Cookies and personal data
1. Purpose: On our website, we use online identifiers and technologies (“cookies”) to identify you and your devices, to record your behaviour, to optimise our website, to generate a profile of you, and to offer you tailored digital marketing content through our own media and through third parties.
2. What is a cookie? A cookie is a text file which is stored on your hard disk by a web server. Cookies contain information that may be read by a web server on the domain placing the cookie. Thus, the website will recognise you the next time you visit it. Cookies cannot be used to run programmes or to spread virus to your computer.
3. Third party cookies: Our website uses tracking programmes from e.g. Google Analytics, Google AdWords, Google Flights, Amadeus, Google Tag Manager, Facebook, Agillic, which also place cookies and which may therefore store, access and share your data with us and show tailored content on social media such as Facebook, Twitter and Instagram and in banner advertisements.
If you do not want us to collect and store your data, you may disable cookies in the settings of your internet browser. The way to do it depends on the type of browser you use. Below is a guide to the most common browsers.
Internet Explorer 9
Click the “Functions” menu, choose “Security” and click “Delete history”. Then click “Delete cookies”.
Click the Chrome menu in the upper right corner and choose “Functions” and then “Clear data”. Tick off “Delete cookies and other plugin data” and “Clear cache”. Click “Clear browsing data”.
Click “History” and choose “Clear history”. Tick off the “Cookies” and “Cache” boxes and click “Clear now”.
Click “Safari” in the top menu and choose “Settings” Choose “Privacy” in the menu and choose “Clear website data”.
How we process personal data
Our processing in general
Air Greenland processes the data provided to us by our customers e.g. when they book a flight on our website or when they contact our customer service. The data includes name, contact details, flight number, day and time of departure and arrival, and other information necessary for administering the flight. For flight administration purposes, we also use data in connection with invoicing, payment, bookkeeping, use of payment cards, and for other administrative purposes such as handling of complaints. The legal basis for this processing of personal data is the customer’s consent and our performance of the contract with the customer, including our provision of the information, services and offers requested by the customer. We process sensitive data such as health data only if they are necessary for the purpose of the flight.
Please note that any withdrawal of the consent will not affect the lawfulness of the processing that has already taken place on the basis of the consent.
Our processing of personal data for marketing purposes
We may process personal data for marketing purposes if we have obtained the customer’s consent, or if the processing is justified by a legitimate interest under Article 6(1)(a) and (f) of the General Data Protection Regulation. A consent already given may be with withdrawn by contacting Air Greenland’s customer service at tel. (+299) 70 12 12 or by sending an email to firstname.lastname@example.org.
If the customer consents to receiving electronic marketing content, e.g. by email or SMS or through notifications and private messages on social media, then we register and process the data that are necessary to allow us to use the consent, including the customer’s name and contact details. When we send marketing inquiries, we record if the recipient opens the inquiry and which offers, news and campaigns the recipient responds to. The legal basis for this processing is our legitimate interest in distributing, monitoring and targeting our marketing content as authorised by Article 6(1)(f) of the General Data Protection Regulation.
If a person has consented to our use of user-defined target groups on social media such as Facebook and Instagram, then we may process his/her data on that basis for the purpose of showing marketing content in his/her news feed. We may also use such person’s data to identify other persons who are likely to be interested in our marketing content.
If we have not received a consent to our use of user-defined target groups on social media such as Facebook and Instagram, we may still use a person’s data for that purpose if we believe that the processing is justified by our legitimate interests. Reference is made of Article 6(1)(f) and Article 13(2) (see (4)) of the General Data Protection Regulation.
We process the above personal data as long as is necessary for the marketing purposes described and for documentation of our processing. However, online behavioural data will typically be deleted after a period ranging from 14 days up to 1 year, depending on the cookie type and purpose.
If a person withdraws his/her consent to receiving marketing material, we will stop processing his/her data for the purpose of such direct marketing by email. However, we may still use that person’s data to target our marketing, e.g. in banner advertisements and on our website, and to generate user-defined target groups on social media such as Facebook and Instagram if we believe that the processing is justified by our legitimate interests (see Article 6(1)(f) of the General Data Protection Regulation and section 13(2) of the Danish Data Protection Act (but see subsection 4)), unless the person objects to the processing of his/her data for that purpose (see section 21(4) of the General Data Protection Regulation). If we receive such objection, we will immediately discontinue our processing and delete all data that are no longer needed, because they are processed only for marketing purposes. However, data that are necessary to prove that the person had consented to receiving our marketing content by email under section 10(1) of the Danish Marketing Practices Act will be deleted only after 2 years from the date when we last used the consent.
Members of Air Greenland’s customer club, Club Timmisa, can learn more about our collection and processing of data in connection with the customer club in our Terms of Membership.
In connection with the flight, Air Greenland will process and exchange personal data in accordance with the industry standard for booking and itinerary details in the airline and travel industries referred to as “Passenger Name Record” or “PNR”, which is used in electronic booking systems. The PNR contains the passenger’s name, address, contact details and other relevant information on services requested as well as the itinerary for the passenger or for a group of passengers travelling together.
The purpose of such disclosure is to exchange itinerary and booking details with other airlines for those passengers who travel with more than one airline. Personal data are also disclosed in order to deliver airport services such as check-in and baggage handling. The processing of data means that the customer’s data are shared with other service providers, including travel agencies and agents.
Third party suppliers working for us, including e.g. providers of customer support and IT services, may get access to personal data, but may only use such data to provide the services requested by us. We use third party suppliers i.a. for technical operation of our systems and for distribution of electronic and tailored marketing content, including re-targeting. These third party service providers are data processors, acting on our instructions and processing personal data for which we are data controller. The data processors may not use the data for any other purpose than performance of the agreement with us, and they are required to treat the data confidentially. We have entered into written agreements with all the data processors that process personal data on our behalf.
Some of these data processors, including The Rocket Science Group LLC, which operates the online marketing platform Mailchimp, and Google Analytics owned by Google LLC, are based in the USA. Appropriate safeguards for the transfer of data to the USA have been established by certification of the data processor under the EU-U.S. Privacy Shield (see Article 45 of the General Data Protection Regulation). Where we use other non-EU-based data processors than those mentioned, the transfer of data will always take place subject to appropriate safeguards. A copy of The Rocket Science Group LLC's certification is available here. A copy of Google LLC’s certification is available here.
Air Greenland keeps the customers’ personal data as long as is necessary for the purpose of the processing and for the purpose of complying with statutory and regulatory requirements
If a customer has booked a flight with Air Greenland, his/her personal data will be kept for the rest of the year + five years after the date of termination of the flight in order to meet statutory and regulatory requirements and to facilitate a complaint procedure, if applicable.
The person whose personal data are being processed may request access to - and rectification, erasure or restriction of the processing of - his/her personal data and may object to the processing and request data portability. If an objection to our processing is justified, we must discontinue the processing of the personal data in question.
In order to exercise the above rights, please send an email to email@example.com.
It is also possible to complain of our processing of personal data to the Danish Data Protection Agency.
Terms of membership - Club Timmisa
Club Timmisa is a customer club that offers good deals and advantages.