It is called the General Data Protection Regulation (GDPR) and came into force on May 25th. The new legislation is valid for all European Union Member States and its main goal is to ensure the privacy protection of European citizens and to enhance their confidence and safety. It’s the subject of the day of all companies and individuals and it is important to understand what will change in TAP and its relationship with Employees, Customers and Passengers.
What changes in TAP with the new law?
From now on, it is the companies that take responsibility for the processing of personal data – the self-regulation model – unlike what happened before, which was the responsibility of the Portuguese Data Protection Authority. In other words, organizations are responsible for the interpretation, operationalization and maintenance of compliance with the GDPR, subject to the inspecting action of the Competent Control Authority. The penalties for non-compliance may reach 20 million euros or 4% of the Group's yearly turnover.
What are the rights of data owners?
The central objective of this new regulation is to guarantee a greater and more efficient protection of the personal information of our Customers and Passengers. Therefore, new rights are foreseen for holding data persons: giving consent to their data processing, requesting access to them, rectification, erasure, limitation, portability or even the right to object to the treatment of their personal data.
Why does TAP need Customerss or Passengers’ data?
First, to improve the overall travel experience. To receive important information about their flights, to alert them to the opening of the check-in and to allow them to choose the best place available, to be able to answer complaints and suggestions, to better adjust the offers and promotions to the Client, according to their likes and interests, and for legal reasons.
What data does TAP collect and save?
The personal data of our Customers and Passengers (name, address, contact ...), the reservation data that they make with TAP (itinerary, reservation code, special assistance ...), data for payments and refunds (NIF and IBAN...), or others they provide freely and without constraints for TAP products and services, loyalty programs, surveys, travel preferences, etc.
How does TAP guarantee the security of collecting, storing and sharing all this data?
TAP guarantees that the data collection is performed with the highest security, only for what the Client intends, and that they are stored for the minimum time required by law. As for sharing, it is also done with maximum security and only with partners who ensure the same guarantees of TAP.
How does the data controller ensure control over the data?
In addition to having to give their consent, the holder may accede, edit or delete his data at any time. They can even ask TAP, whenever they want to, which data we on them and even limit or oppose its use.
TAP, thus, guarantees the privacy and security of the data of its Employees, Customers and Passengers. You can find out more about this new Data Protection policy at flytap.com
and in the video below.