Updated August 14, 2024
This Privacy and Cookies Notice (the “Notice“) describes how CS Sweden Holdings AB and CAMP Systems International, Inc. (collectively “Avinode Group, ” “we“, “our” or “us”) handles personal information in connection with the Avinode Group’s products and services, which include the Avinode, Schedaero, and Paynode products and services and their associated websites and web-based and mobile applications (collectively the “Services”). The Services also include our technical maintenance and customer support services. The Services are intended for users acting in a professional capacity for informational, operational, and research purposes.
In addition, this Notice describes how Avinode Group handles personal information obtained through the public-facing pages of its websites associated with the Services (collectively the “Sites”).
This Notice describes how we use the personal information obtained through the Services, and with whom we may share that information. Depending on where you live, you may have certain rights with respect to your personal information that we process. Please see the section below titled “Your Privacy Rights” and “Additional Information for California Residents” for additional information.
This Notice does not describe the data handling practices of the air charter companies, flight departments, aircraft operators, and other customers (collectively, the “Customers”) who use the Services nor those of the third-party partners or vendors with whom Customers connect from our Services platforms to make payments, bookings or other arrangements (such as payment processing platforms and booking platforms) (collectively, the “Third-Party Vendors”). We encourage you to review the privacy notices and similar statements of the relevant Customers and Third-Party Vendors to learn about their privacy practices, including about the cookies and similar technologies they may use. With respect to privacy rights you may have with regards to personal information Customers and Third-Party Vendors may collect and provide to Avinode Group for processing, please contact the applicable Customer or Third-Party Vendor directly to submit your request.
In addition, we de-identify and/or aggregate the personal information and other data we obtain through the Services (the “De-identified Data“). The requirements and limitations described in this Notice on our collection, use, sharing, disclosure, transfer and retention of personal information do not apply to such De- identified Data as well as other information that cannot be used to identify you.
Avinode Group obtains personal information through the Services and Sites. This personal information may be provided by you directly, such as when you complete a form available through the Services and Sites, or it may be automatically collected from your browser or mobile device using technologies such as cookies. We also obtain personal information in connection with our Customers’ use of the Services, including when they make bookings or other arrangements using the Services. In addition, Avinode Group obtains personal information about our Customers’ representatives as part of the contracting or registration process, for marketing purposes and during the ordinary course of business.
2.1 Personal information we obtain from you when you interact with the Sites:
We may ask you to provide your personal information when you engage with the Sites(for example, when you sign up for marketing emails or engage with the Sitesto request a demo). You may not be able to use certain features if you choose not to submit the requested personal information. The personal information we collect directly from you may include details such as your contact information (e.g., name, email address, phone number, company name, address).
2.2 Personal information we obtain from Customers (and their authorized users) in connection with the Services:
The personal information we obtain from our Customers and their authorized users may include:
In addition, when Customers or others use the Services, we obtain personal information of individuals, including pilots, aircraft owners, crew members and passengers, on whose behalf bookings or other arrangements are made by the relevant Customer (the “Traveler and Crew Data“). Depending on the Service, this may include:
2.3 Personal information we obtain from other sources:
We may use personal information we obtain in connection with the provision of the Services and Sites along with other personal information we may have about you, including personal information obtained offline, from Third-Party Vendors (such as booking confirmation information). In connection with the Services, we may obtain information from publicly or commercially available sources, such as the Federal Aviation Authority or national equivalent. If you are a representative of a Customer or potential customer, we may obtain personal information about you from your organization, for example, through the contract negotiation process. We may obtain your personal information if you attend an industry conference or event. We may also obtain personal information from our affiliates.
2.4 Data automatically collected through cookies and similar technologies:
We and our service providers may automatically obtain certain information (some of which may constitute personal information), when you access the Services and Sites from your web browser or mobile device, such as data about the number and frequency of visitors, technical data about browsers and devices used to access the Services and Sites, and data about crashes or other technical issues. In addition, we and third parties may automatically collect certain data through automated means about your activities over time across the browsers and devices you use to access the Services and Sites as well as across third-party sites, apps or other media. These technologies may assign or collect a unique identifier on your browser or device, and may reside, among other places, on your computer or device, within webpages or mobile apps. We may use these technologies to administer, understand the usage of, and improve the offerings of the Services and Sites.
Cookies and similar technologies on the Services and Sites may be served directly by us (referred to as ‘first-party cookies’) or by others such as data analytics companies (referred to as ‘third-party cookies’). Cookies and similar technologies are browser- and device-specific and may endure for different periods of time. Some are deleted automatically once you close your browser or exit the Services and/or Sites. These are sometimes referred to as ‘session cookies’. Other cookies are ‘persistent cookies’, meaning that they remain on your device after your browser is closed.
You have the right to choose to opt out of certain cookies and similar technologies on the Sites. However, if you choose to refuse or remove cookies and similar technologies, this could affect the availability and functionality of the and Sites, as applicable.
The Sites use analytics to measure usage and help improve both the user experience and functionality, including third-party analytics provided by Google Analytics. To opt-out of Google Analytics on your device or browser, please visit https://tools.google.com/dlpage/gaoptout and follow the instructions.
Cookies used on each site are listed on the following pages.
We use personal information we obtain in connection with the provision of the Services for a number of purposes, including, but not limited to:
With respect to visitors to the Sites, Customer representatives, or potential Customers, we may keep their contact information to send them communications, including email or other communications marketing and advertising our or our affiliates’ products, services and other offerings.
We may provide personal information we obtain in connection with the operation of the Services to others, including as follows:
Please note that if you complete a booking or other arrangement through the Services, we will provide the relevant Third-Party Vendor with Traveler and Crew Data to complete the transaction you requested. Third-Party Vendors may contact you directly to obtain additional information if required to facilitate your booking or to otherwise provide the requested services. These Third-Party Vendors are independent from us and are responsible for the handling and use of personal information, including personal information that we may provide to them. These Third-Party Vendors are responsible for compliance with applicable laws, including privacy laws, and rights that individuals may have with respect to their personal information. You should direct any questions or concerns with respect to information directly to such Third-Party Vendors.
We also reserve the right to transfer any of the information (including personal information) we have about you to proceed with the consideration, negotiation, or completion of a sale or transfer of all or a portion of our business or assets to a third party, such as in the event of a merger, acquisition or other disposition, or in connection with a bankruptcy reorganization, dissolution, or liquidation.
In addition, we may share your personal information with third parties when you consent to or request such sharing.
We maintain reasonable administrative, technical and physical safeguards to protect the personal information we obtain through the Services. However, no method of transmission over the internet, or method of electronic storage, is 100% secure. Therefore, while we make reasonable efforts to protect your personal information, we cannot guarantee its absolute security.
As noted above, in order to facilitate the Services you may request or that our Customers arrange on your behalf, we integrate with Third Party Vendors, including third party payment platforms and payment processors, who process payments you may make through the Services. In addition, the Services and Sites may contain links to third-party websites or features, including through integrations, APIs or other feeds. We are not responsible for the collection or use of your personal information by these third parties. We encourage you to review the privacy policies or other similar statements applicable to Third Party Vendors and third-party websites or features.
The Avinode Group does not currently take steps to respond to browsers’ “Do Not Track” signals.
The Avinode Group operates the Sites in different regions, including the United States. These different regions may not provide the same level of protection for your personal information as your home country. Where applicable, we take steps to comply with applicable legal requirements for the transfer of personal information.
The Sites are not directed to, nor does the Avinode Group knowingly collect personal information from, children under the age of 18. If you become aware that your child or any child under your care has provided us with personal information without your consent, please contact us as indicated below. If any information about children is collected as a result of the Services, it is up to the relevant Customer of user of the Services to ensure that parental consent or other required permissions have been obtained.
Any dispute concerning the Services (including our use of your personal information) will be resolved per the dispute resolution provision and/or other provisions in the applicable terms for the Services you interact with.
We may update this Notice from time to time to reflect changes in our privacy practices or applicable laws. In accordance with applicable law, we may make such changes without prior notice. We will publish the updated version through the Services and Sites and indicate at the top of the Notice when it was most recently updated. Your use of the Services and Sites will be governed by the current version of this Notice.
Depending on where you live, and subject to certain exceptions, you may be afforded certain rights with respect to your personal information as outlined below. Please note that in order to exercise your rights as relates to Traveler and Crew Data we hold about you on behalf of our Customers in connection with the use of the Services to manage logistics, communicate or make bookings or other arrangements on your behalf, you must contact the relevant Customer. We are not responsible for and have no control over the privacy and data security practices of our Customers, which may differ from those explained in this Notice.
12.1 Who is Responsible for Your Personal Information?
Each of our Customers is the responsible data controller for the personal information they collect and maintain using the Services, including any Traveler and Crew Data. Individuals with concerns about the personal information obtained through the Services should contact the relevant Customer with their concerns.
Depending on the Sites, the data controller for personal information we obtain from visitors to the Sites, Customer representatives, and potential Customers for our own business purposes is either CS Sweden Holdings AB or CAMP Systems International Inc. The below information applies to our data processing activities as a data controller only. You can contact us at [email protected], and please specify the Site you are contacting us about.
12.2 Legal Bases for Using Your Personal Information
Where required under applicable law, we process personal information of prospective customers/ individuals who interact with the Services to sign up for newsletters, request demos of the Services, or otherwise communicate with us, on the following legal bases:
12.3 Rights You May Have With Respect to Your Personal Information
In certain circumstances, and subject to exceptions, visitors to the Sites, Customer representatives, and prospective Customers may have certain rights with respect to their personal information.
If you are a visitor to the Sites, Customer representatives, or prospective Customer and you would like to submit a request to exercise rights with respect to the personal information we collected about you through the Services, please contact us with your request by email at [email protected]. For such requests, please put the statement “Privacy Rights Request” in the body of your email, as well as your full name, email address, mailing address and specify the privacy right you wish to exercise at this time. If you submit a request to exercise any of the below rights (each a “Privacy Rights Request”), we may request additional information to enable us to process your request or direct you to the applicable Customer who has provided your information to us.
In addition, certain pieces of personal information that we may have about you may be considered “sensitive” under applicable laws (e.g., account login credentials, government identifier information). Please note that we only process such information in order to provide the Services.
To submit a Privacy Rights Request, or to ask any questions regarding your privacy rights, please contact [email protected]. For such requests, please put the statement “Privacy Rights Request” in the body of your email, as well as your full name, email address, mailing address and specify the Privacy Rights Request you wish to exercise at this time.
12.4 Storing Your Personal Information
We keep the personal information for which we are a data controller for as long as we have a relationship with you. After our relationship with you has ended, we retain your personal information as necessary and appropriate to enable us to:
12.5 Contact, Questions and Complaints
If you are a visitor to the Sites, Customer representative, or prospective Customer you can contact us at [email protected].
Individuals in the EEA, United Kingdom, and Switzerland whose Traveler and Crew Data is processed by us as a data processor on behalf of a Customer should contact the relevant Customer with any requests or complaints.
We are committed to working with you to obtain a fair resolution in the event you have a complaint or concern about our data processing activities. Depending on where you live, however, if you believe that we have not been able to assist with your complaint or concern, you may have the right to make a complaint to a data protection authority.
In addition, certain privacy laws afford eligible residents the right to appeal a denial of a Privacy Rights Request in whole or in part. For additional information regarding how to submit a Privacy Rights Request appeal, please email [email protected].
Under the California Consumer Privacy Act of 2018 as amended from time to time (“CCPA”), specific disclosures are required, and eligible California residents have additional rights regarding their personal information. For information about the categories of personal information we collect, our business or commercial purpose for collecting personal information, and our business or commercial purpose for providing personal information to third parties and other entities, please review Section 2, Section 3, and Section 4 above. To learn more about rights you may have with respect to your personal information, please review the information in Section 13 above.
If you would like to exercise your CCPA rights with respect to your Passenger Data submitted by a Customer to manage logistics, communicate or make bookings or other arrangements on your behalf, please contact the Customer directly to exercise your CCPA rights. We are not responsible for and have no control over the privacy and data security practices of our Customers, which may differ from those explained in this Notice.
If you are a visitor to the Sites, Customer representative, or prospective and you would like to exercise your CCPA rights with respect to the personal information we collected about you through the Services, please contact us with your request by email at [email protected]. For such requests, please put the statement “California CCPA Rights” in the body of your email, as well as your full name and email address, and specify the CCPA right you wish to exercise at this time. You may exercise their privacy rights without fear of being denied goods or services.
If you have any questions about this Notice or if you are an eligible individual who would like to submit a Privacy Rights Request in accordance with applicable laws, please contact us at [email protected].
Avinode Group engages the third-party entities described below to perform limited activities in connection with our services. The description shows what activity each entity performs and indicates if an entity is only relevant to a specific product. More information about each activity is provided directly below. This explains the limited processing of Customer Data the entity is authorized to perform.
Data Center Operations:
Operates and maintains the data center and equipment that stores Customer Data.
Managed Service:
A managed service that Avinode Group embeds or utilizes as part of our service offering.
Subprocessor | PII | Registered In | Processing performed | Notes |
Microsoft |
|
United States of America |
|
|
Elasticsearch | Indexed document contents may include.
|
United States of America | United States of America |
|
Browsing history and device information. | United States of America | Unspecified |
|
|
Zapier |
|
United States of America | United States of America |
|
Mailgun | Email contents may include the following;
|
United States of America | United States of America |
|
Twilio SendGrid |
Email contents may include the following;
|
United States of America | United States of America |
|
New Relic | None | United States of America | Unspecified |
|
Pendo |
|
United States of America | United States of America |
|
Pushwoosh | Message contents may include.
|
United States of America | United States of America |
|
Azure Databricks |
|
United States of America | United States of America |
|
Zendesk |
|
United States of America | Various AWS regions |
|
Gong |
|
United States of America | United States of America, Europe, Israel and other locations, as reasonably necessary for the proper performance and delivery of our Services |
|
ZoomInfo |
|
United States of America | USA, but also has international affiliate sub-processers: Sub-Processors |
|
EverAfter |
|
United States of America | EU, US, and Israel |
|