Rotterdam The Hague Airport’s General Privacy Statement
1. Introduction
Welcome to Rotterdam The Hague Airport, where each day thousands of travellers arrive and depart, where retailers welcome shoppers and which is the location of a wide range of enterprises. At Rotterdam The Hague Airport, we take pride in making everyone feel welcome and safe. And protecting your privacy is an important part of this. This privacy statement offers you a transparent and accessible overview of how Rotterdam The Hague Airport treats your personal data. This privacy statement sets out which personal data we collect, how long we retain this data and which rights you can exercise.
Many people believe that we at Rotterdam The Hague Airport collect more information about you than is actually the case. There are also other enterprises located at Rotterdam The Hague Airport that process your personal data, such as the Royal Netherlands Marechaussee, Dutch Customs, airlines and the operators of retail units and catering establishments. As a rule, Rotterdam The Hague Airport does not have access to the personal data they process. If you want to know how they treat your personal data, please consult the websites of these organisations.
In this privacy statement, we describe for each service that Rotterdam The Hague Airport offers the personal data that we process, why we do this and how long we retain those data.
2. Which rights do you have?
Access to, amendment and deletion of your personal data
You have the right to know what personal data on you are processed by Rotterdam The Hague Airport. If we have not obtained the data directly from you, you also have the right to know from what source they derive and to receive a copy thereof.
If your personal data prove to be incorrect, you can ask us to amend your data. You can also request us to delete personal data and to discontinue their use. If we process your personal data on the basis of your consent, and there is no other legal basis for the processing, you have the right to withdraw that consent and we will comply with your request to delete them. In some cases, we may refuse your request if, for example, we need your personal data for security reasons at Rotterdam The Hague Airport or for tax administration.
Restriction of processing and right to transfer your data
If in your opinion we are not processing your data in a correct manner, you can request a restriction of the processing.
You can also ask us to transfer your digital personal data to you or to another party in a readable and usable form.
Right to object
In addition to requesting deletion or restriction of the processing, you can also object to the processing of personal data by Rotterdam The Hague Airport. Firstly, you can do so if you do not agree to Rotterdam The Hague Airport using your personal data for direct marketing (for instance by profiling).
Secondly, you can object to the use of your personal data on grounds relating to your particular situation. If you object on this ground, we will in principle temporarily discontinue or restrict the processing. If your objection has been accepted, we will permanently discontinue or restrict the processing.
Your request and our response
If you have a question, a request or if you wish to lodge a complaint, email our Privacy Champion via [email protected]. We will do our utmost to respond to your request in a timely manner.
We may ask you to send us a copy of a valid ID if this is necessary in order to confirm your identity. For more information on making a safe copy, check the website of the National Government.
If any part of your request is unclear to us, we may ask you to specify your request and/or to provide us with additional information, to enable us to provide you with the best possible service.
3. Processing personal data outside the European Union
Rotterdam The Hague Airport processes personal data as much as possible within the European Union. Rotterdam The Hague Airport may engage a processor who delivers services whereby data are processed in countries outside the European Union, including the United States of America or India. We do this only in a manner that complies with the requirements of the General Data Protection Regulation.
4. Whose privacy statement is this and how can you contact us?
Who is the controller?
This privacy statement has been issued by Rotterdam The Hague Airport (Rotterdam Airport B.V.)
The contact details of Rotterdam Airport B.V. are:
Postal address
Rotterdam Airport B.V.
Postbus 12025
3004 GA Rotterdam
The Netherlands
Visitor address
Rotterdam The Hague Airport
Rotterdam Airportplein 60
3045 AP Rotterdam
Netherlands
How to contact our Data Protection Officer
Rotterdam Airport B.V. is a subsidiary of Royal Schiphol Group N.V. (“RSG”). RSG has implemented a privacy governance policy that also applies to Rotterdam Airport B.V. RSG has appointed a Data Protection Officer (DPO). One of the tasks of the DPO is to supervise whether Rotterdam Airport B.V. processes personal data in accordance with the GDPR.
Do you have any questions or requests concerning your data? If so, you can send an email to the DPO via [email protected] or send a letter to:
Schiphol Nederland B.V.
Attn. Data Protection Officer
Postbus 7501
1118 ZG Schiphol
Together with your request, please provide your name, address, email address and telephone number.
5. How to lodge a complaint with the Dutch Data Protection Authority
If you are dissatisfied with the way in which we treat your privacy or handle your request or objection, you can file a complaint with the Dutch Data Protection Authority via https://autoriteitpersoonsgegevens.nl/en/contact-dutch-dpa/contact-us.
6. Where can you find the latest version of this privacy statement?
If necessary, we will update this privacy statement. This may be due to changes in policies, changes in the data processing operations or changes in the systems we use to process data.
This version was issued in July 2020.
Video cameras
Which personal data do we process?
Video cameras are installed at Rotterdam The Hague Airport that record camera footage. This means camera image recordings may also be made of you when at or in the vicinity of the airport.
Why do we process your personal data?
We use the camera footage to ensure Rotterdam The Hague Airport’s security. Pursuant to the Aviation Act and other legislation and regulations, we are under a statutory obligation to ensure the airport’s security. We therefore process the camera footage to comply with a legal obligation.Furthermore, we also require the footage recorded by the video cameras for operational purposes. Consequently, we have a legitimate interest in processing the camera footage. We do not use the camera footage for other purposes.
How long do we retain your details?
The camera footage is not retained for any longer than 28 days, unless there are good reasons for storing the images for a longer period, for example for the investigation of an incident.
Who do we share your data with?
Rotterdam The Hague Airport could transfer camera footage to the Royal Netherlands Marechaussee, on the basis of a claim of the prosecutor.
Who is the controller?
Rotterdam Airport B.V.
The Royal Netherlands Marechaussee, is controller with regard to the camera footage transferred on the basis of a claim of the prosecutor.
Because Rotterdam The Hague Airport cannot assess whether camera footage is relevant to national security without the assistance of the Royal Netherlands Marechaussee, we normally do not grant access to camera images on our own accord. Rotterdam The Hague Airport therefore advises anyone wanting to view such images to submit a request in that respect (also) to the Royal Netherlands Marechaussee. For further information, please see: https://english.defensie.nl/topics/privacy-rights/privacy-rights-at-the-netherlands-ministry-of-defence.
Access to Rotterdam The Hague Airport (for travellers)
Which personal data do we process?
Rotterdam The Hague Airport has an obligation to check that only travellers departing on the same day have access to the area beyond security control. In this respect, Rotterdam The Hague Airport checks boarding pass data at the security checkpoints.
Why do we process your personal data?
Rotterdam The Hague Airport has a legal obligation to ensure the security of the airport. We therefore process the data in order to comply with a legal obligation.
How long do we retain your details?
Rotterdam The Hague Airport only checks whether you have a valid boarding pass. Rotterdam The Hague Airport does not save any information.
Who do we share your data with?
We do not share your personal data with other parties.
Who is the controller?
Rotterdam Airport B.V.
Wi-Fi
After explicitly agreeing to the terms and conditions, visitors to RTHA may use the Wi-Fi network as a free service, provided by KPN. If you make use of the free Wi-Fi network, your data is being processed according to the KPN terms and conditions. For more information, please refer to the following links: KPN’s Terms and Conditions (in Dutch) and KPN’s privacy statement (in Dutch).
Who is the controller?
KPN B.V.
Baggage
Which personal data do we process?
If you travel through Rotterdam The Hague Airport with baggage, information of your baggage is processed. Your baggage is given a unique barcode which is linked to your name and possibly a frequent-flyer number.
Why do we process your personal data?
Your data are processed in order to monitor security at the airport and to facilitate a smooth flow of baggage. We process your data for the purpose of screening, routing and sorting your baggage. Pursuant to the Aviation Act and other legislation and regulations, we are under a statutory obligation to ensure the airport’s security. We therefore screen your luggage to comply with a legal obligation. For the routing and sorting of your baggage, we have a legitimate interest in processing your data.
How long do we retain your details?
The data will be destroyed within seven days once your flight has departed.
Who do we share your data with?
Depending on the circumstance, we share details about your baggage with the airline you are flying with to facilitate the smooth flow of your baggage.
Who is the controller?
Rotterdam Airport B.V.
Lost & Found
Which personal data do we process?
If you lose something at Rotterdam The Hague Airport, you can report the loss via Rotterdam The Hague Airport’s website. Depending on the information you enter on the site, we will process the following personal data:
Furthermore, we obviously collect items that are left behind at Rotterdam The Hague Airport. For example, if you lose your wallet or proof of identity, we will also process the personal data connected with these items.
Why do we process your personal data?
The purpose of processing your data is to return your lost items to you. We do not process the data for other purposes.
How long do we retain your details?
We will not keep the contact details you provide us in connection with your lost item for longer than one month.
The retention period for an item we find depends on the item concerned. Passports and identity cards we immediately pass on to the Royal Netherlands Marechaussee. Bank cards, credit cards and public transport cards are destroyed after around three months. Most other valuables (jewellery, documents, USB flash drives, electronics) are destroyed after twelve months.
Who do we share your data with?
We will hand passports and ID cards to the Royal Netherlands Marechaussee. Furthermore, we will obviously share your data with a delivery service if we send your lost item back to you.
Who is the controller?
Rotterdam Airport B.V.
Shopping
Which personal or other data do we process?
When making purchases in the terminal, your boarding pass will be scanned in some cases. When your boarding pass is scanned, the flight number specified on your boarding pass (and thus also the destination of your flight) will be stored. The shop passes on to Rotterdam The Hague Airport the flight number and destination together with information on your purchase (the till receipt).
Rotterdam The Hague Airport cannot use this information to trace your identity.
Why do we process your (personal) data?
The shops send till data to Rotterdam The Hague Airport so that we can identify which products sell well and which do not. We use this information to optimise the services offered in the shops. We therefore have a legitimate interest in processing these data.
How long do we retain your details?
The till data are deleted as soon as Rotterdam The Hague Airport no longer uses it.
Who do we share your data with?
The shops themselves have access to the data regarding the purchases made at their establishments, such as date and time of the purchase of specific items.
Furthermore, we only share data with retailers at Rotterdam The Hague Airport that cannot be traced to a single individual.
Who is the controller?
The retail units at Rotterdam The Hague Airport are responsible for the data they share. Rotterdam Airport B.V. is responsible for the data that Rotterdam The Hague Airport controls.
Passenger satisfaction survey
Which personal or other data do we process?
At the airport you may be asked about your experiences with Rotterdam The Hague Airport as part of a passenger satisfaction survey. In addition to your experiences with Rotterdam The Hague Airport, we will also ask you for your age, gender and nationality. We will never ask you for your name or contact details.
Why do we process your (personal) data?
We conduct passenger satisfaction surveys with the aim of improving our services at the airport.
Prior to the survey, you will be asked if you wish to participate in the survey. Participation is voluntary and you may always refuse to provide certain information.
If you are younger than sixteen years old, your parent or caregiver will first be asked to provide permission for your participation.
How long do we retain your details?
The results of the passenger satisfaction surveys are processed in reports. We do not retain data that can be traced to an individual.
Who do we share your data with?
We share the results of the passenger satisfaction surveys with our partners at the airport (shops, food & beverage, security, cleaning). These results do not contain any personal data.
Who is the controller?
Rotterdam Airport B.V.
Website
Which personal or other data do we process?
If you visit a Rotterdam The Hague Airport website, we will register the IP address of the device you are using. We may also place cookies on your device. For more information about this, please read our cookie statement.
Moreover, there are a number of ways in which you can leave personal and other data via Rotterdam The Hague Airport’s website when you use or purchase one of our services:
Who is the controller?
Rotterdam Airport B.V.
Social media
Rotterdam The Hague Airport has a number of social media channels. These social media channels feature Rotterdam The Hague Airport news, information, special offers and things worth knowing about Rotterdam The Hague Airport. We will never ask you to place privacy-sensitive information of yourself or others (such as email address, name, address, telephone number) on our social media channels. Should you nevertheless do so, we may remove publicly shared privacy-sensitive data.
If you have questions or comments about Rotterdam The Hague Airport, you can share your personal data via a private message. If you want to know what we do with these data, go to the ‘Contacting Rotterdam The Hague Airport’ section.
Contacting Rotterdam The Hague Airport
Which personal or other data do we process?
You can contact Rotterdam The Hague Airport’s customer service by telephone, e-mail, Rotterdam The Hague Airport’s website and social media. Depending on your question, Rotterdam The Hague Airport may ask for your contact and fight details.
Why do we process your personal data?
Rotterdam The Hague Airport will only use the data shared by you to answer your question and to improve its customer service (for instance, by means of anonymised Q&As that can be modified by input from customers). Rotterdam The Hague Airport has a legitimate interest in processing your data.
How long do we retain your details?
We will delete your personal data after two years. Thereafter, we retain anonymised versions of your question or comments.
Who do we share your data with?
If your question or comments can only be answered by another party, we will refer you to the party in question. We will never pass on your data ourselves.
If you contact us via social media, there is a chance that your message will also be used for other purposes by the provider of the social media channel. For more information about this, read the privacy statement of the company concerned.
Who is the controller?
Rotterdam Airport B.V.
Newsletter
Which personal data do we process?
We process your e-mail address to send you our newsletter and possible other voluntary provided information, such as first name, company name and job title.
Why do we process your personal data?
You consent to the use of your e-mail address in order for us to send you our newsletter.If you have also given consent to receive other information such as offers and questionnaires, we may send you those as well. You can always unsubscribe from our messages via the link at the bottom of the page of every message.
How long do we retain your details?
If you unsubscribe, your e-mail address will be added to our suppression list, (list of unsubscribed e-mail addresses), in order to make sure you will not receive the newsletter again in error. If you don’t want that, you can request us to delete your e-mail address.
Who do we share your data with?
We do not share your details with other parties.
Who is the controller?
Rotterdam Airport B.V.
Cookies
We may place cookies on your computer when you visit our website. For more information about this, read our cookie statement.
Business relations of Rotterdam The Hague Airport
Which personal data do we process?
Rotterdam The Hague Airport maintains relations with representatives of companies in a whole range of areas. As a rule, we register the following contact details of these representatives: first and last name, job title, email address and telephone number. Depending on the circumstances, we may also register other contact details or preferences.
Why do we process your personal data?
There may be an agreement between the company you work for and Rotterdam The Hague Airport. In that case, we will process your details primarily in order to perform the agreement concerned.
We do not have agreements with (the employers of) all our business relations. All our business relations, regardless of whether we have an agreement with them or not, are occasionally sent a newsletter or an invitation to participate in an event at Rotterdam The Hague Airport. We will use your personal data for this purpose. We have a legitimate interest to process the personal data of our business associates. If you do not wish to receive the newsletter, you can unsubscribe from it.
How long do we retain your details?
Information maintained by Rotterdam The Hague Airport is regularly checked that it is up to date. If information proves to no longer be correct, it is deleted or amended.
Who do we share your data with?
We share your details within the Rotterdam The Hague Airport organisation. We do not share your data with third parties outside Rotterdam The Hague Airport.
Who is the controller?
Rotterdam Airport B.V.
Tenants
Which personal data do we process?
For the purpose of maintaining contact with the staff of our tenants, potential tenants and parties with whom we collaborate, we process their first and last names, job titles, email addresses and telephone numbers.
Why do we process your personal data?
We lease and manage retail and office space at the airport. We process the personal data of employees of parties with whom we enter into lease or other agreements in order to perform the agreement concerned. We have a legitimate interest in processing the personal data of the employees with whom we do not (yet) have an agreement.
How long do we retain your data?
The retention period of your data depends on the duration of the agreement concluded with Rotterdam The Hague Airport. If the agreement ends and we do not require your data for other reasons, your data will be deleted.
Who do we share your data with?
We do not share your details with other parties.
Who is the controller?
Rotterdam Airport B.V.
Neighbours
Which personal data do we process?
Rotterdam The Hague Airport maintains relations with neighbours. We process contact details of neighbours that have subscribed to our newsletter and/or an event at Rotterdam The Hague Airport.
Why do we process your personal data?
We process your personal data to send you our neighbours newsletter, or your participation to an event. We process your personal data on the basis of your consent. You can always unsubscribe from our messages via the link at the bottom of the page of every message. You can unsubscribe for an event via the same contact details that you used to subscribe to the event.
How long do we retain your details?
If you unsubscribe for the neighbour newsletter, your e-mail address will be added to our suppression list, (list of unsubscribed e-mail addresses), in order to make sure you will not receive the newsletter again in error. If you don’t want that, you can request us to delete your e-mail address. In case of an event, your data will be deleted after the event.
Who do we share your data with?
We share your data within the Rotterdam The Hague Airport organisation.
Who is the controller?
Rotterdam Airport B.V.
Working at Rotterdam The Hague Airport
Which personal data do we process?
If you apply for a job or internship at Rotterdam The Hague Airport, we process the following personal data: first name, last name, e-mail address, resume and motivation letter. If you work at Rotterdam The Hague Airport we may use the following personal data as part of our re-boarding and onboarding activities: name, e-mail address and name employer.
Why do we process your personal data?
Rotterdam The Hague Airport processes the personal data of applicants only for recruitment purposes.If you are under the age of 16, we request you to provide us with your data only if your parents or caretakers provide the data on behalf of you.
If you work at a company at Rotterdam The Hague Airport, we may process your personal data to let you participate in our re-boarding or onboarding activities.
How long do we retain your details?
We will delete your data one month after closing the application procedure. If you have given your consent during the application process, we will retain your data for up to one year after the application procedure has ended. After that, we will delete your data. Personal data processed as part of our re-boarding or onboarding program will be deleted two years after termination of your employment agreement.
Who do we share your data with?
We share your details within the Rotterdam The Hague Airport organisation. We do not share your data with third parties outside Rotterdam The Hague Airport.
The website werkenoprotterdamthehagueairport.nl also contains job opportunities of other parties at the airport. If you apply for such a job, you will be linked directly to the website of the relevant party. Rotterdam The Hague Airport does not have access to the data that you share with such party.
Who is the controller?
Rotterdam Airport B.V. with regard to the Rotterdam The Hague Airport job opportunities and re-boarding and onboarding activities. With regard to job opportunities of other parties, the other party is the controller.
