1. Purpose & Scope
This notice (“Privacy Notice”) explains how and why sennder Technologies GmbH and its affiliated sennder companies (together “sennder” or “we”) handle personal data when you use our websites, platforms, apps, or freight forwarding services.
We wrote this Privacy Notice for real people who book, move, or deliver loads – so it’s as short on legalese as possible and puts a focus on clarity. Think of this document as the tracking system for your personal data – reading it will let know where, how, and why your personal data is used and help you understand your privacy rights under the GDPR, the UK GDPR, and the KVKK (Turkish Personal Data Protection Law, Law No. 6698).
If you only read one line: We use your personal data to plan, execute, track, and settle road freight safely and efficiently. We value your trust and protect your personal data with state-of-the-art security measures. If you have any questions or concerns, please contact us at privacy@sennder.com.
2. Contact Details
2.1. Controller
The responsible controller for your personal data is:
To coordinate logistics across country borders, we process your personal data jointly within the sennder group. The sennder group consists of sennder Technologies GmbH and all its affiliated sennder companies. You can find the list of all local entities at sennder.com/contact. The sennder group has agreed internally that sennder Technologies GmbH serves as your main point-of-contact for requests and the information obligations under data protection laws. Nevertheless, you can assert your rights against each individual controller.
2.2. Data Protection Officer
We’ve appointed an external data protection officer – like a safety inspector, but for your data. You can reach the data protection officer at the address below or via a coordinator at privacy@sennder.com.
IITR Datenschutz GmbH
attn. Data Protection Officer (sennder)
Eschenrieder Straße 62c
82194 Gröbenzell, Germany
3. How and why do we use your Personal Data?
3.1. Visitors of our Online Services
When you access our website, one of our portals, apps, or other digital services provided by sennder (“Online Services”), we store analytical data about you in log files on our server.
What personal data do we collect? | Why do we use your personal data? | What is the legal basis for us to use your personal data? |
Technical Information (e.g., IP address, browser type, device information, operating system, referring website) | To ensure our Online Services function properly and securely as you expect To detect and prevent bugs and security threats | Legitimate interest: Ensuring the security and functionality of our Online Services |
Usage Data (e.g., pages visited, time spent, click patterns, search queries) | To understand how you use our Online Services and improve your user experience To identify which services are most relevant to users | Legitimate interest: Improving our Online Services and providing more efficient logistics solutions |
Location Data (e.g., general geographic location based on IP address) | To show the right content in your language To display relevant shipping routes and pricing | Legitimate interest: Ensuring the security and functionality of our Online Services Legal obligation: Compliance with local laws |
Cookies (e.g., session cookies, persistent cookies, local storage, tracking pixels) Note: Where we use cookies, we inform you about the name, type and purpose of the cookies in the applicable cookie settings available on our Online Services. | To remember your preferences and login status To understand how you use our Online Services and improve your user experience To measure marketing campaign effectiveness | Legitimate interest: Essential cookies are necessary for security and functionality of our Online Services Consent: Analytics and marketing-related cookies require your consent, which you can manage through our cookie settings. In this case, we only process your personal data once you have given your consent. |
3.2. Shippers/Customers
If you place transport orders with us as a shipper or otherwise trust us to deliver shipments for you as one of our customers, we store some limited personal data of the contact person(s) that reach(es) out to us.
What personal data do we collect? | Why do we use your personal data? | What is the legal basis for us to use your personal data? |
Identity & Contact Information (e.g., name, job title, company name, address, email address, telephone number) | To identify you and manage your customer account To communicate about shipments and service updates To provide customer support and resolve issues | Performance of contract: Fulfilling our logistics contract with you
|
Communication Records (e.g., emails, chat messages, phone call logs) Note: We may use artificial intelligence to analyze emails sent to us about spot business opportunities. This allows us to get you the best offers faster. If you don’t want that, you can opt-out at any time by sending an email to privacy@sennder.com. | To communicate about shipments and service updates To provide customer support and resolve disputes To identify transport orders and business opportunities To maintain records of service instructions and agreements To improve service quality through training | Legal obligation: Compliance with tax and accounting laws that require retention of business communication Performance of contract: Fulfilling our logistics contract with you Legitimate interest: Improving our logistics operations by analyzing communication to provide better bids and to train operators in resolving incidents more efficiently |
Financial Information (e.g., ID document of beneficial owner, billing contact point, company details, credit history, invoicing details, payment method) | To prevent fraud and ensure compliance with sanctions and legal requirements To process payments for freight services To assess creditworthiness and set payment terms | Legal obligation: Compliance with sanctions laws and know-your-customer (KYC) requirements Performance of contract: Fulfilling our logistics contract with you Legitimate interest: Preventing fraud or non-payment of our services |
3.3. Carriers
If you carry out transport orders for us as a carrier, we store your company information, documents received during the vetting process, and some limited personal data of the contact person(s) that reach(es) out to us.
What personal data do we collect? | Why do we use your personal data? | What is the legal basis for us to use your personal data? |
Identity & Contact Information (e.g., name, job title, company name, address, email address, telephone number) | To identify you and manage your carrier account To communicate about shipments and service updates To provide carrier support and resolve issues | Performance of contract: Fulfilling our logistics contract with you |
Communication Records (e.g., emails, chat messages, phone call logs) | To communicate about shipments and service updates To provide carrier support and resolve disputes To let you know about transport orders and business opportunities To maintain records of service instructions and agreements To improve service quality through training | Legal obligation: Compliance with tax and accounting laws that require retention of business communication Performance of contract: Fulfilling our logistics contract with you Legitimate interest: Improving our logistics operations by training operators in resolving incidents more efficiently |
Financial Information (e.g., ID document of beneficial owner, billing contact point, company details, credit history, invoicing details, payment method) | To prevent fraud and ensure compliance with sanctions and legal requirements To process payments for freight services To set payment terms | Legal obligation: Compliance with sanctions laws and know-your-customer (KYC) requirements Performance of contract: Fulfilling our logistics contract with you Legitimate interest: Preventing fraud |
License & Insurance Data (e.g., transport license, operating permits, professional certifications, insurance policies, coverage amounts, claims history) | To complete the carrier vetting process To prevent fraud and ensure compliance with transport regulations To verify adequate insurance coverage for damages | Legal obligation: Compliance with transport regulations Legitimate interest: Ensuring all carriers meet our legal and quality standards to protect our business and our customers from damages |
Vehicle & Fleet Information (e.g., truck specifications, license plates, vehicle inspection records, safety ratings) | To match transport orders to appropriate vehicles To ensure safe and compliant shipments | Legal obligation: Compliance with transport regulations Legitimate interest: Offering our customers transport capacity with suitable vehicles and our carriers with suitable transport opportunities |
Performance & Quality Data (e.g., delivery times, service ratings, capacity utilization, route efficiency, customer feedback, damage rates, safety inspections, audit results) | To evaluate carrier performance and reliability To optimize freight matching and route planning To provide performance feedback and service improvements | Legitimate interest: Monitoring and enhancing carrier performance to ensure highest quality standards for our customers Performance of contract: Fulfilling our logistics contract with you (calculation of sennScore for carrier performance) |
3.4. Truck Drivers
If you drive a truck for one of our carriers who carries out transport orders for sennder, we store some limited personal data of you as the truck driver.
What personal data do we collect? | Why do we use your personal data? | What is the legal basis for us to use your personal data? |
Identity & Contact Information (e.g., driver name, company name of your employer, telephone number) Note: For some transport orders, we need to request certain additional information from you (e.g., ID card, driver’s license, certifications, photo, email address) to comply with local legal requirements, customer compliance measures, and/or security standards of the pickup or delivery facility. | To identify who is carrying out the transport for our customer To coordinate pickup and delivery To verify the identity during pickup or delivery To resolve operational issues during transport | Legitimate interest: Ensuring security of pickup and delivery and identifying the driver in case of incidents or claims Legitimate interest: Enabling efficient fulfillment of the transport orders of our customers which may require direct communication with the truck driver |
Communication Records (e.g., emails, chat messages, phone call logs) | To coordinate pickup and delivery To resolve operational issues during transport To maintain records of service instructions and agreements | Legitimate interest: Enabling efficient fulfillment of the transport orders of our customers which may require direct communication with the truck driver |
Location & Tracking Data (e.g., GPS coordinates, timestamps, route information, delivery confirmation) Note: We only process this data if the GPS tracking feature has been activated for the truck by the carrier (your employer) or you actively share your location with us. | To track shipment progress and provide real-time updates to customers To optimize routes and improve delivery efficiency To identify incident and delays to proactively address issues during a delivery To ensure freight security during transports | Legitimate interest: Providing visibility of shipment progress for customers to make the pickup and delivery more efficient; proactively mitigating or resolving disruptions to the supply chain; limiting telephone communication with the truck driver which reduces distractions while driving |
3.5. Prospective Shippers/Carriers
If you reach out to us or we reach out to you as a potential future business partner (shipper or carrier), we store some limited personal data for communication purposes. You can opt-out of our marketing communication at any time by following the instructions in the email sent to you.
What personal data do we collect? | Why do we use your personal data? | What is the legal basis for us to use your personal data? |
Identity & Contact Information (e.g., name, job title, company name, address, email address, telephone number) | To provide information about our freight forwarding solutions | Legitimate interest: Building new business relationships to grow our freight forwarding network |
Communication Records (e.g., emails, chat messages, phone call logs) Note: We may use artificial intelligence to analyze emails sent to us about spot business opportunities. This allows us to get you the best offers faster. If you don’t want that, you can opt-out at any time by sending an email to privacy@sennder.com. | To provide information about our freight forwarding solutions or general logistics trends To follow up on inquiries and business opportunities To maintain records of business discussions and service proposals To track the sales process and train our sales team | Legal obligation: Compliance with tax and accounting laws that require retention of business communication Legitimate interest: Building new business relationships to grow our freight forwarding network |
Business Requirements (e.g., shipping volumes, capacity, route preferences, cargo types, service needs) | To understand your transport requirements or capacity opportunities To assess potential business relationships | Legitimate interest: Providing tailored information about freight forwarding solutions relevant to you |
3.6. Vendors/Suppliers
If we procure services from you or you offer us services as a vendor/supplier, we store some limited personal data of the contact person(s) that reach(es) out to us.
What personal data do we collect? | Why do we use your personal data? | What is the legal basis for us to use your personal data? |
Identity & Contact Information (e.g., name, job title, company name, address, email address, telephone number) | To manage the vendor relationship and contract To coordinate in case of service problems | Performance of contract: Fulfilling our services contract with you |
Communication Records (e.g., emails, chat messages, phone call logs) | To coordinate service delivery and resolve issues To maintain records of contractual agreements and service requests | Legal obligation: Compliance with tax and accounting laws that require retention of business communication Performance of contract: Fulfilling our services contract with you |
Financial Information (e.g., ID document of beneficial owner, billing contact point, company details, credit history, invoicing details, payment method) | To prevent fraud and ensure compliance with sanctions and legal requirements To process payments for services | Legal obligation: Compliance with sanctions laws Performance of contract: Fulfilling our services contract with you Legitimate interest: Preventing fraud |
Performance & Quality Data (e.g., service quality metrics, service ratings, usage statistics, user feedback, audit results) | To evaluate vendor performance and reliability To make informed procurement decisions To provide performance feedback and service improvements | Legitimate interest: Ensure high quality service delivery and records of service levels to make informed procurement decisions in the future |
3.7. Participants of Calls/Videoconferencing
If you participate in a phone call or videoconference hosted by us (e.g., a virtual meeting via Microsoft Teams or Zoom), we store personal data of the participants and in some cases the content of the meeting.
What personal data do we collect? | Why do we use your personal data? | What is the legal basis for us to use your personal data? |
Identity & Contact Information (e.g., name, job title, company name, address, email address, telephone number) | To invite you to the meeting To keep track of meeting participants To follow up on meeting outcomes and decisions | Consent: If you asked us to set up the meeting Legitimate interest: Engaging in a direct discussion with you to address our (potential) business relationship |
Audio & Video Recordings (e.g., meeting recordings, call transcripts, AI-generated meeting summaries) Note: We record and analyze some of our calls and meetings to keep track of outcomes and improve our performance. If we record a call or meeting, we will let you know before or at the beginning of the call or meeting and you can ask us at any time to stop or delete the recording. | To maintain records of business discussions To share meeting content with relevant stakeholders To improve our service quality based on your feedback To track the sales process and train our sales team | Consent: We obtain your consent before recording a meeting Legitimate interest: Maintaining accurate summaries of meeting outcomes and deliverables |
3.8. Visitors of our Social Media Profiles
We maintain profiles on various social media platforms to communicate with users, share information about our services, and engage with the logistics community. When you visit or interact with our social media profiles, personal data about you may be processed both by us and the respective social media platform.
What personal data do we collect? | Why do we use your personal data? | What is the legal basis for us to use your personal data? |
Social Media Information (e.g., username, profile information, interactions, public posts, impressions) | To respond to inquiries and comments about our services To share industry insights from the freight forwarding business To show what life and culture at sennder is like | Legitimate interest: Providing insights about sennder and the logistics industry |
Communication Records (e.g., direct messages, comments, shared content) | To engage with the logistics community To address inquiries or concerns To provide support and feedback through social media channels | Legitimate interest: Engaging in a direct discussion with you to address our (potential) business relationship |
We currently maintain profiles on the following platforms:
Service Provider: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Irland
Privacy Policy: https://www.facebook.com/privacy/policy/
Service Provider: Meta Platforms Ireland Limited, Merrion Road, Dublin 4, D04 X2K5, Irland
Privacy Policy: https://privacycenter.instagram.com/policy/
Service Provider: LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland
Privacy Policy: https://www.linkedin.com/legal/privacy-policy
YouTube
Service Provider: Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland
Privacy Policy: https://policies.google.com/privacy
TikTok
Service Provider: TikTok Technology Limited, The Sorting Office, Ropemaker Place, Dublin 2, D02 HD23, Ireland
Privacy Policy: https://www.tiktok.com/legal/page/eea/privacy-policy/en
Medium
Service Provider: A Medium Corporation, 548 Market St, PMB 42061, San Francisco, CA 94104, United States
Privacy Policy: https://policy.medium.com/medium-privacy-policy-f03bf92035c9
X (formerly Twitter)
Service Provider: X Internet Unlimited Company, One Cumberland Place, Fenian Street, Dublin 2, D02 AX07, Ireland
Privacy Policy: https://x.com/en/privacy
4. Information on our Data Processing
4.1. With whom do we share your Personal Data?
We share your personal data:
within the sennder group. This allows us to operate efficiently as one group serving customers across borders.
with third-party processors. We engage carefully selected third-party processors who process data on our behalf, such as
cloud providers that store data for us in secure data centers (e.g., AWS),
IT and email services that help us to deliver our digital services and electronic communication (e.g., Microsoft),
data visualization and business intelligence services that ensure we have full visibility to optimize routes and provide you with the best service possible,
payment providers that process payments for us,
analytics services that help us understand how we can improve our digital services, and
security and compliance partners that screen for fraud and sanctions to ensure our services are safe, secure, and compliant.
with our logistics partners. As a freight forwarder, we share your personal data with our logistics partners if needed to ensure smooth pickup, transit, and delivery of shipments. For example, we may share your personal data (in most cases your name and contact details) with the operator of the pick-up or delivery facility or with vendors for additional services you’ve selected, such as customs brokers, trailer cleaning services, or warehouses, and we share data with your shipper or carrier to give them visibility of the current shipment status.
with external advisors. We share your personal data with our external advisors subject to professional confidentiality (e.g., auditors, banks, lawyers, tax advisors) or other confidentiality obligations if required to obtain advice, assess creditworthiness, ensure legal compliance, or exercise or defend against legal claims.
with public authorities or courts. We share your personal data with public bodies (e.g., tax authorities) if we are obliged to do so by law or court order.
All our third-party processors are bound by data processing agreements to ensure they maintain appropriate security measures and process your data only according to our instructions.
In the event of a joint venture or merger, acquisition, or sale of the company, your personal data may be shared with the new company, our new business partners or owners, or their advisors. We will ensure your data remains protected and you keep your rights under data protection law.
4.2. Is your Personal Data transferred internationally?
Yes. Most of our data is stored in the EU. However, just like we coordinate shipments across borders, some of your personal data may be transferred to countries outside your jurisdiction, including to other sennder group entities in countries outside the EU/EEA (including the UK and Türkiye), and to third-party processors whose servers are located outside the EU/EEA (primarily in the USA).
In compliance with applicable data protection law, we only transfer your personal data internationally when appropriate safeguards are in place to ensure that your data is protected with at least the same level of protection as under the GDPR. Such transfers are therefore only made if at least one of the following conditions applies:
The competent authority (e.g., for the EU the European Commission) has decided that the country in question has an adequate level of data protection.
We have concluded standard contractual clauses issued by the competent authority (e.g., for the EU the European Commission) with the recipient of the data that ensure an adequate level of data protection.
You can request more information about the safeguards we apply with each third-party processor by contacting us at privacy@sennder.com.
4.3. How long do we store your Personal Data?
We only keep your personal data for as long as necessary to fulfill the purposes set out in this Privacy Notice. We regularly archive and delete data in line with our data retention policy to ensure we don’t keep your data longer than necessary.
Our retention periods depend on several factors, including legal and regulatory requirements that oblige us to keep certain data for specific periods under tax, accounting, transport, or other applicable laws. These requirements are often based on local law, which is why our retention periods vary from country to country. We also consider limitation periods for civil liability claims, as we may need to retain certain data to defend us against potential legal claims. Additionally, we keep data stored if it is reasonably required for our business needs or to provide you with the best services possible.
In practice, this means that your data will be stored by us while a shipment is ongoing and for a period afterward to handle invoicing and any claims. Account and contract information is kept for the duration of our business relationship and for a cooling-off period afterward, usually between one or two years. Financial and payment records as well as business communication are retained according to applicable accounting and tax law requirements, which typically range from six to ten years. Operational data is retained for shorter periods once the transport is completed, with the exception of certain proof-of-delivery or customs documents that we need to store for longer periods by law.
Where possible, we use automated systems to delete or anonymize data when retention periods expire. You can contact us at any time to ask about the specific retention period for your data or to request deletion of your data where legally permissible (see “Your Rights”).
4.4. Do we use your Personal Data for automated decision-making?
No. We don’t use your personal data for automated decision-making, including profiling, that produces legal effects or similarly significantly affects you. While we leverage technology to make logistics processes more efficient, meaningful human oversight is always involved in any legal decision.
4.5. Are you required to provide us with your Personal Data?
Providing certain personal data is necessary if you want to use our digital freight forwarding services. Most personal data we collect is required to fulfill our contract with you or is mandated by law. Without this information (such as identity details, contact information, bank account, tax ID, etc.), we wouldn’t be able to coordinate transports or process payments.
You can choose whether to provide other information on a voluntary basis, such as additional contact persons, preferences for communication methods, or feedback about our services. While this information helps us improve your experience, you can decline to provide it without affecting your ability to use our services.
5. Security
We implement robust technical and organizational security measures designed to protect your personal data against unauthorized access, alteration, disclosure, or destruction. Just as we ensure your freight reaches its destination safely and securely, we apply the same diligence to safeguarding your personal information throughout its digital journey.
Our security framework includes encryption of personal data both in transit using industry-standard protocols (such as TLS/SSL) and at rest using advanced encryption standards. We maintain strict access controls, ensuring only authorized personnel can access personal data. Our systems are protected by firewalls, intrusion detection systems, and other network security measures that monitor for suspicious activity around the clock. We also conduct periodic security audits to identify and address potential security risks, much like routine vehicle inspections ensure safe and secure operations.
While we implement industry-standard security measures, no method of transmission over the internet or electronic storage is completely secure. We cannot guarantee absolute security of information transmitted to or stored on our systems. However, we always strive to apply the best security procedures and technical safeguards to protect against unauthorized access, consistent with applicable data protection laws and best practices. We continuously monitor and update our security measures to address evolving threats and maintain the confidentiality, integrity, and availability of your personal data.
6. Your Rights
Under the data protection law applicable to you (the GDPR, the UK GDPR, or the KVKK), you have certain data protection rights that you can assert at any time, such as:
Right to withdraw consent: If we process your personal data based on your consent, you have the right to withdraw such consent at any time. This does not affect the lawfulness of the processing before withdrawal.
Right to access: You have the right to request a copy of your personal data.
Right to rectification: You can request corrections to inaccurate personal data.
Right to erasure: You can request deletion of your data under certain circumstances.
Right to restrict processing: You can request limitations on how we use your data.
Right to data portability: You may request to receive your data in a structured format to transmit your data to another controller.
Right to object processing: You can object to our processing of your data in certain situations.
Right to lodge a complaint: You also have the right to lodge a complaint with a supervisory data protection authority at any time. In the EU, you can find the competent supervisory data protection authority at this link. For sennder Technologies GmbH, the competent supervisory data protection authority is the Berlin Commissioner for Data Protection and Freedom of Information (Berliner Beauftragte für Datenschutz und Informationsfreiheit). In the UK, you may contact the Information Commissioner’s Office (ICO). In Türkiye, you can complain to the Kişisel Verileri Koruma Kurumu (KVKK).
You can exercise your rights by submitting a request directlyvia this form or contacting us at privacy@sennder.com or at one of the addresses above.
7. Updates of this Privacy Notice
We may update this Privacy Notice to reflect changes in legal requirements and/or our data processing practices. We’ll always share the latest version on our website.