Privacy Policy
1. Introduction
At Ghana Airways US, accessible via ghanaairways-us.com, your privacy is of paramount importance to us. We are committed to safeguarding your personal data and upholding your rights under applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). This Privacy Policy explains how we collect, use, share, and secure your personal information when you access our website or interact with us. We promote a culture of data minimization and transparency in all our data practices.
2. Scope of Policy and Data Controller Role
This Privacy Policy applies to all visitors, users, and others who access or use any of the services offered through ghanaairways-us.com (“Website”). For the purposes of the GDPR, Ghana Airways US is the data controller responsible for the processing of your personal data. If you are located in the European Economic Area (EEA), this means we determine the purposes and means of processing your personal information.
You may contact us regarding any concern about your data via [email protected].
3. Categories of Data Processed
We may collect and process the following categories of personal data:
a. Usage Data
Information about how you use and navigate the website, including your IP address, browser type and version, time zone setting, pages visited, referring pages, and session duration.
b. Account Data
Information submitted when creating an account, including name, billing and shipping address, phone number, and email address.
c. Profile Data
User-specific information such as login credentials, preferences, past purchases, feedback, and behavioral patterns on ghanaairways-us.com.
d. Communication Data
All correspondence with customer support or via contact forms, including the content of messages, inquiry categories, and communication history.
e. Technical Data
Data collected from your device and system such as operating system, device type, browser plug-ins, screen resolution, system time, and mobile identifiers.
f. Transaction Data
Order history, payment credentials (processed securely by third-party payment processors), order confirmation details, and delivery tracking data.
g. Preference Data
Information related to your communication choices, marketing consents, product interests, and frequency of notifications.
4. Legal Bases for Processing
We process your personal data only when permitted by law and under the following legal grounds:
– Consent: Where you grant explicit permission for specific uses (e.g., marketing communications).
– Contract Performance: To process transactions and fulfill our obligations to you (e.g., orders or account requests).
– Legal Obligation: To comply with applicable laws and regulatory requirements.
– Legitimate Interests: For business development, fraud prevention, analytics, service improvement, and website functionality—in a manner that does not override your fundamental rights.
5. Your Rights
Depending on your residency, you may exercise the following rights:
– Right of Access: Request confirmation and a copy of the personal data we process about you.
– Right to Rectification: Request correction of inaccurate or incomplete personal data.
– Right to Erasure: Request deletion of your data under certain conditions (“right to be forgotten”).
– Right to Restriction: Request limitation of data processing, particularly during disputes.
– Right to Data Portability: Receive your data in a structured, machine-readable format for transfer to another controller.
– Right to Object: Object to processing based on legitimate interest or for direct marketing purposes.
– Right to Withdraw Consent: You may withdraw your consent at any time for consent-based processing.
To exercise any of these rights, please contact us at [email protected] with sufficient information to verify your identity and action your request.
6. Security Measures
We implement comprehensive organizational and technical measures to protect your data, including:
– End-to-end encryption during transmission (SSL/TLS)
– Role-based access control and multi-factor authentication for backend systems
– Regular data backups and disaster recovery protocols
– Continuous monitoring for unauthorized access or vulnerabilities
– Employee training on privacy and data handling best practices
7. International Transfers
Ghana Airways US may transfer your personal data outside of your jurisdiction, including to countries that may not offer the same level of protection as your country. Where applicable, such transfers are governed by the European Commission’s Standard Contractual Clauses or equivalent legal safeguards that ensure adequate data protection standards.
8. Data Retention
We retain personal data only as long as reasonably necessary for the purposes for which it was collected or to comply with our legal obligations, including:
– Usage and Technical Data: 14 months (analytics and performance monitoring)
– Account and Profile Data: As long as the user account is active plus 5 years thereafter
– Transaction Data: 7 years (for financial and tax regulatory requirements)
– Communication and Preference Data: 2 years from the date of the last interaction
After the expiration of the retention period, your data will be securely deleted or anonymized.
9. Cookie Policy
Our website uses cookies and other tracking technologies to enhance your experience. Categories include:
– Essential Cookies: Necessary for site functionality, login sessions, and secure transactions.
– Functional Cookies: Enable user settings, such as location and language preferences.
– Performance and Analytics Cookies: Help us understand how users interact with our website, using tools like Google Analytics.
– Marketing and Advertising Cookies: Track engagement across devices and target visitor-specific promotions (only used with your prior consent).
10. Cookie Management and Compliance
By accessing ghanaairways-us.com, you have the ability to manage your cookie preferences through the cookie banner and our dedicated Cookie Settings interface. As required by GDPR and CCPA, we obtain your explicit consent prior to deploying non-essential cookies and provide you with granular control over cookie usage.
You may also disable cookies through your browser settings; however, doing so may impact the website’s functionality.
11. Children’s Privacy
We do not knowingly collect personal information from individuals under the age of 13. If you are a parent or guardian and become aware that your child has provided us with personal information without your consent, please contact us at [email protected]. Upon verification, we will take steps to delete such data.
12. Policy Updates and Notifications
We reserve the right to modify this Privacy Policy to reflect changes in legal, operational, or technological requirements. Where such changes materially affect your rights, you will be notified through appropriate channels such as website banners, email, or in-portal notifications where applicable. Continued use of the website following any updates constitutes your acceptance of the revised policy.
13. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please reach out to our privacy team at:
Email: [email protected]
We are committed to ensuring our processing practices remain transparent, fair, and aligned with the highest privacy standards.
Ghana Airways US affirms its adherence to all applicable data protection laws and frameworks and welcomes inquiries regarding user privacy.