Privacy statement for parking

Schiphol Nederland B.V. (‘Schiphol’) attaches great value to protecting your privacy. In this privacy statement we explain how we treat the personal data that we process when providing parking services.

This privacy statement applies only to visitors using the official carparks of Amsterdam Airport Schiphol. It could be that parts of this privacy statement differs for parking by personnel. When that is the case, we will point that out explicitly in the text.

Which personal data do we process?

If you book a parking space at Schiphol, then the following personal data will be processed:

  • Contact details: initials, last name, telephone number and email address.
  • License plate or credit card number (depends on whether you prefer using your license plate or credit card when you arrive at the carpark).
  • Amount of passengers in every vehicle (as part of capacity planning).
  • Optional: you can share your flight number and the purpose of your reservation (leisure or business).

Furthermore, there are a number of ways to use a parking space at Schiphol. You can reserve a parking space via the website, by telephone (only for Valet Parking), via an intermediary or with a voucher. You can also drive into a car park without making a reservation.

Do you use Schiphol’s parking services? In that case, a photograph of your licence plate may be taken when you enter with your vehicle. We save the licence plate and also register your entry and departure times.

If you opt to park without making a reservation, you can take a ticket or use a credit card. If you drive in with a credit card, Schiphol will save an anonymised version of your credit card number.

If you reserve via a Privium ID or subscription, the Privium ID or subscription number is also registered.

If you use Valet Parking, we will also register the flight information (arrival date, arrival time, departure date, departure time and flight number(s)) and the make, model and colour of your car. Furthermore, we will take photographs of your car if you use Valet Parking. If someone other than yourself comes to pick up the car, we will also register his or her contact details.

In case you create a My Schiphol account, your username and password will be processed. This My Schiphol account will give you an overview of all your reservations.

Moreover, video footage is recorded of Schiphol’s parking spaces and surroundings. If you would like further information about this footage. please click here.

For parking by personnel, Schiphol potentially processes the following personal data additional to the personal data mentioned in this paragraph:

  • Personnel number;
  • Employer place;
  • Schiphol badge data;
  • Parking pass number.

Why do we process your personal data?

We require your personal data to deliver parking services to you. We therefore process these data in connection with the performance of an agreement. As part of this agreement, we will inquire how you experienced the parking services at the end.

We process your license plate to determine how many electric vehicles are present at Schiphol’s parking areas. With this information we can determine how many charging stations are needed for our parking areas and how much energy is needed to charge the electric vehicles that come to Schiphol for parking. This is necessary for the performance of a task in the public interest, which is based on obligations from Schiphol’s nature permit.

Schiphol may process personal data of visitors for marketing purposes. This excludes parking for personnel. When you have booked a parking space at Schiphol, then we can use your personal data to send you newsletters, let you know that you haven’t finished the reservation process or keep you up to date with relevant products and services that Schiphol offers (e.g. Premium Services). Based on analyses of your personal data, we can send you personalised communication, so that our communication to you is relevant to you. For example, when you have booked a parking space several times in a year, we may send you an offer for our Privium subscription. We base these processes of your personal data on our legitimate interests. If you don’t want Schiphol to use these personal data for these purposes, you can always unsubscribe for these processes of your personal data. If you want to unsubscribe, please send an email to dpo@schiphol.nl.

How long do we retain your data?

All data that we register at the time you enter and leave (payment details, time of entry and departure) are deleted three months after you have used parking services at Schiphol. We delete your licence plate details 90 days of your leaving the parking space.

The information you share when making a reservation is deleted two years after you have made use of Schiphol’s parking services.

If you receive our newsletter, we will process your e-mail address until you unsubscribed. We will offer the opportunity to unsubscribe in each (commercial) newsletter.

With regards to parking by personnel, using the Schiphol badge for booking a parking space at Schiphol, the data of the Schiphol badge is processed separately from the Parking Management System (PMS). By using your badge at the parking column, no transaction is started and no information is sent to PMS. Using your Schiphol badge for parking means that the photos of your license plate will be deleted after 24 hours in our license plate recognition system.

Who do we share your data with?

We sometimes engage other parties to carry out a portion of the parking services on Schiphol’s behalf. In such cases, we only share data that are required for the performance of the relevant services. If needed, we enter into a data processing agreement with such parties.

Are you reserving a parking space via a third party, such as a travel agency? In that case, we will only exchange data that are necessary to perform the agreement concluded between Schiphol and this third party.

Schiphol may share your e-mail address with social media services in order to send you (and others) relevant messages via these social media platforms.

Processing personal data outside the European Union

Schiphol processes personal data as much as possible within the European Union. Schiphol may engage a processor who delivers IT services whereby data are processed in countries outside the European Union, including the United States of America or India. We do this only in a manner that complies with the requirements of the General Data Protection Regulation.

Which rights do you have?

Access to, amendment and deletion of your personal data
You have the right to know what personal data on you are processed by Schiphol. If we have not obtained the data directly from you, you also have the right to know from what source they derive and to receive a copy thereof.

If your personal data prove to be incorrect, you can ask us to amend your data. You can also request us to delete personal data and to discontinue their use. If we process your personal data on the basis of your consent, and there is no other legal basis for the processing, you have the right to withdraw that consent and we will comply with your request to delete them. In some cases, we may refuse your request.

Restriction of processing and right to transfer your data
If in your opinion we are not processing your data in a correct manner, you can request a restriction of the processing.

You can also ask us to transfer your digital personal data to you or to another party in a readable and usable form.

Lodging an objection
Besides requesting deletion or restriction of the processing, you can also object to the processing of personal data by Schiphol. First, you can do so if you do not agree to Schiphol using your personal data for direct marketing (for instance by profiling).

Second, you can object to the use of your personal data owing to your specific situation. If you lodge an objection, we will in principle temporarily discontinue or restrict the processing. If your objection is accepted, we will definitively discontinue or restrict the processing.

Your request and our response
If you have a question, a request or if you wish to lodge an objection, email our Data Protection Officer (DPO) via dpo@schiphol.nl. We will do our utmost to respond to your request in a timely manner.

We may ask you to send us a copy of a valid ID if this is necessary in order to confirm your identity.

If any part of your request is unclear to us, we may ask you to specify your request and/or to supplement it, to enable us to provide you with the best possible service.

Whose privacy statement is this and how can you contact us?

Who is the controller?
This privacy statement is issued by Schiphol Nederland B.V. Our contact details:

Schiphol Nederland B.V.
P.O. Box 7501
1118 ZG Schiphol

How to contact our Data Protection Officer (DPO)
Schiphol has a Data Protection Officer (DPO) for all your questions concerning privacy. The DPO also provides advice to us and monitors compliance with the privacy laws and regulations by Schiphol.

Do you have any questions or requests concerning your data? If so, you can send an email to the DPO via dpo@schiphol.nl or send a letter to our postal address, for the attention of the Data Protection Officer. Together with your request, please provide your name, address, email address and telephone number.

How to lodge a complaint with the Dutch Data Protection Authority

If you are dissatisfied with the way in which we treat your privacy or handle your request or objection, you can file a complaint with the Dutch Data Protection Authority.

Where can you find the latest version of this privacy statement?

If necessary, we will update this privacy statement. This may be due to changes in policies, changes in the data processing operations or changes in the systems we use to process data.

This version was issued on 8 January 2024.