Privacy Policy

Last Updated: November 17, 2025

1. Introduction

TarmacView j.s.a. (“we”, “us”, “our”) is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our drone-based PAPI inspection services and software.

Data Controller: TarmacView j.s.a. Slovakia

2. Information We Collect

2.1 Personal Information

Account Information:

• Name and contact details
• Email address

User Credentials:

• Username and password (encrypted)
• Account preferences and settings

2.2 Inspection and Operational Data

Drone Flight Data:

• GPS coordinates and flight paths
• Telemetry data (altitude, speed, orientation)
• Timestamp and location information

PAPI Measurement Data:

• Video recordings of PAPI light systems
• Photometric sensor measurements
• Light intensity and color data
• Angular measurements
• Position verification data

Airport Information:

• Runway designations and configurations
• PAPI unit locations
• Infrastructure details relevant to inspections

2.3 Automatically Collected Information

Website Usage Data:

• IP address
• Browser type and version
• Device information
• Pages visited and time spent
• Referral sources
• Geographic location (country/city level)

Analytics Data: We use Google Analytics and Google Tag Manager to collect:

• User interactions with our website
• Session duration and frequency
• Traffic sources and campaigns
• Device and browser statistics

2.4 Communications

• Emails and messages you send to us
• Support tickets and inquiries
• Feedback and survey responses

3. How We Use Your Information

3.1 To Provide Services

• Process and fulfill inspection service requests
• Generate ICAO-compliant reports and documentation
• Provide software licenses and access
• Deliver training programs
• Manage your user account

3.2 To Improve Services

• Analyze inspection data to improve measurement accuracy
• Enhance software features and functionality
• Develop new products and services
• Conduct research and development

3.3 Communication

• Send service-related notifications
• Respond to your inquiries and support requests
• Provide important updates about Services
• Send marketing communications (with your consent)

3.4 Legal and Security

• Comply with legal obligations and regulations
• Detect and prevent fraud or security issues
• Enforce our Terms and Conditions
• Protect our rights and property

4. Data Storage and Security

4.1 Storage Infrastructure

All data is stored on Amazon Web Services (AWS) infrastructure:

Video Storage:

• Videos are stored in Amazon S3 buckets
• Encrypted at rest using AES-256 encryption
• Encrypted in transit using SSL/TLS
• Access restricted to authorized personnel only

Database Storage:

• User account data stored in encrypted databases
• GPS and telemetry data stored with encryption
• Regular automated backups
• Geographic redundancy for data protection

4.2 Security Measures

We implement industry-standard security measures:

• Encryption of data in transit and at rest
• Multi-factor authentication for system access
• Regular security audits and vulnerability assessments
• Access controls and role-based permissions
• Secure API endpoints with authentication
• Regular software updates and patches

4.3 Data Retention

Inspection Data:

• Video recordings: Retained for 12 months after inspection or as contractually agreed
• GPS and measurement data: Retained for reporting and compliance purposes
• Reports: Retained for 5 years for regulatory compliance

Account Data:

• Active accounts: Retained for the duration of your relationship with us
• Inactive accounts: Deleted after 24 months of inactivity
• Deletion requests: Processed within 30 days

Legal Requirements: We may retain data longer when required by law, regulation, or pending legal proceedings.

5. Data Sharing and Disclosure

5.1 We Share Data With:

Service Providers:

• AWS for cloud hosting and storage
• Google for analytics and tracking
• Email service providers for communications
• Payment processors for billing (if applicable)

All third-party providers are contractually bound to protect your data and use it only for specified purposes.

5.2 We Do NOT:

• Sell your personal data to third parties
• Share inspection data with competitors
• Use your data for purposes unrelated to our Services
• Share data for advertising purposes

5.3 Legal Disclosures

We may disclose information when required to:

• Comply with legal obligations, court orders, or government requests
• Enforce our Terms and Conditions
• Protect rights, property, or safety of TarmacView, users, or the public
• Investigate fraud or security issues

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity.

6. Your Data Protection Rights (GDPR)

Under the General Data Protection Regulation (GDPR), you have the following rights:

6.1 Right to Access

Request copies of your personal data we hold.

6.2 Right to Rectification

Request correction of inaccurate or incomplete data.

6.3 Right to Erasure

Request deletion of your personal data (subject to legal obligations).

6.4 Right to Restrict Processing

Request limitation of how we process your data.

6.5 Right to Data Portability

Request transfer of your data to another service provider.

6.6 Right to Object

Object to processing of your data for specific purposes.

6.7 Right to Withdraw Consent

Withdraw consent for data processing at any time.

To exercise these rights, contact us at [your contact email].

7. Cookies and Tracking Technologies

7.1 Cookies We Use

Essential Cookies:

• Authentication and session management
• Security and fraud prevention

Analytics Cookies (Google Analytics):

• Website usage statistics
• User behavior analysis
• Performance monitoring

Functional Cookies:

• Language preferences
• User interface settings

7.2 Cookie Management

You can control cookies through your browser settings. Note that disabling certain cookies may affect website functionality.

7.3 Google Analytics

We use Google Analytics to understand how visitors use our site. Google Analytics collects information anonymously and reports website trends. You can opt out using the Google Analytics Opt-out Browser Add-on .

8. International Data Transfers

Your data may be transferred to and processed in countries outside of Slovakia, including AWS data centers in the EU region. We ensure adequate safeguards are in place through:

• EU-approved Standard Contractual Clauses
• AWS compliance certifications (ISO 27001, SOC 2)
• GDPR-compliant data processing agreements

9. Children’s Privacy

Our Services are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected data from a child, please contact us immediately.

10. Data Breach Notification

In the event of a data breach that affects your personal information:

• We will notify affected users within 72 hours
• We will notify relevant supervisory authorities as required by law
• We will take immediate steps to secure the breach and prevent further unauthorized access

11. Third-Party Links

Our website may contain links to third-party websites. We are not responsible for the privacy practices of these external sites. Please review their privacy policies before providing any information.

12. Updates to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

• Changes in our data practices
• New legal requirements
• Service improvements

We will notify you of material changes via:

• Email notification to your registered address
• Prominent notice on our website
• In-app notification (for software users)

Your continued use of Services after changes indicates acceptance of the updated Privacy Policy.

13. Your Choices and Controls

13.1 Marketing Communications

• Opt out of marketing emails using the unsubscribe link
• Adjust communication preferences in your account settings

13.2 Account Data

• Update your account information at any time
• Request account deletion (subject to legal retention requirements)

13.3 Inspection Data

• Request copies of your inspection reports
• Request deletion of video recordings after agreed retention period

14. Data Protection Officer

For privacy-related inquiries, you may contact our Data Protection Officer:

Data Protection Officer: Viktor Zeman Email: support@tarmacview.com Subject Line: “Privacy Inquiry - TarmacView”

15. Supervisory Authority

You have the right to lodge a complaint with your local data protection supervisory authority if you believe we have not addressed your privacy concerns adequately.

For Slovakia: Office for Personal Data Protection of the Slovak Republic (ÚOOÚ) Website: https://dataprotection.gov.sk

16. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or our data practices:

TarmacView j.s.a. Slovakia

Email: support@tarmacview.com Website: https://www.tarmacview.com

Response Time: We aim to respond to all privacy inquiries within 48 hours.

Summary of Key Points

• We collect personal, operational, and usage data to provide our Services
• All data is stored securely on AWS infrastructure with encryption
• We use Google Analytics for website analytics
• We do not sell your data to third parties
• You have rights under GDPR to access, correct, and delete your data
• Video recordings are retained for 12 months, other data according to legal requirements
• We implement strong security measures to protect your information
• You can contact us anytime with privacy questions or requests

By using our Services, you acknowledge that you have read and understood this Privacy Policy.