Data protection is of high importance for us at City Falcon Limited, which operates cityfalcon.com and cityfalcon.co.uk.
The processing of personal data, such as the name, address, or email address of a data subject shall always be in line with the General Data Protection Regulation (GDPR), and in accordance with the country-specific data protection regulations applicable to City Falcon Limited. By means of this data protection declaration, our enterprise would like to inform the general public of the nature, scope, and purpose of the personal data we collect, use and process. Furthermore, data subjects are informed, by means of this data protection declaration, of the rights to which they are entitled.
As the controller, City Falcon Limited has implemented numerous technical and organisational measures to ensure the most complete protection of personal data processed through this website. However, Internet-based data transmissions may in principle have security gaps, so absolute protection may not be guaranteed.
- 1. Definitions
- 2. Data we collect
- 2.1 What data do we ask you to provide to us, and why
- 2.2 What personal data do we share
- 2.3 How do we keep your personal data secure
- 2.4 How you can access and manage this data.
- 3. Cookies and Web Beacons
- 4. Subscription to our newsletters
- 5. Newsletter-Tracking
- 6. Contact possibility via the website
- 7. Blog subscription and comments
- 8. Routine erasure and blocking of personal data
- 9. Rights of the data subject
- 10. Legal basis for the processing
- 11. The legitimate interests pursued by the controller or by a third party
- 12. Period for which the personal data will be stored Changes to our policy
The data protection declaration of City Falcon Limited is based on the terms used by the European legislator for the adoption of the General Data Protection Regulation (GDPR). Our data protection declaration should be legible and understandable for the general public, as well as our customers and business partners. To ensure this, we would like to first explain the terminology used.
In this data protection declaration, we use, inter alia, the following terms:
a) Personal data
Personal data means any information relating to an identified or identifiable natural person (“data subject”).An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
b) Data subject
Data subject is any identified or identifiable natural person, whose personal data is processed by the controller responsible for the processing.
Data we collect
As a data controller, we collect a variety of data in order to deliver our services. We have provided further detail below about the specific types of data we collect and our reasons for doing so.
What data do we ask you to provide to us and why?
City Falcon Limited collects a series of general data and information when a data subject or automated system calls up any website owned by City Falcon Limited. This general data and information are stored in the server log files. Collected may be (1) name, (2) email address, (3) locations, (4) the browser types and versions used, (5) the operating system used by the accessing system, (6) the website from which an accessing system reaches our website (so-called referrers), (7) the sub-websites, (8) the date and time of access to the Internet site, (9) an Internet protocol address (IP address), (10) the Internet service provider of the accessing system, and (11) any other similar data and information that may be used in the event of attacks on our information technology systems.
When using these general data and information, City Falcon Limited does not draw any conclusions about the data subject. Rather, this information is needed to (1) deliver the content of our website correctly, (2) optimise the content of our website, (3) ensure the long-term viability of our information technology systems and website technology, and (4) provide law enforcement authorities with the information necessary for criminal prosecution in case of a cyber-attack. Therefore, City Falcon Limited analyses anonymously collected data and information statistically, with the aim of increasing the data protection and data security of our enterprise, and to ensure an optimal level of protection for the personal data we process. The anonymous data of the server log files are stored separately from all personal data provided by a data subject.
What personal data do we share?
We rely on third-party service providers to perform a variety of services on our behalf. For example, we may rely on service providers to host data, process payment transactions and analyse data to improve our services. To do so, we may need to share your personal information with them:It may be necessary to transfer your data to suppliers/service providers where we rely on storage, system and administrative support from outside the European Economic Area. Therefore, the processing of your data may involve a transfer of data to countries outside of European Union.
How do we keep your personal data secure?
City Falcon Limited is committed to being transparent and taking all reasonable and appropriate steps to keeping your personal information secure and to protect it from misuse, loss, or unauthorised access. We do this by having in place a range of appropriate technical and organisational measures, including internal policies of best practice and training for staff.
How you can access and manage this data?
You can access and manage your data in your account settings or by sending a request to [email protected]
Users may request the deletion of their data by writing to [email protected] with the account to delete. To protect users from malicious deletion, the originating email address must match the account email address. If access is no longer possible, requesters must provide another proof of ownership of the account to be deleted. Users who have signed up through other means, such as Facebook or Twitter, should contact us from those accounts:
Cookies and Web Beacons
The data subject may, at any time, prevent the setting of cookies through our website by means of a corresponding setting of the Internet browser used, and may thus permanently deny the setting of cookies. Furthermore, already set cookies may be deleted at any time via an Internet browser or other software programs. This is possible in all popular Internet browsers. If the data subject deactivates the setting of cookies in the Internet browser used, not all functions of our website may be entirely usable.
If you wish to disable cookies, you may do so through your individual browser options. More detailed information about cookie management with specific web browsers can be found at the browsers' respective websites.
Subscription to our newsletters and alerts
On the website of City Falcon Limited, users are given the opportunity to subscribe to our enterprise's newsletter. The input mask used for this purpose determines what personal data are transmitted, as well as when the newsletter is ordered from the controller.
If you agree, we may contact you:
We like to hear your views to help us improve our service. From time to time, we may contact you to ask your opinions. Again, if you do not want to be contacted for this purpose, make your choice on the Preferences page.
- with offers and information about our products or services
- with offers and information about selected partners' products or services
- for customer research eg to help improve our services
The newsletter of City Falcon Limited contains so-called tracking pixels. A tracking pixel is a miniature graphic embedded in such emails, which are sent in HTML format to enable log file recording and analysis. This allows a statistical analysis of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, City Falcon Limited may see if and when an email was opened by a data subject, and which links in the email were called up by data subjects.
Blog subscription and comments
If a data subject leaves a comment on the blog published on this website, the comments made by the data subject are also stored and published, as well as information on the date of the commentary and on the user's (pseudonym) chosen by the data subject. In addition, the IP address assigned by the Internet service provider (ISP) to the data subject is also logged. This storage of the IP address takes place for security reasons, and in case the data subject violates the rights of third parties, or posts illegal content through a given comment. The storage of these personal data is, therefore, in the own interest of the data controller, so that he can exculpate in the event of an infringement. This collected personal data will not be passed to third parties, unless such a transfer is required by law or serves the aim of the defense of the data controller.
Routine erasure and blocking of personal data
The data controller shall process and store the personal data of the data subject only for the period necessary to achieve the purpose of storage, or as far as this is granted by the European legislator or other legislators in laws or regulations to which the controller is subject to.
If the storage purpose is not applicable, or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data are routinely blocked or erased in accordance with legal requirements.
Legal basis for the processing
Art. 6(1) lit. a GDPR serves as the legal basis for processing operations for which we obtain consent for a specific processing purpose. You may indicate your consent in a number of ways, including, as permitted by law, ticking a box (or equivalent action) to indicate your consent when (i) providing us with your Personal Data through our services or a form (including enrolling in Promotions); or (ii) registering or creating a member account with us.
The legitimate interests pursued by the controller or by a third party
Where the processing of personal data is based on Article 6(1) lit. f GDPR our legitimate interest is to carry out our business in favor of the well-being of all our clients and users, employees and the shareholders.
Period for which the personal data will be stored
We will retain your Personal Data for as long as you are a member with us or as otherwise necessary to provide you the services. We will also retain your Personal Data as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements. Some data may also be stored longer than the stated retention period for the purposes of business continuity.
Changes to our policy