Raleigh-Durham International Airport

Raleigh-Durham Airport Authority Privacy Statement

Overview

The Raleigh-Durham Airport Authority takes personal privacy very seriously. We are committed to protecting online users’ privacy while complying with public records laws. We believe that protection of personal privacy on the Internet is our responsibility to assure user confidence, increase participation in online activities and support effective delivery of services The following is the privacy statement for this website and all pages associated with rdu.com. This privacy statement discloses the privacy practices for rdu.com and applies solely to information collected by this website. It notifies you of the following:

1. The personally identifiable information, or personal data, collected from you through the website, how it is used and with whom it may be shared.
2. What choices are available to you regarding the use of your data.
3. The security procedures in place to protect the misuse of your information.
4. How you can correct any inaccuracies in the information.

We intend to give you as much control as possible over your personal information. As a general rule, we do not collect your personal information unless you choose to provide that information to us. When you choose to provide us with your personal information, you are giving the Authority permission to use that information for the stated purposes listed in this privacy statement or otherwise on the website. If you choose not to provide us with that information, it might limit the features and services that you can use on rdu.com and its associated pages.

Generally, the information requested by rdu.com will be used to provide a feature or service to you, such as commenting, support, or providing information or future content better tailored to your interests. We collect some information that is used for analysis and statistical purposes to help us manage the Raleigh-Durham International Airport website or communicate to you information related to the Airport.

While all communications we receive are subject to disclosure to third parties as a public record, if you send us an electronic mail message with a question or comment that contains personally identifying information, or fill out a form that e-mails us this information, we will only use the personally identifiable information to respond to your request and analyze trends and will disclose it to an unrelated third party only if required to by applicable law. We may redirect your message to a vendor or business partner if that person is in a better position to answer your question, but not to an unrelated outside party unless required by applicable law. Keep in mind that email transmissions are not encrypted by default, so we strongly advise against sending sensitive information such as Social Security numbers, credit card numbers, or bank account information via email, contact forms or this website, unless explicitly required. If such information is required, it will be via a web page that clearly states the page and its transmission of information is secure and encrypted.

Information We Collect and How We Collect It
At any given time, we may collect several types of information from and about users of our website, including information:

1. By which you may be personally identified, such as your name, IP or physical address, email address, phone number, or any other identifier that can be used on its own or with other information to identify, contact or locate you (personally identifiable information, personal information);
2. That is about you but individually does not identify you; and
3. About your internet connection, the equipment you use to access our website and other usage details.

We may collect this information:

1. Directly from you when you provide it to us;
2. Automatically when you access or use the website; and/or
3. From third-parties, such as vendors or business partners.

Information You Provide to Us
The information we collect on or through our website may include:

1. Information that you provide by filling in forms on our website, including, but not limited to, information you provide at the time you create an account, sign up for newsletters, and/or at the time you contact us;
2. Records and copies of your correspondence with us; and
3. Your responses to surveys or questions from us.

Automatic Information Collection and Tracking
When you access and use the website, we may use technology to automatically collect information to improve our website and to deliver a better and more personalized service, which may include:

1. Location data;
2. Length of time you visit our website;
3. Page views, click-stream information, and referring URL and logs;
4. The resources and devices that you access and use on or through the website; and/or
5. Information about your device and internet connection, such as the device’s unique device identifier, IP address, operating system, browser type, and network information.

The website also may access metadata and other information associated with other files stored on your device. Any such information that we may collect through automatic technological means will be aggregated as statistical data and will not include personal information (or will have personal identifiers removed).

Technologies Used for Information Collection and Tracking
We may use various technologies to collect information from your computer or device and about your activities on our website.

1. Information collected automatically. When you visit our website, we may automatically collect information such as your IP address, device information, browser, internet connection speed, past web pages visited, and your link selections on our various website pages. This information may be used to:
   1. manage and protect our websites, apps, products, services, and users from fraudulent, abusive, or unlawful uses; and
   2. help us research, develop, and improve our websites, apps, products, and services.

This type of information may also be aggregated or otherwise rendered anonymous for business and marketing uses by us or by third parties.

2. Cookies, Web Beacons, and Other Technologies. When you access our website, we may place small text files (“cookies”) on your computer for recordkeeping purposes. Among other things, cookies enable us to gather information about your activity on our websites, products and services for the purposes of improving your online experience, remembering your preferences and settings, delivering advertising to match your preferences and interests, and for other similar customization purposes. In addition to cookies, we may utilize web beacons, clear gifs, or other technologies built into our websites, products and services to gather information on how users interact with and utilize various features. These technologies can help personalize your usage experience and help associate your interactions with our products and services to other information within your account. For example, these technologies can identify popular pages, viewing patterns, click-through, conversion rates, and other information that can be used to improve, monitor, and operate our websites, products, and services.

Your computer only shares information in the cookie with the specific data this website collects and temporarily stores certain information about your visit to help us better align our content and the website design with your needs. The information these cookies collect includes:

1. The domain you use to access our website;
2. Your computer’s IP address;
3. The date and time you accessed the website;
4. The operating system of your computer;
5. The browser you’re using to access our website;
6. The Universal Resource Locators (URLs) of the pages you visit on our website;
7. Your username, if you’ve logged into the website; and
8. The URL of site you came from, if you clicked a link there that brought you to our website.

We may share this information internally with Authority employees or third-party vendors or business partners. This information is only used to improve the website and enhance our visitors’ experience. Raw data logs are only retained temporarily for website management purposes.

We do not use “persistent” cookies to collect permanent information. We may use “persistent” cookies (which would reside on the user’s computer) to increase ease of use. Such a cookie might contain the user’s ID number, thereby relieving the user of having to always enter their personal data. Under this circumstance we will only use a “persistent” cookie with your permission. We do use “non-persistent” cookies in applications (such as the Customer Feedback portal) that keep track of a user’s online session and make it possible for you to complete a form or use a function, but this cookie disappears when you finish filling out an application, or searching a database.

This website uses Google Analytics features based on Display Advertising (e.g., Remarketing, Google Display Network Impression Reporting, the DoubleClick Campaign Manager Integration, or Google Analytics Demographics and Interest Reporting). By using this website, it is understood that the user gives consent to the merging of personally identifiable information and personal information with non-personally identifiable information previously collected from Display Advertising features that is based on the DoubleClick cookie feature from Google. Most internet browsers provide controls that allow users to manage or disable the placement and usage of cookies on their computer. Please note that disabling cookies may deactivate or otherwise restrict certain features on our website. If you wish, you may opt-out of Google Analytics for Display Advertising and customize Google Display Network ads using the Ads Settings. The Authority and third-party vendors, including Google, use first-party cookies (such as the Google Analytics cookie) and third-party cookies (such as the DoubleClick cookie) to inform, optimize, and serve ads based on someone’s past visits to the Authority’s website. The Authority will use data from Google’s Interest-based advertising or 3rd-party audience data (such as age, gender and interests) with Google Analytics to guide the Authority on how to best serve our customers.

For greater detail on how these technologies function and how your activity records are used, please review the Google Analytics privacy disclosures at www.google.com/policies/privacy/partners/.

3. Social Media. Our website may include the option of integration through third party social networking sites and related social media plug-ins or applications. When you integrate or link our websites, apps, products, and services with your social media applications (e.g., Facebook, LinkedIn, Twitter, Google+, etc.), you authorize us to have access to certain information from your social media profile (e.g., name, e-mail address, photos, gender, birthday, location, list of friends, comments, etc.) to deliver content or as part of the operation of the integrated application. We may also obtain non-personally identifiable information (e.g., content viewed, advertising viewed, etc.) from your interaction with our integrated content. For more information about how social networking sites handle your personal information and available privacy settings, please refer to their privacy policies and terms of use.

How We Use Your Information
We may use information that we collect about you or that you provide to us, including any personal information to:

1. Present our website and its contents to you;
2. Estimate audience size and usage patterns;
3. Maintain information about your preferences and customize the website;
4. Recognize you when you return to our website;
5. Fulfill any other purpose for which you provide the information and/or for which you provide consent (such as sending you emails or newsletters);
6. Carry out our obligations and enforce our rights arising from any contracts entered into between you and us, including for billing and collection; and/or
7. Allow you to participate in interactive features of our website.

How Long We Retain Your Personal Information
We will retain your personal information for as long as is needed to fulfill the purposes set forth herein, unless a longer retention period is required or permitted by law (such as tax, accounting, record retention, or other legal requirements).

Disclosure of Your Information
As a governmental entity, we are governed by public records laws and all information we receive may be subject to disclosure as a public record. Any information that we receive through use of our website is subject to the same provisions as information provided on paper. Otherwise, we do not share personally identifiable information with any unrelated third party. Statistical analyses or demographics of users is not reported or used in any manner by the Authority that would reveal personally identifiable information, and will not be released to any outside parties unless we are legally required to do so.

We may disclose aggregated information about our users, and information that does not identify any individual or device, without restriction. In addition, we may disclose personal information that we collect or you provide:

1. To our affiliates, contractors, vendors, service providers, and other third-parties we use to support our business operations;
2. To fulfill the purpose for which you provide it (such as transmitting emails or newsletters to the email address you provided to us for that express reason);
3. For any other purpose disclosed by us when you provide the information or with your consent;
4. To comply with any court order, law, or legal process, including to respond to any government or regulatory request;
5. To enforce or apply our Terms of Use or this Privacy Policy; or
6. If we believe disclosure is necessary or appropriate to protect the rights, property, or safety of our company, our customers, or others.

Except as provided herein, personally identifiable information collected through the website will not be sold or otherwise disclosed to third-parties for direct marketing purposes.

Rdu.com may use commenting and social media plug-ins and third-party websites to interact with visitors and to build our community on social media. We may also use these third-party services to measure the number of visitors to our website, to interact with visitors on the website, and to make our website more useful to visitors.

In such cases, the third-party application may request an email address, username, password, internet protocol (IP) address, and geographic location for account registration or sign-in purposes. We do not use those third-party websites or services to collect personal information from individuals. Any personal information collected by the third-party website will not be stored or transmitted by the Authority. The Authority has no control over or access to specific login information or any other sensitive personal information provide to third-party websites.

Legal Basis for Processing (GDPR)
If the General Data Protection Regulation (GDPR) is applicable, our legal basis for processing your personal information will depend on the personal information concerned and the specific context in which we collect it. We collect your personal data to provide you with products and services that you have requested, our legal basis for the processing of that personal data is that it is necessary for the performance of a contract to which you are a party or in order to take steps at your request prior to entering into a contract. If you decline to provide us with your personal data, you may be unable to obtain the products and services from us that you requested. We also collect and process personal information about you as necessary to operate our business, meet our contractual and legal obligations, and/or fulfill our other legitimate interests (when not overridden by your data protection interests or fundamental rights and freedoms). If you have any questions about or need further information concerning the legal basis on which we collect and use your personal information, please contact us using the contact details provided below.

Transfer of Information (GDPR)
Your personal information may be transferred to, stored, and processed within the United States. Additionally, we may transfer your personal information to other countries in certain circumstances, for example because a server or third party service provider is located there.

BY PROVIDING YOUR PERSONAL INFORMATION TO US, YOU ARE CONSENTING TO ANY TRANSFER, STORAGE, AND PROCESSING IN ACCORDANCE WITH THIS PRIVACY STATEMENT.

There are potential risks to you associated with transferring your information to the United States due to the absence of an adequacy decision and appropriate safeguards. These risks include the risk that you will not be able to exercise your data protection rights under applicable law to protect yourself from unlawful use or disclosure of your information. The data protection and privacy laws of other countries, including the United States, may not afford you the same level of protection as those in your own country.

IF YOU ARE FROM THE EUROPEAN UNION OR OTHER REGIONS WITH LAWS GOVERNING DATA COLLECTION AND USE AND YOU PROVIDE US WITH YOUR PERSONAL INFORMATION, YOU ARE AGREEING TO THE TRANSFER OF YOUR PERSONAL INFORMATION TO THE UNITED STATES.

Information Security
The Authority takes the security of your personally identifiable information very seriously. We take many precautions to ensure that the information we collect is secure and inaccessible by anyone outside of our organization unless access is required by law. These precautions include advanced access controls to limit access to that information to only internal personnel, vendors, or business partners who require access to that information. We also use numerous security technologies to protect all data stored on our servers and related systems. Our security measures are regularly upgraded and tested to ensure they are effective.

We take the following specific steps to protect your information:

1. Use internal access controls so only limited personnel, vendors, or business partners have access to your information.
2. Anyone with access to user information is trained on all relevant security and compliance policies.
3. Servers that store visitor information are regularly backed up to protect against loss.
4. All information is secured through modern security technologies such as secure socket layer (SSL), encryption, firewalls, and secure passwords.

All access safeguards described above are in place to prevent unauthorized access by outsiders to information stored on or transmitted by our systems.

We implement and maintain physical, administrative, and technical safeguards designed to secure user information and prevent unauthorized access to or disclosure of that information. Under our security policies and practices, access to sensitive personal information is authorized only for those who have a business need for such access, and sensitive records are retained only as long as reasonably necessary for business or legal purposes. We strive to protect the user information that we collect and store, however, no security program is 100% secure and we cannot guarantee that our safeguards will prevent every unauthorized attempt to access, use or disclose personal information.

Right to Withdraw Consent
If you have provided your consent to the collection, processing, and transfer of your personal data, you have the right to fully or partially withdraw your consent. To withdraw your consent, please follow the opt-out links on any marketing message sent to you, or contact us using the email address below.

Links
This website contains links to other sites. Please be aware that we are not responsible for the content or privacy practices of such other sites. We encourage our users to be aware when they leave our website and to read the privacy statements of any other site that collects personally identifiable information.

Contact Information
You can do the following at any time by contacting us via the email address or phone number given on our website:

1. Ask for a list of personal information we have about you, if any;
2. Request a change, correction, or deletion of your personal information;
3. Request that we avoid collecting anything in the future (opt-out); and
4. Express any concern you have about our use of your data.

Whenever we collect any sensitive information (such as Social Security numbers or credit card information), the information is encrypted and securely transmitted. You are able to confirm this by looking for the ‘lock’ icon in the browser address bar and a ‘https’ URL link.

If you have any questions about what data we have about you, would like to withdraw your consent to our processing of your data, or would like to request changes, corrections, or deletions of any information we have about you, please contact us so that we can address your concern. If you have any questions about this Privacy Statement, or feel that we are not abiding by it, you should contact us immediately via telephone at 919.840.7700 or at communications@rdu.com.

Privacy Policy Changes
As we develop new products and services, update or expand technologies, and develop new information uses, we reserve the right to update this Privacy Statement as necessary to reflect such changes. We recommend that you review this statement periodically for any changes that may have been made. Your continued use of our products, services, apps, and websites subsequent to any changes made after your initial consent means that you agree to be bound by those changes. The most current version of this Privacy Statement supersedes all previous versions.

Legal Information

Restrictions on use: This website is owned and operated by the Raleigh-Durham Airport Authority and contains material that is derived in whole or in part from material supplied by third parties and is protected by international copyright and trademark laws. You may not modify, copy, reproduce, republish, upload, post, transmit or distribute in any way any material from this website including code and software.

Disclaimer: The materials in this website and any third-party sites are provided “as is” and without warranties of any kind either express or implied. The Raleigh-Durham Airport Authority does not warrant that the functions contained in the materials will be uninterrupted or error-free, that defects will be corrected, or that this website, or the server that makes it available, are free of viruses or other harmful components. The Raleigh-Durham Airport Authority does not warrant or make any representations regarding the use or the results of the use of the materials in this website or in third-party sites in terms of their correctness, accuracy, timeliness, reliability or otherwise.

Limitation of liability: Under no circumstances shall the Raleigh-Durham Airport Authority be liable for any direct, indirect, incidental, special or consequential damages that results from the use of, or the inability to use, Raleigh-Durham Airport Authority materials. You specifically acknowledge and agree that the Raleigh-Durham Airport Authority is not liable for any defamatory, offensive or illegal conduct of any user. If you are dissatisfied with any Raleigh-Durham Airport Authority material, or with any of the Raleigh-Durham Airport Authority’s terms and conditions, your sole and exclusive remedy is to discontinue using the Raleigh-Durham International Airport website.

Links to other websites: Links and pointers to other third-party web sites are provided for information only and do not constitute an endorsement, expressed or implied, by the Raleigh-Durham Airport Authority, of the referenced organizations, their suitability, content, products, or services.

Unlawful Discrimination: It is unlawful for airport operators and their lessees, tenants, concessionaires and contractors to discriminate against any person because of race, color, national origin, sex, creed, or handicap in public services and employment opportunities. Allegations of discrimination should be promptly reported to the Raleigh-Durham Airport Authority at:

RDU Title VI/ADA Coordinator

PO Box 80001
RDU Airport, NC 27623

919-840-7700

legal@rdu.com

or:

Federal Aviation Administration
Office of Civil Rights, ACR-1
80 Independence Avenue, S.W.
Washington, D.C. 20591

Federal regulations on unlawful discrimination are available for review at Raleigh-Durham Airport Authority Offices at 1000 Trade Drive, RDU Airport or call (919) 840-7700 for more information.

ADA and Title VI Policies: In compliance with applicable laws, the Airport Authority follows a complaint procedure.

Revised November 2019