pakadoo Privacy Policy

Thank you for your interest in our service. We take the protection of your personal data and its confidential treatment very seriously. We want the use of our website and apps to be as convenient and secure as possible for you.

Changes in the law or changes to our internal company processes make occasional adjustments to this privacy policy necessary. Therefore, please read the current privacy policy regularly.

Last change: February 18, 2022

1. Information about the processing of personal data

Personal data is information about a natural person whose identity is determined or can be determined, e.g. name, address, email address, telephone number. Information which does not allow any reference to a natural person is not personal data.

Processing means any procedure or series of procedures performed in connection with personal data, with or without the help of automated operations. These include collecting, recording, organizing, arranging, storing, adjusting, altering, reading, requesting, using, disclosing by transmission, dissemination or other means of provision, comparing, linking, restricting, erasing or destroying that data.

2. Processing and forwarding of personal data as well as purpose limitation

With your consent, pakadoo may also process personal data for the following purposes: When you contact us through telephone, email or using an online contact form, we will process the data you disclose (such as your email address, your name (including title) and your telephone number) so we can answer your questions. When we no longer need to process the data accumulated in this context, we will erase them or, if statutory retention duties exist, restrict their processing.

With your consent, pakadoo may also process personal data for the following purposes:

  • Activations and registrations
  • Information requests or complaints
  • Newsletter subscriptions
  • Participation in competitions or surveys

The data entered during registration will be collected and stored exclusively to use our services. When you register on our site, we will also store the date and time of your registration. The date of birth must be specified during registration, as we are obliged to ensure that no FSK18-liable parcels are handed over to people under 18 years of age.

The information captured helps pakadoo to offer you as the website user a standardized user experience which is customized to you. For example, pakadoo may use your voluntarily granted information to:

  • manage the business relationship with you,
  • send you notifications about our services,
  • provide and improve service and support,
  • keep you up to date about new services and benefits,
  • present you with personalized ads,
  • allow you to participate in surveys,
  • implement statistical collections

pakadoo will not forward your personal data to third parties unless this is prescribed by law or necessary to execute the contract, or if we have your express consent.

Your personal data will not be transmitted to governmental institutions or authorities unless this is required by compulsory national legal regulations. We obligate our employees to confidentiality.

Whenever you visit our website, our web server will store the following as standard, among other data: information about the browser and operating system you use, the website from which you visit us, which websites you visit while on our site, the data of the visit and, for security reasons (such as to recognize attacks on our website), the IP address assigned to you by your internet service provider.

3. Processing your data as part of an application procedure

If you have applied to us, we process the personal data you provide to us during the application process exclusively for the purposes of our application and recruitment process.

We will not disclose your personal data to third parties unless, in exceptional cases, we are legally obliged to do so by law (e.g. to prosecuting authorities if we suspect that a criminal offence has been committed).

If you send the data by email or via a contact form of a job portal, the data will be processed electronically. Your application data will be stored and, if necessary, deleted in accordance with the statutory provisions.

4. Hosting of our website

We host our website at DomainFactory GmbH, Oskar-Messter-Str. 33, 85737 Ismaning (hereinafter DomainFactory) When you visit our website, DomainFactory collects various log files including your IP addresses. For details, please refer to DomainFactory’s privacy policy.

The provider of our website automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • browser type and browser version
  • Operating system used
  • referrer URL
  • Host name of the accessing computer
  • Time of the server request
  • IP address

This data is not merged with other data sources.

The collection of this data is based on Art. 6 para. 1 lit. f DSGVO. We have a legitimate interest in the technically error-free presentation and optimization of our website – for this purpose, the server log files must be collected. Insofar as a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. for device fingerprinting) as defined by the TTDSG. The consent can be revoked at any time.

We have concluded a contract on order processing (AVV) with the above-mentioned provider. This is a contract required by data protection law, which ensures that this provider only processes the personal data of our website visitors in accordance with our instructions and in compliance with the DSGVO.

5. Use of Microsoft Teams

In order to conduct conference calls, online meetings, video conferences and/or webinars (hereinafter: online meetings), we use Microsoft Teams, a service of Microsoft Corporation. If we want to record online meetings, we will transparently tell you in advance and – if necessary – ask for your consent.

Insofar as you call up the Microsoft Teams website, the Microsoft Teams provider is responsible for data processing. However, accessing the website is only necessary to use Microsoft Teams in order to download the software for using Microsoft Teams. If you do not want to or cannot use the Microsoft Teams app, you can also use Microsoft Teams via your browser. However, the service will then also be provided via the Microsoft Teams website.

When using Microsoft Teams, the scope of the processed data also depends on the information you provide before or when participating in an online meeting, e.g. your display name (“Display name”), if applicable your email address and your profile picture (optional). Furthermore, your preferred language and meeting metadata are processed: e.g. date, time, meeting ID, phone numbers, location text, audio and video data. If you use the chat function in an online meeting, the text entries you make are processed to display them in the online meeting. To enable the display of video and the playback of audio, the data from the microphone of your terminal device and from any video camera of the terminal device are processed accordingly during the meeting. You can turn off or mute the camera or microphone yourself at any time via the Microsoft Teams applications.

The legal basis for data processing when conducting online meetings is Art. 6 (1) lit. b) DSGVO, insofar as the meetings are conducted in the context of contractual relationships. If there is no contractual relationship, the legal basis is Art. 6 (1) f) DSGVO. Here, too, our interest is in the effective conduct of online meetings.

Personal data processed in connection with participation in online meetings will generally not be disclosed to third parties unless it is specifically intended for disclosure. Please note that content from online meetings, as well as face-to-face meetings, is often used to communicate information with customers, prospects, or third parties and is therefore intended for disclosure.

The Microsoft Teams provider necessarily obtains knowledge of the above-mentioned data to the extent provided for in our order processing agreement with Microsoft Teams. Data processing outside the European Union (EU) does not take place as a matter of principle, as we have restricted our storage location to data centers in the European Union. However, we cannot exclude the routing of data via internet servers that are located outside the EU. This may be the case in particular if participants in “Online Meeting” are located in a third country. However, the data is encrypted during transport over the Internet and thus protected against unauthorized access by third parties.

6. Newsletter

We use our newsletter to inform you about our service and offers. You will receive the newsletter only after you register for it and give us your express permission to send it.

If you would like to receive the newsletter, we need you to send us a valid email address and information enabling us to verify that you are the owner of that address, or that the owner agrees to receive the newsletter. No further data will be collected. These data will be used only to send the newsletter and will not be forwarded to third parties.

When you register for the newsletter, we will store your IP address and the date of registration. It is stored only for documentation purposes, in case a third party misuses an email address and registers to receive the newsletter without the knowledge of the rightful owner of that address.

You may at any time withdraw your consent to store your personal data and use it to send the newsletter. You may withdraw that consent either using a link in the newsletter itself, or by notifying us at service@pakadoo.de.

7. Newsletter dispatch via Mailchimp

The newsletter is sent using the dispatch service provider Mailchimp, a newsletter dispatch platform of the US provider Rocket Science Group, LLC, 675 Ponce De Leon Ave NE #5000, Atlanta, GA 30308, USA, which belongs to Intuit Inc, 2535 Garcia Ave, Mountain View, CA, 94043-1111, USA.

Mailchimp may use the recipients data in pseudonymous form, i.e. without assigning it to a person. However, this is only done to optimize or improve its own services, e.g. for technical optimization of the dispatch, for better presentation of the newsletters or for statistical purposes. However, MailChimp does not use your data to write to you itself or to pass your data on to third parties.

Furthermore, Mailchimp evaluates performance data, such as the delivery statistics of emails and other communication data. This information is used to compile usage and performance statistics of the services.

Mailchimp additionally collects information about you from other sources. In an unspecified period and scope, personal data is collected via social media and other third-party data providers. We have no control over this process.

For more information on objection and removal options vis-à-vis Mailchimp, please see Intuit’s privacy policy. The legal basis for these processing operations is your consent pursuant to Art. 6 (1) lit. a DSGVO. You can revoke your consent to the processing of your personal data at any time. A corresponding link can be found in all mailings. In addition, the revocation can be made via the specified contact options. By declaring the revocation, the lawfulness of the processing carried out so far is not affected.

Your data will be processed as long as a corresponding consent exists. Apart from that, they will be deleted after the termination of the contract between us and Mailchimp, unless legal requirements make further storage necessary.

Mailchimp has implemented compliance measures for international data transfers. These apply to all global activities that process personal data of individuals in the EU. These measures are based on the EU Standard Contractual Clauses (SCCs).

8. Including third-party content and services; using external service providers

Our online services might include third-party content, such as videos from YouTube or media libraries or graphics from other websites. This always assumes that the provider of these contents (“third-party provider”) can perceive the user’s IP address, since that provider cannot otherwise send those contents to the browser of the user in question. Therefore, the IP address is necessary to display the contents. We strive to use only contents whose provider uses the IP address only to deliver those contents. However, we have no influence over whether the third-party provider might use the IP address for statistical purposes, for example. If we learn that this is happening, we will let the user know.

We commission external service providers (such as computer centers) for certain activities in connection with our website. Those service providers process personal data exclusively on our instructions, and we have obligated them to treat the data in compliance with data privacy laws. Those service providers may not use for their own purposes the data collected and processed within the framework of our website.

9. Cookies

We use cookies on our site to recognize if the same users or the same internet connection owners use our services multiple times. Cookies are small text files which your browser places and stores on your computer. Cookies do not damage your computer and contain no viruses. They serve merely to optimize our online presence and services. Most are known as “session cookies,” which are deleted after your visit is over. However, these cookies can sometimes provide information to help us recognize you again automatically. This recognition takes place due to the IP address stored in the cookies. The information gained in this way helps us optimize our services and make it easier for you to access our website.

You can prevent cookies from being installed by adjusting your browser settings appropriately, but we must point out that if you do, you might not be able to use all of our website’s functions to their full extent.

You can change or renew your cookie consent via the Cookiebot widget, which you can access via the round button at the bottom left of the website.

10. Use of Cookiebot

We use the consent management service Cookiebot from Cybot A/S, Havnegade 39, 1058 Copenhagen, Denmark (Cybot) as our cookie consent management method. This allows us to obtain and manage consent from website users for data processing. The processing is necessary to comply with a legal obligation (Art. 7 para. 1DSGVO) to which we are subject (Art. 6 para. 1 p. 1 lit. c DSGVO). For this purpose, the following data is processed with the help of cookies

  • Your IP address (the last three digits are set to ‘0’).
  • Date and time of consent
  • Browser information URL from which the consent was sent.
  • An anonymous, random and encrypted key
  • Your consent status as proof of consent

The key and consent status are stored in the browser for 12 months using the “CookieConsent” cookie. This preserves your cookie preference for subsequent page requests. With the help of the key, their consent can be proven and tracked.

If you enable the “Collective Consent” service feature to enable consent for multiple web pages through a single end-user consent, the service will also store a separate, random, unique ID with your consent. If all of the following criteria are met, this key is stored in the third-party cookie “CookieConsentBulkTicket” in your browser in encrypted form: you enable the collective consent feature in the service configuration. You allow third-party cookies via browser settings. You have disabled “Do not track” via browser settings. You accept all or at least certain types of cookies when you give consent.

The functionality of the website is not guaranteed without the processing.

Cybot is a recipient of your personal data and acts as a processor for us. The processing takes place in the European Union. For more information on opt-out and opt-out options vis-à-vis Cybot, please see Cookiebot’s Privacy Policy.

Your personal data will be deleted on an ongoing basis after 12 months or immediately after termination of the contract between us and Cybot.

Please refer to our general explanations about the deletion and deactivation of cookies under point 9.

11. Use of Google Analytics

On our website, we use Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics also uses cookies, which allow us to analyze how you use our website. The information the cookie generates about how you use our website is normally transmitted to a Google server in the USA and stored there. If IP anonymization is activated on this website, however, Google will truncate your IP address in advance within member states of the European Union or other contracting states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. For more information, please see the Google Analytics Terms of Use and Google’s Privacy Policy.

Google will use this information on our behalf to evaluate your use of our website, assemble reports on website activities, and render further services for us which are related to website and internet use. The IP address that your browser has transmitted as part of Google Analytics will not be combined with other Google data. We have concluded a contract on commissioned data processing with Google Analytics so that personal data can be treated in compliance with data privacy laws.

You can prevent Google from capturing or processing the data the cookie generates about your use of the website (including your IP address) by downloading and installing the browser plug-in.

We also use Google Analytics to evaluate data from AdWords and the Double Click cookie for statistical purposes. If you do not wish this, you can deactivate it via Settings for advertising.

We point out that Google Analytics is extended by the code “gat._anonymizeIp();” on our website to guarantee that captured IP addresses are anonymized (known as “IP masking”).

As an alternative to the browser add-on, which you can download and install here, or within browsers on mobile devices, please click this link to prevent the collection by Google Analytics within this website in the future (the opt-out only works in this browser and only for this domain). This will place an opt-out cookie on your device. If you delete your cookies in this browser, you must click this link again.

12. Google Tag Manager

We use the Google Tag Manager on our website. The Tag Manager does not collect any personal data. The tool takes care of triggering other tags, which in turn may collect data. The Google Tag Manager does not access this data. If a deactivation has been made at the domain or cookie level, this remains in place for all tracking tags implemented with Google Tag Manager.

For more information, see the Google Tag Manager User Policy.

13. Use of Google Fonts

External fonts – Google Fonts – are used on our website. Google Fonts is a service of Google Inc. The integration of these web fonts takes place by a server call, usually a server of Google in the USA. This means that the server will know which of our websites you have visited. The IP address of the browser of the terminal used for this purpose is also stored by Google. You can find more detailed information on this in Google’s data protection information.

14. Google Maps

We use the map service Google Maps in our app. The provider is Google Ireland Limited (“Google”), Gordon House, Barrow Street, Dublin 4, Ireland. The processed data may include, in particular, your IP address and location data, which, however, will not be collected without your consent (usually completed as part of the settings of your mobile devices). This information is usually transferred to a Google server in the USA and stored there.

As the provider of this website, we have no influence on this data transmission. If Google Maps is activated, Google may use Google Web Fonts for the purpose of uniform display of fonts. When calling up Google Maps, your browser loads the required web fonts into its browser cache in order to display texts and fonts correctly.

The use of Google Maps is in the interest of an appealing presentation of our online offers and an easy location of the places indicated by us in the app. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. A DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

Data transfer to the USA is based on the standard contractual clauses of the EU Commission. More information on the handling of user data can be found in Google’s privacy policy.

By installing the browser add-on, you can deactivate the use of data by Google.

15. OpenStreetMap

We use the map service of OpenStreetMap (OSM) on our website. We host OpenStreetMap on the server of the following provider: DomainFactory GmbH, Oskar-Messter-Str. 33, 85737 Ismaning. OSM is used to provide an interactive map on our website that shows you where you can find public pakadoo points and parcel locker locations. In doing so, among other things, your IP address and other information about your behavior on this website may be forwarded to OSMF. OpenStreetMap may store cookies in your browser or use similar recognition technologies for this purpose.

The use of OpenStreetMap is in the interest of an appealing presentation of our online offers and an easy location of the places indicated by us on the website. This represents a legitimate interest within the meaning of Art. 6 para. 1 lit. f DSGVO. If a corresponding consent has been requested, the processing is carried out exclusively on the basis of Art. 6 para. 1 lit. a DSGVO and § 25 para. 1 TTDSG, insofar as the consent includes the storage of cookies or access to information in the user’s terminal device (e.g. device fingerprinting) within the meaning of the TTDSG. The consent can be revoked at any time.

More information on the handling of user data can be found in OSM’s privacy policy.

16. Use of WeTransfer

To transfer files over the Internet, we use WeTransfer BV, Oostelijke Handelskade 751, Amsterdam, 1019 BW, The Netherlands for large files. For information about WeTransfer’s privacy policy, please see WeTransfer’s Privacy and Cookie Policy.

17. Use of bizographics.com

The bizographics.com web service of LinkedIn Ireland Unlimited Company, Wilton Plaza, Wilton Place, Dublin 2, IRL is downloaded from our website. We use this information to ensure the full functionality of our website. In this context, your browser may submit personally identifiable information to bizographics.com. The legal basis for data processing is Art. 6 Para. 1 lit.f DSGVO. The justified interest consists in an error-free function of the Internet page. The data will be deleted as soon as the purpose of its collection has been fulfilled.

Further information on the handling of the transferred data can be found in the privacy policy of bizographics.com. You can prevent the collection and processing of your data by bizographics.com by deactivating the execution of script code in your browser or by installing a script blocker in your browser.

18. Use of Freshdesk

We use Freshdesk, a help desk and ticketing software from Freshworks, Inc, 2950 S. Delaware Street, Suite 201, San Mateo CA 94403, USA, to assist our Customer Service in managing support requests. This software allows us to store, track, respond to, and otherwise manage user requests. For information on the handling of transferred data, please see Freshdesk’s privacy policy.

19. Use of Calendly

We use Calendly, an online appointment scheduling tool from Calendly LLC, 271 17th St NW, Ste 1000, Atlanta, Georgia 30363, USA, on our website. This tool provides an external platform for making appointments. The appointment scheduling is not directly integrated into the pakadoo website, but must be explicitly opened via separate buttons. This ensures that no data is transferred to the external service without your clear consent. By using the appointment scheduling service you automatically use the services of Calendly.com. There, data is transferred that serves the security and documentation of pakadoo GmbH. The data collected includes Name, IP address at the time of the appointment, agreed date and time. This data is not passed on to third parties and is only used for administration and organisation of your request for the appointment as well as for internal statistics. By using the appointment service you agree to this.

For more information on how Calendly handles user data, please see the Calendly Privacy Policy.

20. Use of Font Awesome

Our website uses the web fonts of Font Awesome for the consistent display of fonts. These are integrated via the provider BootstrapCDN. BootstrapCDN is a company of MaxCDN, LLC, 3575 Cahuenga Blvd. West, Suite 330, Los Angeles, CA 90068, USA. Through the integration of Font Awesome, a direct connection to the servers of MaxCDN is established when visiting our website. The fonts can only be transmitted by MaxCDN directly to your browser, which then embeds them into the website. By using Font Awesome, information about the use of our website, including your IP address, is transmitted to a server of MaxCDN in the USA and stored there.

The purpose of the collection is a uniform presentation of the fonts and icons offered by Font Awesome. The legal basis is therefore our legitimate interest in the uniform presentation in accordance with Art. 6 (1) lit. f) GDPR. The data is deleted as soon as you leave our website.

For more information on the collection and processing of your data by MaxCDN as well as your data subject rights in this regard, please refer to the MaxCDN privacy policy.

21. Online presence on social media and social plug-ins

We maintain an online presence on various social networks and platforms, such as Facebook, Instagram, LinkedIn, Twitter, YouTube, SlideShare and Xing, to communicate with users and interested parties or inform them about our services. When one of these social networks is accessed, its business conditions and data privacy notices will apply.

On our website, we use social plug-ins (“buttons”) from the social networks and platforms.

When you visit our website, these buttons are deactivated as standard, so they will not send any data to their respective social network without further action on your part. Before you can use a b6tton you must activate it with a click. The button will remain active until you deactivate it or delete your cookies.

Activating a button establishes a direct connection with the server of the social network in question. Then the social network will transmit the button’s content directly to your browser, which will incorporate that content into the website.

After a button is activated, the social network in question can collect data regardless of whether you interact with the button. If you are logged into a social network, that network can assign your visit to this website to your user account.

If you are a member of a social network but do not want that network to connect your stored member data with the data collected during your visit to our website, you must log out of the social network in question before activating the button.

We have no influence over the scope of the data that social networks collect with their buttons. Please refer to a particular social network’s business conditions and data processing notices to learn the scope and purpose of that network’s collection, processing and use of data, your rights in the matter, and how to change settings to protect your privacy.

Facebook and Instagram are products of Meta Platforms Ireland Limited. For information about privacy at Facebook and Instagram, see Meta’s data policy.

For information on privacy at Twitter, please refer to Twitter’s Privacy Policy.

For information on data protection at Youtube, please refer to Youtube’s terms of use and Google’s privacy policy.

For information on privacy at LinkedIn, please refer to LinkedIn’s privacy policy.

For information on privacy at slideshare, see the privacy policy of Scribd.

For information on privacy at Xing, see Xing’s data privacy information.

22. Amazon partner program

Due to our legitimate interest in operating our online services profitably, we participate in Amazon EU’s partner program. This program reimburses us for advertising costs if we place ads and links to amazon.de (known as an “affiliate system”). This means that we earn money on qualified purchases as an Amazon partner.

Amazon uses cookies to trace the origin of the orders. Among other things, Amazon can recognize that you have clicked the partner link on this website and then purchased a product on Amazon. You can find additional information about data use by Amazon, and your options to object, in Amazon’s data privacy statement.

23. Security

We use technical and organizational security measures to protect your data which we are processing against manipulation, loss, destruction and unauthorized access. Our security measures are continually improved to keep up with technological advancements.

Those measures include SSL encryption, which we use on our website for security reasons and to protect the transmission of confidential content such as inquiries which you send us as the site operators. You can recognize an encrypted connection when your browser’s address line changes from “http://“ to “https://“ and a padlock icon appears in your browser line. Whenever SSL encryption is activated, the data which you transmit to us cannot also be read by third parties.

24. Your rights

Under the EU-GDPR, you have the following rights towards us regarding the personal data concerning you:

  • Right of access to information (Art. 15 EU-GDPR)
  • Right to rectification or erasure (Art. 16, 17 EU-GDPR)
  • Right to restriction of processing (Art. 18 EU-GDPR)
  • Right to data portability (Art. 20 EU-GDPR)
  • Right to object to the processing (Art. 21 EU-GDPR)

To assert these rights toward pakadoo, you must use “text form” (§ 126b BGB (German Civil Code) directed to the following email addresses: datenschutz@pakadoo.de or service@pakadoo.de.

25. Contact

If you have any questions regarding the processing o0f your personal data, you are welcome to contact our data protection officer or send him the completed complaint form:

Mr. Balázs Venter / email: datenschutz@pakadoo.de