Terms of processing personal data
1. Conditions for processing feedback
Customer feedback is handled at Tallinn Airport by the employees of Tallinn Airport and, if necessary depending on the circumstances of the feedback, by contractual tenants and/or partners associated with Tallinn Airport.
In order for Tallinn Airport to be able to process the feedback, verify the facts and respond to the customer, the customer is required to provide their personal data: name and email address. Tallinn Airport does not disclose the customer’s personal data to other parties mentioned in the feedback without notifying the customer thereof in advance. The customer will receive a response to the feedback from Tallinn Airport within a maximum of ten working days. If the customer does not provide their personal data, they will not receive a response from Tallinn Airport.
Tallinn Airport processes feedback for security considerations and to ensure better customer service in order to meet contractual and legal obligations. Tallinn Airport takes feedback into account when making day-to-day management decisions as well as in the overall development of the company to deliver an excellent customer experience that meets expectations.
Tallinn Airport will retain the customer feedback and the resulting correspondence in its document management system, website content management environment and web server for five years after processing the feedback has ended. Customers have the right to access and request the correction or deletion of their personal data by submitting a digitally signed written request to the Head of Information Security and Data Protection of Tallinn Airport ([email protected]).
3. Conditions for processing submitted information
At Tallinn Airport, incidents affecting flight safety are processed by the Flight Safety Department of Tallinn Airport ([email protected]) and, if necessary, depending on the circumstances of the incident, by partners operating in the territory of Tallinn Airport and/or the Civil Aviation Administration.
Providing personal data is voluntary. In order to allow Tallinn Airport to process cases, verify the facts and, if necessary, send a response, the person who reports the incident needs to provide their personal data. Tallinn Airport does not disclose the personal data of the person who reports an incident to other parties mentioned in the incident.
Tallinn Airport processes feedback on incidents affecting safety to improve the level of flight safety. Tallinn Airport will retain the information received about incidents and the processing data in the website content management environment and web server for five years after processing the feedback has ended. Persons who report incidents have the right to access and request the correction or deletion of their personal data by submitting a digitally signed written request to the Head of Information Security and Data Protection of Tallinn Airport ([email protected]).
4. Privacy Policy for Access to Documents
Requests for access to the Tallinn Airport Handbook at Tallinn Airport are handled by the Leading Quality Specialist of Tallinn Airport. In order to gain access to the handbook and to receive a notification on updates to the manual, the applicant must provide their personal data: name and surname, name of institution, position and email address. Tallinn Airport will not disclose these personal data to other parties without the prior consent of the person or a legal basis. If the applicant does not provide their personal data, they will not gain access to the Tallinn Airport Handbook.
Tallinn Airport processes the provided personal data for the purpose of giving its partners access to the documentation required for the use of airfields.
Tallinn Airport will retain the provided personal data in its website content management environment and web server for as long as the person has a user account for accessing the Airport Handbook. Tallinn Airport deletes the personal data immediately when the user account is closed.
Persons have the right to access and request the correction or deletion of their personal data by submitting a digitally signed written request to the Head of Information Security and Data Protection of Tallinn Airport ([email protected]).
5. Privacy Policy for Recruitment
Tallinn Airport and Tallinn Airport GH (hereinafter referred to as Tallinn Airport) collect personal data for precisely and clearly defined and legitimate purposes, and they are not processed in a manner that is in conflict with these purposes.
As part of the recruitment process, Tallinn Airport processes the personal data received from applicants or the reference providers (e.g. CV, motivation letters, characterisation from the reference provider).
The following are deemed to be personal data: first name and surname, personal identification code, gender, date of birth, photo, languages of communication and the data displayed in the Business Register.
The following are deemed to be contact details: email address, residential address, contact telephone number.
The following are deemed to be recruitment data: curriculum vitae (CV), copy of educational certificates, motivation letters, video interviews, references and characterisations from reference providers, results of psychological tests.
Applicant: a natural person who has expressed their wish to enter into an employment contract or a relationship based on the law of obligations with Tallinn Airport.
Reference provider: the natural person whose details the applicant provided to Tallinn Airport when applying for a job (name and contact details).
Tallinn Airport will retain and processes personal data for up to 1 year from the end of the recruitment project.
Applicants and reference providers have the right to request the correction, erasure and restriction of processing of personal data.
A request for correction, erasure, restriction of processing or objection to processing must be digitally signed and emailed to [email protected].
Tallinn Airport responds to the requests or objections sent by an applicant or reference provider no later than one month after receipt of the request or objection. This period of time may be extended by two months, if necessary, taking into account the complexity and the number of the requests or objections. Tallinn Airport will inform the applicant of the extension of the deadline for responding and the reasons for the delay within one month of receipt of the request or objection.
Tallinn Airport reserves the right to reject a request or objection if Tallinn Airport is unable to identify the applicant or the reference provider.
The applicant or the reference provider has the right to lodge a complaint with Tallinn Airport, the Data Protection Inspectorate or a court if the applicant or reference provider believes that his or her rights have been violated in the processing of personal data. The contact details for the Data Protection Inspectorate can be found on the website https://www.aki.ee.
6. Keeping you informed during a crisis
To keep its own employees and those of its partners informed (via SMS) in a crisis situation, Tallinn Airport will process personal data (name, telephone number and position) on the basis of justified interest (art. 6(1)(f) of the GDPR). This we will do to ensure security and the smooth functioning of the processes implemented and the measures taken in said crisis. The text messages with which we keep you informed will be mediated by Telia Eesti AS. Everyone has the right to review the analysis of justified interest in data processing pertaining to their own personal data. To request to do so, e-mail [email protected].
7. Terms and conditions for processing data for the provision of VIP Standard, VIP Private Express, VIP Business Express and room rental services
At Tallinn Airport, the data of customers using the VIP, Express and room rental services are processed by the VIP service and aviation security staff, who send the data necessary for the provision of the service to the Police and Border Guard Board, the Tax and Customs Board, the Passenger Registration Department of Tallinn Airport GH and the company providing the aviation security service.
The following data are required for the provision of VIP, Express and room rental services and for the performance of the contract and legal obligations: passenger’s name, flight number, flight date, name and email address of the customer. Tallinn Airport will retain the personal data indicated in the order in its customer management system, website content management environment and web server for five years after the provision of the service. The provision of personal data is necessary to enable Tallinn Airport to comply with its legal and contractual obligations. If the customer does not provide the personal data, Tallinn Airport cannot provide VIP, Express or room rental services to the customer.
Customers have the right to access and request the correction or deletion of their personal data by submitting a digitally signed written request to the Head of Information Security and Data Protection of Tallinn Airport ([email protected]).
8. Privacy Policy for Services Ordered from Online Shop
Tallinn Airport uses the personal data provided when services are purchased from the online shop to send the ticket and the invoice, process the order and verify the payment. The provision of personal data is necessary for providing the service and making the payment, as otherwise it will not be possible to buy services from the online shop. The ticket’s QR code and date of validity, and the buyer’s name and the email address will be retained in the online shop app for up to six months.
Tallinn Airport is the controller of the personal data provided. The personal data necessary for the execution of a payment are sent to Maksekeskus AS.
Customers have the right to access and request the correction or deletion of their personal data by submitting a digitally signed written request to the Head of Information Security and Data Protection of Tallinn Airport ([email protected]).
If a data subject feels that Tallinn Airport has violated their rights by processing their personal data, they may lodge a complaint with the Data Protection Inspectorate.
Contact details:
Tallinn Airport Administration
telephone: +372 605 8700 (Mon to Fri 9–16)
email: [email protected]
address: Sepise 2, 11101 Tallinn
Tallinn Airport Information Service
telephone: +372 605 8888 (24 hours)
email: [email protected]
Tallinn Airport Head of Information Security
email: [email protected]
Data Protection Inspectorate
telephone: +372 627 4135
email address: [email protected]
address: Tatari 39, 10134 Tallinn