1. ABOUT US
1.1 The Airlines Aerovías del Continente Americano S.A., Avianca; Tampa Cargo S.A.S; commercial companies established in the Republic of Colombia, Aerolíneas Galápagos S.A., Aerogal; a commercial company incorporated in the Republic of Ecuador, Taca International Airlines S.A., incorporated in the Republic of El Salvador, Líneas Aéreas Costarricenses S.A. Lacsa, incorporated in the Republic of Costa Rica, Trans American Airlines S.A., incorporated in the Republic of Perú, Aviateca S.A., incorporated under the laws of Guatemala, Servicios Aéreos Nacionales, Sociedad Anónima (SANSA), incorporated in the Republic of Costa Rica, Isleña de Inversiones, S.A. de C.V., incorporated in the Republic of Honduras hereon referred to both individually as well as collectively as THE AIRLINES, for all purposes of the provision and marketing of air passenger transport services, and related services and products such as tourism packages, air and/or ground transport services, express courier services, airport services, training services, loyalty programs, may act under the commercial brands AVIANCA, AEROGAL, AVIATECA, LACSA, TACA, AVIANCA CARGO, AVIANCA SERVICES, AVIANCA TOURS, DEPRISA, PREFERENCIA "Programa para viajes empresariales", AVIANCA EXPERIENCE AIRPASS, AVIANCA STORE, just under the commercial brand AVIANCA, all respectively responsible and/or tasked with the treatment of personal information.
2.2 For the purposes of this Policy, “Treatment” is understood to be any operation or set of operations about personal data and information such as use, collection, storage, disclosure, circulation or suppression of the same.
a. Use the information and the personal data supplied in order to send to the electronic mails recorded by the traveler, customer or user, the boarding pass and/or the document confirming the transaction as well as any other information related to the product and service acquired
b. Use the received information for marketing purposes of our products and services and the products and services of third parties with which we THE AIRLINES have a business relationship.
c. Share the personal data and information with commercial representatives, tour operators including hotels, car rental companies, insurers, among others, as required for handling the reservations of travel plans and other tourist services.
d. Supply the personal data and information to the control, surveillance, administrative, police and judiciary, national and international authorities, by virtue of a legal or regulatory requirement and /or to use or disclose this personal data and information in defense of the rights and/or the property of THE AIRLINES, of their clients of our websites or of their users for the detection and fraud prevention, for the prevention, detection, arrest or persecution of criminal acts or when THE AIRLINES in good faith consider that the personal data and information delivery is in the best interest of the air safety.
e. Allow the auditors and third parties access to the personal data and information to carry out internal and external audit process inherent to our commercial activity.
f. Consult and update the information and personal data.
g. Contract with third parties the storage and/or information and personal data processing for the right performance of the contracts performed with us following the safety and confidentiality standards under which we are obliged to.
h. Transfer the personal data and information in the event of a change of control of one or more of THE AIRLINES or of any of the business units through merger, acquisition, bankruptcy, division or creation to the new authority controlling THE AIRLINES or the business unit. If as a result of the control of change, the Responsible for the information treatment and the personal data is changed, this situation shall be informed to the personal data and information holders so that they use the rights in accordance with the applicable law.
The conditions under which the holders shall use their rights, shall be indicated when the change in the control is announced.
3.2 The personal data and information are administered by our travelers, clients or users so to facilitate the delivery of our services. THE AIRLINES acknowledge the importance of safety, privacy and confidentiality of personal data and information that our travelers, clients or users supply through the different commercialization channels of our products and services (including websites, sale offices, call centers, mobile applications and ekiosks), and we are committed to the protection and suitable treatment of the same, pursuant to the legal regime for the protection of personal data applicable in each territory that we operate in.
4. PERSONAL DATA AND INFORMATION THAT WE OBTAIN:
4.1 We THE AIRLINES collect personal information and data from our travelers, clients or users, which can vary depending on the requirements of the local authorities, technological facilities, nature of products and/or service to be supplied, among others, for such purposes, we can collect the following personal data and information, which can be stored and/or processed in servers located in computer centers, whether they are of their own or hired with third parties, based in different countries:
a. Name and Last names.
b. Date of birth.
d. Postal and electronic addresses (personal and/or work).
e. Profession or occupation.
f. Cardholder personal data (names and surnames, type and identification number)
g. Identification type and number.
h. Marital status and/or relationship with minors or disabled people who request our services
i. Fax (personal and/or work).
j. Information of domicile where the cardholder receives his/her bank statements
k. Company he/she works in and position.
l. Nationality and country of residence.
m. Fixed and cellular phone numbers (personal and/or work).
n. Credit card (s) information (number, banking institution, expiration date).
o. Client IP, through cookies.
p. Frequent Flier Card number and information about transactions and activities related to the frequent flier program LifeMiles.
q. For flights from and to the United States, the “Redress Number” shall be collected at the request of the government authorities of that country.
r. Necessary information to facilitate the journey and other services, including name of the travel companion(s), contacts for accident cases or any other contingency, preferred seating, special meals or medical requirements.
s. Information of purchasing channels (including travel agencies, direct sale points or those of the representatives or agents, call centers, websites, mobile applications).
t. Use of products and services, such as self-registration machines, flight status notification and online check-in.
u. Personal data and information collected through surveys, focus groups and other market research methods.
v. Information required by officers or representatives of THE AIRLINES, such as sales area representatives and/or relationships with clients aimed at reviewing requests or claims.
w. Biometric data, including images, photos, videos, voices and/or sounds, fingerprints identifying or that makes it possible to identify our travelers, clients or users and/or any individual that is or transits in any place where THE AIRLINES have installed equipment.
x. Health information (medical conditions deemed as contraindications for flying as per the treating doctor´s discretion) and medical verifications requested to the client, traveler or user, in order to supply, within the viability and possibilities of our operation, the facilities and elements for his/her suitable medical assistance, during the delivery of the air transport, as well as to determine the viability of the journey.
4.3 In addition, for security purposes, THE AIRLINES may collect, store, share, and check against other local and international administrative, control, and surveillance authorities, police authorities, and judicial authorities the personal information and data, including the biometric data of our travelers, clients, or users obtained through image, audio, or video recording devices located within our facilities (such as administrative offices, points of sale (POS), VIP lounges, airport information booths, call centers). The AIRLINES must inform of this to the general public by means of Privacy Notices posted at information and data collection places.
4.4 We, THE AIRLINES, on account of our activity as transporters, are obligated to provide specific information and personal data of passengers, or cargo, or express and/or courier packages to the aeronautical, immigration, and customs authorities in addition to other regulatory government entities or local and international security entities prior to the departure or before landing in each destination territory or at any time after the transport contract has been fulfilled. In general, the information refers to the identity information of the passengers traveling on board, their itinerary, as well as the contents of their respective travel documentation (such as passport, visa, etc.) or related to the goods being transported.
5. PURPOSES OF THE PERSONAL INFORMATION AND DATA TREATMENT
5.1 The collected personal information and data are used to process, confirm, meet, and provide the acquired services and/or products, directly and/or with the participation of other airlines or third party product or service vendors, and to enable reservations, modifications, cancellations and itinerary changes, reimbursements, servicing queries, complaints and claims, payment of compensations and indemnifications, accounting records, mail, credit and debit card, and other payment instrument processing and verification, promoting and advertising our activities, products, and services, conducting financial transactions such as payments, collections, or refunds, attending to legal procedures, reporting, or meeting the requirements of the different local and international administrative control and surveillance authorities, police or judicial authorities, banking institutions and/or insurance companies for internal administrative and/or commercial purposes, including market research, audits, accounting reports, statistical analyses, billing, and the offering and/or acknowledgement of benefits through our loyalty programs, for the execution of the transport contract and other supplementary services and activities, identification of fraud and prevention of asset laundering and other illegal or criminal activities, and/or to enable the operation of loyalty programs and other purposes set forth herein.
5.2 The personal information and data treatment by those responsible and in charge of this is within the framework of guarantee and respect of the treatment principles defined by the applicable law. These principles are lawfulness, legality, liberty, transparency, consent, information, quality, restricted access and circulation, purpose, loyalty, proportionality, security, and confidentiality.
5.3 We hereby notify that these activities may involve third parties, including flight reservation system vendors, security tools for the processing of bank transactions, call centers, tourism service operators, banking institutions and insurance companies, our representatives or agents, loyalty programs administrators and that such activities may be performed in countries other than the country where the service is contracted or the product is purchased, notwithstanding other purposes contained hereunder and in the terms and conditions of all products and services inherent to every one of our business units.
5.4 We, THE AIRLINES do not sell or assign any personal information and data of our travelers, clients, or users to third parties for a price. The data transferred by us to third parties under the terms of this Policy is conducted exclusively based on meeting the purposes contained hereunder.
6. VALIDITY OF THE PERSONAL INFORMATION AND DATA TREATMENT
6.1 The information provided by travelers, clients, or users may remain stored for up to ten (10) years from the date of the last treatment to allow us to meet all legal and/or contractual obligations under their responsibility, especially in terms of accounting, fiscal, and tax matters or for the time it may take to meet any applicable provisions and cover any administrative, accounting, fiscal, legal, and historical aspects of the information, or in any event provided in the law.
7. INFORMATION TRUTHFULNESS AND ACCURACY
7.1 Travelers, clients, or users shall provide us with truthful and accurate personal information and data to formalize the reservation and to make the contracted services possible, as well as any other services that they may require and agree to provide the required information under the conditions thereof.
7.2 We, THE AIRLINES presume the truthfulness of the provided information and we neither verify nor assume any obligation to verify the identity of travelers, clients, or users, nor the veracity, validity, sufficiency, or authenticity of the data provided by each of them. Therefore, we will not be held liable for any damages and/or torts of any nature which may arise from the failure to provide truthful, valid, sufficient, or authentic personal information and data, including damages and torts which may result from homonymy or identity theft.
8. MINOR CHILD AND ADOLESCENT INFORMATION
8.1 Minors or children under age may use our products and services, provided they do so through or duly authorized by their parents, legal custodians, or legal guardians. In the event the parents or legal custodian or guardian of a child detects any non-authorized data treatment, he/she may forward a complaint or claim to the following email address: e_Solutions@centrosolucionavianca.com. THE AIRLINES will see to it that the personal data of minor children and adolescents are used properly, ensuring that such data treatment will abide by all applicable laws, respecting their superior interest and fundamental rights, and as possible, taking into consideration their opinion as holders of their own personal data.
• Type of browser and operating system used.
• Web sites visited.
• IP address.
• Browsing time duration.
• Device language.
• Links accessed.
• Site visited prior to visiting avianca.com
9.2 These cookies, web beacons, and other similar technologies may be disabled and deleted by the user whenever he/she wishes to do so. To this end, our travelers, clients, or users can consult and/or request assistance from the Internet browser they are using.
10. PERSONAL INFORMATION AND DATA PROTECTION, SECURITY, AND CONFIDENTIALITY
10.1 The protection, security, and confidentiality of the personal information and data of our travelers, clients, or users is essential to THE AIRLINES. We have information security policies, standards and procedures, which may be revised from time to time at the discretion of THE AIRLINES, aimed at protecting and preserving the integrity, confidentiality, and availability of personal information and data, regardless of the media or format in which they are found, their temporary or permanent location, or how they are transmitted. In this sense, we have the support of security technological tools and we implement industry-wide security practices, which include: transmission and storage of sensitive information through secure mechanisms such as data encryption, the use of secure protocols, assurance of technological components, information access restriction only to authorized personnel, information backups, software safe development practices, among others.
10.3 Any agreement of THE AIRLINES with third parties (contractors, external consultants, temporary collaborators, etc.) that involves the treatment of the personal information and data of our travelers, clients, or users, includes a confidentiality agreement, highlighting their commitments to the protection, care, security, and preservation of the confidentiality, integrity, and privacy of the information.
11. PROCEDURE FOR THE EXERCISE OF THE RIGHTS OF INFORMATION HOLDERS
11.2 To this effect, THE AIRLINES have set a general procedure for the exercise of the rights by the personal information and data holders, contained in section 12 hereunder, without detriment to the enforcement of specific stipulations which may be contemplated in the local laws of each territory. Should there be discrepancies between the general procedure and the specific stipulations in the applicable local standards, the specific stipulations shall prevail.
12. GENERAL PROCEDURE FOR THE EXERCISE OF THE RIGHTS OF PERSONAL INFORMATION AND DATA HOLDERS, APPLICABLE TO ALL TERRITORIES IN WHICH THE AIRLINES OPERATE:
a. To know, update, and correct any personal information and data before the entity responsible for or in charge of the treatment of his/her personal information and data.
b. To request proof of the authorization granted to the entity responsible for the treatment, except when expressly excluded as a requirement for the treatment.
c. To be informed by the entity responsible for or in charge of the treatment, upon prior request, with respect to the use given to his/her personal information and data.
d. To file before the competent authorities any complaints on grounds of infringement of the applicable personal data protection regime.
f. To access his/her personal information and data which have been subject to treatment, upon prior request to THE AIRLINES, under the terms of the applicable standards in force. For data reviews which frequency is more than once per calendar month, THE AIRLINES will charge the holder requesting such information for any expenses incurred in the delivery, reproduction, and document certification, as the case may be.
12.3 The procedures for the exercise of his/her rights are as follows:
(I) REVIEWS: Holders, authorized persons, or assignees may review their personal information and data stored in our databases, in which case the requested information shall be provided, upon prior verification of the legitimate reasons for making such request. The request for review shall be responded within ten (10) business days at maximum from the reception date. In the event a request for review cannot be responded within said term, the reasons for the delay shall be informed to the sender, providing a new date for such purpose without exceeding under any circumstances five (5) business days following the due date of the original term.
(II) COMPLAINTS: If the holders, authorized persons, or assignees consider that their personal information and data contained in our databases should be corrected, updated, or suppressed, or when they notice any alleged non-compliance with any provisions contained in the regulations, they may forward a complaint to us, and such complaint shall be undertaken to under the following rules:
a. A complaint must be made through a request addressed to THE AIRLINES, with the claimant´s identification, a description of the facts giving rise to the complaint, the claimant´s address, and any other required documentation. If the complaint is incomplete, the missing information or documents will be required within five (5) days following the reception of the complaint. If the sender of the complaint fails to complete the required information within a period of two (2) months, it will be understood that he/she has desisted from the complaint.
b. In the event that we are not capable of resolving a complaint, the case will be forwarded to a competent person within two (2) business days, and the claimant will be informed in due time.
c. The maximum term to respond to a complaint shall be fifteen (15) business days from the day after the date of the reception, duly supported. In the event a request for review cannot be responded within said term, the reasons for the delay shall be informed to the claimant, providing a new date for such purpose without exceeding under any circumstances eight (8) business days following the due date of the original term.
12.4 In order to render their rights effective, travelers, clients, or users may exercise their rights to know, update, correct, and suppress their personal information and data by sending a request to e_Solutions@centrosolucionavianca.com, or through the Suggestions and Complaints service at www.avianca.com, or through the available Call Center lines in the countries where we operate.
12.5 The areas in charge of attending to requests, reviews, or complaints, before which the holder of the information may exercise his/her rights, according to the business or service unit, are:
a. CLIENTS OF AIR TRAVEL SERVICES AND OTHER RELATED SERVICES:
Attention channels: Call Center Avianca, www.avianca.com, e_Solutions@centrosolucionavianca.com, Responsible Area: AVIANCA Client Services.
Attention channels: Call Center Deprisa, Deprisa.com
Responsible Area: Deprisa Client Services.
c. AVIANCA SERVICES:
Attention channels: firstname.lastname@example.org
Responsible Area: Avianca Services.
d. AVIANCA CARGO:
Attention channels: aviancacargo.com
Responsible Area: Avianca Cargo.
12.6 The holder must include the following information in his/her request:
a. First, middle and last names
b. Document number
c. Email address
e. Type of document
12.7 In the event any traveler, client, user, or third party deems the contents used in any of our contact and marketing channels, such as web sites, mobile apps, and electronic kiosks, to be in violation of his /her intellectual property rights, he/she should send us a communication, including the following information to the email addresses provided above:
a. Personal information: name, address, phone number, and email address of the claimant.
b. Authentic signature, with the personal information of the holder of the infringed intellectual property rights or of the person authorized to act on behalf of the holder of the infringed intellectual property rights.
c. Accurate and complete indication of the protected contents protected by the infringed intellectual rights, as well as its location.
d. Express and clear statement that the use of the indicated contents has been conducted without the consent of the holder of the infringed intellectual rights.
e. Express and clear statement, and under the claimant´s responsibility, that the information provided in the notification is true and accurate and that the use of the contents constitutes a violation of his/her intellectual property rights.
12.7.1 Any claims originating from these facts shall be subjected to applicable legal undertakings for their treatment and solution.
12.8 A request for the suppression of the information and to revoke the authorization, or a request for limiting the use and disclosure of the personal data shall not proceed when the Holder has a legal or contractual obligation to remain in the database, in the terms provided by the applicable laws.
12.9 We have identified some territories in which the local laws contemplate specific stipulations. For further information regarding such specific stipulations, see the Appendices listed below:
a. Appendix Colombia
b. Appendix Mexico
c. Appendix Peru
d. Appendix European Union
e. Appendix Canada
f. Appendix United States
13.2 These amendments shall be made available to the public through the following means: billboards visible located at their establishments or customer service centers, our web sites, Smartphone apps or electronic kiosks (Privacy Warning), or via the latest provided email address.
***If you are a shareholder of Avianca S.A. and wish to consult the privacy conditions applicable to your personal information and data, please see our Privacy Notice for Shareholders.
For the treatment of personal information and data conducted in Colombia, the procedures for the exercise of the rights of Holders shall be those provided in Law 1581 of 2012 and its regulatory decrees.
The contact information of THE AIRLINES in Colombia is:
• Address: Avenida Eldorado No. 59 – 15, Bogota.
• Telephone number in Bogota: 4013434
• From other cities in Colombia: 018000953434
• Email: e_Solutions@centrosolucionavianca.com
For the treatment of personal information and data conducted in Mexico, the procedures for the exercise of the rights of Holders shall be those provided in the Federal Law for the Protection of Personal Data in Possession of Private Parties (DOF 05-07-2010), and its respective Regulations (DOF 21-12-2011).
1. Procedures for the exercise of the ARCO rights in Mexico:
Pursuant to that established in the Mexican law, the holders of personal information and data have the right to access, correct, cancel, or oppose to the treatment of their personal data, for which the following procedure must be followed:
The area responsible for the treatment of personal data (Information and Intelligence Direction) may be contacted through the following channels and for the delivery of the required information and documentation:
• Email: e_Solutions@centrosolucionavianca.com
• Address: Avenida Eldorado No. 59 – 15, Bogota, Colombia
A request for the access, correction, cancellation, or opposition must contain at least:
• Full name and home address of the holder of the personal information and data, and any other means for communicating the response to the request.
• Documents confirming the identity or legal representation of the holder of the personal information and data.
• A clear and accurate description of the personal information and data in relation to which the holder is seeking to exercise any of the above mentioned rights.
• Any other element or document that will enable locating the personal information and data.
• Documentation supporting the petition.
We THE AIRLINES shall communicate to the holder of the personal information and data the determination adopted within twenty (20) business days from the date of reception of the request. This term may be extended by us only once for an equal period of time, provided the circumstances justify such extension. Based on the foregoing and pursuant to the provisions of the Law, THE AIRLINES shall inform the holder of the personal information and data the sense and reason(s) for the resolution via the same means through which the request was made, and such resolution shall be accompanied with relevant proof, as the case may be.
When the request is appropriate, it will be made effective by THE AIRLINES within 15 business days following the notification of the adopted resolution.
The holder may submit to the Federal Institute for Access to Information (IFAI) an application for the protection of the data, according to the received response or the failure to respond of THE AIRLINES.
Such request shall be submitted by the holder within 15 business days following the date of reception of the response to the holder by THE AIRLINES, and shall be subject to that provided in the Law.
In the event of requests to access personal information and data, the requestor or legal representative will be previously required to confirm his/her identity.
The information access obligation shall be deemed to be fulfilled once THE AIRLINES have made the personal information and data available or delivered simple copies or electronic documents to the holder.
In the assumption that a traveler, client, or user requests the access to his/her personal information and data, presuming that THE AIRLINES are responsible when actually we are not, THE AIRLINES shall respond to the holder indicating this via any means of communication, being this enough for the request to be considered responded.
The response to a request for the access, correction, cancellation, or opposition to personal data shall be free of charge. Our clients, travelers, or users shall only cover any justified shipping expenses or the cost of reproduction in copies or other formats, which will be informed in due course and time.
In the event the same client, traveler, or user repeats a request for the Access, correction, cancellation, or opposition to the personal information and data within a period of less than 12 months from the date of the last request, the response to such request will have an additional cost indicated by THE AIRLINES, in accordance with that provided in Article 35 of the Federal Law for the Protection of Personal Data.
We THE AIRLINES may deny the access, in whole or in part, to the personal information and data or the correction, cancellation, or opposition to the treatment thereof in the following assumptions:
• When the requestor is not the holder, or the legal representative is not duly authorized for such purpose.
• When the requested personal information and data are not contained in the database of THE AIRLINES.
• When the rights of a third party are likely to be harmed.
• When there is a legal impediment or resolution of an authority.
• When the correction, cancellation, or opposition has been previously performed, rendering the request unfounded or unjustified.
The cancellation of the personal information and data shall give rise to a blocking period, after which the respective personal data will be suppressed. Once the cancellation of the personal information and data has been completed, THE AIRLINES shall notify the holder.
Having done the above, THE AIRLINES may keep the personal data exclusively for the purposes of responsibilities derived from the treatment referred to in this Policy. When the personal information and data have been shared with third parties or other entities in charge prior to the correction or cancellation, and such information is being treated by such third parties, THE AIRLINES must notify them of the request made by the holder in order for them to proceed to make the respective correction or cancellation.
We THE AIRLINES will not be obligated to cancel personal information and data in the cases of the assumptions provided in Article 26 of the Federal Law for the Protection of Personal Data, neither when the holder has a legal or contractual obligation to remain in the database, in the terms provided by law. Furthermore, when the collected personal information and data are no longer necessary to meet the purposes provided in this Policy and in the applicable legal dispositions, the personal information and data shall be cancelled and removed from the databases of THE AIRLINES.
2. Mechanisms and procedures to revoke the consent:
Holders may, at any moment, revoke their consent to treatment of their personal information and data. To this end, holders must send us an email written in the Spanish language to the following address: e_Solutions@centrosolucionavianca.com, and must include the same requirements indicated for the exercise of the ARCO rights, specifying the personal information and data for which he/she wishes to revoke the consent to treatment. The revocation of the specified data shall take place within a term no longer than fifteen (15) business days from the reception of the sender´s email.
3. Holder´s options for limiting the use or disclosure of his/her personal information and data:
Holders, at any moment, may limit their consent to treatment of their personal information and data for marketing and promotion purposes by sending us an email to the following address: e_Solutions@centrosolucionavianca.com, mentioning the limitations.
Within a term no longer than ten (10) business days from the reception of the holder´s email, we shall stop sending him/her information.
The contact information of THE AIRLINES in Mexico is:
For the treatment of personal information and data conducted in Peru, the procedures for the exercise of the rights of Holders shall be those provided in the Law 29733 and the Supreme Decree 003-2013-JUS (hereinafter referred to as the Law and its Regulations).
(III) Correction or update
In order to exercise these rights, the holder must send a request addressed to THE AIRLINES, including the following:
- First, Middle, and Last Names and requestor´s identification documents (copy of the national identity card or passport).
- Specific petition giving rise to the request.
- Home address and/or email address for response notification purposes.
- Documentation supporting the petition (for the cases of correction, cancellation, or opposition).
- Requestor´s signature
The procedures for the exercise of the rights are the following:
a) Right to Access and Information:
Holders may exercise the right to access and view the data stored in our database, in which case we shall provide access to the requested information.
The request for the access shall be responded within a maximum term of twenty (20) business days from the day after the date of reception of the request.
In the event it is not possible to respond to a claim within such period, the claimant shall be informed of the reasons for the delay, and the response term will be extended for an additional twenty (20) business days.
Furthermore, the holder of the data may exercise the right to the information as to how his personal data were collected.
Such request shall be responded within eight (8) business days maximum from the day after the date of reception of the request.
In the event the request to exercise the right to access or information is incomplete, the requestor, within five (5) days following the reception of the request, will be required to send the missing information. If you fail to submit such required information after five (5) days from the date of the requirement, your request will be considered not submitted.
b) Right to correct, update, oppose, or cancel
If the holder considers that the information contained in a database must be subjected to correction, updating, or suppression, he/she may submit a request, duly supported, which will be undertaken under the following rules:
In the event the request is incomplete, the requestor, within five (5) days following the reception of the request, will be required to send the missing information.
If you fail to submit such required information after five (5) days from the date of the requirement, your request will be considered not submitted.
On the other hand, in the event the information or documents supporting the request are insufficient, THE AIRLINES may require, within seven (7) days following the reception of the request, any additional documentation to respond to the request, requiring the holder to deliver such additional documentation within ten (10) business days. Similarly, if you fail to deliver the required information, your request will be considered not submitted.
During the correction or cancellation process, THE AIRLINES or the entity in charge shall proceed to block the access to the data by third parties.
The maximum term for responding to a request to exercise the right to correction, update, opposition, or cancellation shall be ten (10) business days from the day after the date of reception of the request. In the event it is not possible to respond to a claim within such period, the claimant shall be informed of the reasons for the delay, and the response term will be extended for an additional, and no longer than, ten (10) business days.
The contact information of THE AIRLINES in Peru is:
APPENDIX EUROPEAN UNION
It is possible that in some cases, the recipients of personal information and data are located outside the European Union and may have total or partial access thereto (last names and first name, passport number or citizen ID card number, destination, etc.), all of which are intended for the sole purpose of executing the transportation contract and/or the acquired services or products, or for reasons legally provided in and under the protection of the standards in force. In the event of the transfer of data outside of the European Union, this will be performed in accordance with the respective standards in force (e.g. for Spain, the Organic Law 15/1999, of December 13, for the Protection of Personal Data, and for the United Kingdom, the Data Protection Act 1998 of March 1st, 2000).
Certain information and data are indispensable for the completion of a transport contract or the provision of acquired services, and the passenger may refuse to such collection and treatment. However, such refusal could make it impossible to complete the transport contract or lead to its cancellation. In addition, the supply of inaccurate information could lead to preventing the passenger from boarding the aircraft or to being denied entry into any foreign country.
When completing a contract, the passenger must be informed of which information is mandatory and which is not, to the extent that the failure to provide the mandatory information will automatically cancel the services for which they were required.
Users may also refuse the options to receive any type of information regarding the services of THE AIRLINES when asked for any email address, and may, at any time, withdraw from the information services he/she may have signed up for.
Holders of personal data may exercise the rights to opposition, access, correction, and cancellation of their data in the terms provided in the applicable law (in Spain, Organic Law 15/1999 for the Protection of Personal Data).
For this, they may address THE AIRLINES, including their identity documents.
The contact information of THE AIRLINES within the European Union is:
For the treatment of personal information and data conducted in Canada, the procedures for the exercise of the rights of Holders shall be those provided in the Personal Information Protection and Electronic Documents Act, also known as PIPEDA or Act, which is a federal law that sets out rules for how private organizations may collect, use or disclose personal information within Canada. PIPEDA applies in all Canada, except in the provinces of British Columbia, Alberta, and Quebec, as these provinces have their own privacy laws, which have been declared substantially similar to the federal law, PIPEDA.
PIPEDA imposes a general obligation on all organizations to collect, use, and disclose personal information for purposes that are reasonable and appropriate under certain circumstances. It also provides a list of 10 principles which must be met by private organizations when collecting, using, and disclosing the personal information of any traveler, client, or user.
Users may also refuse the options to receive any type of information regarding the services of THE AIRLINES when asked for any email address, and may, at any time, withdraw from the information services he/she may have signed up for.
APPENDIX UNITED STATES
The Department of Transportation of the United States of America (hereinafter referred to as DOT) provides that THE AIRLINES must inform their travelers, clients, or users sufficiently about the collection, use, and disclosure of personal information and data.
Even though no federal privacy laws currently exist that specifically regulate the treatment of personal information and data in this country, the DOT may investigate and prevent any practice related to the sale of air travel services, including the treatment of personal information and data of our travelers, clients, or users.
THE AIRLINES are also committed to complying with the Children´s Online Privacy Protection Act of the United States of America, also known as COPPA).
The COPPA regulates the protection of children´s privacy in the United States, authorizing the DOT to engage in the investigation of any use of the personal information and data of children under 13 years of age on the web.