transfracht.com

Data processing at TFG Transfracht

This notice provides information about how we process personal data outside of our websites www.transfracht.com and www.box2rail.com. 

We may need to process personal data when people call us, write us or send us an e-mail about an issue and provide their personal data. We may also need to process personal data we receive from a third party. We also process the personal data of people who conduct legal transactions with us. If you interact with us as a business partner, customer or service provider, we may need to process your personal data if you participate in an event or communicate with us in any other way.

 

DB Cargo AG is the shareholder of TFG Transfracht. Please also see this information about data processing at the DB Group to: https://www.deutschebahn.com/en/privacy_policy-1207606/

 

Purpose and legal basis for data processing

We collect and process your personal data for specific purposes only. These purposes are ultimately limited to the business purpose of TFG Transfracht, in particular organizing and carrying out container transport and other system transport services to and from German seaports, including the necessary logistics services in the hinterland.

There are various contexts in which we may need to process your data, and this processing has different legal bases within the meaning of Articles 6 and 9 of the General Data Protection Regulation (GDPR). These legal bases are, in particular:


-     Consent given to us in advance for specific purposes (such as consent to          receive advertising)

-     A contractual relationship or, at your request, steps prior to entering into        a contract (for example, when performing a job if your company contracts        TFG Transfracht)

-     
 
Legal obligations to process data (for example, in the event of a justified         request for information from authorities)

-     
 
In certain special circumstances, such as accidents, when data needs to           be processed to protect the vital interests of a person

-     
 
We process special types of personal data within the meaning of Art. 9             (1) of the GDPR ("sensitive" data, in particular data concerning health)              only on the basis of the legal bases listed in Art. 9 of the GDPR; i.e. in              particular based on the consent of the data subject or if data processing          is necessary to establish, exercise or defend legal claims.

 

As a general rule, we are interested in collecting only the data that we need to fulfill a specific purpose. In addition, we may also collect data that is conducive to the purpose of the contract but not strictly necessary, for example in conjunction with certain convenience functions. We make this transparent, for example by indicating which fields on online forms are required. 

 

Party responsible; contact information

If TFG Transfracht processes your personal data or instructs a third party to process your personal data on its behalf, it is considered the controller within the meaning of the GDPR and you can exercise claims against it relating to your rights as the data subject.

Contact:

TFG Transfracht Internationale Gesellschaft für kombinierten Güterverkehr mbH
Rheinstrasse 2
55116 Mainz
Germany

The appointed privacy officer is Chris Newiger.

 

You may also contact the relevant privacy organization of TFG Transfracht at DB.Cargo.Datenschutz@remove-this.deutschebahn.com.

 

Disclosure of data

 

We disclose data to third parties only if doing so is necessary for the business relationship or is permitted in the context of legal regulations. As a general rule, information needs to be shared with relevant Group companies and organizational units within the DB Group to process claims or conduct compliance procedures. We may also share data with authorities.

IT providers, printers and call centers are examples of typical service providers that are recipients of data. As a general rule, these recipients are DB Group companies. External companies may also receive data. Recipients are contractually bound by us to process this data solely for the purpose of performing our task.

The DB Group is a multinational Group with companies in and outside Europe. Data may need to be transmitted to a country outside the EU or EEA in certain cases. We transmit data to non-EU or non-EEA countries only if the legal basis for doing so exists. We inform data subjects accordingly in advance. As a general rule, we have recipients in non-EU or non-EEA countries agree to standard data protection clauses, which provide appropriate guarantees regarding the protection of personal data.

 

Deletion

As a general rule, we save data only as long as it is needed. The retention period is determined by the purpose. The purpose can be determined from the contract or can stem from legal requirements to keep business documents or other documents. We are therefore unable to specify a general retention period.

 

Rights of data subjects

-     You are entitled to receive information about your data, have your data corrected or deleted, or have processing restricted (locked).

-     You have the right to data portability if you have made data available to us to perform a contract or given us your consent to process your data.

-     You can object to data processing on grounds relating to your particular situation if the data is being processed as a result of our legitimate interests.

   You can also object to data processing for the purposes of direct advertising.

-    You can withdraw your consent at any time.
You have the right to lodge a complaint with a data protection supervisory authority. The supervisory authority responsible for TFG Transfracht is the authority for data protection and freedom of information of the federal state of Rhineland-Palatinate, Hintere Bleiche 34, 55116, or: Postfach 30 40, 55020 Mainz.

 

Updates

 

We update this privacy statement to reflect modified functionality or changes to legal situations. We therefore recommend that you review the privacy statement periodically. If your consent is required or elements of the privacy statement contain provisions regarding the contractual relationship with you, changes are made only with your consent.

Last modified in May 2018