spedixo← Back to home

Privacy Policy

Last updated: April 2026

1. Data Controller

Spedixo ("we", "us") operates the package tracking platform available at spedixo.com. For privacy-related inquiries, contact us at: privacy@spedixo.com

2. What Data We Collect

  • Account data: name, email, phone, company name (for service provision)
  • Package data: sender/receiver names, addresses, phone numbers (for tracking service)
  • GPS data: vehicle positions during transit (for tracking service)
  • Technical data: IP address, browser type, essential cookies (for service operation)

3. Legal Basis (GDPR Art. 6)

  • Contract performance: processing necessary to provide the tracking service
  • Legitimate interest: security, fraud prevention, service improvement
  • Consent: marketing emails (if any), cookie consent

4. How We Use Data

  • Provide package tracking services
  • Send status notifications (email/SMS)
  • Generate business reports for the tenant
  • Improve service quality

5. Data Sharing

  • We do not sell personal data
  • Data shared with: email providers (for notifications), map services (OpenStreetMap — no personal data sent)
  • Package tracking data accessible via public tracking page uses initials and city only — not full names

6. Data Retention

  • Active account data: retained while account is active
  • Package data: retained for 2 years after delivery, then anonymized
  • Deleted accounts: data removed within 30 days

7. Your Rights (GDPR Art. 15–22)

  • Right to access: request a copy of your data
  • Right to rectification: correct inaccurate data
  • Right to erasure: request deletion of your data
  • Right to portability: receive your data in machine-readable format
  • Right to object: object to processing
  • Right to withdraw consent

To exercise your rights, contact: privacy@spedixo.com

8. Cookies

  • Essential cookies only: authentication token, language preference, cookie consent
  • No third-party tracking, no analytics cookies, no advertising cookies

9. Security

  • Data encrypted in transit (HTTPS)
  • Passwords hashed with bcrypt (12 rounds)
  • Access controlled by role-based permissions

10. Changes to This Policy

We may update this policy. Changes will be posted on this page with an updated date.

Terms of ServiceBack to home