Data protection information at a glance
High data protection standards are integral to the Deutsche Post DHL Group brand, and just like IT security is of critical importance to our business operations. As a global company whose business model is based on connecting people and transferring data and content securely, we believe we have a special responsibility in this regard.
The following information is intended to provide you with an overview of how your data are processed. As such, you will find information applicable to all products and services in the general section, Part A. Part B provides you with information regarding the data processing connected with your visit to this website. The details regarding the processing for particular ‘products and services’ can be found in Part C in the links provided there. Information relating to application procedures you will find in our career portals.
A) General section
1. Contact data
Name and contact details of the Data protection officer
Deutsche Post AG
Gabriela Krader, LL.M
2. Purposes of data processing – general information
We process your data in order, for instance, to
- perform the contract concluded with you or a sender,
- make visits to our websites/apps as pleasant as possible,
- send you the newsletter if you subscribe to it,
- send you or display to you – where permitted – targeted advertising,
- carry out a credit check, where necessary,
- handle your requests via our customer service department,
- fulfil obligations as part of statutory requirements (e.g., Code of Criminal Procedure, Foreign Trade and Payments Act),
- fulfil our security requirements (e.g., for crime detection purposes),
- compile statistics,
- and for purposes of quality assurance, process optimisation and planning certainty.
You can find further details, including the type of data, the purpose of processing and the legal basis, below under the relevant products and services.
3. You have the following rights as a data subject:
- Right of access regarding the data that we have on file concerning you.
- Right to rectification of any incorrect data that we may have on file concerning you.
- Right to erasure regarding data that are no longer required for the purpose stated or – where a requirement to store data exists – right to restriction of processing.
- Right to data potability in a structured, standard and machine-readable format.
- Right to object if the processing of your data is based upon a legitimate interest/to its use for advertising purposes/to a decision based solely upon automated processing, including profiling.
- Right to lodge a complaint with the competent supervisory authority if you have doubts about whether the processing of your data complies with data protection regulations.
If you would like to assert your rights, please contact the following authorities: By post sent to the following e-mail sent to: firstname.lastname@example.org.
If you would like to exercise your right to object – in particular to the use of your data for advertising purposes – please contact the authorities listed under the relevant ‘products and services’.
If you have given your consent to a particular type of processing, you may revoke this consent at any time, effective for the future, via the channel indicated in the declaration of consent. The latter can be found in the detailed information regarding ‘products and services’ where the consent was requested.
4. Storage period
Your personal data will be stored for as long as is necessary for the processing purpose being pursued or as is required by law, such as pursuant to commercial or tax regulations. Where such statutory periods do not exist, the data will be stored for contract performance and invoicing purposes and as proof of the correct performance of the contract, until the liability periods expire, and it will subsequently be erased.
5. Data recipients
Your data will in any case only be made available to authorised employees. Group-wide processes, such as in the area of outsourced IT and customer care services, may make provision for employees in other Group companies to also have legitimate access to your data, in addition to the authorised employees from the Group company that is responsible for your data.
Insofar as it is permitted by law or by mandatory professional standards, we disclose data to authorities outside the Group, such as social insurance carriers, public authorities, courts, banks, tax offices, creditors, receivers and service providers that are not part of Deutsche Post DHL Group.
If another Group company or a non-Group company operates as a service provider, this is covered by contractual agreements.
If personal data are transmitted to other Group companies in so-called third countries outside the European Economic Area, this occurs in compliance with the Deutsche Post DHL Corporate Data Protection Guidelines, which ensure that our Group companies around the world process these personal data in accordance with European standards. Our Corporate Data Protection Guidelines are approved by European supervisory authorities as so-called Binding Corporate Rules (BCR). For a summary of their content, please refer to: http://www.dpdhl.com/content/dam/dpdhl/homepage/dpdhl-konzerndatenschutzrichtlinie-zusammenfassung.pdf