I. GENERAL PROVISIONS
The protection of our customers’ privacy is very important to SWISS. Hereinafter, we set out the principles we follow and for what purpose we collect and process personal data (information that determines your identity or allows us to identify you; referred to hereinafter also as “data”) via swissworldcargo.com (referred to hereinafter as "Website"), and other websites and applications operated by SWISS.
We collect and process your personal data carefully, only for the purposes described in this Privacy Statement and only to the extent necessary as defined therein and within the scope of the applicable legal regulations. We only store your personal data to the extent and as long as it is required for the performance of our services or as we are legally obligated.
Under Section I you will find the general data protection information, under Section II, the provisions with regard to data processing in connection with carriage, and under Section III you will find further instances where data processing is used.
B. Use of this Website and cookies
When you access this Website, our system automatically records technical information about the computer accessing it. The data collected is information about the browser type and the version used, the operating system, the internet provider and the IP address of the user, the date and time of access, the websites from which the user’s system obtains access to our website, and the websites accessed by the user’s system via this Website.
You can visit the website and obtain information about our offers without disclosing personal data. We only request personal data where required for the performance of our own services and for the processing of transactions that you carry out with SWISS.
C. Storage of customer data
For accounting reasons, SWISS generally stores the personal data collected from customers for processing bookings for 10 years after the last processing operation. We store other data as long as is necessary for the execution of the contract and to safeguard our rights. We reserve the right to apply longer statutory and operational storage requirements and reasons.
D. Data security
We protect your personal data by means of appropriate technical and organisational security measures and store it solely on our secure servers. The website is secured against loss, destruction and manipulation by means of customary measures in accordance with the state of the art and against access, modification or distribution by unauthorised persons. Especially sensitive data is encrypted during transmission via the internet (SSL).
E. Rights of customers
You have the right to information, correction, deletion and transferability of your data. Furthermore, you have the right to restrict processing.
Paragraph C (Storage of customer data) and other statutory exceptions are reserved.
You have the right to object to the processing of your personal data. An objection only has future effect and does not affect previous processing. If, on account of the objection, SWISS is no longer able to perform the services contractually agreed with you, the objection is deemed to be a breach of contract by the customer and SWISS has the right to terminate its contract with you without notice. Payment obligations already contractually entered into by the customer remain in force.
For the assertion of these rights, you can contact SWISS at the address given in paragraph F (Contact).
If SWISS does not comply with the applicable data protection law, you have the right to file a complaint directed at the competent regulatory authority.
If you have any questions about this Privacy Statement or regarding data protection at SWISS, please contact:
Swiss International Air Lines Ltd.
Data Protection Officer
CH-8058 Zurich Airport
G. Representative in the European Union
Swiss International Air Lines Ltd.
Cargo City Süd 558
60549 Frankfurt am Main
We review our Privacy Statement regularly and update it as required. We will inform you of any important changes (e.g. on this Website).
II. PROCESSING OF PERSONAL DATA IN CONNECTION WITH CARRIAGE
A. Purpose of data processing
SWISS processes the personal data of its customers for the purpose of carriage, which includes in particular:
- communicating with the customer with regard to carriage
- operation of the flight
- securing payment transactions (also referred to hereinafter as “carriage”)
B. Sharing of data with the authorities in Switzerland and abroad
B. 1. Definition of ACI data
ACI data “Advance Cargo Information”) is the electronic data submission required in advance by certain government authorities to allow cargo shipments to pass their borders. In the case of private customers, ACI include the name and the address of the shipper. Certain countries (e.g. China) may require the shipper’s passport number too.
B 2. Disclosure to authorities
For legal and regulatory reasons, it is necessary that we share certain personal and booking information (including ACI data) with the governmental authorities in Switzerland and abroad.
B.2.1 Security and entry
For security reasons and to verify the entry formalities, the authorities in some countries require data about air cargo shipments to and from these countries, as well as for overflights above their territory. In this context, SWISS is obliged to transfer the ACI and your data to domestic and foreign authorities. Such data is transferred based on intergovernmental agreements or national laws. Data of this kind is generally required by the authorities in the country of departure and arrival.
For example, under US law the border authorities (U.S. Customs and Border Protection) receive your personal information and information related to your shipment when you book a shipment between Switzerland and the USA. The US authorities have given the same guarantees with regard to the use of data to Switzerland as they have to the European Union; they will only use the information for combating terrorism and other serious, crossborder criminal offences. The data is stored for at least three years and six months and may also be shared with authorities in other countries. You can find additional information on the use of your data by foreign authorities and the measures to protect your data at https://www.cbp.gov/border-security/ports-entry/cargo-security.
B.2.2 Investigative activities
SWISS is obliged to share your personal data with criminal prosecution, administrative or judicial authorities in Switzerland and abroad in case they require its disclosure for the prevention or prosecution of crimes, misdemeanours, or comparable administrative misconduct. Such a transfer is only performed if based on legal or regulatory requirements.
C. Credit assessment and anti-fraud measures
We reserve the right to verify payment transactions in order to prevent fraud and other improper usage. To this end, we use both internal and external sources of information. For this purpose, we also use distinct, identifiable technical features. If fraudulent activity is suspected and/or detected, we also reserve the right to share the relevant information (including personal data) with other subsidiaries of the Lufthansa Group who may also verify the data for their own purposes.
D. Data processing by third parties in Switzerland and abroad
SWISS allows personal data to be processed by third parties in Switzerland and/or abroad (also in countries where legislation does not guarantee appropriate data protection) for the purposes stated in this Privacy Statement.
In the case of the transfer of data to countries without appropriate data protection, SWISS ensures that the measures required are implemented (generally by signing recognised data protection agreements, e.g. based on standard contractual clauses of the EU), in order to protect personal data in accordance with the applicable data protection law.
D.1. External data recipients
External recipients of personal data include service providers in the areas of ground handling, transport, marketing, customer feedback, IT, payment services and credit agencies, platforms for sending newsletters, companies of the Lufthansa Group, airlines outside the Lufthansa Group, partner companies as well as government offices and authorities.
III. APPLICATION CASES
A. Booking process
If you start a booking process, we collect booking data and personal data, in particular your surname, first name, address, telephone number, e-mail address and, in encrypted form, your credit card details.