Privacy Policy

Last Updated: October 15, 2020
Effective Date: October 15, 2020

We, Airside Mobile, Inc. (“Airside“), are dedicated to ensuring your privacy and want you to be familiar with how we collect, use, and disclose Personal Information (as defined below). This Privacy Policy describes our practices in connection with Personal Information that we collect through any of the mobile applications that we make available to the public (the “App”), the services included within our Apps (the “Services”), or our websites. This Privacy Policy does not address the collection, use or disclosure of information by any of our affiliates or by third parties.

By using our Apps or websites, you agree to the terms and conditions of this Privacy Policy. If you do not agree to the terms and conditions of this Privacy Policy, please do not use the Apps or our website(s).

We reserve the right to change this Privacy Policy at any time. When we change the Privacy Policy in a material manner, we will attempt to notify you through in-app notifications (if your settings permit notifications) or by alerting you to the updated Privacy Policy the next time you launch the App. Any changes to our Privacy Policy will become effective on the effective date listed on the Privacy Policy. If you do not agree to such changes, you can delete your account and request that your information be deleted.

You can determine when this Privacy Policy was last revised by referring to the “LAST UPDATED” legend at the top of this page. Any changes to our Privacy Policy will become effective upon our posting of the revised Privacy Policy on the App.

1. WHAT TYPES OF INFORMATION DO WE COLLECT FROM YOU?


1.1. Personal Information (“PI”)


PI is information that identifies you as an individual. In order for you to use particular Services provided through our Apps or websites, including expediting customs processes we may require you to provide PI.
We may collect PI from you, such as your name, postal address, telephone number, e-mail address, passport information, date and place of birth, credit card number or other payment account number (including the three (3) or four (4) digit validation code for your credit card), when you voluntarily provide it to us.

You will always be provided the ability to delete your PI from the Apps and Services at any time. You are also provided the ability to revoke prior consent given to Airside or our partners at any time (unless regulatory requirements prohibit revocation).

1.2. Protected Health Information (“PHI”)


PHI is select protected health information. Some Airside Services enable you to gain access to your own PHI, to provide you with the ability to knowingly share this information with third parties. Such information is stored and managed exclusively within the Apps on your device. Airside will not process, store, or distribute this information without your explicit consent, with specific purpose(s), named processors, and for a specific time.

You will always be provided the ability to delete your PHI from the Airside Apps and Services at any time. You are also provided the ability to revoke prior consent of access to shared PHI from Airside or third party parties at any time (unless regulatory requirements prohibit revocation).

1.3. Biometric Information


Some Airside Services enable you to share your biometric information including “selfies” and portrait images from documents you enroll into the Service (e.g. passport and driver’s license photographs). Such biometric information remains on your device unless you explicitly agree to share that information with named third parties, for specific purposes and durations. Biometric information is stored and managed exclusively within the Apps on your device. Airside will not process, store, or distribute this information without your explicit consent, with specific purpose(s), named processors, and for a specific time.

You will always be provided the ability to delete your biometric information from the Airside Apps and Services at any time. You are also provided the ability to revoke prior consent of access to shared biometric information from Airside or third parties access to your biometric information at any time (unless regulatory requirements prohibit revocation).

1.4. Non-Personally Identifiable Information (“Non-PI”)


Non-PI is aggregated information, demographic information and any other information that does not identify you as an individual. We and our third party service providers may collect Non-PI from you, and we may aggregate PI in a manner such that the end-product does not personally identify you or any other user of the App. We and our third party service providers may also use cookies, pixel tags, web beacons, and other similar technologies to better serve you with more tailored information and facilitate your ongoing use of our App.

2. HOW DO WE USE INFORMATION COLLECTED FROM YOU?


We do not sell or share your information (PI) with third parties for marketing purposes. Your information remains on your device unless and until you agree to sharing this information with our partners.

Personal Information. We may use PI:

  1. to fulfill your requests, e.g., to allow you to order and receive items through our partners or to provide you with specific information that you request;
  2. to send you important information regarding the App, changes to our terms, conditions, and policies and/or other administrative information;
  3. to fulfill your purchase(s) (e.g. to process credit card payments in connection with your order);
  4. to customize content on our App;
  5. to expedite, only at your specific request, customs processes by sharing selected PI with the U.S. government, specifically the U.S. Customs & Border Protection;
  6. when you provided specific consent to sharing your information with our partners.

Non-Personal Information

Because Non-PI does not identify you as an individual, we may use such information for any purpose. In addition, we reserve the right to share such Non-PI with our affiliates and suppliers to improve our service offerings and to ensure the security and functionality of the App. In some instances, we may combine Non-PI with PI (such as combining your name with your geographic location). If we do combine any Non-PI with PI, the combined information will be treated by us as PI hereunder as long as it is so combined.

IP Addresses and Mobile Device Identifiers

We do not collect or use Mobile Device Identifiers assigned by device manufacturers or wireless service providers. Please note that we treat IP addresses, server log files and related information as Non-PI, except where we are required to do otherwise under applicable law.

3. HOW IS PERSONAL INFORMATION DISCLOSED?


We may disclose PI:

  1. to our third party service providers, with your consent, who provide services such as payment processing, customs processing, order fulfillment, IT services, customer service, and credit card processing;
  2. to fulfill your purchase;
  3. to an affiliate or other third party in the event of any reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including without limitation in connection with any bankruptcy or similar proceedings);
  4. to comply as we believe to be appropriate: (a) under applicable law including laws outside your country of residence; (b) to comply with legal processes; (c) to respond to requests from public and government authorities including public and government authorities outside your country of residence; (d) to enforce our terms and conditions; (e) to protect our operations or those of any of our affiliates; (f) to protect our rights, privacy, safety or property, and/or that of our affiliates, you or others; and (g) to permit us to pursue available remedies or limit the damages that we may sustain.

4. OTHER IMPORTANT NOTICES REGARDING OUR PRIVACY PRACTICES


Third Party App

This Privacy Policy does not address-, and we are not responsible for, the privacy, information or other practices of any third parties, including without limitation any of our affiliates and any third party operating any site to which this site contains a link. The inclusion of a link on the site does not imply endorsement of the linked site by us or by our affiliates.

U.S. Customs & Border Protection (U.S. CBP)

To fulfill a request for expedited service for U.S. CBP processes, Airside will facilitate the transmission of relevant PI at your specific direction to U.S. CBP via secure, encrypted processes that meet the U.S. CBP requirements for transmission of PI. Airside is NOT responsible for the use of such information by the U.S. government, including U.S. CBP, and is NOT responsible for any actions the U.S. government, including U.S. CBP, may or may not take based on that information.

Transportation Security Administration (TSA)

To fulfill a request for expedited service for TSA processes, Airside will facilitate the transmission of relevant PI at your specific direction to TSA via secure, encrypted processes that meet the TSA and U.S. state Departments of Motor Vehicles (DMV) requirements for transmission of PI. Airside is NOT responsible for the use of such information by the U.S. government, including TSA, and is NOT responsible for any actions the U.S. government, including TSA, may or may not take based on that information.

Security

We use reasonable organizational, technical and administrative measures to protect PI under our control. Unfortunately, no data transmission over the Internet or data storage system can be guaranteed to be 100% secure. Please do not send us sensitive information through email or via any of our customer support channels.

Opt-In

During the use of the Service, you are asked to explicitly opt-in to the sharing of your PI, PHI, or biometric information to third parties, such as our partners, U.S. CBP, and TSA. We will not share such information without your specific and informed consent.

Changing or Suppressing PI

If you would like to review, correct, update, suppress or otherwise limit our use of your PI, PHI, or biometric information that has been previously provided to us, you may do so by adjusting your preferences in the ‘Settings’ functions for the Apps or by contacting us at myside@airsidemobile.com (Airside app) or flightcrew@airsidemobile.com (Mobile Passport app). We may retain certain anonymized information for record-keeping and audit and compliance.

Retention Period

We will retain your PI, PHI, or biometric information for the period necessary to fulfill the purposes outlined in this Privacy Policy and the duration you agreed to when providing your informed consent. You may elect to allow us to retain PI, PHI, or biometric information for your convenience between travel activities within our Apps on your device. You will be asked to approve such retention.

Note Regarding the Use of the Apps and Site by Children

The Apps are not directed to individuals under the age of thirteen (13), and we request that such individuals not provide PI, PHI, or biometric information through the Site or App. However, parents and legal guardians may enroll travel documents on behalf of their children on their own mobile devices.

Contacting Us

If you have any questions regarding this Privacy Policy, please contact us by e-mail at dpo@airsidemobile.com.

Please note that e-mail communications will not necessarily be secure; accordingly, you should not include credit card information or other sensitive PI in your e-mail correspondence or as an attachment.

5. SPECIFIC COMPLIANCE STATEMENTS

GDPR Compliance


Airside complies with the European Union (EU) General Data Protection Regulation (GDPR) guidelines enacted by the EU to protect data. Originally adopted in April of 2016, the regulations went into effect on May 25, 2018.

All inquiries concerning GDPR should be sent to our DPO (Data Protection Officer) via email at dpo@airsidemobile.com. The DPO or a member of their team will respond within 48 hours.
Airside offers several products. Please review the appropriate section below for more detail.

Mobile Passport Application and Automated Passport Control (APC)

Airside only collects PI that you authorize and enter into the Mobile Passport app or APC kiosk. The types of information include information contained within the MRZ (Machine-readable Zone) code of a passport at the bottom (e.g. name, passport number), photographs and fingerprints. In addition, our system will collect Non-PI information (e.g. arrival location, flight details) and other relevant system data (e.g. location, time of day) for processing submission to U.S. CBP.

Formatted information is securely transmitted for processing by U.S. CBP and they determine whether entry is granted. Once the entry status is determined by U.S. CBP, we inform the user of their decision via a digital QR code receipt(s) on the Mobile Passport app or APC kiosk. We are unaware of the algorithms used by U.S. CBP to determine this status and encourage data subjects to contact them directly if they have questions. Airside cannot facilitate these communications.

To log the transmission, we rely on pseudonymization techniques to maintain the security of your information. PI (such as passport number and name) are not retained. As such, we are unable to process requests for erasure or export for a data subject since we cannot attribute the information we have to an individual.

Airside Application

The Airside App only collects PI that you authorize and/or enter into our application and this data is securely stored on your device, unless and until you choose to share that information with one of our partners. PI such as name, address, and billing information (including payment information such as credit card) may be collected for certain Services. This information is retained by our systems in an encrypted form that we can decrypt only at your direction to provide your service.

Any enrolled PI is stored by you on your device, which is encrypted. Should you choose to share your personal information with one of our partners, Airside cannot (by design) decrypt this information unless you request that we verify provided PI. We are unable to respond to requests from anyone, including the customer, for this information to be exported in a decrypted form.

Data subjects may request erasure or data export when closing your account. For data export, billing information will be obfuscated to protect clients and encrypted information will be delivered as a binary object.

CCPA Compliance


The California Consumer Privacy Act (CCPA) requires specific disclosures for California residents.

Information Airside collects

Identifiers such as your name, phone number, and address, as well as unique identifiers tied to the browser, application, or device you’re using.

Demographic information, such as your age and gender.

Commercial information, such as your payment information and a history of purchases you make.

Biometric information if you choose to provide it, such as portraits from official ID documents, and “selfies”.

Geolocation data, such as may be determined by IP address, and data from sensors on or around your device, depending in part on your device and account settings.

Why we use this data

Airside and its partners and customers may request this information for specific purposes, which you are informed of in advance, to provide specific identity information in order to provide you with specific services.

When is this information shared

You will always be asked if you would like to share your personal information with Airside, our customers, or our partners. We will never share your information without your explicit consent. Airside never sells your personal information.

The CCPA also affords you the right to request information about how Airside collects, uses, and discloses your personal information. And, it gives you the right to access your information and request its removal. You have complete control over your information, and can delete this information from our Apps and our Services through the use of our App. Under certain circumstances, our customers and partners are required by law or regulation to retain your information for specific periods of time. You will be informed ahead of time if this is the case. Finally, the CCPA provides the right to not be discriminated against for exercising your privacy rights.

If you have questions about how to exercise your rights under CCPA, you may request additional information by sending an email provided in the contact information below.

Business Purposes for use of your data

Auditing and measurement: Airside uses anonymized information for analytics and measurement to understand how our Services are used, as well as to fulfill obligations to our partners. We will not disclose PI, PHI, biometric, or non-PI information with these partners.

Use by our customers and partners: At your direction, Airside will facilitate the sharing of your information with our customers and partners to provide services on your behalf, in compliance with our Privacy Policy and other appropriate confidentiality and security measures.

Legal reasons: Airside uses information to satisfy applicable laws or regulations, and discloses information in response to legal process or enforceable government requests, including to law enforcement.

Illinois Biometric Information Privacy Act (BIPA)


Some Airside Services provided through our Apps include the ability to share biometric information (specifically your portrait images or templates derived from these portraits). Your consent is always required prior to the release of biometric information, and you may revoke this consent at any time.

Your biometric information is shared with Airside, our partners and customers for specific purposes, named parties, and for specific and limited time periods, sufficient to provide you with the Services that make use of biometrics. Once this time period has passed, Airside will automatically delete any biometric information from its Service. This information will remain on your device until such time as you choose to delete it.

When sharing your biometric information, a record of your consent remains in our Apps on your device, including a record of your acknowledgement to share this information.

As is the case with all of your data that you manage on your device, Airside will never sell your biometric information.

6. CONTACT INFORMATION


For further information, please contact us at :
Privacy Office: privacy@airsidemobile.com
GDPR Representative : dpo@airsidemobile.com
Airside Mobile DPO : dpo@airsidemobile.com
Information Security : security@airsidemobile.com
US office phone number : +1 703-345-5832

Scroll to Top

You've Subscribed!

Be sure to download the Airside App to start skipping lines today.

Help us democratize privacy, share with your friends.
Share on facebook
Share on twitter
Share on linkedin
Share on facebook