Privacy of personal data

Privacy of personal data

Public enterprise International Airport SARAJEVO doo Sarajevo (the Company) approaches the issue of personal data protection with great care and therefore undertakes extensive activities to protect the privacy of personal data.

This privacy policy and individual privacy statements offer a transparent and accessible overview of how the Company handles personal data. Privacy statements describe what personal data we collect, how long we keep it and what rights you, as the holder of personal data, can exercise.

At the SARAJEVO International Airport, there are several different organizations that, as part of their activities, may collect various personal data (e.g. Border Police Unit, airlines, sales and service facilities, etc.). As a rule, the Company does not have access to personal data that these organizations collect and process, except in cases where we are expressly charged with contractual obligations to carry out personal data processing activities for some of these organizations (e.g. processing of personal data in the process of accepting and dispatching passengers according to the requirements of contractual obligations with airlines). For more information on how your personal data is handled, please contact these organizations directly.

Privacy Statements

For each of the services/activities in which the Company collects and processes personal data in the following sections, individual privacy statements state the type and scope of personal data that we collect/process, the reasons for their collection/processing, how long we keep them, with whom we share them, and what rights you have regarding your personal data.

1) Personal data when traveling:

   Parking    Luggage    Duty Free Shop    Video surveillance    VIP services    Lost & Found    Control access    Wi-Fi

2) Personal data in interactions with SARAJEVO International Airport via electronic media:

  Website    SIA application    Social networks    Web cookies ("cookies")    Complaints

3)Work at SARAJEVO International Airport and work for SARAJEVO International Airport:

In its daily operations, Sarajevo International Airport has contractual and other relationships with various parties (e.g. employees/workers, visitors, external operational staff, suppliers and users of complementary services and others) and the need to collect and process a certain set of personal data. In this context, Sarajevo International Airport as the Controller processes personal data through the following records:

  • Records on workers and members of management bodies in the company
  • Records of persons engaged under a work contract or a contract for the performance of temporary and casual work, as well as persons performing student internships
  • Records on the external operational staff of the Professional Staff Training Center
  • Records on external users of the services of the Professional Staff Training Center
  • Records on suppliers and users of complementary services
  • Records of recipients/importers of goods in the customs warehouse
  • Candidate records (competitions, advertisements for employment)
  • Visitor records
  • Records of persons who access the Sarajevo International Airport complex with an announcement
  • Records on external users of the PACS system and keys
  • Parking user records
  • Video surveillance records

The purpose of data processing as well as storage periods are defined through each individual record. In accordance with the Law on the Protection of Personal Data, the records are reported to the Agency for the Protection of Personal Data of Bosnia and Herzegovina and are an integral part of the Agency's Main Register.

For more information, you can visit the website of the BiH Personal Data Protection Agency at the following link: http://azlpreg.azlp.ba/Pretraga (enter the name of the Company in the search field: J.P. Međunarodni aerodrom Sarajevo d.o.o. Sarajevo).

Your rights regarding the processing of personal data

In order to exercise your rights, you can contact us in writing or by email:

Personal data protection officer

Address:

P.C. "SARAJEVO" INTERNATIONAL AIRPORT LLC SARAJEVO

Kurta Schorka Street No. 36, ​​71210 SARAJEVO, Bosnia and Herzegovina

E-mail: dpo@sarajevo-airport.ba

Depending on the legal basis, your rights to the processing of personal data may include the following:

  1. The right to information about the processing of personal data;
  2. The right to access personal data;
  3. The right to correct personal data;
  4. Right to erasure;
  5. Right to restriction of processing;
  6. Right to portability of personal data;
  7. The right to object;
  8. Rights related to automated data processing and profiling.

Exercising the aforementioned rights will depend on the specific type of data processing and will be possible if it is applicable in accordance with the regulations and/or technically feasible in relation to the specific processing of personal data. Also, it is important to know that the right to erasure does not apply in cases where processing is necessary to fulfill legal obligations, establish, realize or defend legal claims and the like.

Please note that you have the right to request the above rights as they are applicable in relation to specific processing, but according to the regulations on the protection of personal data, we are obliged to confirm your identity before providing any information or providing an explanation in case we are unable to comply with your request. In case of a request from your side, we will inform you whether your request has been approved. Also, if you believe that one of your rights has been violated, you can file a complaint with the Agency for the Protection of Personal Data in Bosnia and Herzegovina, Dubrovačka Street No. 6, 71000, SARAJEVO or by e-mail: azlpinfo@azlp.ba  

Personal data controller

P.C. "SARAJEVO" INTERNATIONAL AIRPORT LLC SARAJEVO

Address:

Kurt Schork, 36, 71210 SARAJEVO, Bosnia and Herzegovina

Contact for submitting a request: Personal Data Protection Officer (DPO); E-mail: dpo@sarajevo-airport.ba

 

Security of personal data

The technical and organizational measures (including all relevant certificates) applied to ensure the privacy of personal data are as follows:

  • Measures of anonymization, pseudonymization and encryption of personal data;
  • Measures to ensure permanent confidentiality, integrity, availability and resilience of processing systems and services;
  • Measures to ensure the ability to timely reestablish the availability of personal data and access to them in the event of a physical or technical incident;
  • Procedures for regular testing, assessment and evaluation of the effectiveness of technical and organizational measures to guarantee processing security;
  • Measures for user identification and authorization;
  • Data protection measures during transmission;
  • Data protection measures during storage;
  • Measures to ensure physical protection of locations where personal data is processed;
  • Measures to ensure logging of event data;
  • Measures to ensure system configuration, including default configuration;
  • Measures to ensure data reduction;
  • Data quality assurance measures;
  • Measures to ensure the time limit of data storage;
  • Measures to ensure data portability and ensure erasure.