Privacy Policy
BSL Transportation Consultants GmbH & Co. KG

Our company attaches great importance to the protection of personal data and respects your desire for privacy. In the following, we inform you about the collection of personal data when using our website. If you have any further questions regarding the handling of your personal data, please contact our data protection officer.

 

  1. Person in Charge

 

Data processing (according to DSGVO) on this website is carried out by the website owner:

 

BSL Transportation Consultants GmbH & Co. KG (BSL)

Cölln Haus | Brodschrangen 3-5

20457 Hamburg

 

If you have any questions about data protection, please contact our data protection officer:

 

By e-mail: datenschutz@bsl-transportation.com

 

By post:

Confidential / Personal

Data protection officer of BSL

BSL Transportation Consultants GmbH & Co. KG

Cölln Haus | Brodschrangen 3-5

20457 Hamburg

 

  1. Contact

 

When you contact us by e-mail or via a contact form, the data you provide (your e-mail address, your name and telephone number if applicable) will be stored by us to answer your questions and process your requests. The legal basis in this respect is Art. 6 para. 1 lit. f) DSGVO. If this involves information on communication channels (e.g. email address, telephone number), you also consent to us contacting you via this communication channel to respond to your enquiry. You can of course revoke this consent at any time for the future.

 

Your data that we have received while contacting will be deleted as soon as it is no longer required to fulfil the purpose for which it was collected, your request has been fully processed and no further communication with you is required or desired by you.

 

As the data controller, our company has implemented numerous technical and organisational measures to ensure that the personal data processed via this website is protected as completely as possible. Nevertheless, internet-based data transmissions can generally have security gaps. Absolute protection cannot be guaranteed; in any case, sending unencrypted e-mails is not secure. We therefore ask you not to send sensitive data by unencrypted e-mail, but to use either encrypted communication channels (e.g. our contact form) or the postal service.

  1. Legal bases of our data processing

 

The processing of personal data can be based on various legal bases. If we need your data to fulfil a contract with you or to respond to your enquiries regarding a contract, the legal basis for this data processing is Art. 6 para. 1 lit. b) DSGVO. If we obtain your consent for certain data processing, the legal basis is Art. 6 para. 1 lit. a) DSGVO. We carry out some data processing on the basis of our legitimate interest, whereby a balance is always struck between your interests worthy of protection and our legitimate interests. The legal basis for this is Art. 6 para. 1 lit. f) DSGVO. Insofar as the processing is necessary to fulfil a legal obligation to which we are subject, the legal basis is Art. 6 para. 1 lit. c) DSGVO.

  1. Data processing when accessing the website

 

When using the website for information purposes only, i.e. if you do not register or otherwise provide us with information (e.g. via a contact form), we collect the following technical information (log file data):

  • Operating system of the device you use to visit our website,
  • Browser (type, version & language settings),
  • the amount of data retrieved,
  • the current IP address of the device you are using to visit our website
  • Date and time of access,
  • the URL of the previously visited website (referrer)
  • the URL of the (sub)page that you access on the website and
  • the Internet service provider of the accessing system.

The collection of this data is technically necessary to display our website to you and to ensure stability and security. We regularly do not know who is behind an IP address. We do not merge the data listed above with other data.

The legal basis is Art. 6 para. 1 lit. f) DSGVO; insofar as necessary access to information stored in the user’s terminal equipment takes place, also § 25 para. 2 no. 2 TTDSG.

Since the collection of data for the provision of the website and storage in log files is necessary for the operation of the website and for protection against misuse, our legitimate interest in data processing prevails at this point.

  1. Applications

 

You can apply to our company electronically via e-mail. Please note that e-mails sent unencrypted are not protected against unauthorised access.

 

Your details will be used to process your application and to decide whether to establish an employment relationship. The legal basis is Art. 6 para. 1 lit. b) DSGVO. Furthermore, your personal data may be processed if this is necessary for the defence of legal claims asserted against us in the application process. The legal basis for this is Art. 6 para. 1 lit. f) DSGVO. The legitimate interest in the processing also lies in the stated purposes.

 

If an employment relationship is established between you and us, we may process the personal data already received from you for the purposes of the employment relationship in accordance with Art. 6 para. 1 lit. b) DSGVO if this is necessary for the performance or termination of the employment relationship or for the exercise or fulfilment of the rights and obligations of the representation of employees’ interests arising from a law or a collective agreement, a works or service agreement (collective agreement).

Your application data will not be processed beyond the use described above.

Your personal data will be deleted after completion of the application process, at the latest after six months, unless deletion conflicts with any other legitimate interests on our part or you have not given us your consent for longer storage. Other legitimate interest in this sense is, for example, a burden of proof in proceedings under the General Equal Treatment Act (AGG).

  1. Cookies

 

Cookies are data that are stored on your computer by a website that you visit and enable your browser to be reassigned. Cookies are used to transmit information to the organisation that sets the cookie. Cookies can store various information, such as your language setting, the duration of your visit to our website or the entries you make there. This prevents you from having to re-enter required form data each time you use the website, for example. The information stored in cookies can also be used to recognise preferences and target content according to areas of interest.

 

There are different types of cookies: Session cookies are data sets that are only temporarily stored in the working memory and are deleted when you close your browser. Permanent or persistent cookies are automatically deleted after a specified period, which may vary depending on the cookie. With this type of cookie, the information can also be stored in text files on your computer. However, you can also delete these cookies at any time via your browser settings.

 

First-party cookies are set by the website you are currently visiting. Only this website is authorised to read information from these cookies. Third-party cookies are set by organisations that do not operate the website you are visiting. These cookies are used by marketing companies, for example.

 

We use cookies to ensure the proper operation of the website, to provide basic functionalities, to measure reach and – with your consent – to tailor our services to your preferred areas of interest.

 

The legal basis for possible processing of personal data using cookies and their storage duration may vary. If you have given us your consent, the legal basis is Art. 6 para. 1 lit. a) DSGVO. Insofar as the data processing is based on our overriding legitimate interests, the legal basis is Art. 6 para. 1 lit. f) DSGVO. The stated purpose then corresponds to our legitimate interest.

 

Insofar as we use cookies or similar technologies to access a terminal device used by you within the meaning of § 25 para. 2 no. 6 TTDSG by storing or reading out information there regardless of personal reference, we will first obtain your purpose-related, voluntary and informed consent in accordance with § 25 para. 2 no. 6 TTDSG.

 

Insofar as consent under the DSGVO and the TTDSG can be bundled, we will obtain it uniformly.

 

Consent under the TTDSG is not required for access to information that is already stored on your end device and has been sent to us through your active transmission; this concerns the public IP address of the end device, the address of the website accessed, the user agent string with browser and operating system incl. version and the language set.

 

Furthermore, no consent is required under the TTDSG if the cookie or similar technology is used to ensure the transmission of a message via a public telecommunications network (§ 25 para. 2 no. 1 TTDSG) or if the setting of the cookie and thus the storage of information in your terminal equipment or access to information already stored in your terminal equipment is necessary for the provision of a telemedia service expressly requested by you (§ 25 para. 2 no. 2 TTDSG).

You can delete cookies already stored on your end device at any time. If you wish to prevent the storage of cookies, you can do so via the settings in your Internet browser. Alternatively, you can also install so-called ad blockers. Please note that individual functions of our website may not work if you have deactivated the use of cookies.

 

When accessing our website, all users of our website are also informed by an info banner about the use of cookies by us and referred to this data protection information. As a user, you will also be asked for your consent to the use of certain cookies, particularly those relevant for the personalisation of services and for marketing measures. Once you have given your consent, you can revoke it at any time with effect for the future by calling up the cookie management via the following link and removing the tick behind the processing to which you had consented or by clicking on the “Privacy settings” button at the end of our website and removing the tick behind the processing to which you had consented.

  1. Google Analytics

 

If you have given your consent, Google Analytics, a web analytics service provided by Google LLC, is used on this website. The controller for users in the EU/EEA and Switzerland is Google Ireland Limited, Google Building Gordon House, 4 Barrow St, Dublin, D04 E5W5, Ireland (“Google”).

 

Google Analytics uses cookies that enable us to analyse your use of our website. The information collected by the cookies about your use of this website is usually transferred to a Google server in the USA and stored there.

 

In Google Analytics 4, the anonymisation of IP addresses is activated by default. Due to IP anonymisation, your IP address will be truncated by Google within member states of the European Union or in other signatory states to the Agreement on the European Economic Area. Only in exceptional cases will the full IP address be transmitted to a Google server in the USA and truncated there. The IP address transmitted by your browser as part of Google Analytics will not be merged with other Google data.

 

During your visit to the website, your user behaviour is recorded in the form of “events”. Events can be:

 

  • Page views
  • First visit to the website
  • Start of the session
  • Your “click path”, interaction with the website
  • Scrolls (whenever a user scrolls to the bottom of the page (90%))
  • Clicks on external links
  • Internal search queries
  • Interaction with videos
  • Viewed/clicked adverts

 

Also recorded:

  • Your approximate location (region)
  • Your IP address (in truncated form)
  • Technical information about your browser and the end devices you use (e.g. language setting, screen resolution)
  • Your internet provider
  • the referrer URL (via which website/advertising medium you came to this website)

 

On behalf of the operator of this website, Google will use this information to analyse your use of the website and to compile reports on website activity. The reports provided by Google Analytics are used to analyse the performance of our website and the success of our marketing campaigns.

 

The recipients of the data are/can be:

  • Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Irland (als Auftragsverarbeiter nach Art. 28 DSGVO)
  • Google LLC, 1600 Amphitheatre Parkway Mountain View, CA 94043, USA
  • Alphabet Inc., 1600 Amphitheatre Parkway Mountain View, CA 94043, USA

 

Insofar as data is processed outside the EU/EEA, Google LLC. has certified itself under the Data Privacy Framework (DPF) programme and is listed in the Data Privacy Framework list of the International Trade Administration (ITA). This means that Google has publicly committed to complying with the DPF obligations and any data transfer to the USA is harmless due to the current adequacy decision of the European Commission of 10 July 2023.

 

A list of currently certified US companies can be found here: https://www.dataprivacyframework.gov/s/participant-search

Further information on the Data Privacy Framework Programme can be found on the official website of the ITA: https://www.dataprivacyframework.gov/s/

 

Prior to the publication of the adequacy decision for the USA, we concluded EU standard contractual clauses with the service provider to establish an adequate level of data protection, which will not lose their validity after the DPF.

 

The data sent by us and linked to cookies is automatically deleted after 14 months. Data whose retention period has been reached is automatically deleted once a month.

 

The legal basis for this data processing is your consent in accordance with Art. 6 para. 1 lit. a) DSGVO and § 25 para. 1 TTDSG.

You can revoke your consent at any time with effect for the future by accessing the cookie settings here and changing your selection there. The legality of the processing carried out based on the consent until the revocation remains unaffected.

Alternatively, you can prevent the storage of cookies from the outset by configuring your browser software accordingly. However, if you configure your browser to reject all cookies, this may restrict the functionality of this and other websites. You can also prevent Google from collecting the data generated by the cookie and relating to your use of the website (including your IP address) and from processing this data by Google by

  1. Not giving your consent to the setting of the cookie or
  2. downloading and installing the browser add-on to deactivate Google Analytics here.

You can find more information on the terms of use of Google Analytics and on data protection at Google at https://marketingplatform.google.com/about/analytics/terms/us/ and at https://policies.google.com/?hl=de.

  1. Google Web Fonts (offline version)

 

This site uses so-called web fonts provided by Google for the standardized display of fonts. When you access a page, your browser loads the required web fonts into your browser cache to display texts and fonts correctly. We have opted for the offline version, in which the Google fonts are stored locally on our web server. It is then possible to manage the fonts – using CSS – as with any other font family. The IP address and other data are not transmitted to Google.

The use of Google Web Fonts is in the interest of a uniform and appealing presentation of our online offers regarding efficiency and cost-saving considerations. This constitutes a legitimate interest within the meaning of Art. 6 para. 1 lit. f) DSGVO. If your browser does not support web fonts, a standard font will be used by your computer.

Further information on Google Web Fonts can be found at https://developers.google.com/fonts/faq and in Google’s privacy policy: https://www.google.com/policies/privacy/

  1. LinkedIn

 

You can access our LinkedIn profile via our website. We have placed corresponding logos at the top and bottom of our website for this purpose.

When you visit our LinkedIn company page, we are jointly responsible with LinkedIn Ireland Unlimited Company, Wilton Place, Dublin 2, Ireland (https://www.linkedin.com/help/linkedin/solve) for the processing of your personal data.

 

When you click on the link, a connection is established to the servers of the social media service. This tells the social media service’s servers that you have visited our website. In addition, further data is transmitted to the provider of the social media service. These are, for example:

 

  • Address of the website on which the activated link is located
  • Date and time the website was accessed or the link was activated
  • Information about the browser and operating system used
  • IP address

If you are already logged in to LinkedIn when you activate the link, LinkedIn may be able to determine your username and possibly even your real name from the transmitted data and assign this information to your personal user account. You can exclude this possibility of assignment to your personal user account if you log out of your user account beforehand.

We operate our LinkedIn page for information and communication with you as a user and interested party of our offer or as a potential employee/applicant. In accordance with LinkedIn’s terms of use, which every user has agreed to when creating a LinkedIn profile, we can identify subscribers to the page and view their profiles and other information shared by them. For example, your LinkedIn name and profile picture are visible to us (and other LinkedIn users) when you visit our site or comment on our posts. We therefore only collect the personal data that has obviously become part of our LinkedIn page through your involvement. We have no interest in collecting and further processing your individual personal data for marketing purposes. Accordingly, we only use the data to customize and improve our offering.

LinkedIn uses cookies to store and further process this information, i.e. small text files that are stored on the user’s various end devices. According to LinkedIn, the cookies used by LinkedIn are used for authentication, security, preferences, functions and services, personalized advertising, analysis and research. You can view details of the cookies used by LinkedIn here: https://de.linkedin.com/legal/cookie-policy

LinkedIn’s privacy policy contains further information on data processing.

The operation of the LinkedIn page, including the processing of users’ personal data, is based on Art. 6 para. 1 lit. f) DSGVO for the implementation of our legitimate interests in an information and interaction opportunity via LinkedIn for and with our users and visitors. Further legal bases for data processing may arise in individual cases from Art. 6 para. 1 lit. a), b), c) DSGVO.

We delete personal data if the purpose of the data processing has been achieved and there are no other legal reasons against deleting the data. We always delete private messages in our LinkedIn account manually after 12 months.

The servers of the social media services are located in the USA and other countries outside the European Union. The data may therefore also be processed in countries outside the European Union.

 

Insofar as data is processed outside the EU/EEA, LinkedIn Corporation has certified itself under the Data Privacy Framework (DPF) programme and is listed in the Data Privacy Framework list of the International Trade Administration (ITA). This means that LinkedIn has publicly committed to complying with the DPF obligations and any data transfer to the USA is harmless due to the current adequacy decision of the European Commission of 10 July 2023.

 

A list of currently certified US companies can be found here: https://www.dataprivacyframework.gov/s/participant-search. Further information on the Data Privacy Framework Programme can be found on the official website of the ITA: https://www.dataprivacyframework.gov/s/

 

Prior to the publication of the adequacy decision for the USA, we concluded EU standard contractual clauses with the service provider to establish an adequate level of data protection, which will not lose their validity after the DPF.

  1. Your rights

 

We will be happy to provide you with information as to whether personal data concerning you is being processed; if this is the case, you have a right of access to this personal data and to the information listed in detail in Art. 15 DSGVO. In addition, you have the right to rectification (Art. 16 DSGVO), the right to restriction of processing (Art. 18 DSGVO), the right to erasure (Art. 17 DSGVO) and the right to data portability (Art. 20 DSGVO) under the respective legal requirements.

 

10.1. Rights in data processing based on legitimate interest

 

Pursuant to Art. 21 para. 1 DSGVO, you have the right to object, on grounds relating to your situation, at any time to the processing of personal data concerning you which is carried out based on Art. 6 para. 1 e) DSGVO (data processing in the public interest) or based on Art. 6 para. 1 f) DSGVO (data processing for the purposes of safeguarding a legitimate interest), this also applies to profiling based on this provision. In the event of your objection, we will no longer process your personal data, unless we can demonstrate compelling legitimate grounds for the processing which outweigh your interests, rights and freedoms, or the processing serves to assert, exercise or defend legal claims.

 

10.2. Rights in the case of direct marketing

 

Insofar as we process your personal data for direct marketing, you have the right to object at any time to the processing of your personal data for the purpose of such advertising in accordance with Art. 21 para. 2 DSGVO, this also applies to profiling insofar as it is related to such direct marketing.

 

In the event that you object to processing for the purpose of direct marketing, we will no longer process your personal data for these purposes.

 

To exercise your rights above, please contact datenschutz@bsl-transportation.com by e-mail or by post to Brodschrangen 3-5, 20457 Hamburg.

Exercising your rights above is free of charge for you.

 

Without prejudice to these rights and the possibility of pursuing any other administrative or judicial remedy, you have the right to lodge a complaint with a supervisory authority, in the Member State of your habitual residence, your place of work or the place of the alleged infringement, at any time, if you consider that the processing of your personal data violates data protection law. (Art. 77 DSGVO).

 

  1. Data transfer

 

As a matter of principle, your personal data will not be transferred to third parties unless we are legally obliged to do so, or the data transfer is necessary for the performance of the contractual relationship or you have previously expressly consented to the disclosure of your data.

 

External service providers and partner companies or a shipping company commissioned with the delivery will only receive your data insofar as this is necessary for the processing of your order/order. In these cases, however, the scope of the data transmitted is limited to the necessary minimum. Insofar as our service providers process your personal data on our behalf, we ensure that they comply with the provisions of the data protection laws in the same way within the framework of order processing in accordance with Art. 28 DSGVO. Please also note the privacy policy of the respective providers. The respective service provider is responsible for the content of third-party services, whereby we carry out a review of the services for compliance with legal requirements within the scope of reasonableness.

 

We attach great importance to processing your data within the EU/EEA. However, we may use service providers who process data outside the EU/EEA. In these cases, we ensure that an adequate level of data protection comparable to the standards within the EU is established at the recipient’s premises prior to the transfer of your personal data. This can be achieved, for example, through EU standard contracts or binding corporate rules or special conventions to which the company may submit.

 

  1. Data security

 

We have taken extensive technical and operational safeguards to protect your data from accidental or intentional manipulation, loss, destruction or access by unauthorized persons. Our security procedures are regularly reviewed and adapted to technological advances.

 

Status of the Privacy Policy: April 2024