Privacy Policy
Here you find the Privacy Statement of the website of EMS Air Ambulance & Medical Repatriation Ltd.
Last updated: Aug 19, 2025
1. Introduction
This Privacy Statement outlines the processing of Personal Data on this website (the “Website”) and applies to our Website visitors, suppliers and customers. This Privacy Statement describes our policies and practices regarding our collection and use of your Personal Data and sets forth your right to privacy. We recognise that informational privacy is an ongoing responsibility, and so we will from time-to-time update this Privacy Statement as we undertake new Personal Data practices or adopt new privacy policies.
2. Who is the Controller for the processing of your Personal Data?
EMS Ltd. will be the responsible “Controller” for the Personal Data we collect when you use the Website. In this notice, EMS Ltd. will be referred to as (“EMS”, “us”, “we” or “our”).
3. Which categories of Personal Data do we process and what is the purpos
Category of Personal Data | Sources | Business Purpose for Collection | Legal Basis |
Contact Information: Name; email; phone(s); contact preference; address (city/country as needed) | Directly from client/family; | Provide quotes; communicate updates; coordinate logistics | Contract; Consent |
Basic Identifiers: Name; date of birth; sex | Client/family; treating facility (if provided) | Patient matching; paperwork; travel/entry documentation | Contract; Legal obligation |
Health Information: Medical details needed to arrange safe transport and acceptance (e.g., overall condition, level of assistance/care required, fitness for transport, availability of medical reports) | Client/family; treating facility; | Determine transport suitability; staffing/equipment level; hospital acceptance | Vital interests; Consent; Contract |
Location & Itinerary: Current facility/location; origin/destination; timing windows | Client/family; planning tools | Travel & Transfer Logistics | Contract |
Commercial/Service Info: Preferred transport mode; vendor options (if applicable to the booking); scheduling preferences | Internal case system; vendor quotes/marketplaces (as applicable) | Quoting; vendor selection (if applicable); service administration | Contract |
Financial/Payment: Estimates; invoices; payment status; payment method details (if provided) | Client; payment processor; internal billing | Take payment; issue receipts; fraud/KYC checks | Contract; Legal obligation |
Government IDs (if required): Passport/ID numbers; visa/permit data | Client/patient; facilities | Cross-border transport; compliance | Legal obligation |
Communications Records: Call recordings; voicemails; emails; chats; case notes | Case system; comms tools | Service administration; QA/training; dispute handling | Legitimate interest; Contract |
Essential cookies: Cookie identifiers; session data; IP address | Automatically collected via cookies and site functionality scripts | Enable core site functions (e.g., navigation, secure login, form submission); maintain session security; remember user preferences necessary for operation | Legitimate interest; Contract |
Analytical cookies: Cookie identifiers; IP address; device/browser type; pages viewed; time spent; click paths | Please check our Cookie Notice [Link to Policy] | Analyse site usage; improve performance and usability; tailor content and marketing | Consent; Legitimate interest |
4. When and how we share your information with others
We use third parties to operate our platforms. It is possible that these third parties have access to your personal data. If that is the case, we will take appropriate measures to ensure that your data is adequately secured and only used for its intended purposes. We may share your data with third-party service providers, to the extent necessary for the aforementioned purposes (and to the extent permitted by the GDPR). This concerns parties such as our IT service providers, parties from which we purchase advertising and marketing software, parties that arrange hosting, maintenance and support of the Website, Cloud providers, Google Workspace, CRM system and providers of systems with which we can exchange files. In addition, this may include competent regulators, authorities, judicial bodies or other parties where we are required to do so by law, or if it is necessary in the context of legal proceedings or to establish or exercise our legal rights (for example, to deal with complaints or proceedings). This is always done in accordance with our legal obligations. Of course, only the personal data that is necessary for the performance of the work will be shared.
5. Transfers outside the European Economic Area
The Personal Data transferred may also be processed in a country outside the European Economic Area (the “EEA”). If your Personal Data is transferred outside the EEA, we will put suitable safeguards in place to ensure that such transfers are carried out in compliance with the applicable data protection rules. These include, for instance, relying on adequacy decisions or Standard Contractual Clauses issued by the European Commission together with binding and enforceable commitments by the recipient. You may request additional information and obtain a copy of the relevant safeguard by exercising your rights as set out below.
6. Data subject rights
Subject to applicable laws, you are entitled to a number of rights over the processing of your Personal Data. You may exercise these rights at any point by contacting us here: [email protected]. We will consider all such requests and, in accordance with applicable laws, will provide our response within a reasonable period, and in any case within the statutory deadlines. We may request information necessary to confirm your identity before responding. You have the following rights:
- The right to access: subject to exceptions, you have the right to request access to the Personal Data we hold about you.
- The right to rectification: if the Personal Data we hold is inaccurate you are entitled to have it updated or rectified.
- The right to deletion: subject to exceptions, you can ask us to delete your Personal Data.
- The right to object: under certain circumstances, you have the right to ask us to stop processing your Personal Data, including processing based on our legitimate interests. You may also object to any direct marketing.
- The right to withdraw consent: where we rely on your consent to process Personal Data, you have the right to withdraw consent at any time.
- The right to restriction of processing: under certain circumstances you may request that we restrict processing (for example, where accuracy is contested or processing is unlawful).
- The right to data portability: under certain circumstances you have the right to obtain Personal Data you provided to us (in a structured, commonly used and machine-readable format) and to reuse it elsewhere or to ask us to transfer this to a third party.
The right to lodge a complaint with a supervisory authority: you have the right to file a complaint with the Information Commissioner’s Office in the UK.
7. How do we protect Personal Data?
We have implemented adequate technical and organizational measures to safeguard the Personal Data we process. We update and test our security technology on an ongoing basis. We also restrict access to your Personal Data to employees on a need-to-know basis and train staff on confidentiality and data protection. While we work to keep information secure, no method of transmission or storage is completely secure.
8. How long do we keep and store your Personal Data?
We will not retain your Personal Data longer than necessary in relation to the purposes for which the data are processed. We may retain your information while your account or relationship is active, and thereafter for backup, analysis and business continuity, and to comply with legal obligations or resolve disputes. In the event of a corporate change in control (e.g., merger or sale), your Personal Data will continue to be treated in accordance with this Privacy Statement.
9. Changes to this Privacy Statement
We reserve the right to amend this Privacy Statement at any time and for any reason. We will publish the amended Privacy Statement on our Website. If required by law, you will be notified of important changes to our Privacy Statement.
10. Questions, concerns or complaints
To ask questions or comment about our Privacy Statement and our privacy practices, you can contact us at [email protected].
11. Cookie Statement
Please refer to our Cookie Notice available here for more information on our use of cookies with this Website.