Your flight from the virtual world into reality
Your flight from the virtual world into reality

DATA PROTECTION DECLARATION

1. Introduction

By agreeing to this Privacy Policy, 3-Parts and the passenger confirm that they will comply with applicable data protection laws, data protection regulations and data guidelines. “Services” refers to all our products and services, like website, booking form, communication, login, platform, messaging service, events, social media presence, etc. Personal data is information that relates to an identifiable natural person.

3-Parts and the users communicate via the Internet. We would like to point out that the Internet is generally not a secure environment because it is an open network and is associated with certain security risks over which we have no control. We therefore appeal to you to take personal responsibility for the handling of your personal data. To the extent permitted by law, we accept no liability for the security of data that you transmit to us via the Internet or other electronic channels, or for any direct or indirect damage. We ask you to choose other communication channels if this appears necessary or reasonable for security reasons.

2. Who is responsible for processing my personal data and who can I contact?

3-Parts
Seestrasse 155a
8802 Kilchberg
Switzerland

info@3-parts.ch
+41 79 403 39 63

3. What personal data does 3-Parts process about me?

We process personal data that you provide to us, that we need to provide our services and that is generated when we provide our services. This includes the following categories of personal data in particular:

  • Personal data that you provide to us: in particular information on category, class, name, address, contact details and photo of passport or ID.
  • Communication data: in particular communication data such as e-mail address, telephone number, general correspondence with 3-Parts, including documentation of communication, communication with other users of the services
  • Purchase data: in particular payment details such as credit card details and other payment details, billing address, purchased services, information in connection with queries about services or the contracts concluded for them
  • Data in connection with the marketing of services: in particular participation in events, as well as photos, videos and other media that record 3-Parts events.
  • Data in connection with the use of our services, server log: in particular connection data, IP address and other identifiers such as user name, MAC address of the smartphone or computer, data from cookies and similar technologies, date and time of the visit to our services, duration of the visit to the services, visit to websites, information on browser and operating system, data traffic, geolocation data
  • Other data that you make available to us

4. From whom does 3-Parts receive my personal data?

We receive personal data from

a) Direct sources

In principle, we process personal data that we receive directly from you, such as from the booking form, through communication with you, through your profile information, your activities in the airplane, private jets and lounges, private messages with travelers, participation in meetings and events, etc.

b) Indirect sources

We also receive personal data relating to you indirectly. This happens in particular when users provide data about you when using our services, for example when they interact with you or submit a message concerning you. We may also obtain additional information from data sources such as social media or from publicly accessible sources such as debt collection registers or debt registers, commercial and association registers, the press and the internet. In individual cases, personal data may be derived from the combination of various non-personal data.

5. On what legal basis and for what purposes does 3-Parts process my personal data?

a) Introduction

We process personal data in accordance with the provisions of the Swiss Data Protection Act (DSG) and the General Data Protection Regulation of the European Union (GDPR).

b) For the fulfillment of a contract

We process personal data in direct connection with the conclusion and performance of contracts. Such contracts are in particular those concerning the use of our services that you conclude with 3-Parts. The purposes of data processing are primarily based on the specific service and how you use it.

c) To fulfill legal obligations

We process personal data if there is a legal or regulatory obligation to do so. The processing purposes include in particular

  • Documentation of compliance with certain legal and regulatory requirements
  • Compliance with legal and regulatory requirements to ensure the legally compliant operation of the services
  • Participating in investigations and proceedings, cooperating with and responding to requests from authorities and courts

d) Based on your consent

If you have given us your consent for certain processing purposes, this forms the legal basis for processing.

e) Zur Wahrung berechtigter Interessen

We process personal data if this is necessary to protect our legitimate private interests or those of third parties or to protect legitimate public interests. Examples:

  • Ensuring IT security and IT operations: in particular troubleshooting, operation and further development of our IT systems and our services, identity checks
  • Quality control: in particular preparing internal reports on users, transactions, activities, services, services and other business aspects of 3-Parts for business management and development, preparing statistics, budgets, records and management information, organization of business operations, project management, research, development and further development of services
  • Advertising: in particular web analysis and tracking (e.g. using cookies), improving our visibility, publicizing the content of our services (e.g. using social media plug-ins)
  • Market research: understanding and identifying customer behavior and interests
  • Customer support: in particular maintaining and developing customer relationships, managing memberships, managing users of our services, communication, customer service and support, including outside of contract processing, sending newsletters
  • Risk management: in particular consultation and data exchange with information agencies to determine creditworthiness and default risks or creditworthiness, decision as to whether you receive a flight contract
  • Ensuring compliance: particularly checking compliance with 3-Parts' internal rules and compliance with constitutions, laws, regulations, guidelines and morals and ethics
  • Carrying out corporate transactions: in particular the sale or purchase of business divisions, companies or parts of companies and the associated transfer of personal data
  • Dealing with legal disputes: in particular the assertion of legal claims and defense
  • Protecting ourselves and third parties: in particular protecting third parties and our employees, our data, business secrets and assets as well as assets that have been entrusted to us, safeguarding domiciliary rights, security of our facilities and buildings (e.g. access controls, video surveillance)
  • Preventing and investigating criminal offenses and other inappropriate behavior: in particular combating abuse, collecting evidence in the event of criminal offenses

6. Which technological means does 3-Parts use for data processing?

a) Introduction

We use cookies and similar technologies that allow us to store information on your device or to gain access to information stored on your device. This enables us to better understand user behavior, e.g. to provide our services in a technically error-free, secure, user-friendly and demand-oriented manner.

b) Cookies

Cookies are small text files that are stored in the cookie file on your computer's hard disk when you visit our website. Through the use of cookies, your browser receives an identifier and shows it on request.

Most of the cookies we use are so-called session cookies. These store your entries while you navigate the website within the same session (e.g. so that your shopping cart content is not lost). Session cookies are automatically deleted at the end of your visit to our website. In contrast, permanent cookies remain stored on your device for several sessions and enable us to recognize your browser the next time you visit the website (and, for example, to carry out an automatic log-in or to display the website in your preferred language and according to your preferences). Such persistent cookies are deleted when their expiration date is reached or if you delete them beforehand.

c) Plug-ins

Plug-ins (also known as social plug-ins, social media plug-ins or social share plug-ins): You can recognize plug-ins by the corresponding network logo or by the “Like”, “Share” or “Re-Tweet” buttons on our website. By clicking on the plug-in, you can share content from our website on social networks. The plug-in informs the social network that your IP address is visiting our website. This can happen even if you are not logged into the social network or are not a member of the social network. If you are logged into the social network, the social network can assign your surfing behavior directly to your profile there.

The social network is responsible for the processing of your personal data that is transmitted with the plug-in. We have no precise knowledge of the content and scope of the transmitted data and its use by the social network and have no influence over it. As a rule, this is the following data: website visited, data transmitted by your browser (IP address, browser type and version, operating system, time) and your identification number in the social network, if you are registered there.

If you share content via a plug-in, you are not authorized to speak on our behalf. These are your own statements for which we are not responsible or liable.

d) Tracking pixel

Tracking pixel (also tracking pixel, pixel tag, web beacon or clear GIF): A tracking pixel is a 1x1 pixel, invisible graphic associated with your user ID. Tracking pixels measure, for example, the number of visitors to our website, the number of clicks on important parts of a website or which files or emails are opened. This helps us to analyze the effectiveness of our services.

Cookies and similar technologies generally do not provide any personal data, but only anonymous traffic data relating to your device (e.g. your IP address) and statistical data (e.g. number and type of website visits). However, to the extent that the identifiers collected are classified as personal data by applicable law, we treat them as such. In addition, we sometimes combine non-personal data collected using these technologies with other personal data held by 3-Parts. When we combine data in this way, we treat the combined data as Personal Data for the purposes of this Privacy Policy.

You can block or delete cookies and similar technologies via the privacy settings of your browser and e-mail program, whereby deletion may impair the use of the services under certain circumstances.

7. Who receives my personal data?

Within 3-Parts, access to your data is granted to those departments that require it to fulfill the stated processing purposes. As part of the operation of the Services and to ensure secure operation in accordance with the applicable conditions, guidelines and laws, we may in particular check content that is distributed via the Services, including communication between users.

In addition, we may disclose personal data to the following categories of recipients, provided that the disclosure serves to fulfill the stated processing purposes:

  • Contract data processors, including service providers and vicarious agents
  • Other users of our services
  • Acquirers or parties interested in acquiring 3-Parts or business divisions
  • Parties in potential or actual legal proceedings
  • Local, national and foreign authorities and official bodies
  • The public, including visitors to 3-Parts websites and social media
  • Media

If we pass on personal data to other data controllers, the current data protection provisions of the third parties are also applicable. You will receive their data protection provisions if you submit a request for information to the contact specified at the beginning.

8. Does 3-Parts transfer my personal data to other countries?

We may transfer personal data to any country in the world, in particular to all countries in which the services of 3-Parts are available and to the countries in which our contract data processors process personal data (namely Germany, other member states of the EU or the EEA, the United Kingdom, as well as third countries outside these countries without adequate data protection legislation, including the USA).

Personal data may also be transferred to a country without adequate data protection if:

  • We ensure adequate protection, in particular by means of sufficient contractual guarantees. You can obtain a copy of the contractual guarantees from the above-mentioned contact point or find out from them where such a copy can be obtained. We reserve the right to redact such copies for reasons of data protection or confidentiality
  • You give your express consent
  • It is necessary for the performance of a contract with you or a contract in your interest
  • It is necessary for the fulfillment of a legal obligation
  • It is necessary to safeguard overriding public interests, to establish, exercise or enforce legal claims or to protect the life or physical integrity of you or third parties
  • You have made the personal data generally accessible and do not expressly prohibit processing, or
  • The personal data originates from a register provided for by law, which is accessible to the public or to persons with a legitimate interest, provided that the legal requirements for access are met in the individual case

9. How long will my personal data be stored?

We store personal data for as long as it is required for the purpose for which we collected it. If the personal data is no longer required to fulfill the purpose, we generally delete it.

In individual cases, there may be a contractual or statutory retention obligation (e.g. in accordance with the Swiss Code of Obligations, Value Added Tax Act, Federal Act on Direct Federal Tax, Federal Act on the Harmonization of Direct Taxes of the Cantons and Communities, Federal Act on Stamp Duties, Withholding Tax Act). We generally store contract-related personal data for the duration of the contractual relationship and for ten years after termination of the contractual relationship. For evidence purposes, we may store personal data for the duration of the applicable limitation period, which is usually five or ten years.

It may be necessary to delete personal data if we are obliged to do so. We generally delete personal data that is generated when using our services (e.g. protocols, logs, analyses) after 14 days. A complete deletion of all stored user data can take up to 7 months, as we keep backups of the installations for 6 months. Subject to an express contractual agreement, we are under no obligation to you to retain personal data for a certain period of time.

10. What rights do I have?

You have the right vis-à-vis us to

  • Information about personal data concerning you
  • Correction, deletion or destruction of personal data
  • Objection to or restriction of the processing of personal data
  • Withdrawal of consent if the processing of personal data is based on your consent. Revocation is possible at any time and is effective for the future. The revocation does not affect the legality of the data processing that took place before the revocation.
  • Reconsideration of an automated individual decision that produces legal effects concerning you or similarly significantly affects you. You can speak to a responsible person at 3-Parts and explain your point of view. You can request an assessment by a person from the outset, insofar as the applicable law provides for this. You will be informed of our decision below or separately in advance.

To exercise your rights, please contact the contact point indicated at the beginning. You can also use any options embedded in our services, e.g. link in an email to unsubscribe from a newsletter, privacy settings in your user account. The exercise of your rights generally requires that you can clearly prove your identity. We would also like to draw your attention to the fact that if you delete your personal data or request the reconsideration of an automated decision by a human being, services may no longer be available or usable in whole or in part.

We reserve the right to restrict your rights within the framework of the applicable law and, for example, not to provide complete information or not to delete data.

You have the right to lodge a complaint with the competent data protection authority. In the case of a controller of 3-Parts in Switzerland, this is the Federal Data Protection and Information Commissioner (http://www.edoeb.admin.ch).

11. What are my obligations?

Only provide us with the personal data of other persons if you are authorized to do so under applicable data protection law. Please make sure that these persons are aware of this data protection declaration.

12. Data protection and children

Our services are only intended for persons who are at least 18 years old. We do not allow persons under the age of 18 on our platform. If you suspect that a user is under 18, please report this to us.

13. Modification of the privacy policy

3-Parts may amend this Privacy Policy at any time without prior notice or notification. The current version published on our website www.3-parts.com shall apply.

If the data protection declaration is part of an agreement with you, we may inform you of the change to the data protection declaration by e-mail or in another suitable manner. The amended privacy policy comes into force upon publication on the homepage and is deemed to be tacitly accepted by further use of the platform.




Last updated on Tuesday, 26.11.2024