Legal Notices

TERMS OF USE

Last Updated – October 2017

This website ("Site") is operated by Amadeus IT Group SA ("Amadeus"), a company registered with the Commercial Registry of Madrid, General Volume 215552 of Section 8 of the Companies Book, Folio 131, Sheet no M-383503 CIF/VAT: ES-A84236934 with principal offices at C/ Salvador de Madariaga 1, 28027 Madrid, Spain.

These terms of use govern your access to and use of this Site and any section of the Site (including without limitation an Amadeus Facebook page or Twitter account). Other services or materials operated or provided by Amadeus or by third parties may be subject to other terms of use, which will be indicated to you prior to use.

These terms of use constitute a legal agreement between you and Amadeus. Please read them carefully before using the Site. By downloading, accessing or using the Site you are confirming that you accept these terms of use and that you agree to comply with them.

Amadeus may amend these terms of use at any time at its discretion. You can determine when the terms of use were last revised by referring to the “Last Updated” legend at the top of this page. If these terms of use are amended, Amadeus shall display the revised terms of use on the Site. Use of the Site following such changes constitutes your acceptance of the revised terms of use then in effect.

If you do not agree to comply with these terms of use or any amendments to them please stop using the Site immediately.

These terms of use refer to the Privacy Policy and Cookie Policy which also apply to your use of the Site.

Use of this site

Amadeus operates and controls the Site and provides it to you in its absolute discretion.

In consideration of you agreeing to abide by these terms of use, Amadeus grant you a non-transferable, non-exclusive license to download, access and use the Site for your personal, non-commercial purposes and for no other purpose and subject to these terms of use and the Privacy Policy.

Amadeus may withdraw or change the Site at any time in its absolute discretion including suspending access to the Site. We will not be liable to you if for any reason our site is unavailable at any time or for any period.

In consideration of Amadeus permitting you to use the Site you agree to comply with these Terms of Use. All other uses of the Site other than as set out in these terms of use are prohibited.

Restrictions on use

Your permission to use this Site is conditional on your compliance with these terms of use and is subject to the following restrictions:

  • You must comply with all applicable local, national or international law or regulation when using the Site and must not use the Site for illegal or illegitimate purposes;
  • You must not use the Site in in any way that may prejudice or damage Amadeus’ business.
  • You must not transmit any material that is defamatory, offensive or otherwise objectionable.
  • You must not use the Site in any way for your own commercial gain,
  • You must not reproduce, duplicate, copy (other than for personal and non-commercial purposes) or re-sell any part of the Site.
  • You must not modify the materials that you reproduce, duplicate or copy and you must not use illustration, photographs, video or audio separately from accompanying text.
  • Where materials are reproduced, duplicated or copied there shall be a proper and accurate display of the source of the materials.
  • You must not access without authority, interfere with, damage or disrupt any part of the Site; any equipment or network on which the Site is stored; any software used in the provision of the Site; or any equipment or network or software owned or used by any third party.
  • You must not knowingly transmit any data, send or upload any material that contains viruses, Trojan horses, worms, time-bombs, keystroke loggers, spyware, adware or any other harmful programs or similar computer code designed to adversely affect the operation of any computer software or hardware.
  • You must not take any action that will or could damage, disable, overburden, impair or compromise Amadeus systems or security or interfere with other users.
  • You must not infringe Amadeus intellectual property rights or those of any third party in relation to your use of the Site.
  • To the extent that the Site is hosted in a third party Site (for example Facebook or other social media sites) and there are separate terms of use relating to that third party Site you agree to fully comply with such terms and conditions.

You may create links to the Site provided you do so in a way that is fair and legal and does not damage our reputation or take advantage of it. You must not establish a link in such a way as to suggest any form of association, approval or endorsement on our part where none exists. We reserve the right to withdraw linking permission without notice.

We may from time to time provide interactive services on our Site that allow you to upload content to the Site or make contact with other users of the Site. Where we do provide these interactive services you warrant that you shall not contribute any information that:

  • Contains any third party material or content for which you have not obtained all the necessary consents and licenses.
  • Is defamatory, unlawful, obscene, offensive, hateful, inflammatory, pornographic, in breach of any legal duty owed to a third party, such as a contractual duty or a duty of confidence or is threatening, abusive, invades another’s privacy, or causes annoyance, inconvenience or needless anxiety.
  • Constitutes or encourages conduct that would be considered a criminal office or give rise to civil liability or otherwise contrary to the law of or would infringe the rights of any party in any country in the world.
  • Is technically harmful (including without limitation, containing computer viruses).

To the extent that you contribute any information to the Site you hereby grant Amadeus and its group companies a non-exclusive, perpetual, royalty-free, worldwide, transferable and sub licensable right to use, reproduce both electronically and otherwise, display, distribute, modify, adapt, publish and create derivative works from any and all such contributions including for the purposes of advertising and marketing.

Intellectual property rights

Amadeus is the owner or the licensee of all intellectual property rights in the Site and in the material published in it. Those works are protected by copyright laws and treaties around the world. All such rights are reserved. Nothing in these terms of use intends to transfer any intellectual property rights to, or to vest any intellectual property rights in, you.

You are only entitled to the limited use of the intellectual property rights granted to you in these Terms of Use. You will not take any action to jeopardize, limit or interfere with the intellectual property rights.

You agree that you will not remove, obscure, make illegible or alter any notices or indications of the intellectual property rights and/or of Amadeus' rights and ownership thereof. You acknowledge and agree that any unauthorized use of the intellectual property rights will constitute a breach of these Terms of Use and may infringe Amadeus' and its licensors' intellectual property rights.

Amadeus reserves its right to take such action as it considers necessary, including issuing legal proceedings without further notice to you, in relation to any unauthorised use of this Site.

Warranties

By using the Site and hence accepting these Terms of Use you warrant and represent to Amadeus that:

  • You will not use the Site other than in accordance with these Terms of Use;
  • You will not use the Site in any manner which may cause damage to Amadeus or bring Amadeus into disrepute;
  • Your use of the Site will not infringe the rights of any third party.

Limitation of liabilty

Your use of this Site is entirely at your own risk. While Amadeus will make reasonable efforts to ensure that the content of the Site is up to date and accurate, Amadeus makes no representations, warranties or guarantees, whether express or implied that the Site:

  • is accurate, complete or up to date;
  • will always be available;
  • is secure, free from errors, faults, defects, viruses or malware.

To the maximum extent permissible by law (and except in respect of death or personal injury arising out of the negligence of Amadeus or in respect of fraud or fraudulent misrepresentation) Amadeus does not accept liability (whether based on contract, tort, strict liability or otherwise) for:

  • any inaccuracies, or omissions in the content of the Site, or
  • any loss, damage, cost, expense of any kind incurred by you arising in connection with your access to, use of, or inability to use the Site or any content contained in them; and by using the Site you release Amadeus from all such liability.

Amadeus cannot be held liable for any content made available through interactive services on the Site.

Advertising material submitted by third parties may be visible on the Site. Each individual advertiser is responsible for the content of its advertising materials including without limitation, any error, omission or inaccuracy.

Amadeus assumes no responsibility for the content of websites and resources provided by third parties that may be accessed through links on the Site, these links are provided for information only. Amadeus have no control over the contents of these website and resources and accept no responsibility for any loss or damage that may arise from your use of them.

Termination

Amadeus may in its absolute discretion immediately terminate this Agreement upon notice to you. Amadeus may suspend your use of the Site without notice at any time, without incurring any liability to you whatsoever.

Consequences of termination

Immediately on termination of this Agreement,

  • you will not have the right to use the Site and all permissions set out in this Agreement shall cease;
  • you shall immediately delete any information received or used by you which relates to the Site.

Privacy

Amadeus' data protection policy with respect to the Site is explained in the Amadeus Privacy Policy. By using the Site, you agree to be bound by this policy.

General

In the event that one or more of the provisions of these Terms of Use are void, determined to be invalid, unenforceable or illegal, such invalidity, illegality and unenforceability shall not affect any other provisions of these Terms of Use.

These Terms of Use are personal to you and you are not entitled to assign this Agreement to any third party without Amadeus prior written consent. The Terms of Use do not create any third party beneficiary rights.

These Terms of Use represent the entire agreement between Amadeus and you and supersede previous agreements.

If you do not comply with these Terms of Use and Amadeus does not take action immediately, this does not imply that Amadeus waives any rights that it may have (such as taking any action in the future).

These Terms of Use refer only to the use of the Site and separate terms and conditions apply to any specific services that may be obtained through the Site. In particular jurisdictions certain terms may apply that vary these Terms of Use and other legal notices that may be contained on the Site. If additional terms apply, these will be found on the particular Site in the footer on the home page.

Amadeus reserves the right to change these Terms of Use at any time at its sole discretion, which modification shall be effective immediately upon posting to the Site. You are responsible for regularly reviewing these Terms that are on a continuous basis put at your disposal by their inclusion in the Site. If you do not agree to the modified terms of use of this Site, you must discontinue your use of the Site. Continued use of the Site following any such changes shall constitute your acceptance of such changes.

Applicable law

Irrespective of the country from which you access or use the Site, your use of the Site is governed in accordance with the laws of Spain and you agree to the exclusive jurisdiction of the courts of Madrid, Spain. In the absolute and sole discretion of Amadeus, a legal action may be brought by Amadeus against any party in breach of these Terms of Use, at its election, in Spain or the place of breach or the domicile of that party, and, if more than one party, in the domicile of any one of those parties, and all other parties shall submit to that jurisdiction.

Contact us

If you require further information please contact reception.madrid@amadeus.com.

 

AMADEUS CUSTOMER AND BUSINESS PARTNER PRIVACY NOTICE

This Privacy Notice describes how Amadeus (“Amadeus”) collect and process personal data provided by Amadeus Business Partners. Personal data provided by Amadeus Business Partners includes personal data of employees, contractors and other points of contact from companies or organizations which Amadeus has a commercial relationship with; this includes personal data (not including personal data of travelers) provided by Amadeus GDS Users (such as, airlines, hotels and travel agencies); other companies and organizations that may use non GDS Amadeus services; third party service providers (collectively these are referred to in this Privacy Notice as “Amadeus Business Partners.”).

This Privacy Notice does not apply to personal data that may be collected or processed by Amadeus for other purposes, such as through Amadeus websites; Amadeus HR or recruitment services; or personal data of travelers included in travel information processed in the Amadeus global distribution system (“Amadeus GDS”). Where personal data is collected for other purposes, the relevant privacy notice will be provided explaining the purpose the personal data is being processed for.

This Amadeus Business Partners Privacy Notice applies to personal data Amadeus process that relates to personal data provided by Amadeus customers or Amadeus business partners globally. Processing of Amadeus Business Partner personal data may be subject to agreements between Amadeus and Amadeus Business Partners. Other information that is not personal data will be processed in accordance with the contractual agreements with Amadeus Business Partners. This Amadeus Business Partners Privacy Notice should be read together with other privacy notices that may be provided on specific occasions when personal data is collected or processed. This Amadeus Business Partners Privacy Notice supplements other Privacy Notices and is not intended to override them.

Who is processing the personal data?

Amadeus Group is made up of different legal entities that are all under the control of Amadeus IT Group S.A. This privacy notice is issued on behalf of Amadeus Group. When a reference is made to Amadeus it refers to the relevant company in the Amadeus group responsible for processing personal data. Where a specific privacy notice has been provided, the details of the Amadeus entity which is data controller will be provided in the specific privacy notice, in the absence of a specific privacy notice, Amadeus IT Group S.A. is the data controller of the personal data.

Amadeus have a Chief Privacy Officer who is responsible for overseeing questions in relation to this privacy notice. If you have any questions about this privacy notice, including any requests to exercise your legal rights as described below, please contact the Chief Privacy Officer using the details set out below.

What personal data is processed and how is this personal data collected?

Personal Data means information about an identified or identifiable individual. It does not include information where an individual cannot be identified e.g. non-personal or aggregated data.

Amadeus process personal data that is collected from individuals and personal data that is provided by Amadeus Business Partners and from third parties.

Amadeus process different kinds of personal data that can be grouped together as follows:

  • Identity Data – includes name, user name or other identifier;
  • Contact Data – includes address, email address and telephone number;
  • Technical data – includes IP address; login data; browsing actions and patterns
  • Commercial/Usage data – includes information about how Amadeus products and services are used;
  • Profile data – includes information about interests, preferences, feedback and survey responses
  • Marketing and communications data – includes preferences for receiving marketing from
  • Amadeus and communication preferences;

What is the Personal Data used for and what is the legal basis for processing

Amadeus use the personal data to provide services that an Amadeus Business Partner has requested, provide support, protect the security of Amadeus products and services and Amadeus Business Partners; to perform internal business processes (such as testing and quality assurance); and other uses compatible with providing the services; for marketing and communication personal data is used to personalise the content of communications;

The legal basis for processing personal data is

  • the processing is necessary for the performance of a contract that Amadeus has or is about to enter into with an Amadeus Business Partner; or
  • where the processing of personal data is necessary for Amadeus legitimate business interests; Where personal data is processed for legitimate interests, the privacy impact on the individual whose data is being processed will be considered.

Who is the personal data shared with

Amadeus may share personal data with its affiliates, agents and third party service providers such as suppliers of information technology services, security services and legal, financial/accounting and other similar professional advisers.

Amadeus may also share personal data with third parties, if Amadeus choose to sell, transfer, or merge parts of the business or assets. If there is a change of control of the business those who purchase the business or part of may use personal data in the same way as set out under this privacy notice.

Where such disclosure takes place Amadeus require the appropriate technical and organizational security measures to be in place to protect personal data and for personal data to be processed lawfully.

Amadeus only allow affiliates and third party service providers to process personal data on behalf of Amadeus for specified purposes and in accordance with Amadeus instructions.

Further information on the affiliates and third party service providers that Amadeus use to process personal data on their behalf can be requested through the contact details set out below in the section legal rights. When requesting this information please make a reference to information about affiliates and third party service providers so that the relevant information can be provided.

Amadeus may also disclose personal data as required by law, subpoena, or regulation; when requested by government or law enforcement authorities or as otherwise required or permitted by law.

International Transfer of Traveler Personal Data

When Amadeus share your personal data with its affiliates and third party service providers who process personal data on behalf of Amadeus this will involve transferring personal data outside the EEA. When personal data is transferred to another country it will continue to receive adequate protection through contractual or other arrangements put in place with Affiliates and third party service providers. For these transfers at least one of the following appropriate safeguards will be implemented;

  • Personal data will be transferred to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission;
    Standard data protection clauses approved by the European Commission which give personal data transferred the same protection it has in EEA;
  • With affiliates and third party service providers based in the US, Privacy Shield which gives personal

Further information on the appropriate safeguards used when transferring personal data outside the EEA can be requested through the contact details set out below in the section legal rights. When requesting this information please make a reference to the transfer of personal data outside the EEA.

Data Security and Integrity

Amadeus has taken the appropriate technical and organizational security measures to protect personal data from loss or unlawful processing. When Personal Data is processed on behalf of Amadeus access is limited to those who have a business need to know, Personal Data will be processed in accordance with the instructions of Amadeus and those who have access are subject to a duty of confidentiality.

Amadeus have in place procedures to deal with any suspected personal data breach and will notify individuals and any applicable regulator of a breach where they are legally required to do so.

Data Retention

Amadeus retains personal data for as long as necessary to fulfil the purposes it was collected for including for the purposes of satisfying any legal, accounting or reporting requirements.
Details of retention periods for different kinds of personal data can be found in specific privacy notices or are available upon request through the contact details below.

Legal rights

Under certain circumstances individuals can exercise rights under data protection laws. Individuals can exercise these rights relating to their own personal data, or contact Amadeus for data protection related questions, by email to dataprotection@amadeus.com or write to Chief Privacy Officer, Amadeus IT Group, S.A. C/Salvador de Madariaga 1, 28027 Madrid, Spain.

For the following rights please make a reference to the following in the request:

  • Right to access Amadeus Business Partners – request for access to personal data –
  • Right to information Amadeus Business Partners -
    • Amadeus affiliates and third party service providers who process personal data on behalf of Amadeus;
    • transfers to third countries – information about data transfers outside EEA;
  • Right to information Amadeus Business Partners

Amadeus will require authentication of the identity of the individual to exercise rights under data protection laws and may require additional information to assist in responding to requests.

Your rights

Amadeus intends to carefully address any request and/or claim from you, as well as carefully process personal data. You are entitled to file any claim or complaint before the relevant data protection authorities, if the answer provided by Amadeus does not meet your expectations.

Updates

This Privacy Notice is published by Amadeus IT Group SA. This Privacy Notice may be changed at any time. The date it was last updated is shown here April 30, 2018.

AMADEUS GROUP WEBSITE PRIVACY POLICY

Last Updated – 04 May 2018

Amadeus is committed to protecting the privacy of Personal Information it collects and processes. Amadeus will act in compliance with applicable data protection legislation.

We, Amadeus Group, want you to be familiar with how we collect, use and disclose Personal Information (information that identifies you as an individual).

Who is collecting and processing the Personal Information

This Privacy Policy (the “Privacy Policy”) applies to Personal Information that Amadeus IT Group SA may collect through this website (the "Site"). This Privacy Policy does not address the collection, use or disclosure of information through any other means other than the Site. This Privacy Policy does not apply to the Personal Information that Amadeus may process about you as a traveler. If you are interested on understanding these other processes please follow this link.

What is the legal basis for the processing of the Personal Information

The legal basis for processing your personal data is that the processing is necessary for the performance of the relationship with you, which is regulated by the Terms and Conditions and by the specific forms collecting your data.

The legal bases for processing the personal data for research, analytical and statistical purposes and to identify products and services that may be of interest to individuals is on the bases of the legitimate interest of Amadeus. Where personal data is processed for these purposes the privacy impact on the individuals whose data is being processed will be considered.

What Types of Information Do We Collect?

Amadeus collects and processes information from you at various stages during your time using the Site.

The types of Personal Information that we collect and process includes:

  1. Personal Information:
    1. Salutation, Name, last name, address, company name, job title, country, indus-try, mobile phone and email address.
    2. Any other info you provide to us in contact forms (you will see exactly what in-formation we collect form you by filling the fields in the form);
  2. IP details and location data; and
  3. Cookies in accordance with this policy and the Cookie Policy

For what purpose is your Personal Information used?

We use the Personal Information collected from you:

  • To fulfill your requests (e.g. to send you news and updates and answers to your ques-tions), according to the forms you may fill.
  • To obtain your feedback (e.g. through a survey), in case you want to provide us with it.
  • To inform you by e-mail of our products and services, special offers and promotions, and any other marketing materials which we think may interest you.
  • To send you information regarding the Site such as changes to our terms, conditions, and policies and/or other administrative information.
  • For our internal business purposes, such as data analysis, audits, developing new prod-ucts, enhancing our website, improving our services and identifying usage trends. This information may be used as personal information and non-personal information.
  • To detect, prevent or otherwise address security or technical issues in connection with services provided through this

We may combine personal information collected from your navigation with the information provided by you through different channels (newsletters, specific campaigns, contests, etc.) obtaining a set of all your data provided to Amadeus. We will use this combined information to understand which are your preferences regarding the Amadeus services and products and to be able to provide you a targeted experience. We need to understand who are you and what your needs are. Having that knowledge we can offer you what you expect from us.

Unsubscribe

If you change your mind, and no longer wish to receive marketing-related e-mails from us on a going-forward basis, you may unsubscribe from receiving such marketing-related e-mails or from such sharing at any time by using the tool provided to you.

Who is the Personal Information shared with?

We may share Personal Information with Amadeus Affiliates, who, due to the nature of the services Amadeus provides as a global travel technology supplier, may be located in any location around the world. These Amadeus Affiliates may process Personal Information for the purposes described in this Privacy Policy. A link to the complete list of Amadeus Affiliates and their locations can be found here.

In addition, we may also disclose your information to:

  • Third parties, business partners, suppliers, subcontractors and service providers for the performance of any contract we enter into with them;
  • analytics and search engine providers that assist us in the improvement and optimiza-tion of our Site;
  • an affiliate or other third party in the event of any reorganization, merger, sale, joint venture, assignment, transfer or other disposition of all or any portion of our business, assets or stock (including without limitation in connection with any bankruptcy or simi-lar proceedings); and
  • if necessary: (a) under applicable law including laws outside your country of residence; (b) to comply with legal processes; (c) to respond to requests from public and gov-ernment authorities including public and government authorities outside your country of residence;(d) to enforce our terms and conditions; (e) to protect our operations or those of any of our affiliates; (f) to protect our rights, privacy, safety or property, and/or that of our affiliates, you or others; and (g) to permit us to pursue available remedies or limit the damages that we may sustain.

Where such disclosures take place Amadeus requires the appropriate technical and organizational security measures to be in place to protect personal data and for personal data to be processed lawfully.

Amadeus only allow affiliates and third party service providers to use personal data for specified purposes and in accordance with Amadeus instructions.

Any sharing of Personal Information using third party platforms would be governed by the terms of the third party platform used.

International Transfer of Traveler Personal Data

When Amadeus share your personal data with its affiliates and third party service providers who process personal data on behalf of Amadeus this will involve transferring personal data outside the EEA. When personal data is transferred to another country it will continue to receive adequate protection through contractual or other arrangements put in place with Affiliates and third party service providers. For these transfers at least one of the following appropriate safeguards will be implemented;

  • Personal data will be transferred to countries that have been deemed to provide an ad-equate level of protection for personal data by the European Commission;
  • Standard data protection clauses approved by the European Commission which give personal data transferred the same protection it has in EEA;
  • With affiliates and third party service providers based in the US, Privacy Shield which gives personal data similar protection it has in EEA;

Further information on the appropriate safeguards used when transferring personal data outside the EEA can be requested through the contact details set out below in the section legal rights. When requesting this information please make a reference to the transfer of personal data outside the EEA.

Third Party Sites and sending messages through the site

This Privacy Policy does not address, and we are not responsible for, the privacy, information, or other practices of any third parties, including without limitation any third party operating any site to which this Site contains a link; or any third party platform such as a social media platforms where Amadeus to share Personal Information at your request. Where Personal Information is shared in this way the use of the Personal Information will be governed by the terms of the third party platform you have requested Personal Information is shared with. The inclusion of a link on the Site does not imply endorsement of the linked site by us.

This Site may permit you to send messages regarding Site-related content to another individual though the site. If you wish to use this feature, you may be required to provide us with the individuals email address. By using this functionality, you affirm that you are entitled to use and provide us with the recipient's name and email address for this purpose. Amadeus shall not assume any liability that may arise from sending this kind of messages to the recipients as we are doing this at your request.

Information that you share

Some services may let you share information with others. As a recommendation we urge you to exercise discretion and caution when deciding to disclose your Personal Information, or any other information, on the Site.

Security and Integrity of Personal Information

We use reasonable organizational, technical and administrative measures to protect Personal Information under our control. Unfortunately, no data transmission over the Internet or data storage system can be guaranteed to be 100% secure. Please do not send us sensitive information through e-mail. If you have reason to believe that your interaction with us is no longer secure (for example, if you feel that the security of any account you might have with us has been compromised), you must immediately notify us of the problem by contacting us in accordance with the contacting section of this Site. Please note that e-mail communications will not necessarily be secure; accordingly you should not include credit card information in your e-mail correspondence with us.

When Personal Data is processed on behalf of Amadeus access is limited to those who have a business need to know, Personal Data will be processed in accordance with the instructions of Amadeus and those who have access are subject to a duty of confidentiality.

Amadeus have in place procedures to deal with any suspected personal data breach and will notify individuals and any applicable regulator of a breach where they are legally required to do so.

Retention of Personal Information

Amadeus retains personal data for as long as necessary to fulfil the purposes it was collected for including for the purposes of satisfying any legal, accounting or reporting requirements.
Please note that on any forms where you provide us with your details, we may specify the period of time that we intend keep the data according to the specific proposes defined in the form.

Use of the Site by Children

The Site is not directed to children, and we request such individuals to not provide Personal Information through the Site.

Legal rights

Under certain circumstances individuals can exercise rights under data protection laws. You can exercise these rights relating to your personal data, or contact Amadeus for data protection related questions, by email to dataprotection@amadeus.com or write to Chief Privacy Officer, Amadeus IT Group, S.A. C/Salvador de Madariaga 1, 28027 Madrid, Spain.

For the following rights please make a reference to the following in the request:

  • Right to access – request for access to personal data
  • Right to object – object to processing of personal data for the purpose of analytics
  • Right to information about
    • Amadeus affiliates and third party service providers who process personal data on behalf of Amadeus;
    • transfers to third countries – information about data transfers outside EEA;

Amadeus will require authentication of your identity and may require additional information to confirm that the rights that you may have under data protection laws are being exercised correctly.

Your rights

Although Amadeus intends to carefully address any request and/or claim from you, as well as carefully process your personal information, you are entitled to file any claim or complaint before the relevant data protection authorities, if the answer provided by Amadeus does not meet your expectations.

Updates

This Privacy Notice is published by Amadeus IT Group S.A and may be changed at any time. The date it was updated is shown here, May 04, 2018.

PRIVACY NOTICE FOR AMADEUS GLOBAL DISTRIBUTION SYSTEM (“Amadeus GDS”) 

This Privacy Notice describes how Amadeus IT Group S.A. (“Amadeus”) process personal data included in travel information processed in the Amadeus global distribution system (“Amadeus GDS”). This Privacy Notice applies to personal data Amadeus process through the Amadeus GDS globally.

This Privacy Notice for the Amadeus GDS does not apply to personal data that may be collected or processed by Amadeus for other purposes, such as through Amadeus websites or where Amadeus provide services for Amadeus Customers that are not provided through the Amadeus GDS. Where personal data is collected for other purposes, the relevant privacy notice will be provided explaining the purpose the personal data is being processed for.

The Amadeus GDS is a travel technology platform used for the distribution of travel services. This Privacy Notice is independent of notices that Amadeus GDS Users (e.g. travel providers such as airlines, hotels and other travel suppliers and subscribers to the Amadeus GDS such as travel agents) may give travelers. This Privacy Notice describes how Amadeus process personal data on the Amadeus GDS.

What personal data is processed and how is this personal data collected?

Amadeus process personal data when Amadeus GDS Users (e.g. the travel agent or airline) input personal data of travelers on the Amadeus GDS that they, the Amadeus GDS Users, have collected. The Amadeus GDS User will be responsible for giving any relevant privacy notices and informing the traveler about how they will process personal data. To understand more fully how personal data is processed and who it is shared with in the processing of a travel reservation you should refer to privacy notices of Amadeus GDS Users involved in the travel reservation.

The personal data processed includes a name, travel itinerary and form of payment and may also include additional information as deemed necessary by the Amadeus GDS User (contact information, telephone, email, billing information, date of birth, credit card information, preferences or special requests). This personal data will normally be part of a travel itinerary record which is called a Passenger Name Record (PNR). The information included in the PNR is required to process travel reservations and issue the relevant tickets and provide other travel related services.

What is the Personal Data used for and what is the legal basis for processing

Amadeus use the personal data to process travel reservations, to provide Amadeus GDS Users with access to such information, to issue tickets and other travel related documents, to perform internal business processes (such as testing and quality assurance) for credit card processing, authentication, and fraud prevention and to provide other travel related services.

The legal basis for processing personal data is that the processing is necessary for the performance of a contract to which the traveler is a party.

Amadeus may also use personal data for research, analytical and statistical purposes, to identify preferences, interests and trends and other activities in the travel industry and to identify products and services that may be of interest to individuals. Personal data used for analytical purposes is derived from personal data but when it is used it is in anonymized and aggregated form.

The legal basis for processing the personal data for research, analytical and statistical purposes and to identify products and services that may be of interest to individuals is on the basis of the legitimate business interests of Amadeus. Where personal data is processed for these purposes the privacy impact on the individual whose data is being processed will be considered.

Individuals cannot be identified from aggregated data but if individuals do not want personal data included in aggregated data they can object to this by making this request to the contact details below in the section Legal Rights. When making this request there should be a reference to not wanting personal data used for the purposes of analytics.

Amadeus may share aggregated data which cannot identify individuals and with other third parties.

Who is the personal data shared with

Amadeus share personal data with Amadeus GDS Users and service providers and partners who may act on Amadeus GDS Users behalf. Amadeus GDS Users can decide who any personal data can be shared with. As a general principle information about the traveler is shared with the parties involved in the transaction (and service providers and partners who act on their behalf) and with other industry stakeholders (e.g. IATA) as necessary to perform the contracts the Amadeus GDS Users have with travelers.

Amadeus may share personal data with its affiliates, agents and third party service providers such as suppliers of information technology services, security services and legal, financial/accounting and other similar professional advisers.

Where such disclosure takes place Amadeus require the appropriate technical and organizational security measures to be in place to protect personal data and for personal data to be processed lawfully.

Amadeus only allow affiliates and third party service providers to use personal data for specified purposes and in accordance with Amadeus instructions.

Further information on the affiliates and third party service providers that Amadeus use to process personal data on their behalf can be requested through the contact details set out below in the section legal rights. When requesting this information please make a reference to information about affiliates and third party service providers so that the relevant information can be provided.

Amadeus may also disclose personal data as required by law, subpoena, or regulation; when requested by government or law enforcement authorities or as otherwise required or permitted by law.

International Transfer of Traveler Personal Data

When Amadeus share your personal data with its affiliates and third party service providers who process personal data on behalf of Amadeus this will involve transferring personal data outside the EEA. When personal data is transferred to another country it will continue to receive adequate protection through contractual or other arrangements put in place with Affiliates and third party service providers. For these transfers at least one of the following appropriate safeguards will be implemented;

  • Personal data will be transferred to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission;
  • Standard data protection clauses approved by the European Commission which give personal data transferred the same protection it has in EEA;
  • With affiliates and third party service providers based in the US, Privacy Shield which gives personal data similar protection it has in EEA;

Further information on the appropriate safeguards used when transferring personal data outside the EEA can be requested through the contact details set out below in the section legal rights. When requesting this information please make a reference to the transfer of personal data outside the EEA.

Due to the global nature of the travel industry, personal data may be transferred to and processed by Amadeus GDS Users in different locations around the world. These transfers will be necessary for the performance of a contract between the traveler and the Amadeus GDS User.

Data Security and Integrity

Amadeus has taken the appropriate technical and organizational security measures to protect personal data from loss or unlawful processing. When Personal Data is processed on behalf of Amadeus access is limited to those who have a business need to know, Personal Data will be processed in accordance with the instructions of Amadeus and those who have access are subject to a duty of confidentiality.

Amadeus have in place procedures to deal with any suspected personal data breach and will notify individuals and any applicable regulator of a breach where they are legally required to do so.

Data Retention

Amadeus retains personal data for as long as necessary to fulfil the purposes it was collected for including for the purposes of satisfying any legal, accounting or reporting requirements.

The default retention period for a PNR is 5 years from when it becomes inactive. PNRs are active as long as a segment in the PNR is active (the related service is still pending). After the completion of the last segment of the PNR the PNR is archived and access to the PNR is restricted. After a period of 5 years the PNRs are deleted.

Legal rights

Amadeus GDS Users collect personal data from the traveler and input this information in the Amadeus GDS. We recommend travelers contact the Amadeus GDS Users to whom they provided the information directly with any issues or requests they may have relating to personal data stored in the Amadeus GDS.

Under certain circumstances individuals can exercise rights under data protection laws. Travelers can exercise these rights relating to their own personal data, or contact Amadeus for data protection related questions, by email to dataprotection@amadeus.com or write to Chief Privacy Officer , Amadeus IT Group, S.A. C/Salvador de Madariaga 1, 28027 Madrid, Spain.

For the following rights please make a reference to the following:

  • Right to access – request for access to personal data
  • Right to object – object to processing of personal data for the purpose of analytics
  • Right to information about
    • o Amadeus affiliates and third party service providers who process personal data on behalf of Amadeus;
    • o transfers to third countries – information about data transfers outside EEA;

Amadeus will require authentication of the identity of the traveler and may require additional information to confirm that the rights that travelers may have under data protection laws are being exercised correctly.

Your rights

Amadeus intends to carefully address any request and/or claim from you, as well as carefully process personal data. You are entitled to file any claim or complaint before the relevant data protection authorities, if the answer provided by Amadeus does not meet your expectations.

Updates

This Privacy Notice is published by Amadeus IT Group SA. This Privacy Notice may be changed at any time. The date it was last updated is shown here April 30, 2018.

COOKIES POLICY

In this Policy you will find information on what cookies are, what cookies may be set when you visit www.amadeus.com and how to manage them.

What is a Cookie

A cookie is a small file placed on your device (e.g computer or mobile phone) when you visit a website. Cookies are used to make your use of the website easier as well as provide business and marketing information to the website operator.

The term cookies includes similar technologies for collecting and storing information, such as Local Shared Objects (commonly referred to as "flash cookies") and web beacons or web bugs (including transparent or clear gifs).

Types of Cookies

There is a distinction between session cookies and persistent cookies and between first party and third party cookies.

Session cookies allow actions to be tracked during a single browser session. They are deleted from your device when you close the browser. Persistent cookies remain on your device between sessions and allow a website to “recognise” a user on their return and to remember their preferences, they will remain stored on your device until deleted or they reach a specified expiry date.

Session and persistent cookies can be either first or third-party cookies - a first-party cookie is set by the website being visited. A third-party cookie is issued by a party other than website being visited.

Opting out of Cookies

We use cookies to ensure that we give you the best experience on our website and to allow us to improve our site. By continuing to browse the site without making any changes to your browser settings to restrict or delete cookies you are consenting to our use of cookies in this way.

Browsers can be set to allow you to reject all cookies, or to accept cookies from websites only for the duration of your visit. Some browsers will allow you to reject just third party cookies. If you want to know how to do this please look at the help menu on your browser. Please be aware that if you choose to delete or restrict cookies some features of this website may not work.

For general information about cookies and how to disable them, please visit http://www.allaboutcookies.org/

How we use Cookies

We use session and persistent cookies for the following purposes:

Strictly necessary cookies - These are essential cookies that are required for the operation of the website and to allow you to use its features. They include, for example, cookies that enable you to log into secure areas of our website and carry out specific tasks.

Analytical/performance cookies – These cookies collect anonymous information about how visitors use our website. This aggregated information is used help us to improve the way our website works.

Functionality cookies - These cookies are used to recognise you when you return to our website, record information about choices you have made and allow us to tailor the website to your needs. This enables us to personalise our content for you, greet you by name and remember your preferences (for example, your choice of location preference).

Targeting cookies - These cookies record your visit to our website, the pages you have visited and the links you have followed and information from IP addresses. These cookies will be used to make our website and the advertising displayed on it more relevant to you and your interests.

We may use third party service providers to perform these services for us and when this is the case the cookies may be set by third party (third party cookies) with our permission. The third party service providers may share information with other parties. These cookies are not controlled by Amadeus. The third party cookies are identified in the detailed list below.

Embedded content

Sometimes we embed images, videos or other content from third party websites. As a result when you visit the page featuring this content you may be presented with cookies from these websites. We do not control these cookies and cannot prevent these sites or domains from collecting information on your use of this content. You should check the relevant party’s website for more information.

Social networking and sharing tools

On some pages we may feature embedded share buttons or widgets that allow you to share content with friends through a number of social networking sites. These social networking sites may set cookies that can identify you as an individual when you are also logged into their services. We do not control these cookies and you should check with the relevant website to see how your information is used.

Detailed Table setting out Cookies used

The table below details the most frequently used cookies on www.amadeus.com and explains their use. We will keep our cookies lists as up to date as possible.

Cookie Name First/Third Party Functionality Description
cookies_acepted 1st Functionality Cookies When the user accepts our cookies, we set up this one not to ask him/her again
BIGipServer~Corporate~WCM 1st Strictly Necessary Cookies The load balancer uses this cookie to maintain a user in the same machine during a session
JSESSIONID 1st Strictly Necessary Cookies This cookie is used to identify you as a user between pages during a session.
SS_X_JSESSIONID 1st Strictly Necessary Cookies This cookie is used to identify you as a user between pages during a session.
ALIAS 1st Strictly Necessary Cookies This cookie is used to identify you as a user between pages during a session.
__utmv 3rd Analytical/Performance Cookies used to store visitor-level custom variable data. Google Analytics (*)
__utma 3rd Analytical/Performance Cookies used to distinguish users and sessions. Google Analytics
__utmb 3rd Analytical/Performance Cookies used to determine new sessions/visits. Expires in 30 min. Google Analytics
__utmc 3rd Analytical/Performance Cookies Google Analytics
__utmz 3rd Analytical/Performance Cookies used to store the traffic source or campaign. Google Analytics
_gat 1st Analytical/Performance Cookie used to throttle the request rate. Expires in 10 min. Google Analytics
_ga 1st Analytical/Performance Cookies used to distinguish users. Expires in 2 years. Google Analytics
s_cc 1st Analytical/Performance Cookie. Determines whether cookies are enabled in the browser Adobe Marketing Cloud (**)
s_sq 1st Analytical/Performance Cookie. Stores information about the previous link clicked. Adobe Marketing Cloud
s_fid 1st Analytical/Performance Cookie. A 'fallback' visitor identifier. It contains a randomly generated, unique id. Adobe Marketing Cloud
s_nr 1st Analytical/Performance Cookie. Stores date of visit and if visitor is new or returning. Adobe Marketing Cloud
utag_main 1st Analytical/Performance Cookie used by Tealium (Tag Management System) in order to serve analytics cookies. Adobe Marketing Cloud
is 3rd Analytical/Performance Cookies Idio Analytics & Personalization Service - This session cookie, in conjunction with the iv cookie, enables identifing anonymously - no IP is collected - a visitor’s session.
iv 3rd Analytical/Performance Cookies Idio Analytics & Personalization Service - This persistent cookie anonymously - no IP is collected - identify a blog visitor for purpose of enabling Amadeus to track visitor’s actions across the the blog.
eBusinessCookie1 1st Used by KANA for external authentication/authorization Used only in eSupport Centre
lsp-login-profileid8701 1st Used for saving login information (last 4 digits change in each release) Used only in eSupport Centre
lsp-login-logintype8701 1st Used for saving login information (last 4 digits change in each release) Used only in eSupport Centre
lsp-login-officeid8701 1st Used for saving login information (last 4 digits change in each release) Used only in eSupport Centre
lsp-login-agentsign8701 1st Used for saving login information (last 4 digits change in each release) Used only in eSupport Centre
lsp-login-username8701 1st Used for saving login information (last 4 digits change in each release) Used only in eSupport Centre
lsp-login-userid8701 1st Used for saving login information (last 4 digits change in each release) Used only in eSupport Centre
lsp-login-organisation8701 1st Used for saving login information (last 4 digits change in each release) Used only in eSupport Centre
isLoginFromSSO8701 1st Used for saving login information (last 4 digits change in each release) Used only in eSupport Centre
esc-google-trans 3rd Used for the Google Translate plug-in Used only in eSupport Centre
googtrans 3rd Used by the Google Translate plug-in Used only in eSupport Centre
LBROUTEID 1st Used by Load Balancer, stores the nodes the user is connected to Used only in eSupport Centre
com.silverpop.iMAWebCookie 1st Analytical/Performance Cookie used by Silverpop to assign a Unique Identifier to the visitor. Used to pass individual identity to Engage along with specific actions. Silverpop Engage
com.silverpop.iMA.page_visit 1st One “per session” cookie created for each page visited in the session. Used to distinguish the first visit to a webpage by an individual from subsequent visits. Silverpop Engage
com.silverpop.iMA.session 1st The Unique Identifier for the current browsing session. Used to associate a series of individual events to a single functional browsing session. Silverpop Engage
cookie_notice_acepted 1st Set when the user accepts the cookies in order not to ask them again. Functionality Cookies
_icl_current_language 1st Remembers user language preference Functionality Cookies
inbound_referral_site 1st Remembers visitor journey for analytical tracking Analytical/Performance Cookies used to store visitor-level custom variable data.
wp_lead_uid 1st Remembers visitor journey for analytical tracking Analytical/Performance Cookies used to store visitor-level custom variable data.
lead_session 1st Remembers visitor journey for analytical tracking Analytical/Performance Cookies used to store visitor-level custom variable data.
AWSELB 3rd (app.hubspot.com) AWS Elastic Load Balancer Performance Cookies. Amazon
_gauges_unique_hour 3rd (hubspot.com) Gauges Analytics Performance Cookies.
_gauges_unique_day 3rd (hubspot.com) Gauges Analytics Performance Cookies.
_gauges_unique_month 3rd (hubspot.com) Gauges Analytics Performance Cookies.
_gauges_unique_year 3rd (hubspot.com) Gauges Analytics Performance Cookies.
_gauges_unique 3rd (hubspot.com) Gauges Analytics Performance Cookies.
apex__product 3rd (hubspot.com) Salesforce Analytics Strictly Necessary.
__hstc 3rd (hubspot.com) Hubspot Analytics. The main cookie for tracking visitors. It contains: the domain, utk (see below), initial timestamp (first visit), last timestamp (last visit), current timestamp (this visit), and session number (increments for each subsequent session) (Expires: 2 years) Targeting.
__hssrc 3rd (hubspot.com) Hubspot Analytics. Whenever HubSpot changes the session cookie, this cookie is also set. We set it simply to the value "1", and use it to determine if the user has restarted their browser. If this cookie does not exist when we manage cookies, we assume it is a new session. (Expires: None. Session cookie) Targeting.
__hssc 3rd (hubspot.com) Hubspot Analytics. Cookie for keeping track of sessions. This is used to determine if we should increment the session number and timestamps in the __hstc cookie. It contains: the domain, viewCount (increments each pageView in a session), session start timestamp. (Expires: 30 min) Targeting.
hsfirstvisit 3rd (hubspot.com) Hubspot Analytics. This cookie used to keep track of a user's first visit. (Expires: 10 years) Targeting.
hsPagesViewedThisSession 3rd (hubspot.com) Hubspot Analytics. This cookie used to keep track of page views in a session. (Expires: Session cookie) Strictly Necessary.
hubspotutk 3rd (hubspot.com) Hubspot Analytics. This cookie is used for to keep track of a visitor's identity. This cookie is passed to HubSpot on form submission and used when deduplicating contacts. (Expires: 10 years) Strictly Necessary.
hubspot.hub.id 3rd (hubspot.com) Hubspot Authentication Strictly Necessary.
hubspotauth 3rd (hubspot.com) Hubspot Authentication Strictly Necessary.
hubspotauthcms 3rd (hubspot.com) Hubspot Authentication Strictly Necessary.
hubspotauthremember 3rd (hubspot.com) Hubspot Authentication Functionality.
_hs_opt_out 3rd (hubspot.com) Opt out of HubSpot tracking. This cookie is used by the opt-in privacy policy to remember not to ask the user to accept cookies again. This cookie is set when you give users the choice to opt out of cookies. (Expires: 2 years) Targeting.
__hs_do_not_track 3rd (hubspot.com) This cookie is set when you give users the choice to opt out of cookies and they choose to do so. It disables tracking and personalization. (Expires: 2 years) Targeting.
hubspotutktzo 3rd (academy.hubspot.com) Time Zone Offset Functionality.
__hluid 3rd (hubspot.com) In-app usage tracking Targeting.
mp_id_mixpanel 3rd (hubspot.com) In-app usage tracking Targeting. Mixpanel.
__hs_testcookie 3rd (hubspot.com) This cookie is used to test whether the visitor has support for cookies enabled. (Expires: Session cookie) Targeting.
ELOQUA 3rd (eloqua.com) This cookie has a value pair of guid = randomly generated string of characters and numbers. Targeting.
ELQSTATUS 3rd (eloqua.com) This cookie gets dropped automatically. Targeting.

(*) Google Analytics – these cookies are used to collect information in an anonymous form about how visitors use the website. The information is used to compile reports and help us improve the site. Click here for an overview of privacy at Google http://www.google.com/analytics/learn/privacy.html

(**) Adobe Marketing Cloud – these cookies are used to collect information in an anonymous form about how visitors use the website. The information is used to compile reports and help us improve the site. Click here for an overview of privacy at Adobe http://www.adobe.com/privacy.html