Privacy Policy
This privacy policy informs you about the processing of personal data in connection with our medical services — in particular regarding the organization and execution of worldwide patient transports on commercial flights — as well as the use of our website and when contacting us.
All terms used in this policy are intended to be gender-neutral.
This statement complies with the requirements of the EU General Data Protection Regulation (GDPR), the Austrian Data Protection Act, and the Swiss Federal Act on Data Protection (revFADP).
1. Data Controller
Managing Director: Dr. Stephan Klose
AMTRAS aeromed GmbH
Rahmannstraße 11
65760 Eschborn
Germany
Contact
Phone: +49 (0) 69 34 86 77-24
Email: aeromed@amtras.de
2. What Data Do We Process?
We primarily process the following categories of personal data:
• Contact and communication data (e.g., name, email address, phone number)
• Contract and billing data
• Health data, to the extent medically necessary
• Usage data when visiting our website (e.g., IP address, browser type, access timestamps)
3. Purposes and Legal Basis for Processing
Depending on the specific case, data is processed based on the following legal grounds under the EU General Data Protection Regulation (GDPR):
• To fulfill a contract or carry out pre-contractual measures (Art. 6(1)(b) GDPR)
• Based on your explicit consent (Art. 6(1)(a) GDPR; for health data: Art. 9(2)(a) GDPR)
• To comply with legal obligations (Art. 6(1)(c) GDPR)
• To protect vital interests (Art. 6(1)(d) GDPR)
• On the basis of legitimate interests (Art. 6(1)(f) GDPR), e.g., to ensure website security
4. Data Disclosure
We only disclose personal data to third parties if:
• You have given your explicit consent,
• The transfer is necessary to provide our services (e.g., to airlines, medical personnel, or authorities),
• Or we are legally obligated to do so.
Data transfers to countries outside the EU/EEA or Switzerland only occur if an adequate level of data protection is ensured or you have explicitly consented to the transfer.
5. Your Rights
You have the right to:
• Access the personal data we hold about you
• Request correction of inaccurate or incomplete data
• Request deletion (“right to be forgotten”)
• Request restriction of processing
• Data portability
• Object to the processing of your data
• Withdraw your consent at any time with effect for the future
• Lodge a complaint with a data protection supervisory authority
6. Cookies and Tracking
Our website uses only technically necessary cookies. Additional cookies for analytics or marketing purposes are used only with your prior consent.
When you first visit our website, a cookie banner will appear, allowing you to manage or decline your consent. You can change your preferences at any time.
7. Data Retention
We retain personal data only for as long as necessary to fulfill the relevant purpose or to comply with statutory retention periods. Examples include:
• Health data and medical documentation: up to 10 years
• Billing and financial records: 10 years (as required by tax law)
• Server log data: up to 30 days
8. Hosting and Data Security
Our website is hosted on servers located in Germany.
We implement technical and organizational security measures in accordance with current standards to protect your data against loss, misuse, or unauthorized access.
9. Contacting Us
If you contact us by email, phone, or via our contact form, we process your information for the purpose of responding to your inquiry.
Your data will be treated confidentially and only shared if necessary to process your request or if required by law.
10. Changes to This Privacy Policy
We reserve the right to update this privacy policy in response to changes in legal requirements or our services.
The current version is always available on our website.