Privacy Policy
How the Confair group collects, uses, and protects your personal data across aviation, maritime, and offshore operations.
This is the Privacy Policy of the Confair group of companies (together, "Confair"):
Confair Consultancy BV
Tennesseedreef 7e
3565 CK Utrecht
The Netherlands
CoC no.: 30115681
Confair Aviation Consultancy Co. L.L.C
Office 15-85, Ras Al Khor Industrial Area Second
Dubai, United Arab Emirates
Trade Licence no.: 1115722 (Dubai Department of Economy & Tourism)
Commercial Register no.: 1836220
Confair GmbH & Co. KG
Freiheitsstraße 15
59759 Arnsberg, Germany
Handelsregister: Amtsgericht Arnsberg, HRA 7931
Website: confair.com
Definitions
- Privacy Policy: this privacy policy
- Confair / Confair group: collectively Confair Consultancy BV, Confair Aviation Consultancy Co. L.L.C and Confair GmbH & Co. KG
- User: every user of the Website
- Personal Data: the data referred to under "General" below
- Professional / Candidate: a (prospective) candidate in any of the function groups Confair serves, including aviation flight deck (pilots), aviation cabin crew, aircraft maintenance engineers and mechanics, maritime personnel, and offshore personnel
- Qualifications and Certifications: the licences, ratings, certificates and medical or safety documentation relevant to the User's profession and function group — for example, flight crew licences and aviation medical certificates and logbooks; cabin crew attestations; aircraft maintenance engineer licences (e.g. EASA Part-66) and type ratings; maritime certificates of competency and STCW certification; and offshore safety and survival certifications (e.g. BOSIET, GWO)
- Confair Database: the database in which Confair registers candidates for (prospective) job vacancies
- Website: the website on confair.com
General
This Privacy Policy describes how Confair processes Personal Data of its Users across all of the sectors and function groups it serves — aviation (including flight deck, cabin crew, and aircraft maintenance), maritime, and offshore energy.
Depending on the entity with which the User applies, contracts, or is engaged, the relevant data controller is Confair Consultancy BV, Confair Aviation Consultancy Co. L.L.C, or Confair GmbH & Co. KG. The Confair group entities may share Personal Data among themselves, as joint or separate controllers, for the purposes described in this Privacy Policy.
Personal Data processed by Confair (provided that the User has furnished them) include name, address, city, telephone number, email address, date of birth and gender, proof of identity such as a passport or identity card, and copies of the User's Qualifications and Certifications relevant to their profession and function group. Users also providing unsolicited data that can be traced to an individual agree that Confair will (or may) also process such Personal Data. Confair will store any and all data provided to it in the Confair Database.
Collection and Use of Personal Data
Confair collects a User's Personal Data where that User has provided such Personal Data to Confair through the Website, for purposes of being included in the Confair Database or applying for a job vacancy posted on the Website, and/or because the User wishes to contact Confair.
In addition, Confair actively recruits (prospective) candidates through its network, and by consulting its clients and searching the Internet (social media). Any Personal Data available of (prospective) candidates found through these channels will also be stored in the Confair Database. After a (prospective) candidate has been contacted, and on condition that such candidate agrees, the data in the Confair Database will be supplemented and the clauses of this Privacy Policy will apply.
Users that have provided their Personal Data to Confair for purposes of being included in the Confair Database or applying for a job vacancy grant Confair consent for such inclusion in the Confair Database. Confair will use the Confair Database (and, hence, the Personal Data included therein) to recruit and second professionals across the aviation, maritime, and offshore sectors it serves — including flight deck and cabin crew, aircraft maintenance engineers and mechanics, maritime personnel, and offshore personnel.
Confair may approach Users included in the Confair Database in relation to a job vacancy to be filled.
If Confair considers a User suitable for a job vacancy at one of its clients, Confair will disclose that User's Personal Data to its client to which Confair may possibly second the User. His/her Personal Data will not be disclosed until Confair has so notified the User and it has become clear that the User agrees to his/her introduction to the client.
Transfer to Third Parties
The provision of Personal Data by a User through the Website means that such Personal Data will be stored in the cloud. To that end, Confair will use specialists with whom/which it has concluded a data processing agreement in conformity with the statutory requirements.
Because the Confair group operates internationally (including in the Netherlands, the United Arab Emirates, and Germany), Personal Data may be transferred to and processed in countries outside the User's home country. Where Personal Data is transferred outside the European Economic Area, Confair will ensure an appropriate level of protection in accordance with applicable data protection law.
The purpose of disclosure of Personal Data to clients of Confair is to perform the agreements concluded with clients pursuant to which Confair undertook to supply professionals (on the basis of secondment).
Alteration/Erasure of Personal Data
Users will have the right of access to and of rectification or erasure of their Personal Data, in accordance with the provisions laid down in the General Data Protection Regulation ("GDPR") and other applicable data protection law.
If a User wishes to exercise one of these rights or has questions about this Privacy Policy, he/she may contact Confair, using the contact details provided above.
Confair would emphasize that the erasure (in whole or in part) of a User's Personal Data results in it no longer being possible to approach that User for recruitment purposes or introduce him/her to clients of Confair.
Retention Period
Confair will retain Personal Data for a period of 12 months following their inclusion in the Confair Database if the User has given his/her consent to that end. The purpose of such inclusion is to be able to approach Users in the event that a new suitable job vacancy comes up. A User may at any time withdraw the consent once given.
If a User has not given his/her consent for inclusion in the Confair Database for a 12-month period, his/her Personal Data will be deleted within four weeks of the application procedure having ended.
Security
Confair has taken appropriate technical and organizational measures to protect Personal Data against loss, misuse, and unauthorized access, alteration, or disclosure. These measures include:
- Hosting on established cloud infrastructure providers (including Supabase and Vercel), which maintain industry-standard physical and network security for their data centers.
- Encryption of Personal Data in transit (via HTTPS/TLS) and at rest.
- Access controls that limit access to Personal Data to authorized personnel on a need-to-know basis, including role-based access and database row-level security.
- Automated, regularly scheduled backups maintained by our cloud infrastructure providers to enable recovery in the event of an incident.
- Data processing agreements with the service providers (sub-processors) that process Personal Data on Confair's behalf, in accordance with applicable data protection law.
No method of transmission over the internet or electronic storage is completely secure. While Confair strives to protect Personal Data, it cannot guarantee absolute security.
Amendments to Privacy Policy
Confair reserves the right to amend this Privacy Policy. Each amendment will be published on this page. Therefore, Confair recommends that Users regularly check back on this page for implemented amendments. The current Privacy Policy was last updated on 16 June 2026.
Data Protection Authority
Users have the right, if they see reason to do so, to lodge a complaint with a competent data protection supervisory authority. In the Netherlands this is the Dutch Data Protection Authority (Autoriteit Persoonsgegevens), Postbus 93374, 2509 AJ The Hague, The Netherlands. Users in Germany may contact the competent state data protection authority, and Users in other jurisdictions (including the United Arab Emirates) may contact the data protection authority competent for them.
