This data protection information applies to data processing by:
Responsible:
zipmend GmbH
Große Reichenstraße 27
20457 Hamburg
Germany
datenschutz@zipmend.com
Tel: +49 40 228 597 20
(in the following zipmend)
The company data protection officer of zipmend is to be contacted at the address above, to Hd. Data Protection Officer, or datenschutz@zipmend.com Accessible.
a) When visiting the website
When accessing our website zipmend.com (including subdomains such as app.zipmend.com) information is automatically sent to the server of our website by the browser used on your device. This information is temporarily stored in a so-called logfile. The following information is collected without your intervention and stored until automated deletion:
The aforementioned data will be processed by us for the following purposes:
The legal basis for data processing is Article 6(4) of the 1 p. 1 lit. f GDPR. Our legitimate interest follows from the purposes listed above for data collection. In no case will we use the data collected for the purpose of drawing conclusions about your person.
In addition, when we visit our website, we use cookies and analysis services. For more information, please see no further information. 4 and 5 of this Privacy Policy.
b) When registering for our newsletter
If you are in accordance with Article 6(0). 1 p. 1 lit. a GDPR, we use your e-mail address and your name to send you our newsletter on a regular basis. To receive the newsletter, it is sufficient to provide an e-mail address and your name. You will be asked for your consent at the appropriate point as follows:
"I have taken note of the Privacy Policy, in particular, I agree that the data processing can be carried out by a service provider in the United States."
You can unsubscribe at any time, for example via a link at the end of each newsletter. Alternatively, you can also send your unsubscribe request to datenschutz@zipmend.comby e-mail at any time.
c) When using our contact form
If you have any questions, we offer you the opportunity to contact us via a form provided on the website. A valid e-mail address is required so that we know who the request originated from and in order to be able to answer it. Further information may be provided voluntarily.
The data processing for the purpose of contacting us takes place in accordance with Art. 1 p. 1 lit. a GDPR based on your voluntary consent.
The personal data collected by us for the use of the contact form will be automatically deleted after the request you have made has been completed.
d) When using our online booking
In order to book transports through our website, we offer you the possibility to commission them via a form provided on the website. The provision of pick-up, delivery and billing addresses is required in order to ensure timely collection and delivery. Furthermore, the e-mail of the client is necessary so that we can send you the corresponding confirmations. Further information may be provided voluntarily.
The data processing for the purpose of conclusion of a contract is carried out in accordance with Article 6 paragraph. 1 lit. b GDPR. This also applies to processing operations necessary for the implementation of pre-contractual measures.
The personal data collected by us for the use of the online booking will be automatically deleted after 3 years of inactivity, unless legal requirements here conflict.
e) When using our online tool as a carrier
As a carrier, we offer you the possibility to receive transports from zipmend via our website. Registration with the company address, telephone number, e-mail address, business registration/commercial register statement as well as insurance confirmation is required. Furthermore, we need driver's name, number plate and driver's telephone number when ordering a transport. This data may also be passed on to the pick-up, delivery and our end customers, so that we can ensure a smooth transport. Further information may be provided voluntarily.
The data processing for the purpose of conclusion of a contract is carried out in accordance with Article 6 paragraph. 1 lit. b GDPR. This also applies to processing operations necessary for the implementation of pre-contractual measures.
The personal data collected by us for the use of our online tool as a carrier will be deleted after 3 years of inactivity, unless legal requirements here conflict.
f) In the case of online job applications
As an applicant, we offer you the opportunity to apply online or by e-mail at zipmend. Your data will be processed electronically by us for the purpose of processing the application process. Should an employment contract be concluded, your transmitted data can be stored by us in your personnel file. Further information may be provided voluntarily.
The data processing for the purpose of conclusion of a contract is carried out in accordance with Article 6 paragraph. 1 lit. b GDPR. This also applies to processing operations necessary for the implementation of pre-contractual measures.
The personal data collected by us for the use of the online job application will be automatically deleted 3 months after the application has been rejected. This does not apply if legal requirements preclude this or if you have expressly consented to a longer storage period.
Your personal data will not be transferred to third parties for purposes other than the ones listed below.
We will only share your personal data with third parties if:
We use cookies on our site. These are small files that your browser automatically creates and are stored on your device (laptop, tablet, smartphone, etc.) when you visit our site. Cookies do not cause any damage to your device, do not contain viruses, Trojan horses or other malware.
The cookie stores information that arises in connection with the specific device used. However, this does not mean that we will be immediately informed of your identity.
The use of cookies serves on the one hand to make the use of our offer more pleasant for you. For example, we use so-called session cookies to detect that you have already visited individual pages of our website. These will be deleted automatically after leaving our site.
In addition, we also use temporary cookies to optimize the user experience, which are stored on your device for a specified period of time. If you revisit our site to use our services, you will automatically recognize that you have already been with us and what entries and settings you have made so that you do not have to re-enter them.
On the other hand, we used cookies to record the use of our website statistically and to evaluate them for the purpose of optimising our offer (see point 5). These cookies allow us to automatically recognize that you have been with us when you visit our site again. These cookies are automatically deleted after a defined time.
The data processed by cookies are for the stated purposes in order to protect our legitimate interests as well as those of third parties in accordance with Art. 1 p. 1 lit. f GDPR required.
Most browsers automatically accept cookies. However, you can configure your browser to not store cookies on your computer or to always see a notice before a new cookie is created. However, the complete disabling of cookies may result in you not being able to use all the functions of our website.
a) Tracking tools
The following tracking measures that we use are carried out based on Art. 6 para. 1 sentence 1 lit. f GDPR. With these tracking measures, we aim to ensure a needs-based design and continuous optimisation of our website. In addition, we use these tracking measures to statistically record the use of our website and evaluate it for the purpose of optimising our offering for you. These interests are to be regarded as legitimate within the meaning of the aforementioned regulation.
The respective data processing purposes and data categories can be found in the corresponding tracking tools.
i) Google Analytics
To ensure a needs-based design and continuous optimisation of our pages, we use Google Analytics, a web analytics service provided by Google Inc. (https://about.google/) (1600 Amphitheatre Parkway, Mountain View, CA 94043, USA; hereinafter "Google"). In this context, pseudonymised usage profiles are created, and cookies are used (see section 4). The information generated by the cookie about your use of this website such as:
browser type/version,
operating system used,
referrer URL (the previously visited page),
host name of the accessing computer (IP address),
time of the server request,
is transmitted to a server of Google in the USA and stored there. This information is used to evaluate the use of the website, compile reports on website activities, and to provide other services related to the use of the website and the internet for the purpose of market research and needs-based design of these internet pages. This information may also be transferred to third parties if required by law or if third parties process this data on our behalf. Under no circumstances will your IP address be merged with other Google data. The IP addresses are anonymised so that an assignment is not possible (IP masking).
You can prevent the installation of cookies by setting your browser software accordingly; however, please note that in this case, you may not be able to fully use all functions of this website.
Furthermore, you can prevent the collection of the data generated by the cookie and related to your use of the website (including your IP address), as well as the processing of this data by Google, by downloading and installing the browser add-on available at: https://tools.google.com/dlpage/gaoptout?hl=en.
As an alternative to the browser add-on, especially for browsers on mobile devices, you can also prevent data collection by Google Analytics by clicking this link. An opt-out cookie will be set that prevents the future collection of your data when visiting this website. The opt-out cookie is only valid in this browser and only for our website and is stored on your device. If you delete the cookies in this browser, you will need to set the opt-out cookie again.
Further information on data protection in connection with Google Analytics can be found in the Google Analytics Help: https://support.google.com/analytics/answer/6004245?hl=en.
ii) Google Ads Conversion Tracking
To statistically record the use of our website and evaluate it for the purpose of optimising our website for you, we also use Google Conversion Tracking. If you arrive at our website via a Google ad, Google Ads sets a cookie (see section 4) on your computer.
These cookies expire after 30 days and are not used for personal identification. If the user visits certain pages of the Ads customer’s website and the cookie has not yet expired, Google and the customer can recognise that the user clicked on the ad and was redirected to this page.
Each Ads customer receives a different cookie. Cookies cannot therefore be tracked across the websites of Ads customers. The information collected using the conversion cookie is used to create conversion statistics for Ads customers who have opted for conversion tracking. The Ads customers learn the total number of users who clicked on their ad and were redirected to a page tagged with a conversion tracking tag. However, they do not receive information that personally identifies users.
If you do not wish to participate in the tracking process, you can also refuse the necessary setting of a cookie — for example, via a browser setting that generally disables the automatic setting of cookies. You can also disable cookies for conversion tracking by setting your browser to block cookies from the domain "www.googleadservices.com". Google's data protection information on conversion tracking can be found here: https://services.google.com/sitestats/en.html.
iii) Google Tag Manager
This website uses Google Tag Manager, a service provided by Google LLC, to manage website tags. Google Tag Manager itself does not collect any personal data but triggers other tags that may collect data. Further information on Google Tag Manager and data protection can be found here: https://www.google.com/intl/en/tagmanager/use-policy.html.
iv) Bing Ads
We use Bing Ads, a service provided by Microsoft Corporation, to place advertisements and perform conversion tracking. If you arrive at our website via a Bing ad, a cookie is set. This enables us to generate conversion statistics and measure the success of our campaigns. The data is collected anonymously and does not allow conclusions to be drawn about your identity. Further information on data protection at Bing Ads can be found here: https://privacy.microsoft.com/en-us/privacystatement.
v) HubSpot
We use HubSpot, a service provided by HubSpot, Inc., to manage our marketing, sales, and CRM activities. In this context, personal data such as your e-mail address, IP address, and any other voluntarily provided information is collected. The data processing is based on Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in providing you with relevant information and offers. The data is transferred to HubSpot servers in the USA. Further information can be found in HubSpot's privacy policy: https://legal.hubspot.com/privacy-policy.
vi) TikTok Pixel
Our website uses the TikTok Pixel, a service provided by TikTok Technology Limited, to record user behaviour after clicking on a TikTok ad. This information is used to evaluate and optimise our advertising activities. Data processing is carried out based on Art. 6 para. 1 lit. f GDPR. Further information can be found here: https://www.tiktok.com/legal/privacy-policy.
vii) LinkedIn Insight Tag
We use the LinkedIn Insight Tag, an analysis tool from LinkedIn Corporation, to analyse the use of our website and to display targeted advertising on LinkedIn. Information about your use of our website is collected and transmitted to LinkedIn. The processing is based on Art. 6 para. 1 lit. f GDPR. Further information on data protection at LinkedIn can be found here: https://www.linkedin.com/legal/privacy-policy.
viii) Apollo.io
We use Apollo.io, a service provided by Apollo.io, Inc., to support our sales and marketing activities, in particular for lead generation and contact management. In this context, business-related information such as name, professional contact details, company affiliation, position, and interaction data is processed. Apollo.io uses publicly available information as well as data from third-party sources to assist us in identifying potential business contacts. The data processing is based on Art. 6 para. 1 lit. f GDPR, as we have a legitimate interest in the efficient organisation and optimisation of our sales and marketing processes. The data may be transferred to servers in the USA and stored there. Apollo.io is certified under the EU-U.S. Data Privacy Framework to ensure an adequate level of data protection. Further information on data protection at Apollo.io can be found here: https://www.apollo.io/privacy-policy.
ix) Leadfeeder
We use Leadfeeder, a service provided by Liidio Oy, Mikonkatu 17 C, 00100 Helsinki, Finland, to identify company visitors on our website. Leadfeeder links visitors’ IP addresses with publicly available company information, such as name, industry, and location. Only company-related data is processed, not any personal data of individuals. Processing is based on Art. 6(1)(f) GDPR, as we have a legitimate interest in identifying potential business clients and optimising our B2B marketing. For more information, please refer to Leadfeeder’s privacy policy: https://www.leadfeeder.com/privacy/.
x) Lemlist
We use Lemlist, a service provided by Lemlist SAS, 128 rue La Boétie, 75008 Paris, France, to carry out personalised email campaigns as part of our sales and marketing activities. In this context, personal data such as name, email address, company name, and interaction behaviour is processed. Processing is based on Art. 6(1)(f) GDPR, as we have a legitimate interest in efficiently reaching out to potential business contacts and tracking email campaign performance. For more information, please refer to Lemlist’s privacy policy: https://www.lemlist.com/privacy-policy .
xi) Phantombuster
We use Phantombuster, a service provided by Phantombuster SAS, 68 boulevard de Port-Royal, 75005 Paris, France, to automate data-driven sales and marketing processes, particularly in the area of social media prospecting. Publicly available information (e.g. LinkedIn profiles, company data) is collected and processed based on predefined search criteria. Processing is carried out under Art. 6(1)(f) GDPR, as we have a legitimate interest in the systematic identification of potential B2B contacts and in increasing the efficiency of our processes. For more information, please refer to Phantombuster’s cookie policy: https://phantombuster.com/cookie-policy
b) A/B testing tools
The A/B testing measures listed below and used by us are carried out based on Art. 6 para. 1 lit. f GDPR. These A/B testing measures aim to ensure a needs-based design and continuous optimisation of our website. In addition, we use these measures to statistically record the use of our website and analyse it for the purpose of optimising our offering for you. These interests are to be regarded as legitimate within the meaning of the aforementioned regulation.
The respective data processing purposes and data categories can be found in the corresponding A/B testing tools.
i) Convert
To optimise our website and analyse user behaviour, we use Convert. Pseudonymised user profiles are created, which help us improve our website. Convert does not process personal data and works exclusively with anonymised data. Further information can be found in Convert’s privacy policy: https://www.convert.com/privacy-notice/.
c) Mail tools
The mail tools listed below and used by us are carried out based on Art. 6 para. 1 lit. f GDPR. With these mail tools, we aim to ensure a needs-based design and continuous optimisation of our website and our emails. In addition, we use these tools to statistically record the use of our website and our emails and to analyse this data to optimise our offering for you. These interests are to be regarded as legitimate within the meaning of the aforementioned regulation.
The respective data processing purposes and data categories can be found in the corresponding mail tools.
i) MailChimp
To ensure a needs-based design and continuous optimisation of our emails, we use MailChimp, a service provided by The Rocket Science Group, LLC, 512 Means Street, Suite 404, Atlanta, GA 30318, USA (https://mailchimp.com); hereinafter "MailChimp".
The data you provide during registration (including newsletter registration), such as your e-mail address, title, name, IP address, date, and time of registration, is transferred to a MailChimp server in the USA and stored there in compliance with the "EU-US Privacy Shield". This information is used to evaluate the use of our website and our emails, to compile reports on website activity, and to provide other services related to the use of our website and the internet for the purpose of market research and needs-based design of our internet pages and emails. This information may also be transferred to third parties if required by law or if third parties process this data on behalf of MailChimp.
Further information on data protection in connection with MailChimp can be found here: https://www.intuit.com/privacy/statement/
d) Session recording
To better understand the behaviour of our users on our website and to optimise our services accordingly, we use tools for session recording and behaviour analysis. These tracking tools are used based on Art. 6 para. 1 lit. f GDPR to safeguard our legitimate interest in improving user experience and optimising our website and services.
i) Microsoft Clarity
We use Microsoft Clarity to record user interactions and behaviour on our website. This includes session recordings, behavioural metrics, heatmaps, and session replays. This data enables us to better understand the use of our website and to improve our products and services in a targeted manner. Data collection is carried out via first-party and third-party cookies and other tracking technologies that help us analyse user behaviour and the popularity of individual functions and products.
We also use this information to optimise our website, prevent fraud, and improve security. Further information on how Microsoft collects and uses your data can be found in the Microsoft privacy statement: https://privacy.microsoft.com/en-us/privacystatement.
ii) Hotjar
We use Hotjar (Hotjar Ltd, Level 2, St Julian’s Business Centre, 3, Elia Zammit Street, St Julian’s STJ 1000, Malta, Europe) to analyse user behaviour and record user sessions on our website. Hotjar enables us to analyse user interactions in the form of heatmaps, click behaviour, mouse movements, and scrolling behaviour. Surveys and feedback tools are also provided to improve website usability.
The information collected by Hotjar is anonymised and helps us to better tailor our website to users' needs. Hotjar also uses cookies and other technologies to collect and store user data. Personally identifiable data is neither collected nor stored. The data collected can be used, in addition to website optimisation, for error analysis and further development of our services.
Further information on how Hotjar collects and processes data can be found in Hotjar’s privacy policy: https://www.hotjar.com/legal/policies/privacy.
e) Tag management and server-side tag management
The tag management tools listed below and used by us serve for the efficient management of tags and server-side tagging. The processing of this data is based on Art. 6 para. 1 lit. f GDPR, as it is in our legitimate interest to optimise loading times and tag management.
i) Stape.io
For server-side tag management, we use Stape.io. No personal data is collected; only technical data is recorded to manage tagging solutions efficiently. Data processing is based on Art. 6 para. 1 lit. f GDPR. Further information can be found in Stape.io’s privacy policy: https://stape.io/privacy-policy.
f) Cookie and consent management
The cookie and consent management tools listed below and used by us are implemented based on Art. 6 para. 1 lit. c GDPR, to comply with legal requirements regarding consent for the use of cookies and similar technologies.
i) CCM19
To manage consents, we use the CCM19 consent management tool. CCM19 stores your consent for the use of cookies and similar technologies. Data processing is based on Art. 6 para. 1 lit. c GDPR to comply with legal requirements. Further information can be found here: https://www.ccm19.de/datenschutz.html.
g) Error monitoring and debugging tools
To ensure the stability and functionality of our website, we use error monitoring and debugging tools. These tools collect technical data such as error messages and interactions that help us diagnose and fix technical problems. Processing is based on Art. 6 para. 1 lit. f GDPR in our legitimate interest in ensuring the technical security and usability of our website.
i) Sentry.io
We use Sentry.io, a service provided by Functional Software Inc., to monitor and analyse errors on our website. Sentry.io collects technical data such as IP address, browser information, and error messages to identify and resolve technical problems. This data is stored in anonymised form. Further information can be found in Sentry.io’s privacy policy: https://sentry.io/privacy/.
h) Security and CAPTCHA tools
The security and CAPTCHA tools listed below and used by us are implemented based on Art. 6 para. 1 sentence 1 lit. f GDPR, to protect our website and services from misuse and fraudulent activities. These measures serve our legitimate interest in ensuring the integrity and availability of our website.
i) Google reCAPTCHA
To ensure that data entry in our forms is done by a human and not by automated programs, we use Google reCAPTCHA, a service provided by Google LLC. In this context, various data (e.g. IP address, mouse movements, time spent on the website) are collected and transmitted to Google. This data processing is carried out based on Art. 6 para. 1 lit. f GDPR to secure our website against misuse. Further information on data protection in connection with Google reCAPTCHA can be found here: https://www.google.com/intl/en/policies/privacy/.
We place on our website on the basis of Art. 1 p. 1 lit. f GDPR social plug-ins of the social networks Facebook, Twitter and Instagram to make our law firm better known about this. The commercial purpose behind it is to be regarded as a legitimate interest within the meaning of the GDPR. Responsibility for data protection-compliant operation must be guaranteed by their respective providers. The integration of these plug-ins by us is carried out by means of the so-called two-click method in order to protect visitors to our website in the best possible way.
a) Facebook
On our website, social media plugins from Facebook are used to make their use more personal. For this we use the "LIKE" or "PART" button. This is an offer from Facebook.
When you visit a page of our website that contains such a plugin, your browser establishes a direct connection to the Facebook servers. The content of the plugin is transmitted by Facebook directly to your browser and integrated by it into the website.
By integrating the plugins, Facebook receives the information that your browser has accessed the corresponding page of our website, even if you do not have a Facebook account or are not currently logged in to Facebook. This information (including your IP address) is transmitted by your browser directly to a Facebook server in the USA and stored there.
If you are logged in to Facebook, Facebook can assign your visit to our website directly to your Facebook account. If you interact with the plugins, for example by pressing the "LIKE" or "SHARE" button, the corresponding information is also transmitted directly to a Facebook server and stored there. The information is also posted on Facebook and displayed to your Facebook friends.
Facebook may use this information for the purpose of advertising, market research and the design of Facebook pages according to requirements. For this purpose, Facebook creates usage, interest and relationship profiles, e.g. to evaluate your use of our website with regard to the advertisements displayed to you on Facebook, to inform other Facebook users about your activities on our website and to provide other services related to the use of Facebook.
If you do not want Facebook to assign the data collected through our website to your Facebook account, you must log out of Facebook before visiting our website.
The purpose and scope of the data collection and the further processing and use of the data by Facebook as well as your rights in this regard and setting options for the protection of your privacy can be found in Facebook's privacy policy (https://www.facebook.com/privacy/policy/).
b) Twitter
Plugins of the short message network of Twitter Inc. are on our website. (Twitter). You can recognize the Twitter plugins (tweet button) by the Twitter logo on our site. An overview of tweet buttons can be found here (https://about.twitter.com/resources/buttons).
When you visit a page of our website that contains such a plugin, a direct connection is established between your browser and the Twitter server. Twitter receives the information that you have visited our site with your IP address. If you click on the Twitter "tweet" button while you are logged into your Twitter account, you can link the contents of our pages to your Twitter profile. This allows Twitter to assign the visit to our pages to your user account. We would like to point out that we, as the provider of the pages, do not receive any knowledge of the content of the transmitted data as well as their use by Twitter.
If you do not want Twitter to be able to associate the visit to our pages, please log out of your Twitter account.
For more information, see Twitter's (https://twitter.com/privacy) Privacy Policy.
c) Instagram
Our website also uses so-called social plugins ("plugins") of Instagram, which is operated by Instagram LLC., 1601 Willow Road, Menlo Park, CA 94025, USA ("Instagram").
The plugins are marked with an Instagram logo, for example, in the form of an "Instagram camera".
When you visit a page of our website that contains such a plugin, your browser establishes a direct connection to the Instagram servers. The content of the plugin is transmitted by Instagram directly to your browser and integrated into the page. Through this integration, Instagram receives the information that your browser has accessed the corresponding page of our website, even if you do not have an Instagram profile or are not currently logged in to Instagram.
This information (including your IP address) is transmitted by your browser directly to an Instagram server in the USA and stored there. If you are logged in to Instagram, Instagram can assign your visit to our website directly to your Instagram account. If you interact with the plugins, for example by pressing the "Instagram" button, this information is also transmitted directly to an Instagram server and stored there.
The information will also be posted to your Instagram account and displayed to your contacts.
If you do not want Instagram to assign the data collected via our website directly to your Instagram account, you must log out of Instagram before visiting our website.
For more information, see Instagram's Privacy Policy (https://help.instagram.com/155833707900388).
You have the right to:
If your personal data is based on legitimate interests in accordance with Article 6 sec. 1 p. 1 lit. f GDPR, you have the right to object to the processing of your personal data in accordance with Article 21 GDPR, insofar as there are reasons for doing so, which arise from your particular situation or if the objection is directed against direct marketing. In the latter case, you have a general right of objection, which we implement without specifying a specific situation.
If you wish to exercise your right of withdrawal or objection, an e-mail to datenschutz@zipmend.com
Within the website visit, we use the common Secure Socket Layer (SSL) method in conjunction with the highest encryption level supported by your browser. Typically, this is 256-bit encryption. If your browser doesn't support 256-bit encryption, we'll use 128-bit v3 technology instead. You can see whether a single page of our website is transmitted encrypted by the closed display of the bowl or lock symbol in the lower status bar of your browser.
We also use appropriate technical and organizational security measures to protect your data against accidental or intentional manipulation, partial or complete loss, destruction or unauthorized access by third parties. Our security measures are continuously improved in line with technological developments.
This privacy policy is currently valid and has the status of May 22, 2018.
Due to the further development of our website and offers above or due to changes in legal or regulatory requirements, it may become necessary to change this data protection declaration. The current data protection declaration can be accessed and printed by you at any time on the website under https://zipmend.com/en/privacy/.