Please enable JavaScript to fully experience this site. How to enable JavaScript

Security Statement

When you buy an American Airlines ticket over the World Wide Web your web browser connects with the Web site through SSL ("Secure Sockets Layer"). SSL is an industry-standard way to send personal information over the Internet. SSL ensures you are actually sending data to American Airlines and not someone who claims to be American Airlines. We also protect your AAdvantage transactions when you enroll, view miles etc. It's fast, safe, and it ensures that your personal information will not be read by anyone else. Look for one or more of these indicators on your browser to ensure you have a secure connection: - A security alert window tells you that you are about to use a secure connection. Some browsers let you choose whether to display this window.

- An SSL icon shows when you're in a secure connection:
  • A symbol of an "open padlock" changes to a closed padlock when you're in a secure connection.

  • A symbol of a "broken key" is replaced by an unbroken key

    unbroken key
The Web site's address changes to one that begins with "https" (check for the "s" which designates a "secure" site)

browser address

While American Airlines takes reasonable steps to safeguard and to prevent unauthorized access to your private information, we cannot be responsible for the acts of those who gain unauthorized access, and we make no warranty, express, implied, or otherwise, that we will prevent unauthorized access to your private information. IN NO EVENT SHALL AMERICAN AIRLINES OR ITS AFFILIATES BE LIABLE FOR ANY DAMAGES (WHETHER CONSEQUENTIAL, DIRECT, INCIDENTAL, INDIRECT, PUNITIVE, SPECIAL OR OTHERWISE) ARISING OUT OF, OR IN ANY WAY CONNECTED WITH, A THIRD PARTY'S UNAUTHORIZED ACCESS TO YOUR INFORMATION, REGARDLESS OF WHETHER SUCH DAMAGES ARE BASED ON CONTRACT, STRICT LIABILITY, TORT OR OTHER THEORIES OF LIABILITY, AND ALSO REGARDLESS OF WHETHER AMERICAN AIRLINES WAS GIVEN ACTUAL OR CONSTRUCTIVE NOTICE THAT DAMAGES WERE POSSIBLE.

Cookies And Web Beacons
A cookie is a text-only string of information that a Web site transfers to the cookie file of the browser on your computer's hard disk so that the Web site can remember who you are. Cookies will typically contain the name of the domain from which the cookie has come, the "lifetime" of the cookie, and a value, usually a randomly generated unique number. Two types of cookies are used on this Web site - session cookies, which are temporary cookies that remain in the cookie file of your browser until you leave the site, and persistent cookies, which remain in the cookie file of your browser for much longer (though how long will depend on the lifetime of the specific cookie). Most browsers have options that allow the visitor to control whether the browser will accept cookies, reject cookies, or notify the visitor each time a cookie is sent. You may elect to reject cookies by adjusting your browser's settings, but doing so will limit the range of features available to the visitor on our site and most other major Web sites that use cookies.

Web beacons are used in conjunction with cookies to record the simple actions of the user opening the page that contains the beacon. When a user's browser requests information from a Web site in this way certain simple information can also be gathered, such as: the IP Address of your computer; time the material was viewed; the type of browser that retrieved the image; and the existence of cookies previously set by that server. This is information that is available to any web server you visit. Web beacons do not give any "extra" information away. They are simply a convenient way of gathering the simplest of statistics and managing cookies.

For more information about our policies for protecting your personal information see our Privacy Policy.

Affiliated Web Pages:

Phishing Schemes And Email Safety
"Phishing" is an Internet scam where official-looking emails attempt to fool users into disclosing online passwords, user names, social security numbers and other personal information. Victims are usually persuaded to click on a link in an email that directs them to a doctored or fake version of an organization's actual Web site. Fraudulent email messages that claim to be from American Airlines/American Eagle/AAdvantage have also been forwarded to us by our customers. These schemes change frequently and often have links or attachments that may contain viruses. Users who click on the links or attachments are taken to look-alike or "spoofed" sites where they are asked to enter personal data.

Examples Of Phishing Emails:

Example Email 1
Example Email 2
Example Email 3
Example Email 4
Example Email 5

American Airlines will never request its customers to perform security-related changes or use email as a communication method to collect usernames, passwords, email addresses, social security numbers or other personal information. An email can be created so it appears to have legitimately originated from American Airlines, but is in fact a fraudulent attempt to gain access to private information. If you receive any suspicious emails, please forward a copy of the email, including the header, to so that we can investigate further. Never call phone numbers contained within a suspicious email and avoid following any links within the email since they may lead to a fraudulent Web site.