Privacy Policy

The English Privacy Policy was translated on the basis of the German Privacy Policy (Datenschutzerklärung).

I. Scope of this Privacy Policy
Thank you for visiting our website www.egetrans.com and for your interest in our company. Protecting your personal data, e.g. date of birth, name, telephone number, address etc., is important to us. The purpose of this privacy policy is to inform you how your personal data obtained by us is processed, when you visit our website. Our privacy policy is compliant with the legal provisions of the EU Data Protection Basic Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following privacy policy is intended to comply with the information obligations arising pursuant to GDPR. Reference is made, for example, to Art. 13 and Art. 14 et seq. GDPR.

II. Controller 
The controller as defined in Art. 4 No. 7 GDPR is the person making the sole or joint decision regarding the purposes and methods of processing personal data. 

With regard to our website the controller is: 
EgeTrans Internationale Spedition GmbH 
Ludwigsburger Straße 70 
71672 Marbach am Neckar 
Germany
Email: info@egetrans.com 
Phone: +49 71449950 
Fax: +49 714499522

III. Contact details of the data protection officer 
We have appointed a data protection officer in accordance with Art. 37 GDPR. Our data protection officer can be contacted via the following details: 
Matthias Walliser 
Ludwigsburger Straße 70 
71672 Marbach am Neckar 
Germany
Email: datenschutz@egetrans.com

IV. Website provision and log file generation 
1. Description and scope of data processing
Every time you access our website, our system records data and information automatically from the respective device you are accessing our website from (e.g. computer, mobile phone, tablet, etc.) 

2. Which personal data is collected and to what extent is it processed? 
(1) Information about the browser type and the version used; 
(2) The operating system of the accessing device; 
(3) Host name of the accessing computer; 
(4) The IP address of the accessing device; 
(5) Date and time of access; 
(6) Websites and resources (images, files, other page content) accessed from our website; 
(7) Websites from where the user's system reached our website (referrer tracking); 
(8) Notification as to whether the access was successful; 
(9) Transferred amount of data 

This data is stored in the log files of our system. This data is not stored together with personal data belonging to a specific user, so individual site visitors are not identified.

3. Legal basis for the processing of data relating to a person 
Art. 6 (1), lit. f GDPR (legitimate interest). Our legitimate interest is to guarantee achievement of the purpose outlined below. 

4. Purpose of data processing
The temporary (automated) storage of the data is necessary for visiting the website in order to enable the website presentation. Personal data is also stored and processed for the purpose of maintaining website compatibility for as many visitors as possible and for preventing fraud and troubleshooting. To this end, it is necessary to log the accessing computer’s technical data, so that we can respond to display errors, attacks on our IT systems and/or functionality errors on our website as early as possible. Additionally, we also use the data to optimize the website and to ensure the general security of our IT systems. 

5. Duration of storage 
The above technical data is deleted as soon as it is no longer needed to guarantee the website’s compatibility for all visitors, but at the latest within three months of our website being accessed. 

6. Objection and erasure
At any time the user may object to the processing pursuant to Art. 21 GDPR and request the erasure of data pursuant to Art. 17 GDPR. For information about your rights and how to assert them, please refer to the lower section of this privacy policy.

V. Special functions of the website 
Our website offers a variety of functions which – when used by us – serve to collect, process and store personal data. We have provided an explanation of what happens to this data below: 

1. Application form 
(1) Scope of personal data processing
The data entered by you in the form fields of the application form and, if applicable, uploaded, will be processed to fulfill the purpose stated below. 

(2) Legal basis for processing personal data
Legal basis for processing personal data is Art. 6 para.1 lit. b GDPR (execution of (pre)contractual measures), Art. 88 para 1 GDPR in connection with § 26 BDSG. As far as special categories of personal data are processed which are necessary for the purposes of carrying out obligations and exercising specific rights in the field of employment and social security and social protection law according to Art. 9 para 2 b GDPR in connection with § 26 para 3 BDSG, such data is processed on this legal basis. As far as special categories of personal data beyond that are to be processed, explicit consent is required according to Art. 9 para 2 lit. a GDPR.

(3) Purpose of data processing
Reviewing and processing of the application documents uploaded by you via the application form. 

(4) Duration of storage
The data will be erased once the application has been processed and there is no longer any justified interest in storing the application data. Your application documents will be deleted after 6 months, unless an employment relationship is established.

(5) Objection and erasure
Please refer to the lower section of this privacy policy for information about your rights and how to assert them. 

(6) Necessity of providing personal data
The information on the application form is neither required by contract nor by law, but is necessary for sending and processing the application. If the required fields are not or not completely filled in, the application cannot be sent or processed.

2. Contact form(s) 
(1) Scope of personal data processing
The data entered in our contact forms, which has been entered into the input mask of the contact form. 

(2) Legal basis for processing personal data
Art. 6 (1) lit. a GDPR (consent by clear confirmatory act or conduct)

(3) Purpose of data processing
The data collected through our contact form(s) is only used for processing the specific contact request received by us via the contact form. 

(4) Duration of storage 
The data captured is deleted immediately after your request has been processed, provided that there are no statutory retention periods.

(5) Objection and erasure
The option for objection and erasure of the data are based on the general regulations outlined below in this privacy policy on the right of objection and erasure under data protection law. 

(6) Necessity of providing personal data
The use of contact forms is voluntary and is neither contractually nor legally required. You are not required to use the contact form to get in touch with us. You can also use the other contact options provided on our website instead. If you want to use our contact form, you must fill in the mandatory fields. If you do not fill in the mandatory fields of the contact form, you can either not send us the request or we cannot process your request. 

3. Login Area / Registration ET-Connect
(1) Scope personal data processing
The registration and login data you have entered or provided to us. 

(2) Legal basis for processing personal data
Art. 6 (1) lit. b GDPR ( execution of (pre)contractual measures) 

(3) Purpose of data processing
There is a separate login area on our website. In order to get access to this protected area you have to enter your login data (e-mail or user name and password) in the according form. If necessary we can send you your login or information about how to reset your password via e-mail upon request. 

(4) Duration of storage 
The collected data is stored as long as you maintain a user account with us. 

(5) Objection and erasure
Please refer to the lower section of this privacy policy for information about your rights and how to assert them.

(6) Necessity of providing personal data
In order to get access to the protected login area on our website it is necessary to enter personal data. If you want to use our login area, you have to fill in the mandatory fields (user name and password). It is only possible to access this area if you have a user account. It is not possible to log into this area if the data you entered is not correct or if you have not entered data at all. The remainder of the website can be accessed without login. 

VI. Automated credit assessment / scoring
If you want to conclude a contract with us, we reserve the right to carry out automated processing of your personal data in order to check your creditworthiness. Pursuant to Art. 22 (2 a) GDPR, we are also entitled to such an automated decision. It depends on the result of the automated credit assessment whether the contract can be concluded or not. A credit assessment is based on statistical probabilities of default. The credit assessment may include probability values (score values), which are based on scientifically recognized mathematical-statistical methods. A variety of factors, such as income, address data, occupation, marital status and previous payment behavior, are used to assess the customer’s future default risk. The result is expressed in the form of a payment value (score). The obtained information constitutes the basis of our decision regarding the establishment, execution or termination of a contractual relationship. If you believe that you have been unfairly excluded from the contract due to the credit assessment, you are welcome to send us an email explaining your position. We will examine the automated decision in accordance with Art. 22 (3) GDPR on a case-by-case basis. To carry out the credit assessment, we may store and process your personal data in accordance with Art. 6 (1) lit. b GDPR. 

We will transfer your data to the following provider(s) based on the impending contract in the following cases:

Automatic identity and credit check when selecting the payment methods “PayPal via PayPal Plus”, “Direct debit via PayPal Plus”, “Credit card via PayPal Plus” or “PayPal Plus invoice”.

(1) Scope of personal data processing
If you selected “PayPal via PayPal Plus”, “Direct Debit via PayPal Plus”, “Credit Card via PayPal Plus” or “PayPal Plus Invoice” as payment method, we will forward your personal customer data collected as part of the payment order to PayPal (Europe) S.à r.l. et Cie, S.C.A., 22-24 Boulevard Royal, L-2449 Luxembourg (hereinafter “PayPal Plus”). If you consent, the following data is relevant for the data transfer: First and last name, street, house number, postcode, city, date of birth, telephone number as well as details related to your purchase order.

(2) Legal basis for processing personal data
Art. 6 (1) lit. b GDPR ( execution of (pre)contractual measures) 

(3) Purpose of data processing
PayPal Plus carries out a credit assessment if one of the following payment methods is selected: “PayPal by PayPal Plus”, “Credit Card by PayPal Plus”, “Direct Debit by PayPal Plus” or “PayPal Plus Invoice”. Mathematical-statistical processes are used to determine a rating for the probability of default (so-called calculation of a scoring value). PayPal Plus uses the calculated scoring value as the basis for its decision to provide the respective payment method. The calculation of a scoring value is carried out according to accepted scientific procedures. Reference is also made to PayPal's privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full 

(4) Duration of storage
We keep the relevant data for the processing of the payment as long as it is necessary for the execution of the transaction. If the data are subject to legal storage obligations, they will be deleted after the expiry of the storage obligation. The duration of the data storage by PayPal is stated in PayPal’s privacy policy: https://www.paypal.com/de/webapps/mpp/ua/privacy-full 

(5) Objection and erasure
At any time the user may object to the processing pursuant to Art. 21 GDPR and request the erasure of data pursuant to Art. 17 GDPR. For information about your rights and how to assert them, please refer to the lower section of this privacy policy. 

VII. Statistical analysis of website visits - web tracker 
When this website or individual files on the website is / are accessed, we collect, process and store the following data: IP address, web page from which the file was retrieved, name of the file, the retrieval date and time, the data volume transmitted and the retrieval success notification (“web log”). We only use this access data in a non-personalized form with a view to continuously improving our website and for statistical purposes. We also use the following web trackers to evaluate visits to our website:

1. TrackJS
We use the TrackJS service provided by the company TrackJS LLC, 215 Pine Street West, Stillwater, MN 55082 USA, email: hello@trackjs.com, website: https://trackjs.com/, on our website. Processing also takes place in a third country that is not covered by a European Commission adequacy decision. So the usual level of protection provided by the GDPR cannot be guaranteed for transfer, since it cannot be ruled out that the likes of authorities can access the collected data in the third country.

The legal basis for the personal data transfer is your consent according to Art. 6 (1) (a) of the GDPR or Art. 9 (2) (a) of the GDPR, which you have given on our website.

The service enables tracking of individual users on our website.
You can revoke your consent at any time. You will find detailed information about revoking your consent either in the consent itself or at the end of this privacy policy.

You will find further information about how the transferred data is handled in the provider’s privacy policy at https://trackjs.com/privacy/.
 
2. Matomo (local)
(1) Scope of personal data processing
Our website contains a tracking code from Matomo (formerly Piwik), an open-source web analytics tool (https://matomo.org). We exclusively carry out web tracking without generating any connections between individuals and their data. Matomo is hosted on our own server infrastructure for this purpose. So transfer to third parties does not take place.

We collect, process and store user data concerning how our site is used (such as referrer links), how long a user spends on certain URLs, the clickstream and data about your browser settings (such as your browser operator and version, the screen resolution and the operating system you use).

The legal basis is Art. 6 (1) (f) of the GDPR, and the legitimate interest lies in analyzing the website.

We may also collect and store parts of your IP address and information about our website’s load speed. We can only create anonymous user profiles and obtain statistical information from this data. As part of our web tracking activities with Matomo, we also use cookies to distinguish repeat visitors to our site from first-time visitors. Cookies are small text files that are stored locally in your internet browser’s cache and contain a separate ID and potentially other technical information. The data collected in this respect shall not be merged with other personal data that we may have at our disposal without your prior separate consent.

(2) Legal basis for personal data processing
No connections are made between individuals and their data in many cases. Insofar as connections are made between individuals and their data, the legal basis for the collection is Art. 6 (1) (f) of the GDPR, and the legitimate interest lies in analyzing our website.

(3) Purpose of data processing
We carry out web tracking to analyze visitor flows, so we can anonymously monitor our website’s functionality and user-friendliness and continuously improve our website. We exclusively carry out web tracking for the purpose of collecting statistical, non-personal data.

(4) Duration of storage
We store all web tracking data collected using Matomo for an indefinite period of time, since it is only available to us in anonymized form. If the data is not anonymized, we will delete it after 12 months at the latest.

(5) Objection and erasure
You can prevent us from collecting and processing the aforementioned data by installing a JavaScript blocker to block the collection of other app analytics data. If a connection between you and your data is made, you may revoke your consent to this at any time according to the rules outlined in this privacy policy.

VIII. Incorporating external web services and processing data outside the EU
We use active content from external providers, known as web services, on our website. When you access our website, these external providers may receive personal information about your visit to our website. Data may be processed outside the EU in this regard. To prevent this, you can install an appropriate browser plug-in or deactivate the execution of scripts in your browser. This can lead to functional restrictions on websites you visit. 

We use the following external web services:

1. Unsplash
We use the Unsplash service provided by the company Unsplash Inc., Technologues Crew Labs, Les, 400 Rue McGill, Bureau 1, Montréal, QC, H2Y 4A3, Canada, email: support@unsplash.com, website: http://unsplash.com/, on our website. Processing also takes place in a third country outside the EU. This third country is covered by a European Commission adequacy decision. You will find an up-to-date list of all the adequacy decisions on the European Commission’s website (link: https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/adequacy-decisions_en).

The legal basis for the personal data transfer is your consent according to Art. 6 (1) (a) of the GDPR or Art. 9 (2) (a) of the GDPR, which you have given on our website.

The service is a plugin that we need so we can show you all the content on our website. The plugin makes our website more attractive and improves the experience for our site visitors. 
You can revoke your consent at any time. You will find detailed information about revoking your consent either in the consent itself or at the end of this privacy policy.

You will find further information about how the transferred data is handled in the provider’s privacy policy at https://unsplash.com/privacy.

2. PayPal
We use the PayPal service provided by the company PayPal (Europe) S.à r.l. et Cie, S.C.A., 22–24 Boulevard Royal, 2449 Luxembourg, Luxembourg, on our website. Personal data is transferred and processed exclusively on servers in the European Union.

The legal basis for the personal data transfer is the contract already concluded or still to be concluded between you and us according to Art. 6 (1) (b) of the GDPR.
We have integrated this service so we can show you the PayPal button along the bottom of our online shop, so you know what payment method you can use to make purchases from us.

You will find the rights you have in relation to processing at the end of this privacy policy.

You will find further information about how the transferred data is handled in the provider’s privacy policy at https://www.paypal.com/en/webapps/mpp/ua/privacy-full?locale.x=en_US.

IX. Information on the use of cookies
1. Scope of personal data processing
We integrate and use cookies on various pages to enable certain functions of our website and to integrate external web services. “Cookies” are small text files that your browser can store on your access device. These text files contain a unique string of text, which enables specific identification of your browser when you return to our website. The process of storing a cookie file is also known as “setting a cookie”. Cookies can be set by the website itself as well by external web services.

Cookies are set by our website or external web services in order to maintain the full functionality of our website, to improve the user experience or to pursue the purpose stated with your consent. Cookie technology also allows us to recognize individual visitors by pseudonyms, such as unique or random IDs, so that we can provide more individual services. Details are listed in the following table. 

2. Legal basis for personal data processing
Insofar as cookies are processed on the basis of consent pursuant to Art. 6 para. 1 lit. a GDPR, this consent includes the user’s consent in the meaning of § 25 para. 1 TTDSG for setting the cookie on the end user’s terminal equipment. Insofar as another legal basis is mentioned according to the GDPR (e.g. for the fulfillment of a contract or for the fulfillment of legal obligations), the storage or setting of cookies takes place on the basis of an exception according to § 25 para. 2 TTDSG. Consent under paragraph 1 is not required “where the sole purpose of storing information in the end user’s terminal equipment or the sole purpose of accessing information already stored in the end user’s terminal equipment is to carry out the transmission of a communication over a public telecommunications network; or where the storage of information in the end user’s terminal equipment or the access to information already stored in the the end user’s terminal equipment is strictly necessary for the provider of a telemedia service to provide a telemedia service explicitly requested by the user”. 

Which legal basis is relevant results from the cookie table below. 

3. Purpose of data processing 
The cookies are set by our website or external web services in order to maintain the full functionality of our website, to improve usability and to pursue the stated purpose for which you have given consent. Cookie technology also enables us to recognize individual visitors by means of pseudonyms, e.g. an individual or random ID, so that we can offer more customized services. Details are provided in the following table.

4. Duration of storage 
The cookies listed below are stored in your browser until they are deleted or, in the case of a session cookie, until the session has expired. Details are provided in the following table:

Cookie name: mayd_session
Server: www.egetrans.com
Provider: Website operator
Purpose: The cookie used assigns an ID to the site visitor and collects statistical data about the site visitor’s visits to the website. This is used to customize the advertising that is shown to the user.
Legal basis: Consent
Storage duration: Session
Type: Marketing

Cookie name: gdpr_settings_v4
Server: www.egetrans.com
Provider: Website operator
Purpose: This cookie is necessary for operating our website. Our website cannot run without this cookie.
Legal basis: Consent
Storage duration: approx. 30 days
Type: Basic functionality

Cookie name: _pk_id.1.691a
Server: www.egetrans.com
Provider: Website operator
Purpose: Using this cookie, we can store individual convenience settings that you select and keep them for your current and future visits to the site.
Legal basis: Consent
Storage duration: approx. 13 months
Type: Marketing

Cookie name: _pk_ses.1.691a
Server: www.egetrans.com
Provider: Website operator
Purpose: The cookie used assigns an ID to the site visitor and collects statistical data about the site visitor’s visits to the website. This is used to customize the advertising that is shown to the user.
Legal basis: Consent
Storage duration: approx. 31 minutes
Type: Configuration

Cookie name: ugid
Server: .unsplash.com
Provider: Unsplash
Purpose: The cookie used assigns an ID to the site visitor and collects statistical data about the site visitor’s visits to the website. This is used to customize the advertising that is shown to the user.
Legal basis: Consent
Storage duration: approx. 12 months
Type: Configuration

5. Objection and erasure
If you so desire, you can adjust your browser settings to categorically prevent the setting of cookies. You can then decide whether to accept cookies on a case-by-case basis, or categorically accept the setting of cookies. Cookies can be used for various purposes, e.g. to identify that your access device already has a connection to our website (permanent cookies) or to store your most recently viewed offers (session cookies). If you have expressly given us permission to process your personal data, you can revoke this permission at any time. Please note that this does not affect the legality of the processing, which has taken place on the basis of the consent given until revocation. 

X. Data security and data protection, communication by email 
When it is collected, stored and processed, your personal data is protected by means of technical and organizational measures to ensure that it is inaccessible to third parties. Since we cannot guarantee complete data security on the transmission path to our IT systems during unencrypted communication by email, we advise sending highly confidential information using encrypted communication or by post.

1. E-Mail auto archiving 
(1) Scope of personal data processing
We expressly inform you that our mail system has an automated archiving procedure. It digitally archives all incoming and outgoing emails in an audit-proof manner. 

(2) Legal basis for personal data processing 
Art. 6 (1), lit. f GDPR (legal obligation). The legal obligation consists of complying with specifications set down in fiscal law and commercial law (e.g. ss. 146 and 147 German Commercial Code (HGB)). 

(3) Purpose of data processing
The purpose of archiving is to comply with tax law (e.g. ss. 146, 147 German Tax Code (AO) - obligation to store e-mails of tax relevance) and commercial law provisions (e.g. ss. 238, 257 HGB - obligation to archive business correspondence). 

(4) Duration of storage 
Our email communication is archived until the retention requirements under fiscal and commercial law have expired. The storage period may be up to ten years. 

(5) Objection and erasure
At any time the user may object to the processing pursuant to Art. 21 GDPR and request the erasure of data pursuant to Art. 17 GDPR. For information about your rights and how to assert them, please refer to the lower section of this privacy policy. 

2. Handling of application documents 
If you have any questions about our email archiving system, please contact our data protection officer. We would also like to point out that we only consider application documents in PDF format. Zipped files (WinZip, WinRAR, 7Zip, etc.) are filtered out by our security systems and are not delivered. We disregard applications written in Word format or other file formats and will delete them without reading. Please note that it may be possible for third parties to open application documents sent in unencrypted format by email before they reach our IT systems. We assume that we may also answer unencrypted application emails in unencrypted format. If you would not like us to do so, please inform us to this effect in your application email. 

XI. Right to information and correction requests - Deletion & restriction of data - Revocation of consent - Right of objection,
1. Right to information
You have the right to request confirmation as to whether we process your personal data. If so, you are entitled to receive information regarding the information specified in Art. 15 (1) GDPR, provided that the rights and freedoms of other persons are not impaired (cf. Art. 15 (4) GDPR). A copy of the data is also available for you, if requested. 

2. Right to rectification
In accordance with Art. 16 GDPR, you have the right to have personal data (e.g. address, name, etc.), which we stored incorrectly, corrected at any time. You can also ask us to complete the data we have stored about you at any time. A corresponding correction will be made immediately. 

3. Right to erasure
In accordance with Art. 17 (1) GDPR, you have the right to demand the deletion of your personal data if

  • the data is no longer needed;
  • the legal basis for processing is no longer applicable due to the revocation of your consent;
  • you objected to the processing and there are thus no legitimate reasons for the processing;
  • your data is processed illegitimately;
  • a legal obligation requires it or a survey pursuant to Art. 8 (1) GDPR has taken place.

The right does not exist in accordance with Art. 17 (3) GDPR, if

  • the processing is necessary for exercising the right to freedom of expression and information;
  • your data has been obtained on the basis of a legal obligation;
  • the processing is necessary for public interest reasons;
  • the data is necessary for the assertion, exercise or defense of legal claims.

4. Right to restriction of processing
In accordance with Art. 18 (1) GDPR, in individual cases you are entitled to demand that the processing of your personal data be restricted. This applies, if

  • the accuracy of the personal data is disputed by you;
  • the processing is illegal and you do not consent to its deletion;
  • the data is no longer required for processing purposes, but the data collected is used to assert, exercise or defend legal claims;
  • an objection to the processing in accordance with Art. 21 (1) GDPR has been filed and it is uncertain which interests predominate.

5. Right to withdraw consent
If you expressly consent to the processing of your personal data (Art. 6 (1) lit. a GDPR or Art. 9 (2) lit. a GDPR), you may withdraw such consent at any time. It is important to bear in mind that this does not affect the legality of the processing, which took place on the basis of the consent given until withdrawal. 

6. Right to object
In accordance with Art. 21 GDPR, you have the right to object to the processing of your personal data at any time, which has been collected on the basis of Art. 6 (1) lit. f (within the scope of a legitimate interest). You are only entitled to do so, if special circumstances prevent storage and processing.

7. How do you exercise your rights? 
You can exercise your rights at any time by using the contact details below: 

EgeTrans Internationale Spedition GmbH 
Ludwigsburger Straße 70 
71672 Marbach am Neckar 
Germany
Email: info@egetrans.com 
Phone: +49 71449950 
Fax: +49 714499522 

8. Right to data portability
In accordance with Art. 20 GDPR, you are entitled to the transfer of your personal data. The data is made available by us in a structured, standard and machine-readable format. The data can be sent either to yourself or to a person designated by you. If requested, we provide you with the following data in accordance with Art. 20 para. 1 GDPR:

  • Data collected on the basis of express consent pursuant to Art. 6 (1) lit. a GDPR or Art. 9 (2) lit. a GDPR;
  • Data, which we have received from you pursuant to Art. 6 (1) lit. b GDPR under existing contracts;
  • data, which has been processed as part of an automated procedure.

The transfer of personal data directly to a person designated by you will be carried out as far as this is technically feasible. Note that we are not allowed to transfer data, which might affect the freedoms and rights of other persons according to Art. 20 (4) GDPR. 

XII. Right to lodge a complaint with a supervisory authority pursuant to Art. 77 (1) GDPR 
If you suspect that your data is being processed unlawfully on our website, you can naturally obtain judicial clarification of the issue at any time. In addition, you are free to pursue any other legal recourse. Regardless of this, you have the option of contacting a supervisory authority in accordance with Art. 77 (1) GDPR. In accordance with Art. 77 GDPR, you have a right to lodge a complaint in the EU member state of your place of residence, your workplace and/or the place of the suspected violation, i.e. you can choose the supervisory authority you wish to contact from the aforementioned locations. The supervisory authority with whom the complaint was lodged then informs you of the status and results of your petition, including the possibility of a judicial remedy according to Art. 78 GDPR.