Privacy Policy

Last updated: July 08, 2026

01 Introduction

At DHS, we are committed to protecting your personal data and respecting your privacy. This policy explains how we collect, use, and protect your information when you use our baggage recovery and cabin lost item services at Munich Airport and beyond.

02 Data We Collect

To provide baggage tracing and recovery services, we process the following categories of personal data:

  • Your Full Name
  • Contact Information (Email, Phone)
  • Travel Documents (Passport/ID No.)
  • Baggage Tag Numbers
  • Flight Details (PNR, Journey)
  • Delivery Address

03 Legal Basis for Processing

We process your data primarily under GDPR Article 6(1)(b) (Performance of a Contract). By filing a Property Irregularity Report (PIR) or a Lost Item claim, you are requesting us to perform services that require the use of this data.

04 Data Sharing & Third Parties

To recover your items, we share your data with authorized parties only:

  • ✈️

    Partner Airlines

    The operating carrier responsible for your flight.

  • 🌐

    WorldTracer

    The global industry standard baggage tracing network.

  • 🚚

    Courier Partners

    Authorized delivery services used to return your baggage to you.

4.1 AI Data Processing & Automation

To expedite your recovery, we utilize advanced Artificial Intelligence (AI) models provided by Google (Gemini API) to assist in processing passenger communications and drafting replies.

  • Drafting Only: AI is used solely to generate draft responses based on your flight and bag status.
  • Human Oversight: No emails are sent automatically without a final review by an authorized airline staff member.
  • Data Scoping: Only data necessary for the context of your recovery (Name, Flight, Bag Status) is provided to the AI engine.

05 Your Rights (GDPR)

Under the GDPR, you have the following rights:

Access

Request a copy of your personal data.

Erasure

Request deletion of data after the claim is settled.

Rectification

Correct inaccurate or incomplete information.

06 Data Retention Policy

We do not store your personal data longer than necessary for the purposes for which it was collected. Our automated retention schedule is as follows:

Baggage Reports (PIR)

1 Days

Data and generated PDF reports are permanently deleted 1 days after the report is closed or delivered.

Lost Property Claims

30 Days

Claims and uploaded item photos are permanently purged from our servers 30 days after creation.

Note: Audit logs are retained for up to 90 days as security and accountability records. HMAC-chained audit rows are not deleted in-place by the automated cleanup job because that would break integrity verification; where required, they are handled through a controlled archive or anonymisation process.

07 International Transfers and Processors

Where recovery requires airline, WorldTracer, courier, email, hosting, or AI service providers, data is shared only for the recovery, communication, delivery, security, or support purpose described above. Processors are recorded internally and must be covered by appropriate contractual safeguards, including data processing agreements and transfer safeguards where data leaves the EU/EEA.

Contact Us

Data Controller

DHS

Airport Core Hub, Terminal 2

+1 (555) 019-9000

support@aerofind.example.com

Data protection contact: support@aerofind.example.com

You may also contact the competent data protection supervisory authority. In Germany, this will usually be the authority responsible for the controller's place of establishment.