The protection of your personal data is very important to us and we want you to feel comfortable when visiting our site. Our biggest concern is the protection of your privacy when processing personal data and we monitor this very closely in any business operations.
Information on our privacy statement
Any personal information collected during visits to our websites is processed in accordance with the provisions of German law. Our data protection policy also complies with the internal data protection guidelines of the Lufthansa Group. Our websites may contain links to other providers’ websites that are not covered by this privacy statement. Lufthansa respects your personal privacy. Further information about data protection in the Lufthansa Group, which applies in full to the Lufthansa Group websites, can be found here.
Usage of cookies
To ensure that our service is as userfriendly as possible we use so-called cookies and web beacons.
A “cookie” is a small text file which a webserver (for example the www.lufthansagroup.com webserver) sends to your browser when you visit a website. So-called “session cookies” expire at the end of the browser session and can capture your activities during the browser session. In contrast to these, there are “permanent cookies” which are saved on your terminal and these are able to capture your settings or activities on multiple websites.
Web beacons are small graphic data (also known as ‘Pixel Tags’ or ‘Clear GIFs’), which can be included in our websites, apps, applications and newsletters and are usually used in combination with cookies to identify users and user behavior. The above mentioned statements about cookies apply accordingly for web beacons; web beacons will in particular not be used in case you objected to the use of the relevant cookie.
Cookies pose no risk to your computer, as they are simply text files and not executable programs.
Besides so-called “session cookies” which are deleted when you end your browser session, we put in place permanent cookies.
Cookies are stored until deleted by the user. No personal data is stored in the cookies used by us.
It depends on your browser’s settings as to whether the cookie file is stored or deleted. If the file is stored, our webserver can recognise your terminal. Next time you visit the site or when you switch between functions requiring you to enter a pass-word, the cookie can save you re-entering information. This is how cookies make it easier for you to use websites requiring user input. Additionally, cookies can help us offer you the most personalised, optimised surfing experience, as long as you give us permission to do so.
That is unless you explicitly reject cookies and deactivate them as set out below:
You can set your browser either to receive our cookies or use our website without cookie functionality. In the latter case however your text entries in our form fields cannot be saved for future searches, and you will have to input your data again when you next visit our website. In this case we will also unfortunately not be able to present personally tailored content to you.
Your browser may already be set to display a warning whenever it receives a cookie. As the identification cookie must be resent every time an individual page on our website is opened, this warning can be very disruptive. We therefore recommend that you set your browser to always accept cookies from www.lufthansagroup.com. You can change this setting for individual websites.
Irrespective of saved cookies, for security reasons you must still log in each time you access areas of our site that require registration.
Social Network Integration
We offer social network functionality in various areas of our website, but all of our online offers and services can of course be accessed and used without the use of social networking websites. If you do use these additional functions, please be aware of the following points regarding data processing and handling:
1. Links to Lufthansa Group offers and services on social networking websites
In the case of links to lufthansagroup.com from one of our offers on a social network site, e.g. on the Lufthansa Facebook site, these are simple links on other providers’ websites, which do not pass on any personal information to this other provider. However third party online offers do make it possible to establish the origin of a visit to their site. Deutsche Lufthansa AG has no influence over the data handling procedures of third parties; this means that Lufthansa’s data protection declaration does not apply to third party websites.
2. Forwarding and recommendation functions for Lufthansa Group content (e.g. Share and Like options)
We give you the chance to share and recommend content on social networks as part of various Lufthansa offers, thus offering you a convenient alternative to copying and pasting links.
If you visit lufthansagroup.com websites and use the recommendation function, we pass on the URL to the chosen social network website. Some networks then complete the link straight away with an excerpt from the offer content on lufthansagroup.com. Most social network sites ask the user to confirm before it goes ahead with saving or forwarding.
Please note that Deutsche Lufthansa AG has neither knowledge of nor influence over how social networks process the information which you have shared with them or whether this information is made available to further websites. Lufthansa recommends careful reading of the relevant data protection statements in each case.
Register of proceedings of the data protection officer
Public register of proceedings regarding the processing of personal data
Pursuant to §4g II pg. 2 of the BDSG (German Data Protection Act) a data protection officer will provide information regarding data appearing in points 1 - 8 of this document in accordance with §4e sent. 1 BDSG upon request presented in an appropriate fashion.
1. Name of the responsible post
Deutsche Lufthansa AG
2. Executive Board
Carsten Spohr (Vorsitzender/Chairman)
Dr. Bettina Volkens
3. Address of the responsible post
Deutsche Lufthansa AG
Authorized Director of Data Processing:
Josef Bogdanski, FRA CT (Employee-related IT)
Dr. Roland Schütz, FRA IM (Customer-related IT)
Company Data Protection Officer: Dr. Barbara Kirchberg-Lennartz, FRA RD
4. Purpose of data collection, processing, or use
The business purpose of the company is domestic and non-domestic air traffic and the operation of all transactions and facilities connected to air travel and its demands.
For reasons demanded by business purposes, the company is authorized to establish branch offices and facilities both domestically and abroad, to participate in other companies both domestically and abroad, to acquire and to establish such companies, as well as to enter into all transactions including joint venture contracts. It may cede its operations wholly or partially to such companies.
Data is collected, processed, and used for the above-mentioned purpose. Highlights of the processing of personal data are the following areas:
- Human Resources (Administration and Development)
- Suppliers (Administration according to GoB criteria (German GAAP)
- Shareholders (Administration and Support)
- Customers (Reservations, Customer Relationship Management)
- Head Office and Management functions pursuant to the EDP General Employee/Works Council Agreement between Lufthansa AG and labor-management relations agencies
5. Description of groups of persons affected and their related data or data categories
Customer data, employee data, shareholder data, as well as data from suppliers, to the extent that this is necessary to fulfil the purposes specified in 4.
6. Recipients or categories of recipients to whom data may be disclosed
Public service authorities where high-priority legal regulations demand, external contractors according to §11 BDSG, as well as external offices and internal Lufthansa departments, for fulfilling the purposes specified in 4.
7. Statutory periods for deleting data
After expiration of storage obligations and periods as decreed by regulatory authorities, the relevant data is routinely deleted. Any data to which this does not apply is deleted if it is not needed fur the purposes specified in 4.
8. Planned transmission of data to other countries
Data is transmitted to authorities, customers, and suppliers in various countries within the context of conducting transactions that fulfill the business purpose in accordance with the above-named international regulations.
9. Security measures
Deutsche Lufthansa AG takes safeguarding measures pursuant to §9 BDSG by practicing caution when awarding contracts, by maintaining appropriate quality regulations, and by training its staff.
Deutsche Lufthansa AG
Group data protection officer