Information on data protection

The responsible person for the purposes of data protection law is:

DACHSER SE

Thomas-Dachser-Straße 2

87439 Kempten

Germany

Tel.: +49 831 5916 0

Fax: +49 831 5916-1312

info@dachser.com

www.dachser.de

The name and contact details of the data protection officer at DACHSER SE are:

DACHSER SE

Data protection officer

Thomas-Dachser-Str. 2

87439 Kempten, Germany

data.protection@dachser.com

This website collects a series of general data and information each time it is accessed. This general data and information is stored in the log files of the server. The data which may be recorded is:

The browser types and versions used,

The operating system used by the accessing system,

The website from which an accessing system reaches our website (known as referrers),

The sub-websites that are accessed via an accessing system on our website,

The date and time of access to the website,

The Internet Protocol (IP) address,

The Internet service provider of the accessing system and

Other similar data and information used to avert danger in the event of attacks on our information technology systems.

In using this general data and information, DACHSER does not draw any conclusions about you. No profiling occurs. Instead, we need this information in order to deliver the content of our website correctly, to optimise the content of our website as well as the advertising for it, to ensure the long-term viability of our information technology systems and the technology of our website, and to provide law enforcement authorities with the information necessary for criminal prosecution in the event of a cyber attack.

This anonymously obtained data and information is used statistically by DACHSER for the purpose of increasing the level of data protection and data security within our company. We store the anonymous data from the server log files separately from all personal data provided by you. The legal basis for the temporary storage of data and log files is art. 6, para. 1, line f) GDPR.

You can contact us via the contact form provided on our website or via the email address provided in the company information. If you contact DACHSER via one of these channels, we will automatically store the personal data you provide. Such personal data transmitted to DACHSER on a voluntary basis will be stored for the purpose of processing your request and/or contacting you.

DACHSER assigns the enquiries and the associated personal data for processing and use to the competent authority within the DACHSER Group, generally to the national subsidiary in the country of the requester, and exchanges the data with the latter. So, for example, enquiries and the corresponding data from the website for Switzerland (www.dachser.com/ch) are exchanged with the DACHSER national subsidiary in Switzerland (DACHSER Spedition AG). In this context, data may also be transmitted to national subsidiaries in third countries.

The legal basis for the processing of the data is art. 6, para. 1, line b) GDPR and in all other cases the protection of legitimate interests pursuant to art. 6, para. 1, line f) GDPR. For the transfer of data to a third country, the legal basis is art. 49, para. 1, line b) GDPR.

On the DACHSER website, users are given the opportunity to subscribe to DACHSER newsletters (e.g. "eLetter"). Which personal data is transmitted to DACHSER when ordering the newsletter is determined by the input mask used for this purpose.

DACHSER uses the newsletter to regularly inform customers and business partners of news regarding our services and products, current press reports, information about our brand and the content currently on our website. The newsletter can only be received by the data subject if

(1) the data subject has a valid email address and

(2) the data subject registers to receive the newsletter. For legal reasons, a confirmation email will be sent to any email address entered for the first time by a data subject for the purposes of receiving the newsletter. This is a double opt-in procedure. This confirmation email is used to check whether the owner of the email address has authorised the receipt of the newsletter as a data subject. The legal basis for sending the newsletter is art. 6, para. 1, line a) GDPR.

When registering for the newsletter, we store the IP address assigned by the Internet service provider (ISP) of the computer system used by the data subject at the time of registration, as well as the date and time of registration. The collection of this data is necessary in order to be able to trace (possible) misuse of the email address of a data subject at a later time and therefore serves as legal protection for DACHSER. In the context of sending the newsletter, DACHSER will use Atrivio GmbH, Albert-Einstein-Str. 6, 87437 Kempten, Germany to collect, process, use and/or store this data for that purpose.

The personal data collected in the context of a subscription to the newsletter will be used exclusively for the following purposes:

• Sending the newsletter
• Advice and advertising
• Designing the newsletter according to requirements
• Compiling the topics of the newsletter in a way that is appropriate for your interests

Subscribers to the newsletter may also be informed by email if this is necessary for the operation of the newsletter service or for registration in this regard, such as for changes to the offer of the newsletter or for changes in technical conditions.

Consent to the storage of personal data, which the data subject has given us for the sending of the newsletter, can be revoked at any time. A link for the purpose of revoking consent can be found in each newsletter. It is also possible to de-register directly at any time by notifying DACHSER of the contact details mentioned under section 1.

Our newsletters contain 'tracking pixels'. A tracking pixel is a miniature graphic that is embedded in those emails sent in HTML format to enable log file recording and log file analysis. This enables a statistical evaluation of the success or failure of online marketing campaigns. Based on the embedded tracking pixel, DACHSER may see if and when an email was opened by a data subject and which links in the email were accessed by data subjects.

Such personal data collected via the tracking pixels contained in the newsletters is stored and evaluated by DACHSER in order to optimise the sending of the newsletters and to better adapt the content of future newsletters to the interests of the data subject. Data subjects are entitled at any time to revoke the declaration of consent made separately for this purpose via the double opt-in procedure. After revocation, this personal data will be erased by DACHSER. A de-registration from receipt of the newsletter is automatically interpreted by DACHSER as a revocation.

This website uses cookies. Cookies are text files that are created and stored on a computer system via an Internet browser. Through the use of cookies, DACHSER can provide you with more user-friendly services that would not be possible without the cookie having been set. Cookies allow us to recognise the users of our website. For example, users of websites that employ cookies do not have to re-enter their login data each time they visit that website, because this task is taken over by the website and the cookie stored on the user's computer system.

The provider of this website uses the services of etracker GmbH from Hamburg, Germany (www.etracker.com) to analyse usage data. By default, etracker does not use cookies. If you explicitly agree to the setting of analysis cookies (statistics cookies), cookies are used that enable statistical analysis of the use of this website by its visitors as well as the display of usage-related content or advertising. Cookies are small text files that are stored by the Internet browser on the user's device. etracker cookies do not contain information that allows a user to be identified.

The data generated by etracker is processed and stored by etracker exclusively in Germany on behalf of the provider of this website and is therefore subject to strict German and European data protection laws and standards. etracker has been independently tested, certified and ePrivacyseal awarded the data protection seal of approval.

Data processing is carried out on the basis of the legal provisions of art. 6, para. 1, line f) (legitimate interest) of the General Data Protection Regulation (GDPR). Our concern within the meaning of the GDPR (legitimate interest) is the optimisation of our online offer and our website. As the privacy of our visitors is important to us, the data that may allow a reference to an individual person, such as the IP address, login or device IDs, will be anonymised or pseudonymised as soon as possible. No other use, combination with other data or transfer to third parties takes place.

You can object to the outlined data processing at any time by clicking on the slider. The objection has no disadvantageous consequences. If no slider is displayed, the data collection is already prevented by other blocking means.

Further information on data protection with etracker can be found here.

We use the podcast hosting service Podigee from the provider Podigee GmbH, Schlesische Straße 20, 10997 Berlin, Germany. The podcasts are loaded by Podigee or transmitted via Podigee. 

Use is based on our legitimate interests, i.e. interest in a safe and efficient provision, analysis and optimisation of our podcast offer in accordance with art. 6, para. 1, line f) GDPR. 

Podigee processes IP addresses and device information to enable podcast downloads/replays and to determine statistical data such as listen counts. This data will be anonymised or pseudonymised by Podigee prior to being stored in the database, unless it is required to provide the podcasts. 

Further information and options for objection can be found in the Podigee privacy policy: https://www.podigee.com/en/about/privacy

DACHSER offers services via the DACHSER Platform tool on its website. The core functions of the DACHSER Platform include determining freight costs online, recording transport orders and tracking shipments using Tracking & Tracing.

DACHSER assigns registrations to the DACHSER Platform, and the associated personal data required for the processing and use, to the competent entity within the DACHSER Group, generally the national branch of the national company of the requester, and exchanges this data with this competent entity. For example, registrations and the data used for registration on the DACHSER Platform on the Switzerland website (www.dachser.com/ch) are exchanged with the DACHSER national company in Switzerland (DACHSER Spedition AG). In this context, data may also be transmitted to national companies in third countries. The applications of the DACHSER Platform can be used by users with or without individual registration. Once registered, the respective national company will activate the user after successful authentication. Registered users have more "credentials" than non-registered users, i.e. registered users have access to more extensive services. The personal data that is transmitted to DACHSER is determined by the respective input screen used for registration.

The exclusive purpose of data use when using the DACHSER Platform is the provision of the aforementioned services. The legal basis for processing the data when preparing or executing contracts is Art. 6 (1) (b) GDPR and in all other cases the legal basis is the protection of legitimate interests pursuant to Art. 6 (1) (f) GDPR. For transferring data to a third country, the legal basis is Art. 49 (1) (b) GDPR.

DACHSER offers services on its website under the eLogistics tool. The core functions of the eLogistics portal include the online determination of freight costs, the recording of transport orders and the tracking of shipments by means of tracking & tracing.

DACHSER assigns eLogistics registrations and the associated personal data for processing and use to the competent authority within the DACHSER Group, generally to the national branch of the subsidiary in the country of the requester, and exchanges the data with the latter. For example, registrations and the data used for registration for eLogistics on the website for Switzerland (www.dachser.com/ch) are therefore exchanged with the DACHSER national subsidiary in Switzerland (DACHSER Spedition AG). In this context, data may also be transmitted to national subsidiaries in third countries. The eLogistics applications can be used by users without or with individual registration. In the event of registration, the respective national subsidiary activates the user after successful authentication. When registered, users have more "credentials" available compared to use without registration, i.e. users can access more extensive services. The personal data that is transmitted to DACHSER is determined by the respective input mask used for registration.

The purpose for which data is used when accessing the eLogistics services is exclusively the provision of the aforementioned services. The legal basis for the processing of the data is art. 6, para. 1, line b) GDPR and in all other cases the protection of legitimate interests pursuant to art. 6, para. 1, line f) GDPR. For the transfer of data to a third country, the legal basis is art. 49, para. 1, line b) GDPR.

This page uses the Google Maps mapping service. The provider is Google Ireland Limited ("Google"), Gordon House, Barrow Street, Dublin 4, Ireland. Parent: Google LLC, 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. This allows us to display interactive maps directly on the website and allows you convenient use of the mapping function.

By visiting the website, Google receives the information that you have accessed the corresponding sub-page of our website. In addition, the data referred to in section 2 will be transmitted. This occurs regardless of whether Google provides a user account through which you are logged in or whether there is no user account. If you are logged in to Google, your data will be assigned directly to your account. If you do not wish this data to be assigned to your profile on Google, you must log out before activating the button. Google stores your data as usage profiles and uses it for the purposes of advertising, market research and/or demand-oriented design of its website. Such an evaluation is carried out in particular (even for users who are not logged in) to provide demand-oriented advertising and to inform other users of the social network about your activities on our website. You have the right to object to the creation of these user profiles, whereby you must contact Google to exercise this right. For more information on the purpose and scope of the data collection and its processing by the plugin provider, please refer to the provider's privacy policies.

The legal basis for the processing of your personal data using Google Maps is art. 6, para. 1, line f) GDPR. Data transmission to third countries without an adequacy decision is based on the recognised standard contractual clauses. Details can be found here and here.

For more information on handling user data, please see Google privacy policy. 

On our website, we use social plugins ("plugins") from Facebook, Twitter, YouTube, Xing and LinkedIn. We use plugins in particular to enable you to share content on our website with other users of social networks or to point them to such content. You can identify the provider of the respective plugin by its logo or initial letters.

When you visit our site, we do not initially transfer any personal data to the providers of the plugins. However, if you click on the highlighted field, personal data will be transferred directly from you to the provider of the respective plugin and processed by the provider – possibly in third countries, such as the USA. After clicking on the plugin field, a new window of your browser opens and calls up the page of the provider of the respective social network. Data is transferred to the provider of the respective plugin regardless of whether you have an account with the social network of the plugin provider. If you are logged in to the plugin provider, your data collected with us will be directly assigned to your existing account with the plugin provider.

We have no influence on the type and scope of data collected and processed through the use of the plugins, nor are we aware of the full scope of the data collection, the purposes of the processing or the storage periods. According to the provider of the plugins, the transmitted data includes, among other things, information about your browser, about the websites visited and the date and time of the visit. The plugin providers process this information, for example, to create user profiles of you and to display on-demand advertising. You have the right to object to the creation of these user profiles, whereby you must contact the respective plugin provider to exercise the right to object. For further information, please refer to the Internet pages and data protection notices of the respective providers.

The legal basis for the processing of your personal data using the social plugins is art. 6, para. 1, line f) GDPR. When using the services offered by Facebook, Twitter, YouTube and LinkedIn, data can be transferred to third countries worldwide, such as the USA. In these cases, we will ensure an adequate level of data protection in order to implement the requirements of European law. This is usually done using accepted standard contractual clauses and other suitable guarantees as appropriate.

Access to personal data is technically possible for service providers and contractual partners that we use for the operation of our websites. These third-party providers are obliged to use your personal data only to provide the services we request or otherwise in accordance with our instructions.

For the purposes specified in this privacy policy, DACHSER will transfer your personal data within the DACHSER Group and pass it on to the respective national subsidiaries. DACHSER companies are also located outside the European Union or the European Economic Area. DACHSER is responsible for informing you about your rights as a data subject within the framework of the applicable data protection laws. You can direct your enquiries and complaints regarding your personal data to DACHSER. The other DACHSER companies within the DACHSER Group, which also process your personal data, work with us and support us in responding to such requests or complaints.

Apart from the above data transfers, we will not transmit, sell or market your personal data to third parties, such as other companies or organizations, unless you have given your express consent to this, or the transfer is necessary to fulfil our contractual obligations to you, the user of the website.

The criterion for the duration of the storage of personal data is the respective legal retention period. After the expiry of the period we routinely erase the relevant data, provided that it is no longer required for the fulfilment of the contract or the initiation of the contract.

If the purpose of storage lapses or if a storage period prescribed by the European legislator or another competent legislator expires, the personal data will be routinely blocked or erased in accordance with the statutory provisions.

As a data subject, you are entitled to the rights set out in articles 15–21 GDPR against DACHSER if the conditions set out therein are met. These are the rights to information (art. 15 GDPR), rectification (art. 16 GDPR), erasure (art. 17 GDPR), restriction of processing (art. 18 GDPR), data portability (art. 20 GDPR) and the right to object (arts. 21 and 22 GDPR). Apart from this, you have the right to lodge a complaint with the supervisory authority pursuant to art. 77 GDPR.

Google Ads allows us to display ads in the Google search engine when users enter certain search terms on Google (keyword targeting). Google Ads is a service provided by Google Inc., 1600 Amphitheatre Parkway, Mountain View, CA 94043, USA. We use Google Ads to measure the number of visits that have come to our website through the display of ads in Google Search and to evaluate which search terms have led to the placement of our ads. Conversion tracking is done exclusively using the cookie-free web analysis tool etracker, which only collects statistical data. We do not use the remarketing function and you will not receive any further advertising from us after visiting our website. The legal basis for this data processing is our legitimate interest in optimising our online offer and our marketing measures. You can object to the aforementioned data processing at any time.

Provided that voluntary consent, which can be revoked at any time, has been given, we use the "Video Cloud" service of Brightcove Inc., 290 Congress Street, Boston, MA 02142, USA ("Brightcove") on some websites to provide and play videos. Brightcove hosts the videos and also provides the player that is embedded with videos on our website. During the connection to Brightcove's servers (when you watch embedded videos on the website), the provider uses cookies and collects device-related data.

Brightcove technologies are used, among other things, to present you with DACHSER videos that match the theme of the relevant websites. In addition, Brightcove Analytics makes it possible to analyse user access to the video content provided in order to improve the attractiveness and functionality of the website. To this end, Brightcove uses cookies and collects device-related data (e.g. browser information), including the IP addresses of users who access the video content provided. They are immediately saved after retrieval in a pseudonymised and non-personalised form. Brightcove does not store any personally identifiable information about users.

You can find Brightcove's privacy policy here: https://www.brightcove.com/en/legal/privacy

The legal basis for the use of Brightcove Analytics is consent pursuant to Art. 6 (1) sentence 1 lit. a of the German Data Protection Act (DSGVO). You can object to the use of the service via the "Privacy Settings" without losing any of the basic functionalities of the website.

We have taken the necessary precautions pursuant to Art. 44 et seq. GDPR to ensure an adequate level of data protection in the recipient country.

The “Google Tag Manager (GTM)” of Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland (“Google”), enables us to manage JavaScript and HTML tags for tracking and analysis with our own and third-party software. Tags are small code elements that help us measure traffic and visitor behaviour, understand the impact of our advertising, set up remarketing and targeting, and test and optimize our website. GTM is just an auxiliary service that facilitates the integration and management of our tags via an interface. GTM only implements tags, which means that it does not use its own cookies (in an empty state) and does not collect any personal data itself.

If deactivation has been carried out at domain or cookie level, it will remain in place for all tracking tags if they are implemented with Google Tag Manager. These processing operations are only carried out if express consent is given in accordance with Art. 6 para. 1 lit. a) GDPR. If you consent to the Advertising category in the cookie consent banner, we reserve the right to use Google Tag Manager for conversion tracking for our Google Ads campaigns. The Google Tag Manager GTM is only an auxiliary service that does not use its own cookies and does not collect any personal data itself.

Further information on Google Tag Manager and Google's privacy policy can be found at https://policies.google.com/privacy?hl=en and https://marketingplatform.google.com/about/analytics/tag-manager/use-policy/.

1. SAP is used as a service provider for the following purposes

• Provision of cloud services
• Data analysis and processing
• Technical support and maintenance

2. The following personal data may be processed by SAP:

• Name and contact details
• Usage data (e.g. IP address, log data)
• Contract data (e.g. contract number, service data)

3. Legal basis of the processing

The processing of your data takes place on the basis of:

• Art. 6 para. 1 lit. b GDPR (fulfillment of contract)
• Art. 6 para. 1 lit. f GDPR (legitimate interest)

4. Data transfer and order processing

• Your data will only be passed on to SAP if this is necessary to fulfill the above-mentioned purposes. SAP is contractually obliged to process your data in accordance with the applicable data protection regulations.

5. Storage period

• Your personal data will only be stored for as long as is necessary to fulfill the above-mentioned purposes or for as long as required by statutory retention periods.

1. Purpose of Data Processing

The processing of audio and video recordings, as well as their transcription, is carried out exclusively for documentation and training purposes.

2. Legal Basis

Data processing is based on your consent in accordance with Article 6(1)(a) of the GDPR. Consent is explicitly obtained before each recording. You may withdraw your consent at any time with future effect.

• Types of Processed Data
• The following data will be processed:
• Audio and video recordings

3. Transcriptions of recorded conversations

Metadata (e.g., date and time of the recording)

4. Retention Period

Data is stored for the duration necessary to fulfill the stated purposes or until you withdraw your consent. Generally, data is automatically deleted after 30 days unless legal retention obligations require otherwise.

5. Data Security

We implement technical and organizational measures to protect your data from unauthorized access, loss, or destruction.