In accordance with § 4g (2) of the German Federal Law on Data Protection (BDSG), the representative for data protection is required to make the information from points 1-8 available to anyone upon request, as stated in § 4e (1) BDSG.

1. Responsible entity:
Lufthansa Cargo AG

2. Executive Board members: 
Carsten Spohr (Chairman)
Peter Gerber
Karl-Heinz Köpfle
Dr Andreas Otto (Representative)
Manager of Data Processing, Silke Lehnhardt, FRA F/IP
Company Representative for Data Protection, Dr Barbara Kirchberg-Lennartz, FRA DSB

3. Address of the responsible entity:
Lufthansa Cargo AG
Am Grünen Weg 1
D-65451 Kelsterbach

4. Determining the purpose of collection, processing or use of data:
The purpose of this company is to operate air freight services within the framework of commercial airline and charter services with aircraft. This includes the chartering and renting out of aircraft, both national and international, and all associated business. In particular, the purpose of this company includes the acquisition and maintenance of aircraft, property and buildings, freight and handling facilities as well as information technology applications and computing facilities (software and hardware). It also includes the acquisition of stakes and other assets and investments for the purpose of operating air freight services. The company has the right to promote its business purpose, to establish national and international subsidiaries and agencies, to acquire stakes in other national or international companies, to take over or establish such companies and to engage in all business, including entering into joint venture contracts. The company can hand over its operations to such companies in parts or in its entirety. Data collection, processing and usage is conducted to carry out the above-mentioned purposes. The focus of personal data processing is in the following areas: Human Resources (management and development), suppliers (management according to standardized German bookkeeping regulations “Grundsätze Ordnungsgemäßer Buchführung”), customers (CRM), secretarial and managerial functions, in accordance with the electronic data processing agreement established between LH AG and the appropriate bodies for labor relations.

5. Description of the affected groups and the associated data or data categories:
Customer data, employee data, shareholder data and data concerning suppliers, in so far as it is required to fulfill the purposes mentioned in 4.

6. Recipients or categories of recipients to whom the data may be disclosed:
Public authorities if superior legal requirements dictate this, external contractors according to §11 BDSG and external entities in order to fulfill the purposes mentioned in 4.

7. Time limits for the deletion of data:
Once the period of storage stipulated by either legislation or regulatory authorities has expired, the relevant data will be deleted. Should this not apply, the relevant data is deleted if the criteria from point 4 are no longer valid.

8. Planned data transfer to third party states:
In order to carry out actions within the framework of the business purpose, data may be transferred in accordance with the above-mentioned international guidelines to public authorities, customers and suppliers in different countries.

9. Security measures
Lufthansa Cargo AG takes safeguarding measures pursuant to §9 BDSG by practicing caution when awarding contracts, by maintaining appropriate quality regulations, and by training its staff.

Lufthansa Cargo AG
Company Data Protection Representative
Dr. Barbara Kirchberg-Lennartz
FRA DSB
Airportring
60546 Frankfurt
If you have any questions, please do not hesitate to contact us by mail:  dsb@dlh.de