FRS Group Privacy Policy

FRS Ship Management Ltd.

FRS Group Data Protection Notice (Privacy Notice)

When using the services of FRS Group, we will need to process some of your personal data. Your privacy and personal information is important to us which is why we have prepared a policy in accordance with the obligations laid down by the legal framework on how we handle your personal data. Here you can find out how we process your personal information.

 

Data Protection Officer

We have appointed a Data Protection Officer to help ensure that your personal information is collected and processed correctly. For questions regarding the collection, processing and use of your personal data, please contact the Data Protection Officer

Förde Reederei Seetouristik GmbH & Co KG
Data Protection Officer
Norderhofenden 19 - 20
24937 Flensburg

Email: datenschutz(at)frs.de.

 

Data Controller

The FRS Group management is responsible for ensuring that we process all personal data correctly.

Förde Reederei Seetouristik GmbH & Co KG
Norderhofenden 19 - 20
24937 Flensburg

FRS uses the minimum amount of personal information required. To further ensure the data is managed in the best way, this responsibility has been transferred to managers in the various departments.

FRS handles your personal data with care.  Our employees are trained in data protection, to know what data is to be collected, how it is to be handled and stored and who may have access to the data.

 

Your Rights as a Data Subject

You have a right to receive information and a right to access the personal data concerning you. The requirements for verifying your correct identity are strict and we shall require proof that you are the actual beneficiary.

You also have the right to rectification, erasure (deletion) and / or restriction of processing of your personal data.

Additionally, you have the right to object to our use of your personal data, right to data portability which includes the transfer of your data to another controller and you also have rights in relation to automated decision making and profiling.

You can exercise any of the above rights by contacting our Data Protection Officer with the contact details given above.

 

Legal Basis of Processing your Personal Data

We process personal data on the following legitimate reasons:

Legal obligation – We are required by law to collect certain personal information so that you, as the customer, can begin the journey you have chosen.

Contract compliance - Certain personal information must be collected in order to ensure that we fulfil the contracts we have with you as a customer.

Legitimate interest – When FRS processes your personal data for FRS’ legitimate interests, FRS will consider and balance any potential impact on you and your rights under data protection and any other relevant law. Our legitimate business interests do not override your interests. FRS will not use your personal data in circumstances where your rights and freedoms override our legitimate interests, unless we have your consent or are otherwise required or permitted to by law.

Consent – On agreement or request from you as customer, personal data can be processed for use of provision of information, marketing and communication with you as customer as part of managing our relationship with you.

If personal data is processed based on a formal agreement with you, you have the right to cancel the agreement at any time. This should be done via the form of communication the consent was given i.e. Opt out in cookies, SMS, email or contact the Data Protection Officer.

 

When do we collect your data?

We collect your personal data when you book with us, travel with us, when you use our websites, other services and / or when you use our call centres. We further collect your personal data when you book our freight or logistics services.

 

What information do we collect from you?

We collect only the data we are legally allowed to. This may include, depending on the specific case the following data:

  • Name.
  • Email address.
  • Phone number.
  • Address.
  • Date of birth.
  • Vehicle registration number.
  • Passport details.
  • Any information concerning the need for special care or assistance in emergency situations.
  • Services and products you have purchased.
  • Data on how you use our website.
  • Technical data including but not limited to your IP address, details about your browser, length of visit on our pages etc.
  • Personal data you post on our website.
  • CV and application forms.
  • Other information you provide to us e.g. surveys.

 

Why and how do we use your personal data?

We will use your information to:

  • To carry out the booking and further simplify the booking process when booking again.
  • Details of your passport may be needed in order to verify your identity.
  • Your phone number is needed so that we can contact you quickly in case of any changes with your booking.
  • Process financial transaction to enable your purchase of our products and services.
  • Enable us to comply with contractual obligations.
  • Monitor, analyse, personalise and improve the use and content of our websites and online services.
  • Send you information on our products and services including marketing communication and via email, SMS, Newsletters or other means of communication.
  • Analyse the effectiveness of our advertising.
  • Keep records of communication.
  • Reply to any enquiries or complaints.
  • Manage our business.
  • Comply with legal obligations.
  • We use the information collected to gather statistics, ask you to complete surveys and to analyse and improve our products and services. Our goal in this case is to offer our customers products and services that meet their needs and interests.

How do we protect your personal data?

When you book with us, we use secure server software, which encrypts all of the information you enter before it is sent to us. This encryption ensures that the information is appropriately protected against unauthorised interception.

FRS takes a proactive role to ensure privacy is embedded in every process, procedure and system which data.

 

Data Storage Period

In general, an existing customer relationship with FRS exists for 3 years from the last date of travel (date of departure). The personal data in the booking information will be kept for a period corresponding to the time where we can be met with claims.

 

Deletion of Data

We delete your personal data, as principle, when the purpose of collecting your data has been achieved and therefore is no longer needed.  In case of a legal or contractual obligation to retain the data, then the deletion is done only after such obligation expires.

 

 

Data Breakdown

Customer Profile
How we collect data

Customer relationship / Conset

  • With purchase of ticket.
 
Stored data Personal details, demographic data, travel history, email statistics, responses from customer surveys.
Purpose     Targeted marketing communication (digital & classical), analysis, statistics and profiling.
Length of storage

Length of customer relationship.

Period in which we can be met with claims.

Deletion    

The customer profile is completely deleted after 3 years, if no interaction has been recorded in the customer profile (e.g. no booking of a new trip).
Application by the customer for deletion.

Newsletter Subscriber
How we collect data

Customer relationship / Consent 

-Declaration of consent to receive newsletter. 

Stored data Personal details, demographic data, travel history, email statistics, responses from customer surveys.
Purpose     Targeted marketing communication.
Length of storage As long as the newsletter is in circulation.
Deletion     Cancellation of the Newsletter.
Companies / Agents
How we collect data Customer relationship / Consent 
  • Request for quotation.
  • Conclusion of a contract. 
 
Stored data  Company information, contact details (personal data), email statistics, responses from customer surveys.
Purpose     Targeted marketing communication, analysis, statistics and profiling.
Length of storage Length of customer relationship.
Deletion     Application for deletion.
End of customer relationship.

Security and Safety On-board

Following a thorough investigation, the names of undesirable passengers can be placed on an internal list to prevent these passengers from booking and travelling with us if the master of the vessel has reason to believe that the passengers will pose a security risk in accordance with the terms and conditions applicable for the travel.

Passengers are deemed to pose a security risk if they have endangered the safety of themselves, a vessel, the crew or other passengers, or if their behaviour has been inappropriate during a previous trip or if they have failed to follow safety regulations or requirements.

FRS will inform the passenger of the registration and register the necessary personal information of banned passengers for preventing passengers deemed a security risk from booking trips on our passenger ships for a defined period. The information will not be held for longer than necessary.

 

Sharing of personal data with third parties

Personal data will be shared internally within the FRS Group for practical reasons. We have internal policies and agreements in place to ensure an adequate level of protection irrespective of where in FRS your data is located. 

We will not transfer personally identifiable information about our visitors or customers to a third party, except in the following cases:

  • If we are legally required to do so e.g. to police and customs. In which case, we only publish this data if the following conditions are met:
  1. A written enquiry must be submitted.
  2. The relevant legal basis for obtaining the data must be cited.
  3. The enquiry must include a formal request to have the personal data provided.
  • Service providers and advisors that we use to provide certain services, such as hotels and activity providers, who fulfil your travel reservations. In such case, the suppliers will be individual data controllers.
  • FRS may provide aggregate statistics about our customers, sales, traffic patterns and related site information to third-party partners.
  • Additionally, FRS may provide information about our customers to third parties who provide services or functions on our behalf, including payment card processing, business analytics, customer service, marketing, or distribution of surveys.
  • In the event we sell property of FRS, its employees and others, or in the event we sell or liquidate any part of our business or assets.

Any such sharing will be in compliance with data protection law and only to trustworthy third parties.

We always strive to clearly inform you regarding the uses and possible disclosure of your information when such information is obtained. If it is not practical to do so at the point of collection, we will inform you as soon as possible, unless there is a legitimate basis for not doing so. For example, where it is necessary for the prevention or detection of a crime or where otherwise permitted by law.

 

Data ProcessingAgreements

FRS contracts various partner companies with the handling of personal data. These companies are contractually guaranteed to use your data according to the same high data protection principles as FRS. Compliance with data protection law is a matter of course. For example, such a contract will specify the intended use of the personal information as well as the security requirements for storage and access and the requirement to delete the data.

The Controller of the data in each case remains FRS.

 

Data processed outside the European Union

All personal data is processed in the European Union and therefore protected under the GDPR. If any data is to be processed outside, FRS ensures that the stipulated country though not governed by the GDPR, that the collection, storage and use of your personal data will at all times continue to be governed by this Private Policy.

 

Collection and processing of data when accessing our website

Cookies and Analytical tools

It is important to us that our website is user-friendly. For that reason, we use cookies and analytical tools to enable certain features on our web pages, e.g.

  • Increase the speed at which the website pages load
  • Learn more about your usage behaviour so as to enable us to constantly improve our website.

Cookies are small text files in which personal information can be stored for a limited or unlimited time by your browser. The cookies we use do not install or start any programs or other applications on your computer. They do not damage your device in any way.

You can prevent the storage of cookies in the security settings of your browser, however the use of our website might be restricted. You can also delete text information that has already been saved.

Please find more on our Cookie Notice.

 

Log Files

With each access to our Sites, information is sent to our servers via the respective Internet browser of your respective terminal and stored temporarily in log files. The records stored until automatic deletion in this case contain the following data: date and time of retrieval, name of the page requested, IP address of the requesting device, referrer URL (origin URL from which you access our web pages have come), the amount of data transferred, load time, as well as product and version information of the particular browser used and the name of their access provider.

The legal basis for processing the IP address is Article 6 (1) (f) GDPR. Our legitimate interest results from ensuring a smooth connection setup, comfortable use of our Sites and evaluation of system security and stability.

A direct inference to your identity is not possible on the basis of the information and will not be drawn by us.

The data will be stored and automatically deleted after the above mentioned purposes. The deletion period depends on the requirement of necessity.

Contact form, e-mail inquiries

If you contact us by e-mail or via the contact form provided on our website, we will collect and store your information for the purpose of processing the request and any follow-up questions.

Payments Online

When you pay online, you will be transferred to a secure webpage where you will add your payment card details.

All payments are processed by our trusted partner platforms and are validated against the highest standards of securing and safeguarding of card data.  We do not process or store any payment card information in FRS. However, in case you have questions about the processing of your payment card details, please contact FRS, and we will reach out to our payment partner.

External Links / Links to other Sites

Our Sites may contain links to or from a number of third party websites (hereinafter referred to as “Third Party Sites”). FRS does not, in any way, control or operate the Third Party Sites. FRS is not responsible for the privacy practices, content, policies or actions of the Third Party Sites. This Privacy Policy is only applicable to general information processed by our Sites, pursuant to information collected on our Sites. The use of any information you may provide to third parties on Third Party Sites, or which such parties may otherwise collect on other websites, is not governed by this Privacy Policy.

 

Social Networks

Social media plug-ins of social networks such as Facebook, Instagram or services with user-generated content features may be integrated into our Sites. Where our Sites contain a plug-in to a social network site, these are clearly marked (e.g. with a Facebook button), if you choose to click on one of these buttons or links, your browser connects directly to the servers of the relevant social network. The other website’s privacy policy applies to any personal information you provide to that website. If you do not want the social network to collect the information about you, please review the privacy policy of the relevant social network and/or log out of the relevant social network before you visit our Sites.

 

Webcams

We have installed webcams for purposes of clients and potential clients checking the weather, arrival of the ferry (whether it is on time or whether there are delays), and the situation at the port whether it is full and whether there are waiting times etc. The webcams are installed in such a manner that people and the vehicle licence plates are not easily identifiable.

To ensure that privacy is not affected, we have made sure that the following has been addressed:

  • Public Privacy: The cameras are situated in a way that the focus of activity is the arrival and the departure of the ferry and no other person or activity are in focus. It gives a general image of the area of the port where the ferry docks.
  • Data Protection: The cameras provides a live feed or motion picture. Therefore no images are recorded or kept as part of this feature on site.

 

Video and CCTV use on vessels

We use video and CCTV on certain areas of the vessel e.g. the deck for purposes of security. We ensure that live feeds from cameras and recorded images are only viewed by approved members of staff whose role requires them to have access to such data. We do not carry out covert monitoring or surveillance.

 

The right to appeal to a Supervisory Authority

You have the right to lodge a complaint with a data protection supervisory authority near us about our processing of your personal data. Kindly contact our Data Protection Officer first to give us an opportunity to improve.

 

Changes to our Privacy Notice

We regularly update our policy to address new issues or reflect changes on our website. Please refer to this Privacy Notice regularly. Revisions shall be effective immediately upon notice thereof. The latest version will always be found on this page.  Any use of our site or services by you subsequent to such notice shall be deemed to constitute acceptance by you of such revision.

 

FRS Group Data Protection Notice Update:  March 2019.