In the selection lists, navigate with the up and down arrows between the options
By clicking on the selection list, you can search by entering free text or navigate with the up and down arrows between the options
Skip to main content
Israel
Choose Language
Current Language

Privacy Policy

  • General

    1. The Israel Airports Authority (“the Authority”) respects the privacy of users who access the Authority’s website (“the Website”) and/or mobile application (“the App”) and/or use the information and services offered therein. The website and the application shall be referred to collectively as the “Digital Assets”. The purpose of this Privacy Policy, which forms an integral part of the Terms of Use, is to review, among other things, how the Authority protects and uses information provided by users on the Digital Assets and/or collected by it or on its behalf when using the Digital Assets.

     

    1. Use of the Digital Assets constitutes consent to the provisions of this Privacy Policy as well as the Terms of Use. If you do not agree to the terms of this Privacy Policy or the Terms of Use, please refrain from using the Digital Assets or contact us so that we can assist you through alternative means.

     

    1. The Authority may amend the provisions of this Privacy Policy from time to time to reflect technological, business, legal, and/or regulatory changes. In such cases, the changes will be updated in this document and published on the Digital Assets. Continued use of the Digital Assets after such changes will indicate your acceptance thereof. Therefore, the Authority recommends reviewing this Privacy Policy periodically.

     

    1. All definitions and terms in this Privacy Policy shall have the same meaning as those in the Terms of Use, unless the context requires otherwise.

     

    1. This Privacy Policy is written in the masculine form for convenience only and applies equally to all genders. We apologize for any inconvenience.

    Registration, Provision, and Storage of Information

    1. To use the Digital Assets to contact the Authority, the user may be required to provide certain personal details. These details may include, among others, the user's full name, email address, date of birth, address, postal code, ID number, mobile phone number, and more – depending on the service or action requested through the Digital Assets (the “information”).
    2. The information provided to the Authority may be verified against data already held by the Authority, similar information provided to the Authority, or publicly or legally obtained data held by third parties that is lawfully transferred to the Authority, including government or public databases.

     

    1. To enhance the user experience and provide personalized services in the App, there is an option to scan your boarding pass. When scanned, the Authority retains the information appearing on the boarding pass, including:
      1. Passenger name
      2. Flight number
      3. Departure and arrival destinations
      4. Flight date and time
      5. Gate and boarding number (if indicated)
      6. Seat number (if indicated)

     

    This information is used to provide personalized content, send relevant notifications (such as gate or schedule changes), and improve the services offered at the airport.

     

    1. The Authority maintains legally registered databases where information submitted and/or collected about users is stored. These databases are intended, among other things, for managing and operating the Digital Assets and the services offered through it, as well as for operational, marketing, or statistical needs, processing the information in other ways, including providing customer service and conducting surveys and research, and transferring information to related third parties with user consent and subject to the provisions of this Privacy Policy.

     

    1. It is clarified that users are under no legal obligation to provide such information, and the provision of information is voluntary and based on the user’s consent to receive the Authority’s services on the Digital Assets. Refusal to provide information will prevent services as mentioned above. Users may contact the Authority to request access to review and/or correct their information as specified in the 'Contact and Access to Information' section detailed below.

     

    1. The provisions of this Privacy Policy also apply equally to personal identifying information provided by the user during use of the Digital Assets, as well as to information collected about the user while browsing the Digital Assets or using the services.

     

    1. The user declares that all information that is provided and/or updated by him is true, reliable, and accurate, and that it is provided solely for contact with the Authority or using the Authority services offered on the Digital Assets, in their name and on their behalf, and not on behalf of any third party, except as permitted by law. The information provided and additional information accumulated about the user and their activities on the Digital Assets will be stored in the Authority’s databases and used in accordance with the database purposes and the user's consent.

     

    1. Please note that some products and/or services and/or advertisements displayed on the Digital Assets or related site services are managed by the Authority’s commercial partners as service providers (“the Authority’s Partners”). Should you choose to access or use them, you do so voluntarily and per the specific terms of those partners, including their Privacy Policies. Accordingly, it is recommended to review the Privacy Policies of those partners as well.

    Collection and Use of Information

    1. The Authority bears no responsibility for the use of user information by third parties, including commercial entities, websites, or online merchants that appear in or use the services and are not under the Authority’s control. In any case of doubt, the user should review the Privacy Policy and Terms of Use of that merchant, website, or commercial entity.

     

    1. The Authority automatically logs on its servers all information received from the user’s browser, mobile phone, or any other device (“Device”), including the user's IP address, location, and all pages visited. By agreeing to this Privacy Policy, the user consents to such logging by the Authority.
    2. The Authority uses the information collected about you, whether directly or via authorized third parties who have provided your information lawfully and with your consent, including location data, for the following purposes:
    3. Contacting the user, subject to the information provided.
    4. Monitoring and analyzing the Digital Assets for routine operation and technical management, including detecting and investigating suspected misuse.
    5. Storing the information in the Authority’s secure databases or with certified third-party providers for that purpose.
    6. Statistical analysis of the information for the Authority’s needs, including service improvement and development, including the use of Google Analytics for such statistical analysis. Such analysis via Google Analytics may be based on information voluntarily provided by you and/or information collected through your use of the website, the application, or other functions and services offered therein, and/or other information and data collected by the Authority under this Privacy Policy (including information received from your browser and/or mobile phone). Any use of information collected through Google Analytics will, to the extent possible, be based on non-identifiable (aggregated) information. If you do not wish your information and data to be used through Google Analytics, you are requested to use the following link: google.com/webstore/detail/google-analytics-opt-out/fllaojicojecljbmefodhfapmkghcbnh?hl=en.

    For further information regarding the use of Google Analytics, please refer directly to the following addresses: google.com/policies/technologies/types or google.com/policies/privacy.

    1. Providing services and related services, including management, control, and security of the Authority’s services and systems.
    2. Risk management and legal or administrative proceedings before any competent authority.
    3. Sending users notifications, questionnaires, and surveys regarding the services provided, for quality control and service improvement.
    4. Complying with legal requirements applicable to the Authority, including directives and instructions from any competent authority.

     

    1. The Authority may collect and use information provided by the user and/or accumulated during Website use to improve, enrich, or modify the Digital Assets, services, and content offered, as well as to update the user and conduct satisfaction surveys concerning promotions and/or services offered by the Authority or its partners, and for marketing and statistical purposes, and to provide aggregate statistical data to third parties, subject to section 26 of this Privacy Policy. It is clarified that this aggregate statistical data will not identify the user personally.

    Cookies

    1. The Digital Assets uses “cookies” for its routine and proper operation, including to collect statistical data about its usage, authenticate details, customize the Digital Assets to user preferences, products and advertisements (including on other websites), facilitate Digital Assets use, and for security purposes.

     

    1. Cookies are small text files transferred to your Device by a web server. A cookie does not constitute software and cannot read information stored on it or perform any action. Its purpose is to enable the Authority’s servers to identify you quickly and efficiently when you return to certain services and when you visit other websites.

     

    1. By agreeing to these terms, the user permits the Authority to store cookies on their Device, use the information stored in the cookies, and identify them accordingly.

     

    1. Through cookies, the Authority may, at its discretion, publish content about itself on various third-party websites that the user visits. During the user’s use of those websites, information may be collected about them, and the Authority may use it to personalize advertising content on topics of interest without personally identifying the user.

     

    1. You can change your browser settings to block cookies partially or entirely according to your preferences.

     

    1. In such cases, certain services, in whole or a part, may not function properly or you may be unable to use them at all (e.g., automatic identification, preferences, or language settings may not be saved). Browser setting changes are your responsibility.

     

    1. The Authority is not responsible for the operation of third-party websites or their content. These are entirely independent sites. Therefore, it is recommended to review the Privacy Policies of each third-party site.

    Disclosure of Your Information to Third Parties

    1. The Authority takes reasonable and accepted measures to protect against the leakage of personal identifying information to third parties. The Authority will not sell, rent, or transfer user information, in whole or in part, to any third party without the user’s explicit consent.

     

    1. However, the Authority may disclose user information, in whole or in part, to certain third parties subject to the following conditions:
    2. Disclosure is essential for providing the Authority’s services and/or related services supplied by subcontractors or partners acting on behalf of the Authority, including for security and user identification, all in accordance with this Privacy Policy. Unless stated otherwise, subcontractors and partners may only use the information for the purpose for which it was provided.
    3. Disclosure as required by law or legal proceedings, including disputes, claims, lawsuits, demands, or legal processes between the user and the Authority.
    4. If the Authority determines that the actions of the user and/or anyone acting on their behalf in the services breach the Terms of Use or this Privacy Policy or constitute fraud of any kind.
    5. At the request or with the consent of the user.
    6. With user consent within business cooperation frameworks, including prior lawful notification.
    7. Due to a judicial order and/or competent authority requirement, subject to applicable law.
    8. If necessary to prevent serious harm to the Authority, other users, third parties, or any other harm, at the Authority’s sole discretion.

    Information Security

    1. The Authority regards user information security as paramount and allocates substantial resources to safeguard confidentiality of information. It takes all reasonable measures to secure information provided by users. The user is hereby informed that the Authority devotes resources and applies stringent measures to prevent intrusion into the Digital Assets and to avert any possible harm to the privacy of users.

     

    1. However, the Authority’s systems, like all software, hardware, and networks, are exposed to inherent risks, including malware, eavesdropping, hacking, impersonation of the Authority’s systems, and other online fraud. The Authority invests significant effort to defend against these risks, but absolute prevention is impossible, and damage or loss may occur, including information disclosure or disruption of services.

     

    1. Without limiting any provision in this Privacy Policy, the Authority shall not be liable for any direct or indirect damage or loss resulting from risks beyond its control, provided it has made reasonable efforts to prevent them, including:
    2. Data disruption, delayed or failed instruction execution due to communication failures or electronic or mechanical malfunctions at the user’s end, the Authority, or third parties involved in data transmission.
    3. Malfunction of any software or hardware at the user’s end, including third-party software or hardware.
    4. Disclosure of information by the user to third parties as a result of using the services, including third-party products or services offered during use or due to incorrect data provided by the user or transfer of the user’s Device to others. The user undertakes to bear any damage, loss, or expense caused to the user or to the Authority in connection therewith.

     

    1. It is clarified that these provisions do not detract from user responsibility for their Device security. Certain actions by the user on their Device, such as jailbreaking, may compromise security and could be illegal or prohibited.

     

    1. The Authority continually updates its technology to provide the best possible protection against unauthorized access to its databases. However, for events outside its control or due to force majeure, the Authority does not guarantee uninterrupted operation or absolute immunity from unauthorized access and is not liable for any resulting direct or indirect harm or loss, including privacy breaches.

    Contact and Access to Information

    1. Under the Privacy Protection Law, you have the right to access and review information about you, held in the Authority’s database, and to request correction if it is inaccurate, incomplete, or outdated. To exercise this right, a request must be submitted to the Authority in accordance with the detailed instructions provided for this purpose through the 'Privacy Protection' page on the Digital Assets.

     

     For any Matter, question, and/or request regarding this Privacy Policy, please send an email to: DPO-IAA@iaa.gov.il, or a letter to the following address: P.O. Box 137, Ben Gurion Airport 70100. Any correspondence to the Authority must include your full details, including residential address and email address for contact purposes. The Authority will make reasonable efforts to respond to any request or inquiry within a reasonable time.

  • "For any Matter, question, and/or request regarding this Privacy Policy, please send an email to the IAA's DPO Adv Pesach Brand  : DPO-IAA@iaa.gov.il, or a letter to the following address: P.O. Box 137, Ben Gurion Airport 70100. Any correspondence to the Authority must include your full details, including residential address and email address for contact purposes. The Authority will make reasonable efforts to respond to any request or inquiry within a reasonable time. "