Home Privacy Policy
Legal

Privacy Policy

Your privacy matters to us. This policy explains what data we collect, why, and how we protect it.

Last updated: January 2025

Table of Contents

  1. Who We Are
  2. Data We Collect
  3. How We Use Your Data
  4. Legal Basis for Processing
  5. Cookies
  6. Third-Party Services
  7. Data Retention
  8. Your Rights
  9. International Transfers
  10. Changes to This Policy
  11. Contact Us

1. Who We Are

Arovynx ("we", "us", "our") operates the website at arovynx.com. We are an independent informational platform focused on aviation data analysis for the German market. We do not sell tickets, process bookings, or offer paid services of any kind.

For data protection purposes, Arovynx is the data controller. You can reach us at info@arovynx.com.

2. Data We Collect

2.1 Data You Provide Directly

When you use our contact form, we collect the following personal data:

  • First name and last name
  • Email address
  • Organisation name (optional)
  • The content of your message

We do not collect payment information, passport details, or booking references, as we do not offer any paid services.

2.2 Data Collected Automatically

When you visit our website, we may automatically collect technical data including your IP address (anonymised where possible), browser type and version, operating system, referring URL, pages visited, and time and date of your visit. This data is collected through cookies and similar tracking technologies. See our Cookie Policy for full details.

2.3 Data We Do Not Collect

We do not collect sensitive personal data such as racial or ethnic origin, political opinions, religious beliefs, biometric data, health data, or financial information. We do not create user accounts, so we do not store passwords or account credentials.

3. How We Use Your Data

  • To respond to your enquiries submitted via the contact form
  • To analyse website usage in aggregate (anonymised) to improve our content and user experience
  • To maintain website security and prevent abuse
  • To comply with our legal obligations

We do not use your data for marketing, profiling, or automated decision-making. We do not sell your data to third parties.

Under the General Data Protection Regulation (GDPR), we process your data on the following legal bases:

  • Consent (Art. 6(1)(a)): For cookies that are not strictly necessary, we rely on your consent given via our cookie banner.
  • Legitimate interests (Art. 6(1)(f)): For analytics and website security, where our legitimate interest does not override your rights.
  • Contract performance / pre-contractual measures (Art. 6(1)(b)): When you contact us, processing your message is necessary to respond to your enquiry.

5. Cookies

We use cookies and similar technologies to operate our website and analyse usage. For full details on the cookies we use, their purposes, and how to manage them, please read our Cookie Policy.

6. Third-Party Services

Our website may use the following third-party services, which may collect data according to their own privacy policies:

  • Cloudflare: For content delivery and security. Cloudflare may process IP addresses and other technical data.
  • Analytics provider: We may use a privacy-respecting analytics service (such as Plausible or similar) to understand aggregate site usage. Where used, such analytics are configured to anonymise IP addresses.
  • Unsplash / Pexels: Images on this website are served from free stock photo services and are loaded from their respective CDNs.

We do not integrate social media tracking pixels or advertising networks.

7. Data Retention

Contact form submissions are retained for up to 12 months to allow for follow-up correspondence, after which they are securely deleted. Anonymised analytics data may be retained for up to 24 months for trend analysis purposes. Server logs are retained for up to 30 days for security purposes.

8. Your Rights

Under GDPR and applicable data protection laws, you have the following rights:

  • Right of access: Request a copy of the personal data we hold about you.
  • Right to rectification: Request correction of inaccurate data.
  • Right to erasure ("right to be forgotten"): Request deletion of your data, subject to legal obligations.
  • Right to restriction of processing: Request that we limit how we use your data.
  • Right to data portability: Receive your data in a machine-readable format.
  • Right to object: Object to processing based on legitimate interests.
  • Right to withdraw consent: Where processing is based on consent, withdraw it at any time without affecting prior processing.

To exercise any of these rights, contact us at info@arovynx.com. You also have the right to lodge a complaint with your national data protection supervisory authority (in Germany: the Bundesbeauftragter für den Datenschutz und die Informationsfreiheit — BfDI, or the relevant Landesbeauftragte).

9. International Data Transfers

Where any data is transferred outside the European Economic Area (EEA), we ensure appropriate safeguards are in place, such as Standard Contractual Clauses (SCCs) or adequacy decisions. We endeavour to use service providers located within the EEA where possible.

10. Changes to This Policy

We may update this Privacy Policy from time to time. When we make material changes, we will update the "Last updated" date at the top of this page. We encourage you to review this policy periodically. Continued use of our website following any changes constitutes your acceptance of the updated policy.

11. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

We use cookies to improve your experience. By clicking "Accept", you consent to our Cookie Policy.