1. Introduction

Aviation Services Management (ASM) is an international Business-to-Business (B2B) Flight Support Company. We take your privacy seriously and are committed to handling personal data responsibly, transparently, and in compliance with applicable data protection laws — including the EU General Data Protection Regulation (GDPR), the UK GDPR, and other relevant legislation.

This Privacy Policy explains what personal data we collect, why we collect it, how we use and protect it, and what rights you have over your data.

2. About ASM

ASM provides comprehensive aviation support, products, and services for commercial and general aviation fleets, including:

Flight planning and operations support, available 24/7
Aircraft fuelling and ground handling solutions
Concierge services including hotel and ground transport
Overflight and landing permit management

This policy applies to all individuals whose personal data we process, including customers, suppliers, website visitors, and business contacts.

3. Data We Collect

We may collect the following categories of personal data:

3.1 Data You Provide Directly

Contact details: full name, email address, postal address, phone number
Professional information: job title, company name, academic affiliation
Account credentials: usernames and passwords
Payment information: credit/debit card numbers and billing address
Communications: feedback, comments, and messages you send us
Marketing preferences and consent records

3.2 Data Collected Automatically

Website usage data: pages visited, time spent, links clicked
Device and browser information: IP address, browser type, operating system
Location data (where enabled via mobile apps)
Cookie and tracking data (see Section 8)

3.3 Data from Third Parties

Publicly available professional information (e.g. company websites, LinkedIn)
Data shared by business partners or referral sources

Under the GDPR and UK GDPR, we process your personal data only where we have a valid legal basis. The bases we rely on are:

Contract performance: to fulfil a contract with you or take steps at your request before entering into one
Legitimate interests: to operate and improve our business, where your rights and interests are not overridden
Legal obligation: where we are required to comply with applicable laws
Consent: where you have given clear, specific consent (e.g. marketing emails, sensitive data)
Vital interests: in emergency situations where it is necessary to protect someone’s life

Where we rely on legitimate interests, you have the right to object. Please contact us using the details in Section 11.

5. How We Use Your Data

5.1 Service Delivery

We use your data to process enquiries, bookings, and payments; manage your account; and communicate with you about the services you have requested.

5.2 Marketing

With your consent or where permitted by law, we may send you newsletters, offers, and updates about ASM products and services. You can opt out at any time by:

Clicking the unsubscribe link in any marketing email
Emailing us at pr@asm.aero

Opting out of marketing will not affect delivery of service-related communications.

5.3 Analytics and Improvement

We use aggregated and anonymised data to understand how our website and services are used, improve our offerings, and develop new products. This may involve automated profiling, but never in a way that produces legally significant effects on you without human review.

5.4 Legal Compliance and Sanctions Screening

To comply with international trade sanctions laws, we screen customers, vendors, and suppliers against sanctioned party lists maintained by OFAC, BIS, the UN, EU, and UK authorities. If a screening check prevents us from continuing a relationship, we will inform the relevant party.

We do not sell your personal data. We may share it with the following parties, only to the extent necessary:

6.1 ASM Partner Network

We may share data within our partner network to provide services, conduct internal analysis, or offer relevant products.

6.2 Service Providers

We work with trusted third-party providers, including:

Fuel and ground handling providers
Airport authorities and permit providers
Hotels and ground transport operators
Private jet and FBO service providers
Flight crew management associations
Catering providers

6.3 Business Transfers

In the event of a merger, acquisition, or sale of part or all of our business, your data may be transferred as part of that transaction. We will notify you if this occurs.

6.4 Legal Requirements

We may disclose your data to law enforcement, courts, or regulatory authorities where legally required to do so.

7. International Data Transfers

As a global business, your data may be accessed from or transferred to countries outside the European Economic Area (EEA) or UK, where data protection standards may differ.

Where such transfers occur, we apply appropriate safeguards, including:

Standard Contractual Clauses (SCCs) approved by the European Commission
Adequacy decisions issued by the European Commission or UK ICO
Binding Corporate Rules where applicable

You may request a copy of the safeguards in place by contacting us at pr@asm.aero.

8. Cookies and Tracking Technologies

We use cookies and similar tracking technologies on our website to enhance your experience and gather analytics data.

8.1 Types of Cookies We Use

Essential cookies: required for the website to function correctly (no consent needed)
Analytics cookies: help us understand how visitors use our site (e.g. Google Analytics)
Preference cookies: remember your settings and choices
Marketing cookies: used to deliver relevant advertisements (only with your consent)

8.2 Managing Cookies

When you first visit our website, you will be presented with a cookie consent banner. You can accept or decline non-essential cookies at any time. You can also manage cookies through your browser settings, though disabling certain cookies may affect site functionality.

For full details, please see our Cookie Policy available in the website footer.

8.3 Do Not Track

Our website does not currently respond to browser Do Not Track (DNT) signals, in line with industry practice and in compliance with the California Online Privacy Protection Act (CalOPPA).

9. How We Protect Your Data

We implement appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, or disclosure, including:

Encryption of data in transit using HTTPS/TLS
Secure, access-controlled server infrastructure
Role-based access controls for staff
Regular staff training on data protection
Detailed internal data security and privacy policies

While we take all reasonable steps to protect your data, no transmission over the internet can be guaranteed as 100% secure. Please contact us immediately at pr@asm.aero if you suspect any unauthorised access to your data.

10. How Long We Keep Your Data

We retain personal data only for as long as necessary for the purposes described in this policy, or as required by law. Retention periods are determined based on:

The nature of our relationship with you (e.g. active customer vs. prospect)
Legal and regulatory obligations
Legitimate business needs (e.g. retaining opt-out records to honour your preferences)

Once data is no longer required, it is securely deleted or anonymised.

11. Your Data Protection Rights

Depending on your location, you may have the following rights regarding your personal data:

Right of access: request a copy of the personal data we hold about you
Right to rectification: request correction of inaccurate or incomplete data
Right to erasure: request deletion of your data (subject to legal obligations)
Right to restriction: request that we limit how we use your data
Right to data portability: receive your data in a structured, machine-readable format
Right to object: object to processing based on legitimate interests or for direct marketing
Right to withdraw consent: where processing is based on consent, withdraw it at any time
Rights related to automated decision-making: request human review of automated decisions

To exercise any of these rights, contact us at pr@asm.aero. We will respond within 30 days (or as required by applicable law). In some cases, we may be unable to fulfil a request — if so, we will explain why.

If you are located in the EU or UK and are unsatisfied with our response, you have the right to lodge a complaint with your local supervisory authority (e.g. the UK ICO or your EU Data Protection Authority).

12. Children’s Data

Our services are intended for business professionals and are not directed at children under the age of 13. We do not knowingly collect personal data from children. If we become aware that we have inadvertently collected data from a child under 13, we will delete it promptly. Please contact us at pr@asm.aero if you believe this has occurred.

13. Third-Party Websites

Our website may contain links to external websites operated by third parties. This Privacy Policy does not apply to those sites. We recommend reviewing the privacy policies of any third-party websites you visit. We are not responsible for their content or privacy practices.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in law, best practice, or how we process personal data. When we make significant changes, we will notify you via email or a prominent notice on our website. The date of the latest update is shown at the top of this document.

We encourage you to review this policy periodically.

15. Contact Us

For any questions, concerns, or requests relating to this Privacy Policy or how we handle your personal data, please contact us:

Email: pr@asm.aero
Website: asm.aero

We aim to respond to all enquiries within 5 business days.

Table of Contents