top of page

Privacy Policy

1. Controller

The controller responsible for data processing on this website is:

GATE – German Airport Technology & Equipment e.V.
Holsteinischer Kamp 37
22081 Hamburg
Germany

Represented by: Kay Bärenfänger

Phone: +49 40 64 79 74 03
Email: info@gate-alliance.com
Website: www.gate-alliance.com

Register entry: Vereinsregister Hamburg, Register No. 24418.


2. Data Protection Officer

[Please insert if applicable]

Data Protection Officer:
[NAME]
[EMAIL]
[ADDRESS]

If no Data Protection Officer has been appointed:

GATE has not appointed a Data Protection Officer, as there is currently no known legal obligation to do so. This must be verified internally.
 

3. General Information

We process personal data in accordance with the General Data Protection Regulation (GDPR), the German Federal Data Protection Act (BDSG), and the German Telecommunications Digital Services Data Protection Act (TDDDG). The TDDDG replaced the former TTDSG terminology in 2024; the cookie and terminal-device access rules remain particularly relevant under Section 25 TDDDG.

Personal data is any information relating to an identified or identifiable natural person.


4. Website Hosting via Wix

This website is operated using services provided by:

Wix.com Ltd.
40 Namal Tel Aviv St.
Tel Aviv 6350671
Israel

When visiting the website, Wix may process technical access data, including IP address, browser type, operating system, date and time of access, pages visited, referrer URL, and device information.

The legal basis is Art. 6(1)(f) GDPR. Our legitimate interest lies in providing a secure, stable, and efficient website.

Wix may process data in Israel and other countries. Israel is recognised by the European Commission as providing an adequate level of data protection, and Wix states that it uses Standard Contractual Clauses where no adequacy decision applies.


5. Server Log Files

For technical and security reasons, access data may be stored in server log files. This may include:

IP address, date and time of access, browser type, operating system, referrer URL, requested files, and access status.

The legal basis is Art. 6(1)(f) GDPR. Our legitimate interest is the secure operation of the website.


6. Cookies and Consent Management with Usercentrics

We use cookies and similar technologies. Some are technically necessary for website operation. Others, such as analytics, marketing, embedded media, or social media services, are only used with consent.

We use the consent management platform:

Usercentrics GmbH
Sendlinger Straße 7
80331 Munich
Germany

Usercentrics stores and documents consent decisions. This may include consent status, consent ID, time of consent, browser information, device information, and IP address.

The legal basis is Art. 6(1)(c) GDPR, Art. 6(1)(f) GDPR, and Section 25 TDDDG. Usercentrics is a German consent management provider and publishes its own CMP privacy information.

Users can change or withdraw consent at any time via the cookie settings link on this website.

[Insert link/button text: “Cookie Settings”]


7. Contact Forms via Jotform

We use contact and registration forms provided by:

Jotform Inc.
4 Embarcadero Center, Suite 780
San Francisco, CA 94111
USA

When using a form, we process the information entered by the user, such as name, company, email address, phone number, message content, event registration details, and any other voluntarily submitted information.

The legal basis is Art. 6(1)(b) GDPR where the request relates to membership, events, services, or pre-contractual communication. Otherwise, the legal basis is Art. 6(1)(f) GDPR, based on our legitimate interest in responding to inquiries.

Jotform provides GDPR-related tools and states that EU data residency is available and automatically enabled for EU-created accounts. This should be verified in the GATE Jotform account settings.

Internal placeholder:
[Confirm whether GATE’s Jotform account uses EU data residency.]
[Confirm whether a Data Processing Agreement with Jotform has been concluded.]


8. LinkedIn Integration and LinkedIn Stream

This website may integrate LinkedIn content, streams, feeds, buttons, or links.

Provider:

LinkedIn Ireland Unlimited Company
Wilton Plaza
Wilton Place
Dublin 2
Ireland

If LinkedIn content is embedded, LinkedIn may receive information such as IP address, browser data, device information, referrer URL, and information about the visited page. If users are logged into LinkedIn, LinkedIn may associate the visit with their LinkedIn profile.

The legal basis for embedded LinkedIn content is Art. 6(1)(a) GDPR and Section 25 TDDDG, meaning the integration is only loaded after consent.

If only a simple LinkedIn link is displayed, no data is transferred to LinkedIn until the user clicks the link.

LinkedIn Corporation is certified under the EU-U.S. Data Privacy Framework for certain transfers to the United States.


9. GATE LinkedIn Company Page

GATE operates a LinkedIn company page. When users interact with this page, LinkedIn processes personal data. In relation to LinkedIn Page Insights, GATE and LinkedIn may be joint controllers within the meaning of Art. 26 GDPR.

LinkedIn provides further information in its privacy policy and Page Insights terms.

The legal basis for GATE’s processing is Art. 6(1)(f) GDPR. Our legitimate interest is professional communication, industry networking, and public relations for the airport technology sector.


10. Membership, Events, Exhibitions and Delegation Trips

When users contact GATE regarding membership, exhibitions, working groups, events, delegation trips, or other association activities, we process the data required to manage the request or participation.

This may include:

Name, company, position, contact details, billing information, event preferences, travel-related information where necessary, and communication history.

The legal basis is Art. 6(1)(b) GDPR for contractual or pre-contractual matters and Art. 6(1)(f) GDPR for general association communication.

GATE acts as an international airport technology network and provides member services including exhibitions, conferences, delegation trips, airport days, matchmaking, working groups, social media, and market information.


11. Newsletter

[Use only if GATE sends newsletters]

If users subscribe to a newsletter, we process their email address and, where provided, their name and company.

The legal basis is Art. 6(1)(a) GDPR. Users may withdraw consent at any time.

Newsletter provider:
[INSERT PROVIDER]


12. Recipients of Data

Personal data may be shared with service providers where necessary, including:

website hosting providers, IT service providers, form providers, consent management providers, email providers, event partners, exhibition partners, payment or accounting providers, and public authorities where legally required.

Where service providers process data on our behalf, we conclude data processing agreements pursuant to Art. 28 GDPR where required.


13. International Data Transfers

Where personal data is transferred outside the EU or EEA, this takes place only where permitted under GDPR Chapter V, for example on the basis of an adequacy decision, the EU-U.S. Data Privacy Framework, or Standard Contractual Clauses. The European Commission provides Standard Contractual Clauses for international data transfers.


14. Retention Periods

We retain personal data only for as long as necessary for the relevant purpose.

Statutory retention obligations remain unaffected. Business letters, contracts, invoices, and accounting documents may be retained for up to 6 or 10 years under German commercial and tax law.


15. Data Subject Rights

Users have the following rights under the GDPR:

Right of access, rectification, erasure, restriction of processing, data portability, objection, and withdrawal of consent.

Requests may be sent to:

info@gate-alliance.com


16. Right to Lodge a Complaint

Users have the right to lodge a complaint with a data protection supervisory authority.

For GATE’s registered office in Hamburg, the competent authority is likely:

Der Hamburgische Beauftragte für Datenschutz und Informationsfreiheit
Ludwig-Erhard-Str. 22
20459 Hamburg
Germany
Website: www.datenschutz-hamburg.de


17. Security

We use appropriate technical and organisational measures to protect personal data against loss, misuse, unauthorised access, alteration, and disclosure.

This website uses SSL/TLS encryption.


18. Updates to this Privacy Policy

We may update this Privacy Policy if legal, technical, or organisational changes make this necessary.

Date: July 15th, 2026

bottom of page