privacy policy


Privacy Policy

General Information
We are pleased that you are visiting our website and thank you for your interest. The following information provides a simple overview of what happens to your personal data when you visit this website.
Personal data is any data by which you can be personally identified.

This privacy policy explains which data we collect and what we use it for. It also explains how and for what purpose this is done.
As the operator of this website, we take the protection of your personal data very seriously. We treat your personal data confidentially and in accordance with statutory provisions and this privacy policy.

We would also like to point out that data transmission over the Internet (e.g., when communicating by email) may have security vulnerabilities. Complete protection of data against access by third parties is not possible.

Data Collection on This Website

1. Information on the Controller and Contact

The controller responsible for data processing on this website is:

LIFT Air GmbH
Am Flugplatz 3
99820 Hörselberg Hainich
Airfield Eisenach-Kindel
Phone: +49 36920 7530 30
Email: info@lift-air.com

The controller is the natural or legal person who alone or jointly with others determines the purposes and means of processing personal data (e.g., names, email addresses, etc.).

To exercise your rights, report data protection incidents, and for suggestions and complaints regarding the processing of your personal data, as well as to withdraw your consent, we recommend contacting us at:
privacy@lift-air.com

2. Scope of Application

This privacy policy applies to this website, which is accessible under the domain https://lift-air.com (“Website”). It does not apply to Internet offerings (from us or third-party service providers) that are merely referenced via a link on the Website.

3. Data Processing

Visiting the Website is generally possible without providing personal data. We collect, process, and use your personal data on this website as follows:

3.1 How is your data collected?

Your data is collected, on the one hand, when you actively provide it to us. This may include, for example, data you send to us by email.
Other data is automatically collected by IT systems when you visit the Website. These are mainly technical data (e.g., Internet browser, operating system, or time of page access), which you can view under section 4. This data is collected automatically as soon as you access this website.

This processing is based on our legitimate interest (Art. 6 para. 1 lit. f GDPR) in presenting the website. We assume that this is also in your interest, as the website cannot be displayed without it.
You may object to the processing of your data for this purpose at any time without giving reasons, with effect for the future. However, we point out that your personal data may still be processed when accessing the Website even after an objection, since it is not possible to disable the technically necessary processing for individual users of the Website or in general.
If you wish to prevent the processing described above, please refrain from accessing the Website.

3.2 What is your data used for?

The data is collected solely to ensure the error-free provision of the Website or to process your request.

3.3 General information on the legal bases for data processing on this Website

  • If processing your data is necessary for the performance of a contract or for taking steps prior to entering into a contract, we process your data on the basis of Art. 6 para. 1 lit. b GDPR.

  • If processing is necessary to comply with a legal obligation, it is based on Art. 6 para. 1 lit. c GDPR.

  • Processing may also be carried out on the basis of our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR.

  • If you have consented to data processing, we process your personal data on the basis of Art. 6 para. 1 lit. a GDPR.

3.4 Storage Duration

Unless a more specific storage period has been stated within this privacy policy, your personal data will remain with us until the purpose for data processing ceases to apply.
If you assert a legitimate request for deletion or withdraw your consent to data processing, your data will be deleted unless there are other legally permissible reasons for storing your personal data (e.g., tax or commercial retention periods); in the latter case, deletion will take place after these reasons cease to apply.

3.5 Contact by Email

If you send us inquiries by email, your details from the email, including the contact data you provide there, will be stored for the purpose of processing the inquiry and in case of follow-up questions. This data will not be passed on without your consent.

The processing of this data is based on Art. 6 para. 1 lit. b GDPR if your inquiry is related to the performance of a contract or is necessary for pre-contractual measures. In all other cases, processing is based on our legitimate interest in effectively handling inquiries addressed to us (Art. 6 para. 1 lit. f GDPR).

The data you provide will remain with us until you request deletion, withdraw your consent to storage, or the purpose for data storage no longer applies (e.g., after your inquiry has been fully processed). Mandatory statutory provisions—especially retention periods—remain unaffected.

4. Usage Data

Each time the Website is accessed, your IP address and other usage data (such as date and time of access, name of the page accessed, amount of data transferred, and the requesting provider) may be collected and processed on the server for technical reasons. This is required to carry out the communication process you request with the Website.

This data is collected on the basis of Art. 6 para. 1 lit. f GDPR. As the website operator, we have a legitimate interest in the technically error-free presentation and optimization of our website—this requires the collection of server log files.

Log data (server log files / logfiles)
The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These include:

  • Visited website

  • Date and time of access

  • Amount of data sent in bytes

  • Access status/HTTP status code

  • Content of the request (specific page)

  • Source/referrer from which you accessed the page

  • Browser used

  • Operating system and interface

  • IP address used

  • Language and version of the browser software

This data is not combined with other data sources, in particular with other personal data of the user.

5. Cookies

To make visiting our website attractive and to enable the use of certain functions, we use so-called cookies on the website with your consent. Some of the cookies we use are deleted after the end of the browser session, i.e., after you close your browser (so-called session cookies). Other cookies remain on your device and enable us or our service providers to recognize your browser the next time you visit (persistent cookies).
If these cookies are activated, your data may be transferred to insecure third countries. Further details can be found here.

6. Disclosure of Personal Data

Personal data is generally not disclosed to third parties unless this is necessary for the performance of a contract (for example, transmission of address data to a shipping company), permitted under applicable statutory provisions, or you have given your consent.

7. Hosting

External hosting is carried out for the purpose of fulfilling contracts with potential and existing customers (Art. 6 para. 1 lit. b GDPR) and in the interest of a secure, fast and efficient provision of the online offering by a professional provider (Art. 6 para. 1 lit. f GDPR).

Data processing is carried out with the involvement of a hosting service provider who provides storage space and processing capacities in data centers and who also processes personal data on our instructions. The hoster will process your data only to the extent necessary to fulfill its service obligations and will follow our instructions regarding this data.
This service provider processes your data exclusively in Germany and can guarantee an adequate level of data protection.

The website is hosted by the following provider:
dogado GmbH, Antonio-Segni-Straße 11, 44263 Dortmund
For further information, please refer to the privacy policy of dogado GmbH: https://www.dogado.de/legal/datenschutz

Data processing agreement
A data processing agreement (DPA) has been concluded with the above-mentioned provider. This is a contract required by data protection law that ensures that the provider processes the personal data of website visitors only in accordance with our instructions and in compliance with the GDPR.

8. Tools and Plugins Used

8.1 Matomo (local hosting)

To design our website in line with requirements, we use the web analytics tool “Matomo”. With the help of Matomo, we are able to collect and analyze data about the use of our website by visitors. This enables us, among other things, to find out when which page views were made and from which region they come. We also record various log files (e.g., IP address, referrer, browser and operating systems used) and can measure whether our website visitors perform certain actions (e.g., clicks, purchases, etc.).

When analyzing with Matomo, we use IP anonymization. Your IP address is shortened before analysis so that it can no longer be clearly attributed to you.

This tool is installed locally and runs exclusively on the servers of our website. Personal data of users is stored only there. The data is not passed on to third parties.

The legal basis for this data processing is your consent pursuant to Art. 6 para. 1 lit. a GDPR—provided you have given your consent via our banner. You can revoke your consent at any time.
More information on the handling of user data can be found in the privacy policy at: https://matomo.org/privacy/

8.2 Use of Joomla!

We use the website builder system or content management system (CMS) Joomla! on our website. The provider is the German company J and Beyond Verein zur Förderung freier Content Management Systeme e.V., c/o Robert Deutz Business Solution, Waldgürtel 6, 51427 Bergisch Gladbach.
Further information can be found in the privacy policy at: https://www.joomla.de/datenschutzerklaerung

9. Your Rights as a Data Subject

9.1 Right to Object to Data Collection in Specific Cases and to Direct Advertising (Art. 21 GDPR)

If the processing of your personal data is based on Art. 6 para. 1 lit. a GDPR (processing based on consent) or Art. 6 para. 1 lit. f GDPR (processing to safeguard the legitimate interests of the controller), you have the right to object to the processing at any time under the conditions stated in the law. This applies, for example, for reasons arising from your particular situation or in the case of processing for direct advertising purposes.
If you object, your personal data will no longer be used for direct advertising purposes (Art. 21 para. 2 GDPR).

9.2 Right of Access

You have the right to find out whether personal data concerning you is being processed by us, which personal data it may be, as well as further information in accordance with Art. 15 GDPR.

9.3 Right to Rectification

You have the right to request the correction of inaccurate personal data concerning you (Art. 16 GDPR). Taking into account the purposes of processing, you have the right to request that incomplete personal data be completed—including by means of a supplementary statement.

9.4 Right to Erasure (“Right to be Forgotten”)

You have the right to request that personal data concerning you be deleted without undue delay, provided that one of the reasons listed in Art. 17 para. 1 GDPR applies and processing is not necessary for one of the purposes regulated in Art. 17 para. 3 GDPR.

9.5 Right to Restriction of Processing

You are entitled to request restriction of processing of your personal data if one of the conditions listed in Art. 18 para. 1 lit. a) to d) GDPR is met.
This applies in the following cases:

  • If you contest the accuracy of your personal data stored with us, we usually need time to verify this. For the duration of the verification, you have the right to request restriction of processing of your personal data.

  • If the processing of your personal data was/is unlawful, you may request restriction of data processing instead of deletion.

  • If we no longer need your personal data, but you require it for the exercise, defense or assertion of legal claims, you have the right to request restriction of processing instead of deletion.

  • If you have lodged an objection pursuant to Art. 21 para. 1 GDPR, a balancing of your interests and ours must be carried out. As long as it has not yet been determined whose interests prevail, you have the right to request restriction of processing of your personal data.

  • If you have restricted the processing of your personal data, such data—apart from being stored—may only be processed with your consent or for the assertion, exercise or defense of legal claims or for the protection of the rights of another natural or legal person or for reasons of important public interest of the European Union or a Member State.

9.6 Right to Data Portability

You have the right to receive personal data concerning you that you have provided to us in a structured, commonly used and machine-readable format. You also have the right to transmit these data to another controller without hindrance by us or to have the data transmitted directly by us, where technically feasible.
This applies whenever the legal basis for processing is consent or a contract and the data are processed by automated means. This does not apply to data held only in paper form.

9.7 Right to Withdraw Consent

If processing is based on your consent, you have the right to withdraw your consent at any time. The lawfulness of processing carried out on the basis of the consent until withdrawal remains unaffected.

9.8 Right to Lodge a Complaint with the Competent Supervisory Authority

You may exercise your right to lodge a complaint with the competent supervisory authority:

Thuringian State Commissioner for Data Protection and Freedom of Information (TLfDI)
Häßlerstraße 8
99096 Erfurt

Postal address:
Postfach 900455
99107 Erfurt

Phone: +49 (361) 57-3112900
Fax: +49 (361) 57-3112904
Email: poststelle(at)datenschutz.thueringen.de

The right to lodge a complaint exists without prejudice to any other administrative or judicial remedies.
If you have further questions about personal data, you may contact us at any time. Please submit your request in writing using the contact details provided on this Website.

10. SSL or TLS Encryption

This site uses SSL or TLS encryption for security reasons and to protect the transmission of confidential content, such as inquiries that you send to us as the site operator. You can recognize an encrypted connection by the address line of the browser changing from “http://” to “https://” and by the lock symbol in your browser line.
If SSL or TLS encryption is activated, the data you transmit to us cannot be read by third parties.

11. Minors

This website and the offers are not directed at persons under the age of 18. Such persons should only transmit personal data with the consent of their parents or legal guardians.

12. Changes to the Privacy Policy

Due to the continuous development of the website, the offers, and technical progress, we reserve the right to adjust security and data protection measures at any time. Please therefore refer to the current version of the data protection information.
This privacy policy is currently valid and was created by Juno – Datenschutz auf Augenhöhe.

This privacy policy is currently valid and is dated November 2025.

liftair_logo_white.png

Our goal: We shape a modern General Aviation​

  • Am Flugplatz 3, D-99820 Hörselberg Hainich
  • +49 36920 7530-30
  • info@lift-air.com