Digital privacy notice

(revision Date: December 5, 2024)

Digital privacy notice (website & social media)

Athens International Airport S.A. (AIA) acknowledges the importance of ensuring the protection of individuals with regard to the processing of their personal data.

Further to our Privacy Policy, this Privacy Notice provides more information on the principles followed by AIA in processing your personal data through the services provided by this Website and AIA’s official Social Media channels (Twitter, Facebook, Instagram, YouTube, WeChat and LinkedIn), in compliance with applicable Personal Data Protection Legislation and AIA’s Privacy Policy.

1.    AIA’s Official Digital Services 
Our Website www.aia.gr  (the “Site”), the chatbot “Philos The Athenian” and our Social Media Channels are AIA’s  integrated information and services platforms for both our business partners and the public; 
A gateway of  interaction with passengers, visitors and the public in general, providing first-hand information for the Airport and the services and easements offered by our Company, Public Authorities, or business partners, as well as for the City of Athens, as a destination.
We must point out that third-party websites, that you may visit by following links provided on our Website, are outside of our sphere of control and are governed by different terms of use and different Privacy Policies for the management of personal data. For these policies, our Company does not take any responsibility.

Data Controller:
In all above digital communication platforms AIA acts as a Data Controller, holding all rights and obligations reserved for such capacity under the General Data Protection Regulation [(GDPR), or Regulation EU 2016/679]).
Athens International Airport S.A. (AIA)
Administration Building (B17)
P.C. 190 19, Spata Attica
Greece

AIA’s Data Protection Officer:
Manager, Regulatory Compliance Data Protection and Ethics
Athens International Airport S.A. (AIA)
Administration Building (B17)
P.C. 190 19, Spata Attica, Greece
Email address: [email protected]

 

2. Categories of Data Processing
We collect and process your personal identifiable information through the following means:

  • When you access our Website, we install on you browser cookies and similar technologies to facilitate your navigation, as demonstrated in our Cookies Policy.
  • When you fill out our contact/complaint/hospitality forms, to send a comment, or inquiry in order for us to be able to look into your inquiry/ investigate your comment and reply.
  • When you use our "flight tracker" service  www.aia.gr/en/traveller/flights-at-airport and you wish to receive an email notification every time there is a significant update in your flight status
  • When you use our e-parking service www.aia.gr/en/traveller/airport-parking-athens to book a vehicle parking space at the Airport’s Car Park Lots in order to conclude a contract with Athens International Airport, to provide you with the service you have requested.
  • When engaging with our social media accounts, we will have access to your social media username. If your account is public, we may also view information from your profile, such as the content you share, posts, followers, following, comments, bio, and your online presence address.
  • When we receive queries on social media platforms, we may collect your personal information for us to correctly identify you and deal with your query. All the personal information collected will depend on the information that you provide us. On a few occasions, we may request for further information to help us deal with your query. 
  • When participating in our website, or social media contests, we will collect your name, surname, telephone number, email address, and mailing address to facilitate the delivery of your prize.
  • When using our chatbot, ‘Philos the Athenian,’ through our Facebook and Instagram accounts, we will have access to the information you provide via the questions you ask and the sections of the chatbot you interact with. Additionally, if you use our flight tracker service through the chatbot, we will also receive details about the flight for which you request information.
  • When accessing our "iGate" pages https://apps.aia.gr/igate   (as a registered business partner user), in order to be able to access specialized content and tools for the aviation professionals or Tenders Portal to access active tenders list (https://apps.aia.gr/current-tenders). 
  • When you subscribe to AIA’s Newsletters and accept to receive informative/ promotional material for our Airport Business Partners, as well. 
  • When registering to the register section of aia.gr and create a personalized account so as to manage parking bookings, profile settings, as well as favorite bookmarks. 
  • When you submit a CV.

3. Categories of personal data collected

Depending on the purpose of your visit and the service you wish to receive from our Website, social media channels and chat bot, the type of personal data we collect may include name, address, email address, telephone number, vehicle license plate, as well as additional information, such as airline and flight no. Credit card details are currently processed exclusively through an external website of an AIA business partner.  
In some cases, we may also need to process special categories of personal data such as information concerning medical conditions, disabilities and special requirements, as to be able to address your particular needs (e.g. when you post a comment, or inquiry through our digital channels).

On all such occasions, you are in absolute control of the personal information  you provide , as such information is explicitly received with your documented consent for specific purposes. Our Website utilizes a consent recording mechanism that records your clear, affirmative action, in the selection of cookies and other tracking tecnologies upon connection, as well as Newsletter subcriptions). Moreover, there are modules that enable you to revoke your prior preferences and set new ones.   
You acknowledge, however, that certain services (e.g. Flight Tracker, e-Parking or iGATE), cannot be efficiently provided or concluded, unless the appropriate data is made available to us.  

4. Website Data Security

Every effort is made to protect your information, while accessing our website, or our social media platforms. We use appropriate technical, organizational and administrative measures to protect any personal information we process about our visitors, our customers and their end users. AIA utilizes a valid trusted certificate that is used to encrypt the communication exchanged between your device and the hosting server, all information is encrypted prior to being transmitted over the Internet, through HTTPS (HTTP over TLS /Transport Layer Security). However, please note that no Internet transmission can ever be guaranteed 100% secure, and so we encourage you to take care when disclosing personal information online and to use readily available tools, such as Internet firewalls, anti-virus and anti-spyware software, and similar technologies to protect yourself online.
Any payment transaction is encrypted using SSL technology and is processed by a trusted merchant (third party).

We record your personalized preferences and we apply double opt in mechanism with confirmation e-mail messages where applicable.
You are responsible for keeping passwords that are provided to you or you have chosen yourself, so to access certain restricted portions of our Website. Passwords are secret and are provided to you solely, we therefore kindly ask you to not share your password with anyone else. AIA will not contact you directly or indirectly asking for your password.   

The security in processing data on our social media platforms relies on the technical and organizational controls applied as a standard by each responsible social media platform provider. 

5. Data Retention
The data retention limits are set by our respective corporate policy and depend on the purpose of service you wish to obtain from our Site and its respective modules and is clearly demonstrated therein:

  • Personal data provided in the comments/contact section is retained for a maximum of five (5) years from our reply or the dispatch of your comment to the relevant companies and entities operating at Athens International Airport as per our corporate passenger comment management procedure.
  • Personal data provided through social media channels will be retained for a maximum of five (5) years from the date of our response or the dispatch of your comment. This data will remain in the relevant social media platform’s history log for as long as the platform makes it available, unless deleted by the user.
  •  Chat bot service cookies are retained for the session period.
  • Data provided in the "Flight Tracker" module is automatically deleted upon completion of the requested service.
  • Data provided in the "e-Parking” is retained for a maximum of five (5) years from the booking date.
  •  Email addresses provided for subscription purposes to our newsletters are kept until an unsubscribe request has been received by you.
  • Emails or other contact details provided for competitions, surveys or other interactive features of our Site are automatically deleted upon the conclusion of the respective activity.  
  • More information is provided also on individual privacy notices as same are posted  per processing activity

6. Third Party Processing
Personal data are also processed by our affiliated companies, which are committed to comply with the GDPR while, for the purposes of IT hosting and maintenance, information is located within the European Union. In particular:

  •  “LINAKIS SA ", Pierias 1A, Metamorfosi, Attiki GR 14451  ( [email protected]) is the developer of the website processing data on our behalf, 
  • "E-parking" module data is also processed by the developer of the platform,  “ LINAKIS SA ", Pierias 1A, Metamorfosi, Attiki GR 14451  ( [email protected]) , and PARKAROUND BV, Konstantinoupoleos 52, 11854, Athens, Greece ([email protected])
  • the parking operator, Cityzen Parking and Services SA, Kifissias Ave 294 & Tzouna 1, 145 63 Kifissia Attica ([email protected]).
  • Grammedia LTD (ContactPigeon), Leof. Pentelis Str. 74, Chalandri 15234 ([email protected]) undertakes the email marketing campaigns on our behalf and Mindshare Media Company, 350 Kifisias & Chr.Lada Chalandri GR 15233, runs our digital advertising campaigns.
  • Helvia Technologies IKE, Evristheos 2, 11854, Athens ([email protected]), is the developer of the Philos Chatbot  
  • POBUCA SIEBEN MIKE, 3 Aristomenous St. 15344, Gerakas - Athens ([email protected]), providing enhanced statistical analysis and insight based on public interactions with AIA’s social media and other communication platforms.

7. Transfer of personal data
Your personal data may be shared with competent authorities and stakeholders within the Airport Community, as may be required to fulfil the purposes of your visit and the services you wish to receive from our Company.


8. Your rights to access and manage your personal data
Personal data legislation in force gives you the right to ensure that your personal data is being processed lawfully. You may exercise your rights to access, rectify, delete, transfer your data, restrict or object the data processing by communicating your request to AIA’s Data Protection Officer as indicated above under point (1). More information on the data subject rights are presented in our Privacy Policy.


9. Complaint to competent Data Protection Authority
You may exercise your right to lodge a complaint with the Hellenic Data Protection Authority (www.dpa.gr), if you consider that AIA’s processing of your personal data infringes GDPR. Furthermore, you have the right to judicial remedy, in case you believe that your rights under the GDPR have been infringed as a result of AIA’s data processing.


10. Revisions of Website and Social Media Privacy Notice
This Website Privacy Notice may be subject to future amendment. The applicable version will be always presented on our Website