. a unique number from the US Department of Homeland Security if you have the same name as a person on the US watch list, if available). These data are automatically collected at the time of booking. API must be entered separately: Either in advance via the API data form available on our website or at check-in. For API we need your passport information. For flights to the USA, we also require your country of residence and your full first overnight address during your stay in the USA. Without this information Condor is not allowed to transport passengers.
When you book a flight with us, you may provide us with information about dietary requirements, your medical condition, disabilities and special needs. We need to collect this information in order to take your special needs into account when making a booking. Depending on the legal situation, Condor may not be allowed to transport passengers without the specified processing of health data.
We may need to share your personal data with our external contractors and transfer them to regions outside the European Union ("EU") as described in this Privacy Policy. If you no longer agree to this, this may mean that we can no longer provide the services you have requested or can only provide them in part.
If you are from outside the EU: By providing us with personal data, you agree that we may process and transfer those data internationally for the purposes for which they were provided and in accordance with the terms of this Privacy Policy.
If you enter a competition or promotion or report a problem with one of our services, we will collect your name and relevant contact information and any other personal information you choose to provide to us. If you complete one of our customer questionnaires/surveys after a flight with Condor, we will collect your name, relevant contact information and booking information, in particular the detailed flight information. We may share this information with external providers to produce statistical reports that do not clearly identify individuals.
If you contact us online, we may collect the following data: Your name, address, e-mail address, IP address, telephone number, date of birth, bank details, occupation, title and, if applicable, your membership of travel associations. If you contact us via our chat, we will also collect your e-mail address and IP address. If you call us, we will - with your consent - monitor and/or record telephone conversations for training and customer service purposes.
If you provide us with personal data (including telephone number or e-mail address) when using our services or visiting our website, but do not make a booking or other type of purchase, we will store and process the data for a limited time and for a specific purpose as described in this Privacy Policy. For details on the duration of storage, please refer to our cookie overview at www.condor.com/eu/help-contact/data-protection/overview-of-cookies.jsp.
Please inform us if there are any changes to your personal data.
Personal data that we collect and / or process about you
We collect the following personal data about you:
Information about services we have provided to you in the past, including your previous travel bookings. This includes flights and other additional services related to these bookings, such as information about previous service requests, feedback or complaints.
- Data on the manner of your usage of our websites and apps (such as flight data, search queries, location data, frequency of visits)
- We collect information about the website(s) you visited before using a link to our Sites, the pages you visited on our Sites, the time you spent on each page, what products you were interested in and what products you purchased, and when you left our Site(s).
- We may collect information about your computer (or mobile device/tablet) for system administration and marketing purposes, including, where available, your IP address, operating system, device location, browser type and cookie identification numbers. This is statistical data about our users' browsing actions and patterns. Any data we share with others does not identify individuals.
- We collect hashed (pseudonymised) e-mail address data for the sole purpose of cross-device tracking. Hashed e-mail address data are coded and cannot be assigned to or linked with personal data.
Personal data obtained from other sources
However, we may also obtain your personal data from third parties who collect information about you on our behalf. This includes:
- If you tell third parties that you wish to receive marketing communications from Condor, they will provide us with your contact information and marketing preferences in a protected manner.
- If you book a Condor flight ticket via an external travel agency, certain personal data (relevant to your booking, such as your name, address, e-mail address, date of birth or any special requirements you may have) will be forwarded to us so that we can provide the services you have booked.
Where we store your data and with whom we share them
We use your personal data for our own systems and those of our contractors and suppliers. Find out more about this.
When you provide us with your personal data, we store and process some of these data in our own systems and make them available to other external providers. These providers include:
- our technology, logistics and data management partners who help us to provide the services we offer or dispatch goods.
- our travel partners, such as external airlines, as well as airports, insurance companies and ground handling services, so that they can make the arrangements for you and provide you with the support you need.
- our partners who offer frequent flyer programmes and whose participants can earn or redeem miles with the respective partner when booking with Condor. The partners of the frequent flyer programmes process your data in accordance with their own privacy policies, which can be found on the respective websites.
- our payment service providers, e.g. trustees, online payment services and card payment intermediaries, who help us process customer payments and assist us in detecting and preventing fraudulent payments and bookings.
- our insurance partners. The insurance companies process your data in accordance with their own privacy policies in the event of a contractual relationship requested by you.
- The website www.condor.com uses services such as Google Analytics, a web analytics tool provided by Google Ireland Ltd ("Google"). Google Analytics uses so-called "cookies", i.e. text files that are stored on your computer and make it possible to analyse your use of the website. The information generated by the cookie about your use of this website is transmitted to Google servers in the EU and the USA and stored there. Google uses this information to analyse your use of the website, to compile reports on website activity for the website operator and to provide other services relating to website and Internet use. Google may share this information with third parties if Google is legally obliged to do so, or if these third parties process the data on Google's behalf. Google will never associate your IP address with any other data held by Google. You can prevent cookies from being installed by changing your browser settings accordingly; however, this may mean that you will no longer be able to use all the functions of this website to their full extent. By using this website, you authorise Google to process the data collected about you in the manner and for the purposes described above. You can revoke this consent at any time so that data are no longer collected and stored in the future. To do this, you can use the following plug-in: https://tools.google.com/dlpage/gaoptout?hl=en Google's Privacy Shield certification can be found at: https://privacy.google.com/businesses/compliance/#?dal_active=none
- Our website uses Google's anonymisation function. As a result, IP addresses are only stored and processed in abbreviated form so that data cannot be traced back to a specific person.
- Plug-ins for the social network facebook.com, which is operated by Meta Platforms Ireland Limited, ("Facebook"), are used on our website. When you access another website via our website that has one of these plug-ins, a connection to the Facebook servers is established and a message to your browser then displays the corresponding plug-in on the website. This enables the Facebook server to recognise which pages of our website you have visited. If you are logged in as a member of Facebook, Facebook can assign this information to your private Facebook user account. If you use the plug-in functions (e.g. click "Like", "Share" a page or leave a "Comment"), this information will also be assigned to your Facebook user account. The only way to prevent this is to log out before using the plug-in. For more information about how Facebook collects and uses the data, about your rights in this regard and about ways to protect your privacy, please refer to Facebook's Privacy Policy.
- Condor also operates its own page on Facebook. Condor is the controller of the data processing. If Condor and Facebook are joint controllers (e.g. within the scope of the GDPR pursuant to Art. 26 (1)), the corresponding agreement concluded under this link applies: https://www.facebook.com/legal/terms/page_controller_addendum Further information on responsibility can be found at the following link:https://de-de.facebook.com/legal/terms/information_about_page_insights_data
- Condor processes your personal data when you interact with the Condor Facebook page, such as your public profile information (e.g. display name). Also, if you provide your personal data in a post or in the comment function under a post or in Messenger messages. When you interact with the Condor Facebook page, Facebook Insights processes data (statistical data on page usage) about you. For more information, see the link https://de-de.facebook.com/legal/terms/information_about_page_insights_data
Information on the retention period and erasure of data on Facebook can be found here: https://de-de.facebook.com/about/privacy/update - Condor also has a page on the social network TikTok. You can find TikTok's privacy policy at https://www.tiktok.com/legal/page/eea/privacy-policy/de.
Some of these external providers may be based outside the EU. Organisations based outside the EU may not be subject to the same level of data protection controls as companies within Germany and the EU. We will only transfer your data to external providers outside the EU where your personal information is protected by one or more appropriate safeguards. These include, for example, the use of standard contractual clauses in the form published by the European Commission, or that contractors/suppliers may be subject to an independent data protection programme approved by regulators. With regard to the transfer of data to the USA, we would like to point out that the EU Commission adopted the adequacy decision for the EU-US Data Privacy Framework on 10 July 2023. This stipulates that the protection of data processed by certified companies meets the EU standard. This means that personal data can be transferred from the EU to the USA.
To find out more about our flight destinations, please click on the following link
How we use your data for our services
We process your personal data for our services either because this is necessary in the context of a contract concluded with you, because we have a legitimate interest in doing so or because we are legally obliged to do so. You can find out more about this here.
The following activities are carried out by us using your personal data because it is necessary in connection with a contract concluded with you or because you have requested it so that you can conclude a contract:
- managing your booking internally and informing our external contractors or suppliers of your booking to ensure that the services you have requested are provided.
- communicating with you regarding your booking or additional or other purchase, which may include sending booking confirmations, compiling travel documents and providing you with information and advice about your booking (such as airport and check-in information), and notifying you of changes to our services.
- providing the relevant authorities with your Advance Passenger Information (API) prior to your departure to and from certain destinations outside the EU.
We may not be able to take you to or from that destination if we have not sent your API to the relevant authorities in advance. While some destinations may not offer you as high a level of protection of your personal data or rights, we will always transfer the minimum amount of personal data necessary to fulfil our contract with you.
We may also use and process your personal information where such use or processing is necessary to carry out activities that are in our legitimate interests as a business.
To improve the customer experience as well as our products and services:
- to allow you to use interactive features of our Sites and Apps if you wish. When you use the Condor website or the Condor app, you can choose not to use interactive features by changing your settings.
- to ensure that content from our website, app and booking systems is presented in the most convenient way for you and your device.
- If you have made an enquiry or purchase with us or one of our partners your personal data may be used by us in the ways the law allows, to contact you by post, electronic means (e-mail or text message) and/or by phone with information and offers relating to these products or services.
- You will only receive information on Products and Services from Condor about those which we think are relevant to you.
- We will not pass your contact details to a third party to contact you or send you marketing communications unless you have expressly agreed that we may do so.
- You can unsubscribe from such e-mails, this option will be included in each e-mail sent to you apart from essential operational e-mails.
For internal research/analysis to improve the quality of our Services, the products we offer and new products we are developing by:
- Asking you to take part in surveys or customer/business discussion groups to constantly improve our products.
Aggregated customer data to make informed decisions based on analysis of customer booking/purchase trends and behaviours.
To establish, assert or defend against legal claims in order to protect our company from financial losses:
- In order to obtain information about the creditworthiness of customers in case of doubt, information about our customers may be forwarded to credit agencies (such as Creditreform) before a booking is made. These credit agencies process the data in accordance with their own privacy policies.
- In order to collect outstanding pre-departure payments, we will forward the customer details to our airport agents to collect the relevant amounts. In order to collect outstanding amounts after the flight, we will forward the booking information (i.e. the information you provided to us during the booking process) to our debt collection agencies.
- For the verification of payment and booking transactions.
- To prevent and detect fraudulent activities or criminal offences.
We may also use and process your personal information where such use or processing is necessary to carry out activities that are in our legitimate interests as a business.
- To improve the customer experience as well as our products and services:
- to allow you to use interactive features of our Sites and Apps if you wish. When you use the Condor website or the Condor app, you can choose not to use interactive features by changing your settings.
- to ensure that content from our website, app and booking systems is presented in the most convenient way for you and your device.
For information about products and services related to your flight:
- typical products and services that can be booked/purchased via www.condor.com, e.g. flights and additional services (such as meals on board). Other products and services offered by external companies: Car hire, travel insurance, airport parking, airport hotel, lounge pass; hotels & flights, rail & fly. To find out more about our partners, please click here (-> Book & Plan -> Partners).
If you have requested a booking with us or one of our partners, your personal data may be used to provide you with information and offers by post, electronically (by e-mail, messenger services or text message) and/or by telephone. You will only receive information about Condor products and services that we believe are relevant to you.
- We will not pass on your contact information to third parties so that they can contact you or send you messages for marketing purposes unless you have given us your express permission to do so.
You can unsubscribe from such e-mails. This option is available to you in every e-mail that is sent to you, except those that we have to send for important operational reasons.
For internal research/analysis to improve the quality of our services, the products we offer and new products we develop. We do this as follows:
- We ask you to participate in surveys or customer/company-related discussion groups; and
- We compile customer data to make informed decisions based on our analysis of customer booking/purchasing trends and behaviour.
To promote our company, brands and products and to be able to assess the reach and effectiveness of our campaigns:
- Promotion of Condor products and services. You can unsubscribe from this marketing information at any time and revoke your consent to receive it. This option is available to you in every marketing communication we send you.
- Please refer to the section "When and how we use your information for marketing purposes" for more information.
We may use and process your personal information as set out below if we have your consent to do so:
- To support you or organise support from external providers if you have special requirements in terms of health conditions, mobility assistance and dietary needs.
- To send you advertising (including newsletters) about our products and services where we have obtained your prior consent. See the section "When and how we use your information for marketing purposes" for more information.
- If you have not made an enquiry or purchase from us, we will only send you information and offers by e-mail or text message if you expressly register (agree) to receive them.
- To provide you with targeted advertisements on the internet via social media platforms and other platforms or websites operated by other companies. You may receive advertisements based on information about you that we have provided to the platform or because the platform has determined, at our request, that you have similar characteristics to the people whose information it has received from us. To find out more about this, please read the information in our cookies overview.
To ask you by telephone if you would like to take part in surveys to help us continually improve our products.
To obtain further information about you by sharing your personal information with technology companies or platforms that may also have information about you and may match their records with ours. We/these companies may use cookies to match the personal information that each of us holds about you (see our Cookies Policy). We use this information in two ways:
- We identify similarities between characteristics, behaviours and markets of you with other people who have the same characteristics.
- We tailor and personalise our interactions with you to make them more relevant to you. These interactions include the way you navigate our Sites, the content that appears on them and the advertisements we send or display to you in our direct marketing campaigns and through targeted advertising. You can find out more in the section "How we personalise our marketing for you".
We may use and process your personal information in the ways described below if we are required to do so by law:
- To process complaints and in the course of legal disputes and court proceedings. This may involve us proactively contacting you if there are or have been problems with a booking/purchase.
- To process Advance Passenger Information (API) prior to departure to ensure that we fulfil our legal obligation to provide your API data to the relevant authorities.
For certain destinations, we are obliged to disclose certain personal data to government agencies or other authorities in Germany and other countries. These data may include API data or reservation record data (so-called PNR data) and are only transmitted due to legal obligations. Recipients are, in particular, authorities responsible for immigration, border control, law enforcement, health protection, security and counter-terrorism. Data are only transferred to countries that have a data protection standard comparable to that of the EU. Even if we are not obliged to provide information to such authorities, we may, at our discretion, assist them in certain cases to detect and prevent criminal offences. We may also share your data with relevant third parties or for the purpose of detecting and preventing fraudulent payments or bookings.
- For example, if you have booked a flight with an external airline, your data will be transferred to the airline operating your flight.
- Condor occasionally uses other airlines to operate a flight. In this case, it is necessary to transfer your data to the operating airline. In this case, the terms, conditions and privacy policy of the respective airline apply.
We and external organisations acting on our instructions, such as external law firms, will use and process your personal data as follows if we believe it is in your vital interests that we do so:
- To support you in the event of an incident or emergency or to ensure that third parties support you in such an event.
How we personalise our marketing for you
To ensure that our marketing communications and promotional materials are of interest to you, we work with external companies that help us to make suitable offers to our customers and potential customers. You can find out how we do this here.
With the help of new technologies and our advertising agencies and advertising platforms, we may use your personal information as follows:
- To ensure that the marketing communications we send you about products or services are of interest to you;
- To customise and track our digital marketing (such as our internet banner advertising) and links from our marketing partners' websites to our Sites. This digital marketing may include marketing associated with Condor or marketing that relates to external companies to whom we provide advertising-related services.
Our business partners and advertising networks may also provide you with advertisements on our Sites. We allow third-party companies to collect information about your online activities using cookies and other technologies.
These companies include our suppliers and business partners who collect information when you view or interact with an advert on one of our Sites, as well as advertising networks.
We also collect information about your online activities using cookies and other technologies when you use websites other than our Sites, in order to provide advertising services to third party companies. This technology enables us to show you an advertisement on other websites based on your page visits and other behaviour on our Sites.
The information collected by these external companies may be used to make predictions about your preferences or interests and to display advertisements on our Sites or in other parts of the internet that match these presumed interests. See our Cookies Overview for more information.
We only process these and similar data with your consent.
Information on use of the Salesforce system
1. Use of the Salesforce system
We use the Salesforce system to organise and perform various tasks relating to customer relations, communication, contractual services and corporate planning. By using it, we can better meet the needs of our customers and offer them a better customer experience.
For example, customer data that you have transmitted to us may be used to personalise our communications and marketing campaigns - provided that you have given us your consent to do so. A high level of integrity and security of your data is always guaranteed.
We always comply with the applicable data protection laws and ensure that your data is treated securely and confidentially. If consent is required and has been obtained, this is the legal basis for data processing. All other cases of lawful processing are based on our legitimate interest in customer management.
The system includes the following components:
Salesforce Sales Cloud: This is a customer relationship management system that we use to manage our customer contacts and organise our sales processes. It enables us to track customer interactions efficiently and helps us to build better relationships with our customers.
- Salesforce Service Cloud: This tool enables us to optimise our customer service. It enables us to process customer enquiries and problems quickly and efficiently.
- Salesforce Marketing Cloud: We use this component to plan, execute and analyse our marketing campaigns. It enables us to send personalised messages via various channels and measure the effectiveness of our marketing efforts.
- Salesforce Marketing Cloud Personalisation: Formerly known as Salesforce Interaction Studio, this tool enables us to address our customers in a personalised way. With its help, we can analyse the behaviour of users on our channels and provide them with content tailored to their preferences. It is part of the Salesforce Marketing Cloud.
- Salesforce Data Cloud: This basis system enables us to combine and analyse customer data from various Condor-internal systems and Condor-internal sources. With its help, we can gain valuable insights about our customers and tailor our services accordingly. In addition, we use the data obtained from this analysis to activate them for further use in other Condor-internal systems and Condor-internal solutions. This helps us to continuously improve and personalise our services and interactions with customers.
2. Data collection and processing
The information we collect may come from various sources, including, but not limited to, registration for our newsletter and other communication offers (such as e-mails, SMS, push messages or chat channels), your interactions on our channels and your purchase actions of tickets and products.
The data collected and processed in the Salesforce system are used for various purposes. This includes providing our services and improving your customer experience by personalising our channels and offers. In addition, we use these data to optimise and analyse our processes, for strategic business planning and to carry out marketing communication and customer loyalty measures. In all these activities, the protection of your data is always paramount.
Possible use cases:
- Registration for our communication offers: When you sign up for our newsletter or other communication offers such as e-mails, SMS, push messages or chat channels, we collect the information you provide in order to send you regular updates, offers and relevant content.
- Use of our channels: When you use our digital channels, we collect data about your usage behaviour and preferences. These data enable us to provide a personalised user experience and tailor our offers to your wishes.
- Purchase of tickets and products: When you make a purchase in our system, we process your data in order to complete the transaction, as well as to provide and improve our service.
- Customer service: We use your data to respond to your enquiries and feedback and to improve our customer service.
- Marketing and customer loyalty: We use your data to implement marketing campaigns and customer loyalty programmes. Our aim is to present you with relevant offers and provide you, our customer, with the best possible service.
- Analysis and strategic planning: We use your data to carry out business analyses and support our strategic planning. This helps us to continuously improve and develop our services and products in order to offer you an even better customer experience.
Some of the data are also processed in the USA. Salesforce is a participant in the EU-US Data Privacy Framework, which governs the correct and secure transfer of personal data from the EU to the USA. Further information: commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en
3. Internal data exchange and data encryption
We use internal data pipelines and a data-based exchange within our technical systems to transfer data between the various Salesforce systems. We use encrypted and anonymised Salesforce IDs to recognise customers in order to ensure the security of your data. A Salesforce ID is a unique system identifier that is generated for people who interact with us.
In addition to use within the Salesforce system, these data may also be used in other systems, provided this is done in accordance with the defined processes. In any case, we guarantee the secure transmission and storage of your data through advanced and anonymised data encryption.
4. Cross-system data utilisation (cross-cloud)
Within the Salesforce system, the various components enable the efficient and seamless exchange of data. This cross-system or "cross-cloud" utilisation of data allows us to combine information obtained from different sources and use it in the best possible way.
For example, customer data collected in the Salesforce Sales Cloud can be used to personalise our communications in the Salesforce Marketing Cloud - provided that the appropriate consent has been given and the relevance of the process is given. At the same time, we can use information from the Salesforce Data Cloud to better understand our customers and customise our services accordingly.
This integrated approach enables us to optimise the performance of our services and offer our customers a consistent experience across all our channels. The integrity and security of your data is always guaranteed.
5. Data transmission and storage location
The servers for the Salesforce system are located in the EU and meet the high standards of the GDPR. Your data traffic is transmitted within the Salesforce system via secure data lines.
6. Further data protection information for Salesforce (in English)
Privacy Laws by region: https://www.salesforce.com/privacy/regions/
Guidelines by product: https://www.salesforce.com/privacy/products/
Salesforce Privacy Policy: https://www.salesforce.com/company/privacy/
E-mail address of the Salesforce Data Protection Officer: https://www.salesforce.com/form/other/privacy-request/ or to privacy@salesforce.com
Objection to data processing and unsubscribing from messages
You can give or revoke your consent to the use of individual cloud services at any time on our website at https://www.condor.com/eu/help-contact/data-protection/overview-of-cookies.jsp or in the Condor app in the respective section of the Settings.
You can unsubscribe from the newsletter and other marketing messages via the option provided in each message (e.g. link, reply to the respective message). You can also object to any data processing and messaging in this context by sending an e-mail to datenschutz@condor.com.
If you do not give your consent, your data will not be used to personalise our communication and marketing campaigns.
What you need to do if you don’t want our marketing communications
We understand you might no longer want to hear from us and that’s ok. It is easy to opt-out or unsubscribe, please read more here.
You have the right at any time to ask us not to process your personal data for marketing purposes. You can exercise your right to prevent such processing by choosing not to actively opt in to receiving marketing communication during our online booking process. You can also exercise this right at any later time by using the unsubscribe link on any marketing e-mail you receive, by following the opt-out instructions on any direct marketing communication sent by post, or by sending an unsubscribe request to datenschutz@condor.com.
Your rights with regard to personal data
We explain your rights regarding your personal data below. Further information can be found here. Your right of access to your personal information
Your right of access to your personal information
You have the right to make a so-called "Data Subject Access Request" (DSAR). This is a request for information about the personal data we hold about you. If we also believe that we need to provide you (or someone else on your behalf) with personal information, we will provide it to you or the other person free of charge.
We may ask you for proof of identity and information about your interactions with us to help us locate your personal information. This may include information about your previous booking(s) or other types of purchases. If a person or company is acting on your behalf in this regard, they must provide us with written confirmation, signed by you, that you have authorised that person or company to make this request.
We will ask for this confirmation before we provide you (or anyone acting on your behalf) with a copy of any personal information we may hold about you. We may not provide you with a copy of your personal information if it contains the personal information of other individuals or if we have another lawful reason for not providing you with this information.
Please read the section entitled "How to contact us" if you wish to make a request for personal data.
Correction and updating of your personal data
We value the accuracy of your information. If your personal data changes, please let us know.
You can contact us at datenschutz@condor.com if you wish to change your name or address/e-mail address or if you have discovered that any other information we hold about you is incorrect or out of date.
Withdrawal of your consent
Where we rely on your consent as the legal basis for processing your personal information, as described in the section above entitled "How we use your information for our services", you may withdraw your consent at any time. If you wish to withdraw your consent to receive direct marketing materials that you have previously signed up to receive, please see the section headed "What to do if you no longer wish to receive marketing communications from us" to find out more.
If you wish to withdraw your consent for us to process information relating to your dietary requirements, health conditions, disabilities and special requirements, please contact us at the following address: meda@condor.com. Please note, however, that if you ask us to stop processing this information, we may no longer be able to provide the services you have requested or may only be able to provide them in part.
If you withdraw your consent, our use of your personal information prior to your withdrawal may still be lawful.
Objection to the use of your personal information
Where we are relying on our legitimate interests as the legal basis for processing your personal information for any purpose(s), you may object to our use of your personal information for these purposes by emailing or writing to us at the address set out at the end of this Privacy Policy. Except for the purposes for which we are permitted to continue processing your personal information with certainty, we will temporarily suspend the processing of your personal information based on your objection until we have clarified the matter.
If, like you, we believe that your objection is justified in accordance with your rights under data protection law, we will permanently stop using your data for these purposes. Otherwise, we will provide you with our reasons for continuing to use your data.
Erasure of your personal information or restriction of its processing
In certain circumstances, you may request that your personal information be removed from our systems by emailing or writing to us at the address set out at the end of this Privacy Policy.
Unless we have an ongoing legitimate reason to continue processing or retaining your personal information, we will use reasonable endeavours to comply with your request.
You may also ask us to restrict the processing of your personal information if you believe that this type of processing is unlawful, if you have objected to its use and our investigation into this is ongoing, or if you require us to retain this information in connection with legal proceedings. While the processing of your personal information is restricted, we may only process it if we have your consent or are legally required to do so, such as for record-keeping purposes, to protect the rights of another person or organisation, or in connection with legal proceedings.
Providing your personal information in a structured data format
Where we rely on your consent as the legal basis for processing your personal information or we need to process this information as part of your contract, as described in the section "How we use your information for our services", you may ask us to provide you with a copy of this information in a structured data format.
You may ask us to send your personal information directly to another service provider and we will do so if it is technically possible. We may not provide you with a copy of your personal information if it contains the personal information of other individuals or we have another lawful reason to withhold that information.
How to contact us:
For questions about this Privacy Policy and any requests regarding personal data ("Personal Data Request"), you can contact us by e-mail or by writing to the following address:
Betrieblicher Datenschutzbeauftragter
Condor Flugdienst GmbH
An der Gehespitz 50
63263 Neu-Isenburg
Germany
Once you have submitted your request, we have 30 days to respond. If you contact us by e-mail, the correspondence will be unencrypted. In individual cases, processing may take longer, e.g. if the amount of data is very large or we have only received incomplete information. We always endeavour to process your request as quickly as possible.
Making a complaint
We encourage you to contact us if you have a complaint about data protection and we will endeavour to resolve any issues or concerns you may have.
You have the right to lodge a complaint with the data protection authority if you believe that your legal rights have been violated or if you have reason to believe that your personal information is being or has been used in a way that violates applicable law. The address of the Data Protection Authority of Hesse is as follows:
Der Hessische Datenschutzbeauftragte
Postfach 3163
65021 Wiesbaden
Germany
or
Gustav-Stresemann-Ring 1
65189 Wiesbaden
Germany
https://datenschutz.hessen.de
If you wish to contact us about this Privacy Policy, you can send a letter or e-mail to Condor's Data Protection Officer at the addresses given in the "How to contact us" section.
Retention of your personal data
With regard to the retention and erasure of your personal data, we fulfil our legal obligations and follow our internal procedures.
If you would like to find out more about the retention and erasure of your data, please click here.
If you have completed a booking or other type of purchase with us, your personal information will be retained to ensure that we can provide you with the best possible customer service.
In addition, we retain your personal data for legal and audit-related purposes, but only for as long as necessary and in compliance with the statutory retention periods.
These periods are generally six to ten years. If necessary for the establishment, exercise or defence of legal claims, we may also store your data until the expiry of the statutory limitation periods (usually three years, in individual cases up to 30 years). The corresponding data will then be deleted.
Our approach to data security
We take data security very seriously. Here we explain our approach to this topic.
The transmission of information via the internet is not completely secure and although we do our best to protect your personal data, we cannot guarantee the security of your data transmitted to our Sites. Therefore, any transmission is at your own risk. Once we have received your information, we will take all appropriate steps to keep your personal data secure and to prevent unauthorised access or use, or loss of your data by putting in place appropriate security measures. We will also restrict access to those persons who have a business need to know.
All information you send us is stored on our secure servers. All payment transactions are encrypted using SSL technology. Where we have given you (or where you have chosen) a password which enables you to access certain parts of our Sites, you are responsible for keeping this password confidential. We ask you not to share your password with anyone.
We have a procedure for dealing with suspected data breaches and will notify you and the Data Protection Officer of Hesse if we are legally obliged to do so.
What happens when you follow a link from our website to an external website
There are links on our Sites to other websites that have their own privacy policies. You can find out more here.
Our Sites contain links to and frames of websites of our clients, suppliers and contractors, advertising partners and other external companies. You can recognise that an external company is involved in offering a product or providing a service that you have requested by the fact that its name appears in connection with ours.
If you follow a link or otherwise use these other websites, you should note that these websites have their own privacy policies and that we do not accept any responsibility or liability for these privacy policies or for these external websites. Please read these privacy policies before you submit any personal data to these websites.
Cookie guidelines
Our website uses cookies to distinguish you from other users. You can find out more about what cookies are at: http://www.allaboutcookies.org/. The cookies used on our website belong to one of the following categories.
Marketing cookies
These technologies are used to display advertisements, content or offers that are relevant to you and to offer you a personalised user experience.
Functional cookies
These technologies enable us to provide you with content and functions from our partners. For example, they enable you to play videos.
Essential cookies
These technologies are required to ensure the core functionality and operation of the app and the website.
External advertisements on our Sites and in social media
The purpose of these types of advertisements is to present you with a selection of products/services that you have viewed on other external websites or social media channels and that are presented to you by our agency when you visit our Sites or social media channels. The advertisements may also present variations of the products/services that may be relevant to you based on your browsing behaviour on these other external websites.
Condor advertisements on external websites
The purpose of these types of advertisements is to present you with a selection of travel-related products/services that you have viewed on our website and that are presented to you by our agency when you visit other selected websites or social media channels. The advertisements may also present other Condor products/services that may be relevant to you based on your browsing behaviour.
We use advertising technology solutions to provide you with these types of advertisements. When we share data for the above purposes, they are encrypted and do not contain your name.
Details on the various cookies and a selection of which cookie categories or individual cookies from our partners you would like to allow or deselect can be found here under Cookie Settings.
Rejecting cookies
Note:
If you choose to remove cookies, parts of the website you are on may not function properly or your use of the website may be impaired.
You can opt out of external advertising networks using your interest-based advertising information.
If you use DNT or similar services, your information will no longer be shared with our external advertising network partners for the purpose of interest-based advertising. Whether and which (personalised) advertising you receive on the Condor website depends on your cookie settings.
Please note that these opt-out mechanisms use a cookie on your device, and if you delete the cookies from your browser, this preference cookie will also be deleted.
As an industry-wide agreed standard on how to handle DNT requests has not yet been implemented, our website does not currently support DNT requests. Until this standard has been implemented, we will not respond to DNT requests.
Information on MyCondor
1. What is MyCondor?
When you set up a free MyCondor customer account, we offer you the opportunity to receive personalised offers and promotions so that we can provide you with a travel experience tailored to your individual needs.
You can store your personal data, which will then be available for future bookings and purchases. You have the option of using the data from your customer account for flight bookings, the "Manage My Booking" function, the Condor app and online check-in.
2. Registration
It is not necessary to complete your MyCondor customer profile in full to be able to use the MyCondor customer account. However, certain personalised functions and promotions are only available to customers with a fully completed MyCondor customer profile. Minors under the age of 16 are not permitted to register with MyCondor. We will delete any MyCondor customer account opened by a minor under the age of 16 as soon as we become aware of this fact. An e-mail address and a password are required to register with MyCondor. A confirmation e-mail with an activation code will be sent to you for registration. This e-mail constitutes an offer by Condor to conclude a contract for the use of MyCondor on the basis of the terms of use. These can be found here.
This offer is accepted and the contract concluded by entering the activation code from the e-mail sent into the field provided and confirming. After this confirmation, the MyCondor customer account is active.
You can voluntarily add further data to your MyCondor customer profile, such as your name, title, address, other contact details and your mobile phone number or your preferred booking class, desired destinations or departure airport. Accordingly, we process the data stored in your MyCondor customer account insofar as this is necessary in individual cases to enable you to personalise the content of the website and the aforementioned application.
3. Social login
To register and log in to MyCondor, you also have the option of authenticating your identity and logging in to MyCondor using your existing account with one of the following social networks or companies, Google, Facebook, Amazon or Microsoft. For this purpose, you will find the corresponding symbols of the respective providers of the social networks and companies supported by our website on the registration page or login page.
Before a connection to the providers is established, you must expressly agree to the process and data transfer described below:
By clicking on the respective symbol, a new window will open in which you must log in with your login data for the social network or company. After you have successfully logged in, the social network will inform you which data will be transmitted to us for authentication as part of the registration or login process at MyCondor. If you have consented to this data transfer, we will store the transferred data and fill in the following fields as part of the registration process and in the customer profile: Title, surname, first name, e-mail address and, if applicable, postcode. The information we require for registration or login is your e-mail address.
Your data will only be stored by us and used for the purposes set out in section 1 above once you have expressly consented to the use of the transmitted and required data. There is no link between the MyCondor customer account created with us and your account with the relevant social network beyond the authentication process.
In the authentication process for MyCondor registration and login, Condor does not transmit any data to the providers of the social network or the company. We have no influence on the purpose and scope of the data collection nor on the further processing of the data by the providers of the social network or the company. For further information, please read the privacy policy of the respective provider.
- Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Google – Privacy Policy
- Meta Platforms Ireland Ltd, 4 Grand Canal Square, Grand Canal Harbour, Dublin 2, Ireland
Facebook - Privacy Policy
- Amazon Europe Core S.à.r.l., 38, avenue John F. Kennedy, L-1855 Luxembourg
Amazon – Privacy Policy
- Microsoft, Microsoft Ireland Operations Limited, Attn: Data Protection Officer, One Microsoft Place, South County Business Park, Leopardstown, Dublin 18, Ireland
Microsoft - Privacy Policy
4. "Stay logged in" function
To stay logged in to MyCondor, you can tick the "Stay logged in" checkbox. This option only applies to the computer or device and the browser that is in use when you tick the checkbox.
For this purpose, we use cookies that automatically recognise you when you visit the website or application again within 30 days.
5. Consent to the transmission of information and individual offers
In your MyCondor customer account, you can give your consent to the transmission of information and individual offers regarding Condor's services and to being contacted for this purpose by electronic means of communication (e.g. by e-mail, SMS, messenger services) and/or by telephone.
If we have your consent to do so, we will process your contact details (i.e. name, telephone number, mobile phone number, e-mail address) in order to send you the requested information and individual offers.
6. Withdrawal of consent, deletion of the user account
You have the right to withdraw your consent at any time. The withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal.
If you no longer wish to use the services of MyCondor, you can delete your MyCondor customer account at any time. Your personal data collected in the course of using MyCondor will then be deleted immediately - subject to any conflicting retention obligations.
You can delete your MyCondor account and individual data you have entered yourself within your MyCondor account. To do this, go to the MyCondor settings and click on the "Delete account" button. You will receive an e-mail with a deletion confirmation.
Changes to this Privacy Policy
We reserve the right to update or amend this Privacy Policy from time to time.
As at: 16 September 2024