Your privacy is our business. TC protects your privacy by making sure to collect and handle personal information in a responsible way. Our privacy policy takes dives deep into exactly how TC collects and uses your personal information. It’s highlighting your rights when it comes to personal data and how you can argue your rights.
”TC”, ”we” ”our”, or ”us” refers to Trusted Carrier GmbH & Co. KG, Breitenbachstraße 1, 60487 Frankfurt am Main. In accordance with EU data protection legislation, we are responsible for the personal data that you provided us with, or that we collected from you. All processing of your personal data by TC is done in accordance with applicable data protection legislation.
The Privacy Policy about data protection applies to the use of the website https://www.trusted-carrier.com/ and https://ctc.trusted-carrier.com/ as well as the Driver App Wallet.
Contact TC’s Data Protection Office at any time at datenschutz@trusted-carrier.com to exercise your rights under applicable data protection laws.
TC is responsible for the personal data collected and processed by us and our subcontractors within the framework of our services (the “TC Services”) and for the processing of personal data through our digital channels, such as this website and/or other digital touchpoints.
- Name
- Address data (street, house number, postal code and city)
- Contact data (e. g. email, phone numbers)
- Birthday
- Content data (e.g. text entries, history)
- Usage data (e.g. visited websites, access times, location)
- Meta/communications data (e.g. device information, IP addresses)
- Identification numbers (e.g. driver ID, license plate)
- Signatures (e.g. certificates, technical documents)
TC does not process special categories of personal data.
“User”, “you” or “your” refers to you as the visitors, suppliers, partners, vendors, customers and users of TC Services.
When processing data, TC ensures compliance with contractual, legal, and security obligations while enhancing service functionality and user experience. Whenever possible, only anonymized data will be used to achieve these objectives. We process your personal data for the following purposes:
TC must process User data to verify identity, create and manage accounts, and facilitate authentication for secure access. This includes managing subscriptions, user preferences, and permissions within the service environment.
Data processing ensures that TC can comply with agreements made with users. Legal obligations such as invoicing, tax regulations, financial reporting, and compliance with data protection laws (e.g., GDPR) require the collection and storage of certain User information.
User interactions and queries require data processing to identify accounts, track service usage, and resolve complaints or inquiries efficiently. This may include analyzing previous interactions and troubleshooting service issues.
Data analytics help tailor TC Services to individual User preferences, optimizing functionality and navigation. User behavior insights allow for a more personalized experience, enhancing usability and efficiency. Where possible, anonymized data will be utilized to enhance the user experience.
Security measures such as encryption, fraud detection, and access control mechanisms rely on data processing. Monitoring and logging User activities help prevent unauthorized access and maintain the integrity of the system. Processing data aids in detecting suspicious activities, preventing fraudulent transactions, and mitigating security risks. This includes identifying policy violations, restricting unauthorized activities, and conducting internal investigations if necessary. Wherever possible, anonymized data will be used to prevent and investigate misuse without compromising security.
Collected data supports product improvements, feature enhancements, and innovation in services. Feedback analysis and usage statistics help identify trends and areas for technological advancements. Anonymized data will be prioritized for development purposes.
Within the Driver App Wallet you can enter, manage and edit various information, tasks and activities. This information includes in particular data for the execution of the transport order (driver registration, validation, check-in/out, billing) as well as of the use of the BGL-Brummi-Card services.
The Driver App wallet also requires the following authorizations:
- Internet access: This is required to store your data on our servers.
- Authentication via Face-ID or fingerprint: This is required to unlock the Driver App Wallet and protect it from unauthorized access.
- Access to photos and media (optional): This is required to play media files stored on the device during push messages.
- Camera access (optional): This is needed to scan QR codes with the app and to enable the use of the BGL-Brummi-Card.
- The Driver App Wallet does not have any other authorizations.
The processing and use of usage of personal data is necessary to provide the Driver Wallet App related services. This data processing is justified by the fact that processing is necessary for the fulfillment of the business relationship (transport order) between User and, if applicable, your client/employer and us as well as with the BGL for the use of their services.
We use HubSpot, Inc. (25 First Street, Cambridge, MA 02141, USA) as a third-party service provider for our contact form and newsletter management. When you submit a contact request or subscribe to our newsletter, your personal data (e.g., name, email address, and any message content) is processed to handle your inquiry and provide you with relevant updates. The legal basis for this processing is our legitimate interest in effective communication and marketing, as well as your consent where required.
To ensure an adequate level of data protection, HubSpot complies with the EU-US Data Privacy Framework and implements Standard Contractual Clauses (SCCs) where necessary. Your data is retained only as long as necessary for processing your request or managing your subscription. If you unsubscribe from our newsletter, your data will be deleted unless retention is required for legal or contractual obligations.
For more details, please refer to HubSpot’s privacy policy: https://legal.hubspot.com/privacy-policy.
When you apply for a job at TC, we collect and process the personal data you provide to review and handle your application. This is necessary to assess your suitability for the position and manage the recruitment process.
If you are hired, we will continue to use your data as part of your employment. If your application is not successful, your data will generally be deleted within six months after the application process ends. However, if you would like us to keep your information on file for future job opportunities, we will ask for your consent via email.
Cookies are a standard technology consisting of small text files stored on the User's device. We use both first-party cookies and third-party cookies, which might receive your personal data. They help enhance browsing experience by making the website more convenient and secure. Additionally, cookies can be used to tailor website content to visitors’ interests or improve offerings through statistical analysis. The processing of personal data through cookies that are essential for the website’s operation and functionality is carried out as necessary. All other cookies (Analytics, Marketing and Personalization) require your consent, which can be managed via our consent banner you can always access at the bottom of the website.
Users can also manage their cookie preferences through their browser settings, or our cookies consent manager. However, it is important to note that disabling cookies may limit or even prevent certain website functionalities.
Unless explicitly stated otherwise, we retain your personal data only for as long as necessary to fulfill the intended purposes or as required by applicable retention regulations. Additionally, your data will be deleted once it is no longer needed to comply with contractual or legal retention obligations (e.g., tax and commercial law requirements) or to address potential warranty and similar obligations. We may also retain your personal data for the purpose of asserting, exercising, or defending legal claims. If your data can no longer be processed for its original purpose but is still subject to retention requirements, it will be archived and removed from active processing or storage locations. It will then be fully deleted from operational systems, with access strictly restricted.
Once all retention obligations have been met, legal rights to storage have expired, and applicable deletion periods have lapsed, the relevant data will be permanently deleted as part of our routine processes.
Under applicable law, you are entitled to the following rights concerning your personal data. If you wish to exercise these rights, please submit your request to the Data Protection Officer via email or postal mail, ensuring that your identity is clearly stated (see Section 1).
You have the right to request confirmation from us regarding whether your personal data is being processed. If so, you are entitled to receive, at no cost, information about the personal data we have stored about you, along with a copy of that data.
You have the right to request the prompt correction of any inaccurate personal data we hold about you. Additionally, considering the intended purposes, you may also request the completion of any incomplete personal data, including through a supplementary statement.
You have the right to request the immediate deletion of your personal data, and we are obligated to comply unless legal or contractual obligations require us to retain certain records. In such cases, further processing of your data will be restricted.
If we have made your personal data public and are required to erase it, we will take appropriate measures, considering available technology, implementation costs, and technical feasibility, to inform relevant data controllers of your request to delete any copies or replications of the data.You have the right to request a restriction on the processing of your data, particularly in cases where immediate deletion is not feasible. Additionally, you may ask us to limit processing to only the personal data essential for the provision of our TC Services.
You have the right to obtain the personal data you have provided to us in a structured, commonly used, and machine-readable format. Additionally, you have the right to transfer this data to another controller without any interference from us.
You have the right to object, at any time and for reasons related to your particular situation, to the processing of your personal data, including profiling based on relevant provisions. In such cases, we will cease processing your personal data unless we can demonstrate compelling legitimate grounds for the processing that override your interests, rights, and freedoms, or if the processing is necessary for the establishment, exercise, or defense of legal claims.
You have the right to withdraw your previously given consent for data processing at any time, without the need to provide a reason. If there is no other legal basis justifying the continued processing of your data, your personal information must be promptly deleted. Otherwise, the processing of your personal data must be temporarily restricted (blocked).
You have the right to appeal to a supervisory authority, particularly in the Member State of your residence, workplace, or the location where the alleged infringement occurred, if you believe that the processing of your personal data is unlawful.
We are committed to ensuring the security of your personal data in accordance with applicable data protection laws and the best available technical measures. To protect your data from accidental or unlawful destruction, loss, alteration, unauthorized access, disclosure, or any other unlawful forms of processing, we implement a range of technical, physical, and organizational safeguards. All personal data transmissions, including order processing and customer logins, are encrypted using the SSL (Secure Socket Layer) protocol. However, we must highlight that data transmission over the Internet, particularly via email communication, may still present security vulnerabilities, and complete protection cannot be guaranteed.
Access to personal data is strictly controlled and limited to authorized personnel, who can only retrieve data via encrypted connections. By default, access to personal data is blocked, and only employees with specific authorization are granted access based on a strict role and permission framework. Furthermore, our system’s performance and availability are continuously monitored by both internal and external services to maintain security and reliability. Our technical and organizational security measures are regularly updated to align with the latest technological advancements.
While we strive to provide uninterrupted service, we cannot guarantee availability at all times, as occasional disturbances, interruptions, or failures may occur. In the unfortunate event of a data breach that poses a risk to your personal information, we will promptly notify you and the relevant regulatory authorities. Our notification will include details on the extent of the breach, the data involved, potential impacts on the service, and the measures we are taking to secure the data and mitigate any adverse effects.
No automated decision-making will be done on the basis of the collected personal data.
We generally use your personal data exclusively within our company. TC may share your personal data to partners who perform services on behalf of TC. These recipients only have the right to process your personal data in connection with performing a service for TC. Your data will only be shared with third parties under specific circumstances: if you have given your explicit consent, if the transfer is necessary for the fulfillment of a contract, if we are legally required to do so (e.g., for tax compliance or participation in criminal investigations), or if the transfer is necessary to protect our legitimate interests, provided that your fundamental rights and freedoms requiring the protection of personal data do not outweigh these interests.
When third parties are involved in fulfilling contractual obligations, they will receive personal data only to the extent necessary for the provision of their respective services. If we engage external service providers for data processing, we ensure through contractual agreements that they process personal data strictly in compliance with data protection laws and this Privacy Policy, while also safeguarding the rights of the individuals concerned.
Furthermore, the transfer of personal data to institutions or individuals outside the EU/EEA is only permitted under the conditions set out in Article 44 and subsequent provisions GDPR. In such cases, adequate protection is ensured through appropriate safeguards, such as the EU Commission’s standard contractual.
The hosting services provided by Amazon Web Services EMEA Sarl support the operation of our online platform by offering essential infrastructure and platform services, computing capacity, storage space, database solutions, security measures, and technical maintenance. To enhance security, we also utilize the Amazon Web Application Firewall. Further details regarding data protection and IT security can be found at AWS Privacy.
The processing of your personal data is based on our legitimate interest in ensuring the efficient and secure operation of this online platform. Data is stored in the AWS Ireland region. Additionally, AWS Web Services participates in the EU-US Data Privacy Framework, which governs the lawful and secure transfer of personal data from EU citizens to the United States when necessary. More information on this framework is available at European Commission.
We reserve the right to make changes to this Privacy Policy. If such changes occur, the latest version will be available on our website, https://www.trusted-carrier.com/.
(Last update: February 2025)