Privacy policy

Thank you for visiting our website kfi-cargo.com and for your interest in our company.
The protection of your personal data, such as date of birth, name, telephone number, address, etc., is important to us.
The purpose of this privacy policy is to inform you about the processing of your personal data that we collect from you when you visit our website. Our data protection practices comply with the statutory provisions of the EU General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG). The following privacy policy serves to fulfill the information obligations arising from the GDPR. These can be found, for example, in Art. 13 and Art. 14 ff. GDPR.

1. Section 1 - General information

1.1. Responsible

The controller within the meaning of Art. 4 No. 7 GDPR is the person who alone or jointly with others determines the purposes and means of the processing of personal data.
With regard to our website, the controller is:
KFI Cargo Control GmbH
Röntgenstr. 1
66763 Dillingen
Germany
Email: info@kfi-cargo.com
Phone: +49 (0) 6831 76889-30
Fax: +49 (0) 6831 76889-33
We have appointed a data protection officer in accordance with Art. 37 GDPR. You can contact our data protection officer at info@kfi-cargo.com

1.2 Provision of the website and creation of log files

Legal basis for the processing of personal data

Art. 6 para. 1 lit. f GDPR (legitimate interest). Our legitimate interest is to ensure the achievement of the purpose described below.

Purpose of data processing

The temporary (automated) storage of the data is necessary for the course of a website visit in order to enable the website to be delivered. Personal data is also stored and processed to maintain the compatibility of our website for as many visitors as possible and to combat misuse and troubleshooting. For this purpose, it is necessary to log the technical data of the accessing computer in order to be able to react as early as possible to display errors, attacks on our IT systems and/or errors in the functionality of our website. In addition, we use the data to optimize the website and to generally ensure the security of our IT systems.

Duration of storage

The aforementioned technical data is deleted as soon as it is no longer required to ensure the compatibility of the website for all visitors, but no later than 3 months after accessing our website.

Objection and deletion option

You can object to the processing at any time in accordance with Art. 21 GDPR and request the erasure of data in accordance with Art. 17 GDPR. You can find out which rights you are entitled to and how to assert them at the bottom of this privacy policy.

1.3 General information on making contact

2. Section 2 - Special information

2.1 Special functions of the website

Our website offers you various functions that collect, process and store personal data when you use them. Below we explain what happens to this data:

Contact form(s)

• What personal data is collected and to what extent is it processed

  ? We will process the data you enter in our contact forms, which you have entered in the input mask of the contact form, to fulfill the purpose stated below.

• Legal basis for the processing of personal data

  Art. 6 para. 1 lit. a GDPR (consent by clear affirmative action or behavior)

• Purpose of data processing

  We will only use the data collected via our contact form or via our contact forms to process the specific contact request received via the contact form.

• Duration of storage

  Once your inquiry has been processed, the data collected will be deleted immediately, provided there are no statutory retention periods.

• Revocation and deletion options

  The revocation and deletion options are based on the general regulations on the right of revocation and deletion under data protection law described below in this privacy policy.

• Necessity of providing personal data

  The use of the contact forms is voluntary and is neither contractually nor legally required. You are not obliged to contact us via the contact form, but can also use the other contact options provided on our website. If you wish to use our contact form, you must complete the fields marked as mandatory. If you do not fill in the required information in the contact form, you will either not be able to send the request or we will unfortunately not be able to process your request.

Newsletter registration form

• What personal data is collected and to what extent is it processed?

  When you register for the newsletter on our website, we receive the email address you enter in the registration field and, if applicable, other contact details if you provide them to us via the newsletter registration form.

• Legal basis for the processing of personal data

  Art. 6 para. 1 lit. a GDPR (consent by clear affirmative action or behavior)

• Purpose of data processing

  The data entered in the registration form of our newsletter will be used by us exclusively for sending our newsletter, in which we inform you about all our services and news. After registration, we will send you a confirmation e-mail containing a link that you must click on to complete your registration for our newsletter (double opt-in).

• Duration of storage

  You can unsubscribe from our newsletter at any time by clicking on the unsubscribe link, which is also included in every newsletter. Your data will be deleted by us immediately after you unsubscribe. We will also delete your data immediately if your registration is not completed. We reserve the right to delete your data without giving reasons and without prior or subsequent information.

• Revocation and removal option

  You can revoke your consent at any time in accordance with Art. 7 para. 3 GDPR. However, the processing carried out up to the time of revocation remains unaffected by this. With regard to further rights, please refer to the overview at the end of this privacy policy.

• Requirement to provide personal data

  If you wish to use our newsletter, you must fill in the fields marked as mandatory and confirm your e-mail address by clicking on the double opt-in link. The information provided for newsletter registration is neither necessary to enter into a contract with us nor legally binding. It is used exclusively for sending our newsletter. If you do not fill in the required information, we will unfortunately not be able to provide you with our newsletter service.

2.2 Statistical analysis of visits to this website - web tracker

We collect, process and store the following data when this website or individual files on the website are accessed: IP address, website from which the file was retrieved, name of the file, date and time of retrieval, amount of data transferred and notification of the success of the retrieval (so-called web log). We use this access data exclusively in non-personalized form for the continuous improvement of our website and for statistical purposes. We also use the following web trackers to analyze visits to this website:

• Custom Audiences

  We use the Custom Audiences service of Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, e-mail: impressum-support@support.facebook.com, Website: http://facebook.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
  The legal basis for the processing of personal data is your consent pursuant to Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
  Facebook Custom Audience is an advertising tool from Facebook that can be used to target advertising campaigns to site visitors.
  You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
  You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.
  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.facebook.com/about/privacy.
  The provider also offers an opt-out option at https://www.facebook.com/about/privacy.

• Facebook Connect

  We use the Facebook Connect service of Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, e-mail: impressum-support@support.facebook.com, Website: http://www.facebook.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
  The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
  Facebook Connect allows users to use their Facebook profile to simplify login to other web services.
  You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
  You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.
  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.facebook.com/about/privacy.
  The provider also offers an opt-out option at https://www.facebook.com/about/privacy.

• Google

  We use the Google service of Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, Website: https://www.google.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
  The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
  We use Google to be able to load additional Google services on the website. The service is used to provide other Google services, such as the required data processing for the provision of streams and fonts and relevant Google search content. It is technically required in order to be able to exchange the site visitor's information already available to Google between the Google services and to be able to provide the site visitor with individual content adapted to their Google account.
  The service or we collect the following data for the processing itself: Background data stored in the Google user account or with other Google services about the site visitor, background data for the provision of Google services such as streaming data or advertising data, data about the site user's interaction with Google search, information about the end device used, the IP address and the user's browser and other data from Google services for the provision of Google services related to our website.
  If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When using the Google service on our website, Google may transmit and process information from other Google services in order to provide background services for the display and data processing of the services provided by Google. For this purpose, data may also be transferred to the Google services Google Apis, Doubleclick, Google Cloud, Google Ads and Google Fonts in accordance with the Google privacy policy. You can view the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
  You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.
  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy.
  The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.

• Google Ads

  We use the Google Ads service of Google Ireland Limited, Gordon House, Barrow Street, 4 Dublin, Ireland, e-mail: support-deutschland@google.com, Website: https://www.google.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
  The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
  Google Ads is an advertising system with which we can place advertisements on external websites on the Internet to inform our customers about our services. Google Ads displays advertisements on external websites that are individually tailored to our clientele and lead to our website according to parameters set by us. If the site visitor clicks on the Google Ads advertisement, they are taken to our website. In order to be able to measure the success and remuneration of Google Ads advertisements, Google Ads measures the success of the advertising measure when our website is called up. our website processes the data provided by Google Ads in order to analyze and improve our advertising measures and to calculate any remuneration that may be due. Your data may also be used for remarketing purposes if you have given your consent.
  The service or we collect the following data for processing: Data on the advertising interests of site visitors, interactions of site visitors with advertising relating to our website, data on visits to our website by site visitors who have previously clicked on Google Ads advertising and reached our website, data on the end device used, the IP address and browser of the user and other data from Google services for the provision and refinement of Google advertising relating to our website.
  If the service is activated on our website, our website establishes a connection to the servers of Google Ireland Limited and transmits the required data. As part of order processing, personal data may also be transmitted to the servers of Google LLC, 1600 Amphitheatre Parkway, 94043 Mountain View, United States. When Google Ads are used on our website, Google may transmit and process information from other Google services in order to provide background services for the improvement and individualization of Google advertising. For this purpose, data may also be processed by other Google services such as Google Apis, Google Cloud, Google Ads, Google Analytics, Google Tag Manager, Google Marketing Platform and Google Fonts in accordance with the Google Privacy Policy under Google's own data protection responsibility. You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list. Further information on the responsible handling of business data can be found at https://business.safety.google/privacy/.
  You can withdraw your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.
  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://policies.google.com/privacy.
  The provider also offers an opt-out option at https://support.google.com/My-Ad-Center-Help/answer/12155451?hl=de.

• Matomo (local)

  On our website we use the Matomo service (local) of the company InnoCraft Ltd, 150 Willis St, 6011 Wellington, New Zealand, e-mail: privacy@matomo.org, website: https: //matomo.org/. The transfer of personal data takes place exclusively to servers in the European Union.
  The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in achieving the purpose described below.
  Matomo is hosted on our own server infrastructure and configured by us in such a way that no data is transferred to Matomo, InnoCraft Ltd. or other third parties. The purpose of collecting statistical data is to monitor the functionality and user-friendliness of our website and to optimize it by analyzing anonymized user flows. This enables us to identify which content is relevant for our site visitors and users and to expand our offering in this regard. We can also use the data collected to create anonymous user profiles and read out general statistical information. The data collected in this context will not be merged with other personal data without separate consent.
  The service or we collect the following data for processing purposes: Parts of your IP address in anonymized form, user activities (e.g. referrer links, the time spent on certain URLs, clickstream, shopping cart or order IDs), data about your browser settings, browser provider, browser version, screen resolution and the operating system used.
  The data collection by our local Matomo instance is also set to be data protection-friendly. Recorded IP addresses are anonymized before collection and processing. We have also activated the "Do Not Track Preference" in Matomo. This ensures that a "Do Not Track" request from your browser is respected by Matomo when you visit our website and that the page user is not recorded, regardless of our other measures. You can prevent Matomo from collecting data at any time by activating the "Do Not Track" setting in your browser.
  With regard to processing, you have the right to object as set out in Art. 21. Further information can be found at the end of this privacy policy.
  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://matomo.org/faq/general/faq_18254/.

2.3 Integration of external web services and processing of data outside the EU

We use active content from external providers, so-called web services, on our website. By accessing our website, these external providers may receive personal information about your visit to our website. This may result in data being processed outside the EU. You can prevent this by installing an appropriate browser plugin or deactivating the execution of scripts in your browser. This may result in functional restrictions on websites that you visit.
We use the following external web services:

• Amazon AWS

  We use the Amazon AWS service of Amazon Web Services EMEA SARL, 38 Avenue John F. Kennedy, 1855 Luxembourg, Luxembourg, e-mail: privacyshield@amazon.com, Website: http://aws.amazon.com/. Personal data is also transferred to the USA. With regard to the transfer of personal data to the USA, there is an adequacy decision on the EU-US Data Privacy Framework of the EU Commission within the meaning of Art. 45 GDPR (hereinafter: DPF - https://commission.europa.eu/document/fa09cbad-dd7d-4684-ae60-be03fcb0fddf_en ). The operator of the service is certified under the DPF, so that the usual level of protection of the GDPR applies to the transfer.
  The legal basis for the processing of personal data is our legitimate interest pursuant to Art. 6 para. 1 lit. f GDPR. Our legitimate interest lies in achieving the purpose described below.
  Amazon AWS is a cloud computing service from Amazon through which our site or individual elements of our site are reloaded. The separate AWS cloud enables us to download our website and its services from faster servers.
  You can access the provider's certification under the EU-US Data Privacy Framework at https://www.dataprivacyframework.gov/list.
  With regard to processing, you have the right to object as set out in Art. 21. Further information can be found at the end of this privacy policy.
  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://aws.amazon.com/de/privacy/?nc1=f_pr.

• Brevo

  On our website, we use the Brevo service provided by Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany, e-mail: support@sendinblue.com, website: http: //de.sendinblue.com/. The transfer of personal data takes place exclusively to servers in the European Union.
  The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
  Our newsletter and the corresponding registration option are made available via the Brevo service.
  You can revoke your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.
  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://de.sendinblue.com/legal/privacypolicy/.

• sibforms.com

  On our website, we use the sibforms.com service provided by Sendinblue GmbH, Köpenicker Straße 126, 10179 Berlin, Germany, website: https: //de.sendinblue.com/. The transfer of personal data takes place exclusively to servers in the European Union.
  The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
  Our newsletter and the corresponding registration option are made available via the service.
  You can revoke your consent at any time. You can find more information on revoking your consent either in the consent itself or at the end of this privacy policy.
  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://de.sendinblue.com/datenschutz-uebersicht/.

• Site Point

  We use the Site Point service of the company Site Point GmbH, Vorstadtstraße 57, 66117 Saarbrücken, Germany, e-mail: info@sitepoint.de, Website: https: //www.sitepoint.de/. The transfer of personal data takes place exclusively to servers in the European Union.
  The legal basis for the processing of personal data is your consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR, which you have given on our website.
  Site Point GmbH is a service provider for content management and web design. We use the Site Point service on our website to manage content and optimize the design of our site. Site Point provides tools and resources for web developers and designers to help build a professional online presence.
  You can withdraw your consent at any time. You can find more detailed information on revoking your consent either in the consent itself or at the end of this privacy policy.
  Further information on the handling of the transferred data can be found in the provider's privacy policy at https://www.sitepoint.de/datenschutzerklaerung/.

• Social plug-in - "Facebook by META"

  • What personal data is collected and to what extent is it processed?

    On our website we have integrated a social plug-in of the social network "Facebook by META", which is operated by Meta Platforms Ireland Ltd, Merrion Road, D04 X2K5 Dublin 4, Ireland, e-mail: impressum-support@support.facebook.com, Website: http://www.facebook.com/ ("Facebook by META"). When you access a page that contains such a plug-in, your browser automatically establishes a background connection to the Facebook by META servers. The content of the plug-in is transmitted by Facebook by META directly to your browser and only integrated into our site. Through this integration, Facebook by META receives the information that your browser has loaded a specific page of our website. This also applies if you do not have a Facebook by META profile or are not currently logged in to Facebook by META. This information (including your IP address) is transmitted by your browser directly to a Facebook by META server in Ireland and stored there. If you are logged in to Facebook by META, Facebook by META can directly associate your visit to our website with your Facebook by META profile. If you interact with the plug-ins, for example by clicking the "Like" button or leaving a comment, this information is also transmitted directly to a Facebook by META server and stored there. The information is also published on your Facebook by META profile and displayed to your Facebook by META contacts that you have activated for this purpose.

  • Legal basis for the processing of personal data

    Art. 6 para. 1 lit. a GDPR (if you have registered with "Facebook by META") and Art. 6 para. 1 lit. f GDPR (if you have not registered with Facebook by META). Insofar as the processing is carried out on the basis of Art. 6 para. 1 sentence 1 lit. f GDPR, the legitimate interest of the site operator is to enable users to interact with the site operator's content on Facebook by META.

  • Purpose of data processing

    The primary purpose of data collection is to offer you an opportunity for social interaction linked to Facebook by META and thus to make our website interactive. The scope of the data collection and the further processing and use of the data you provide by Facebook by META as well as your rights in this regard and setting options for protecting your privacy can be found in Facebook by META's data protection information: https://www.facebook.com/about/privacy

  • Duration of storage

    Facebook by META will store the data relevant for the provision of the web service for as long as necessary. If the data is subject to statutory retention obligations, it will be deleted after the retention obligation has expired.

  • Objection and deletion option

    If you do not want the Facebook by META social plug-in to be executed, you can also prevent it from being executed by installing a corresponding add-on or script blocker. If you do not want Facebook by META to assign the data collected via our website to your Facebook by META profile, you must log out of Facebook by META before visiting our website. The objection and removal options are otherwise based on the general provisions on the right to object and the right to erasure under data protection law described below in this privacy policy.

2.5 Use of the localStorage and the sessionStorage

2.4 Information on the use of cookies

• What personal data is collected and to what extent is it processed?

  We integrate and use cookies on various pages to enable certain functions of our website and to integrate external web services. Cookies" are small text files that your browser can store on your access device. These text files contain a characteristic string of characters that uniquely identifies the browser when you return to our website. The process of saving a cookie file is also referred to as "setting a cookie". Cookies can be set both by the website itself and by external web services. The cookies are set by our website or the external web services in order to maintain the full functionality of our website, to improve user-friendliness or to pursue the purpose stated with your consent. Cookie technology also enables us to recognize individual visitors by means of pseudonyms, e.g. individual or random IDs, so that we can offer more individual services. Details are listed in the table below.

• Legal basis for the processing of personal data

  Insofar as cookies are processed on the basis of consent pursuant to Art. 6 para. 1 lit. a GDPR, this consent is also deemed to be consent within the meaning of Section 25 para. 1 TDDDG for the setting of the cookie on the user's terminal device. Insofar as another legal basis is stated under the GDPR (e.g. for the performance of a contract or to fulfill legal obligations), the storage or setting is based on an exception in accordance with Section 25 (2) TDDDG. This is the case "if the sole purpose of storing information in the end user's terminal equipment or the sole purpose of accessing information already stored in the end user's terminal equipment is to carry out the transmission of a communication over a public telecommunications network" or "if the storage of information in the end user's terminal equipment or access to information already stored in the end user's terminal equipment is strictly necessary to enable the provider of a telemedia service to provide a telemedia service explicitly requested by the user". The relevant legal basis can be found in the cookie table listed later in this section.

• Purpose of data processing

  The cookies are set by our website or the external web services in order to maintain the full functionality of our website, to improve user-friendliness or to pursue the purpose stated with your consent. Cookie technology also enables us to recognize individual visitors by means of pseudonyms, e.g. individual or random IDs, so that we can offer more individual services. Details are listed in the table below.

• Duration of storage

  Our cookies are stored until they are deleted in your browser or, if it is a session cookie, until the session has expired. Details are listed in the following table.

• Objection and removal options

  You can set your browser according to your wishes so that the setting of cookies is generally prevented. You can then decide on a case-by-case basis whether to accept cookies or to accept cookies in general. Cookies can be used for various purposes, e.g. to recognize that your access device is already connected to our website (permanent cookies) or to save recently viewed offers (session cookies). If you have expressly given us permission to process your personal data, you can revoke this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of your consent until you withdraw it.

3.1 Right to information

You have the right to request confirmation as to whether we are processing your personal data. If this is the case, you have a right of access to the information specified in Art. 15 (1) and (2) GDPR. We will also be happy to provide you with a copy of the data, provided that the rights and freedoms of other persons are not affected (see Art. 15 para. 4 GDPR).

3.2 Right of rectification

In accordance with Art. 16 GDPR, you have the right to have any incorrect personal data stored by us (e.g. address, name, etc.) corrected at any time. You can also request the completion of the data stored by us at any time. A corresponding adjustment will be made immediately.

3.3 Right to erasure

3.4 Right to restriction of processing

3.5 Right of revocation

If you have given us your express consent to process your personal data (Art. 6 para. 1 lit. a GDPR), you can withdraw this consent at any time. Please note that this does not affect the lawfulness of the processing carried out on the basis of the consent until revocation.

3.6 Right to object

---

If you no longer want us to process your data when storing and processing it due to a particular situation, you can object to data that we have collected on the basis of Art. 6 para. 1 lit. f GDPR (legitimate interest) at any time in accordance with Art. 21 GDPR.

---

3.7 Right to data portability

We will provide you or a controller designated by you with the following data in a commonly used, machine-readable format upon request in accordance with Art. 20 para. 1 GDPR:

• Data collected on the basis of your express consent in accordance with Art. 6 para. 1 lit. a GDPR or Art. 9 para. 2 lit. a GDPR;
• Data that we have received from you in accordance with Art. 6 para. 1 lit. b GDPR in the context of existing contracts; insofar as the data has been processed by automated means.

3.8. How do you exercise your rights?

You can exercise your rights at any time by contacting the contact details below:
KFI Cargo Control GmbH
Röntgenstr. 1
66763 Dillingen
Germany
E-Mail: info@kfi-cargo.com
Phone: +49 (0) 6831 76889-30
Fax: +49 (0) 6831 76889-33

3.9 Right to lodge a complaint with the supervisory authority pursuant to Art. 77 (1) GDPR

If you suspect that your data is being processed unlawfully on our website, you can of course seek judicial clarification of the issue at any time. You also have every other legal option available to you. Irrespective of this, you have the option of contacting a supervisory authority in accordance with Art. 77 para. 1 GDPR. You have the right to lodge a complaint under Art. 77 GDPR in the EU Member State of your place of residence, your place of work and/or the place of the alleged infringement, i.e. you can choose the supervisory authority to which you turn from the above-mentioned places. The supervisory authority to which the complaint has been submitted will then inform you of the status and outcome of your submission, including the possibility of a judicial remedy pursuant to Art. 78 GDPR.