Privacy Policy

Last updated: 3 July 2026

This Privacy Policy explains how the GLCCA – Guilde Luxembourgeoise des Contrôleurs de la Circulation Aérienne processes personal data when you visit and use atc.lu.

1. Who We Are

The website atc.lu is operated by:

GLCCA – Guilde Luxembourgeoise des Contrôleurs de la Circulation Aérienne
Luxembourg

For any privacy-related question, please contact us through our
Contact Us page.

2. What Personal Data We Process

When you visit this website, some technical data may be processed automatically. This can include your IP address, browser type, device information, pages visited, date and time of access, and similar server log information.

If you contact us through the Contact Us page or by any other communication channel, we process the information you provide, such as your name, contact details, message content and any other information included in your request.

3. Why We Process Personal Data

We process personal data only where necessary and for legitimate purposes, including:

  • to operate and maintain the website;
  • to keep the website secure and prevent misuse;
  • to respond to messages and contact requests;
  • to manage technical issues or website errors;
  • to comply with legal obligations where required.

The legal basis for this processing is mainly our legitimate interest in operating a secure and functional website and responding to communications. Where consent is legally required, for example for non-essential cookies or analytics, processing is based on your consent.

4. Server Logs

When you access this website, server logs may be created automatically by the hosting provider or website system. These logs may include technical information such as IP address, browser type, operating system, requested pages, date and time of access, and referring website.

Server logs are used for technical operation, security, error analysis and protection against misuse. They are not used to personally identify visitors unless this is necessary for security or legal reasons.

5. Contact Requests

If you contact us through the Contact Us page, we process the information you provide in order to respond to your request.

Please do not send sensitive personal data unless it is necessary for your request.

6. Cookies

This website may use cookies or similar technologies. Cookies are small text files stored on your device when you visit a website.

The website may use essential cookies that are necessary for the technical operation of the site. If analytics, embedded media or third-party services are used, additional cookies may be set by those services.

You can control or delete cookies through your browser settings. If a cookie banner is used on this website, you can manage your preferences through that banner.

7. Analytics

This website may use analytics tools to understand how visitors use the site and to improve its content and structure.

If analytics are used, the data may include pages visited, approximate location, device information, browser information and time spent on the website. Where possible, analytics should be configured in a privacy-friendly way.

If no analytics tool is active on this website, this section does not apply.

8. Embedded Content and External Links

This website may contain links to external websites or embedded content, such as videos, images, documents or social media content.

Embedded content from other websites behaves in the same way as if you visited the external website directly. These third-party websites may collect data about you, use cookies, embed additional tracking technologies and monitor your interaction with their content.

This website may also link to social media platforms such as Facebook, X/Twitter, Instagram, YouTube or LinkedIn. When you click such a link, the privacy policy of the respective platform applies.

9. Who Receives the Data

Personal data may be processed by service providers where this is necessary to operate the website and respond to requests. This may include:

  • website hosting providers;
  • technical service providers or website administrators;
  • email or communication service providers;
  • security or anti-spam services, if used;
  • analytics providers, if used.

We do not sell personal data.

10. Data Retention

We keep personal data only for as long as necessary for the purposes described in this Privacy Policy, unless a longer retention period is required by law.

Server logs are normally kept only for a limited period for technical and security reasons. Contact requests are kept for as long as necessary to respond to the request and manage any follow-up communication.

11. Your Rights

Under the GDPR, you have rights regarding your personal data. These may include:

  • the right to access your personal data;
  • the right to correct inaccurate or incomplete data;
  • the right to request deletion of your data, where legally possible;
  • the right to restrict processing;
  • the right to object to processing based on legitimate interests;
  • the right to withdraw consent where processing is based on consent.

To exercise your rights, please contact us through our
Contact Us page.

12. Complaint to the CNPD

If you believe that your personal data is not processed correctly, you have the right to lodge a complaint with the competent data protection authority.

In Luxembourg, the competent authority is:

Commission nationale pour la protection des données (CNPD)
Website: https://cnpd.public.lu/

13. Security

We take appropriate technical and organisational measures to protect personal data against unauthorised access, loss, misuse, alteration or disclosure.

However, no website or online communication can be guaranteed to be completely secure. Users should therefore also take care when sending information online.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time, for example if the website changes or if legal requirements change.

The latest version will always be available on this page.