Effective date : November 2022
Who is Butler America Aerospace, LLC. (“BAA”)
BAA is the Data Controller of your personal data as described in this Privacy Statement, unless otherwise specified.
BAA is committed to protecting your personal data and respecting your privacy and your rights, and this statement is intended to provide you with information on how your personal data is processed.
What does this Privacy Statement cover?
This Privacy Statement applies to any personal data that BAA may process about you that may be collected directly from you when you interact with BAA or from third parties, such as when you:
- Visit our public-facing BAA branded websites and other online services including social media pages;
- Send or receive communications from/to BAA, including emails, phone calls, texts or faxes;
- Use BAA products and services (for example, as an employee of one of our customers who provided you with access to our products or services) to the extent that BAA is acting as a controller of your personal data. You should be aware that processing of personal data is required for receiving certain products or services;
- Access downloadable applications from mobile devices with respect to which this Privacy Statement is linked
- Register for, attend, or take part in activities such as events, webinars, training, campaigns, or contests;
- Visit BAA offices
This Privacy Statement will be available via link on all sites which it covers. Other BAA websites, apps, or online services may collect and use personal data about you for different purposes and will accordingly publish a separate policy statement/ terms and conditions specific to the processing activity. BAA websites and services may contain links to other websites, applications and services not owned by BAA and BAA does not control the content or privacy practices of those sites. The information practices of other services, or of social media platforms that host BAA branded social media pages, are governed by their privacy statements, which you should review to better understand their privacy practices.
BAA websites and offerings are directed to people in their business or professional capacities. They are not intended for children under 16 years of age. BAA does not knowingly solicit information online from, or market online to, children under 16 years of age. If you are a parent or guardian and believe your child has provided BAA with personal data without your consent, please contact BAA as indicated below and BAA will take steps to delete their personal data from its systems.
This Privacy Statement does not apply to the extent BAA processes personal data in the role of a data processor or service provider, including personal data processed on behalf of our customers.
What personal data does BAA process?
For the purposes of this Statement, ‘Personal Data’ means any information about you from which you can be identified, whether derived from that information on its own or when combined with other information, that BAA or another party may hold about you.
Types of data: Depending on the nature of your interaction with us, this information may include business contact details (such as name, title, company, email address or telephone number), the content of your communication, information about how you use BAA’s website and products or services, your feedback, interests in BAA products and services, and any publicly available information relevant from a business-to-business perspective. In addition, this may include information about your computer and about your visits to and usage of this site, such as your Internet Protocol (IP) address, your computer’s operating system and browser type, and information collected via cookies.
This may also include collecting personal data about you from a third party who is authorized to act on your behalf or from third party services that you use to interact with BAA services. BAA may also collect your personal data from other sources such as public databases, joint marketing partners, and social media platforms, to the extent permitted by applicable laws.
If you provide BAA with any personal data relating to other individuals, you represent that you have the authority to do so and, where required, you have obtained any necessary consent. You acknowledge that this personal data may be used in accordance with this Privacy Statement.
When using a Mobile App published by BAA, in addition to contact information, BAA or its service providers (such as mobile operating system and platform providers) may also collect information relating to your device, including your device model, operating system, browser type, unique device identifier, IP address, mobile phone number, mobile network carrier, location, and the way you are using the Mobile App. The information collected will depend on the functionality of the specific Mobile App you are using. If any other information is collected relating to your use of a Mobile App, such information will be specified in the Mobile App.
Why does BAA process your personal data?
BAA processes your personal data for specified and lawful purposes only and in accordance with the applicable data protection laws.
Your personal data will be processed by BAA for the following purposes:
|Legal basis as applicable per the Privacy & Data Protection Laws||Why We process your data|
|For taking steps at your request prior to entering into a contract and/or for performance of a contract||
|Compliance with Legal Obligations||To comply with legal obligations to which BAA is subject, such as keeping records for tax, employment, social security and immigration law purposes, or providing information to a public body or law enforcement or government agencies|
How long does BAA retain your personal data?
BAA retains your personal data for as long as it is necessary to fulfil the purposes for which it was collected, or longer if required to fulfil our legal and contractual obligations. After expiration of the retention period, your personal data will be deleted. If BAA is are unable to completely delete the personal data from its systems, BAA will confirm that there are measures in place to secure the information and protect it from further use.
What are your rights and how can you exercise them?
Depending on your relationship with BAA and in line with local data protection laws, you may have several rights in relation to your Personal Data such as access, rectification, erasure, restriction of processing, objection, withdrawal of consent, not to be subject to decisions based on automated processing, opt out of marketing communications, etc. Please note, these rights are subject to exemptions and may not apply in all circumstances. If you wish to exercise these rights, BAA will provide you with the requested information or will address your request within one month after receipt of your verified request, subject to any extensions that may be required and communicated to you.
You can use the following channels to exercise your rights or request more information about your rights:
- Submit your requests on the Data Subject Request Portal which can be accessed here.
- If you have any comments or inquiries, you may contact BAA’s via firstname.lastname@example.org
- If you are a California resident, please visit the following link for more details about your rights.
With whom does BAA share your personal data?
BAA may transfer or share your Personal Data with third parties such as our service providers and vendors, business partners, professional and corporate advisors, public or government authorities including law enforcement, network providers, third party websites, and BAA affiliates or subsidiaries.
BAA may also transfer your personal data to any of its global affiliated entities or subsidiaries. Unless you are otherwise notified, any transfers of your personal data from within the European Economic Area (EEA) to third parties outside the EEA will be based on an adequacy decision or as governed by the standard contractual clauses (a copy of which can be obtained through the contact information included below). Any other non-EEA related transfers of your personal data will take place in accordance with the appropriate international data transfer mechanisms and standards.
When required, BAA may disclose your Personal Data to external law enforcement bodies or regulatory authorities, in order to comply with legal obligations. BAA may also disclose your personal data where mandated by law and as further required when it believes in good faith that disclosure is necessary to protect its rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.
If BAA is involved in a merger, reorganization, dissolution or other fundamental corporate change, BAA may need to share your information with a third party, in compliance with applicable laws.
How does BAA safeguard your personal data?
BAA uses a range of security measures to protect your personal data from unauthorized or unlawful access, loss, disclosure, or alteration, including technical, organizational and physical measures.
How can you contact BAA if you have any questions?
If you have any questions about this Privacy Statement, you can contact the BAA via email@example.com.
If you have an unresolved privacy or data use concern that BAA has not addressed satisfactorily, please contact firstname.lastname@example.org.
How will BAA update this Privacy Statement?
BAA may amend this Privacy Statement from time to time. If BAA materially change its Privacy Statement, BAA will update the “Effective Date” at the top of the Privacy Statement and BAA may provide notice prior to the update taking effect by posting a notice on its website or, where required by law, by providing you with notice of such updates.
Your Rights under the CCPA
Access to Specific Information and Data Portability Rights
You have the right to request that BAA disclose certain information to you about its collection and use of your personal information. Once BAA receives and confirms your verifiable consumer request, BAA will disclose to you:
- The categories of personal information BAA collected about you.
- The categories of sources for the personal information BAA collected about you.
- Our business purpose for collecting that personal information.
- The categories of third parties with whom BAA share that personal information.
- The specific pieces of personal information BAA collected about you.
You have the right to request the return (data portability) deletion of personal information that BAA holds about you, and BAA will comply with your request as required by law, but this right does not apply where BAA needs to retain the personal information in order to provide goods or services to you, detect or resolve security issues or functionality-related issues, comply with the law, and carry out internal business requirements. Should you choose to exercise any of your rights under the CCPA, BAA will not discriminate against you in any way. BAA will not charge you different prices for goods or services, whether through denying benefits or imposing penalties, provide you with a different level or quality of goods or services, or threaten you with any of the above actions.
How to Exercise Your Rights under the CCPA
To exercise any of the rights described above, please submit a verifiable consumer request to us by either of the two options below:
Calling us at (203) 926-2700
Submitting your request through BAA’s email@example.com portal
Or a person registered with the California Secretary of State that you authorize to act on your behalf, may make a verifiable consumer request. The verifiable consumer request must:
- Provide sufficient information that reasonably allows BAA to verify you are the person about whom BAA collected personal information (or an authorized representative).
- Describe your request with sufficient detail that allows us to properly understand, evaluate, and respond to it.
BAA cannot respond to your request if BAA cannot verify your identity and confirm the personal information relates to you. BAA will only use personal information provided in a verifiable consumer request to verify the requestor’s identity and/or authority to make the request.