Deutsche Post AG (hereinafter called 'Deutsche Post DHL Group') is pleased that you have visited our website and are interested in our company, products and services. It is important to us to protect your personal data during handling throughout the entire business process.
In the following, we explain what information Deutsche Post DHL Group when you visit our website and how this information is used.
Personal data means any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. This includes information such as your real name, address, telephone number and date of birth. Information which cannot be linked to your real identity - such as favorite websites or number of users of a site - is not considered personal data.
This Privacy Notice applies for the data processing carried out by: Deutsche Post AG
If you have queries with regard to the processing of your personal data, please contact the Data Protection Officer. The Data Protection team is also available to help with information requests, take suggestions or handle complaints.
Data Protection Officer for DHL
Gabriela Krader, LL.M
Deutsche Post AG
Corporate Center - 524
What Are the Purposes of and the Legal Basis for the Processing of Personal Data? / What Are the Controller's or Third Party's Legitimate Interests?
Visiting our Website
Deutsche Post DHL Group is committed to preserving the privacy of users of our websites. When you visit our web pages, our web servers always temporarily save for connection and set up and security purposes the connection data of the computer connecting to our site, a list of the web pages that you visit within our site, the date and duration of your visit, the IP address of your device, the identification data of the type of browser and operation system used as well as the website through which you linked to our site. Additional personal information such as your name, address, telephone number or e-mail address is not collected unless you provide this data voluntarily, e.g. while completing an online contact form, as part of a registration, survey, competition, fulfillment of contract or an information request.
The legal basis for the processing of the aforementioned data categories is Art. 6 (1) (a) of the European General Data Protection Regulation (GDPR). Due to the said purposes, in particular to guarantee security and a smooth connection setup, we have a legitimate interest to process this data.
As far as you have enabled geo localization functions in your browser, respectively in your operating system we will use this data to offer you location-based services (e. g. location of the nearest branch, packing station etc.). We will not use this data for any other purpose. If you disable this function your data will be deleted in due time.
Performance of a Contract
For contractual reasons, we also need personal data to provide our services and comply with the obligations arising from contractual agreements concluded with you. This data is used e. g. for performing a (shipment) contract, managing customer data, handling payments and, as the case may be, assessing creditworthiness. Certain shipment data will also be provided to the authorities of the country of transit or destination for customs and tax clearance or for security screening, as required by the laws of such country. The information provided would usually include: shipper name and address, receiver name and address, description of the goods, number of pieces, weight and value of shipment.
The legal basis is usually Art. 6 (1) b) GDPR since the processing is for the performance of a contract to which you are a party.
Further information on data protection in specific services and products is available at the relevant Customer Portal.
Processing for Advertising Purposes
If you are an existing customer of a Deutsche Post DHL Group entity, your postal data (e.g. name, address) will be processed to contact you in order to provide you with the latest information about our offers, news, products and services. Apart from an existing consent, we will process your e-mail address exclusively in order to provide you with information regarding Deutsche Post DHL Group own and similar products.
Legal basis for the aforementioned processing is Art. 6 (1) f) GDPR. The processing of customer data for own direct marketing purposes is regarded as carried out for a legitimate interest.
You have right to object at any time to the said processing. To exercise your right, simply get in touch with us by using the contact details mentioned under "Who is Responsible".
If you register for one of our newsletters, we are entitled to use your e-mail address for this purpose. You may unsubscribe from the newsletter at any time by clicking the relevant link at the bottom of the newsletter.
In case you file an objection or unsubscribe from our newsletter services the respective data will be blocked, respectively deleted and no longer be processed for such purposes.
We use tracking software to determine how many users visit our website and how often. We do not use this software to collect individual personal data or individual IP addresses. The data are used solely in anonymous and summarized form for statistical purposes and for developing the website.
"Cookies" are small files that enable us to store information related to your device and you, the user, specifically, while you visit one of our websites. Cookies help us to determine how frequently our internet pages are accessed as well as the number of users. And they help us configure our offers so that they are as convenient and efficient as possible for you.
On the basis of Art. 6 (1) f) GDPR, we are using "session cookies" in order to optimize our website and to guarantee and convenient and undisturbed user experience. These cookies are stored exclusively for the duration of your visit to our internet pages. They are automatically deleted when you close your browser.
In addition, we use "persistent cookies" for retaining information about visitors who repeatedly access one of our internet pages. The purpose of using cookies is to be able to offer you optimal user guidance as well as to "recognize" you and thus be able to present (as much as possible) diversified internet pages and new contents during repeated use.
Generally, we do not create an individual profile of your online activities. The content of a persistent cookie is limited to an identification number. Name, email address, IP address, etc., are not saved on the majority of our sites.
We have provided details of all cookies used on this websites in the table below.
All cookies in this table have been categorized according to four numbered groups. Please note that cookies can belong to more than one category.
The categories are as follows:
 Strictly Necessary: These cookies are essential in order to enable you to move around the website and use its features. Without these cookies, services you have asked for cannot be provided. As already stated above, this is based on Art. 6 (1) f) GDPR.
 Performance: These cookies collect information about how visitors use a website, for instance which pages visitors go to most often. These cookies don't collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how a website works.
 Functionality: These cookies allow the website to remember choices you make and provide enhanced, more personal features. For example, these cookies can be used to enable visitors to share content with a range of networking and sharing platforms. Information these cookies collect may be anonymized and they cannot track your browsing activity on other websites.
 Targeting or Advertising: These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as helping measure the effectiveness of an advertising campaign. They are usually placed by advertising networks with the website operator's permission.
List of Cookies
Adobe Marketing Cloud & Audience Manager Cookies
These cookies are used to collect information in an anonymous form about how visitors use the website. The information is used to improve the site and provide users with content that is more appropriate to them.
This is a pattern type cookie name associated with Adobe Marketing Cloud. It stores a unique visitor identifier, and uses an organisation identifier to allow a company to track users across their domains and services.
This is a pattern type cookie name associated with Adobe Marketing Cloud. It stores a unique visitor identifier, and uses an organisation identifier.
This cookie helps Adobe Audience Manager perform basic functions such as visitor identification, ID synchronization, segmentation, modeling, reporting, etc.
This cookie is set by Adobe Audience manager to record the last time it made a data synchronization call.
This domain is owned by Adobe Audience Manager. The main business activity is online profiling for targeted marketing.
This domain is owned by Adobe. The main business activity is: Advertising. Used to link anonymous analytics data into a visitor profile and help provide a personalised experience through the website, marketing and advertising.
This domain is owned by Adobe. The main business activity is: Advertising.
This domain is owned by Adobe. The main business activity is: Advertising.
Adobe Site Catalyst cookie, determines whether cookies are enabled in the browser. This cookie is a session cookie and will expire when the browser is closed.
This cookie is used to identify unique visitor time/date stamp. This is a permanent cookie which expires after 2 years.
This cookie is a 'fallback' visitor identifier where the s_vi cookie normally used for this purpose is blocked. It contains a randomly generated, unique id.
This cookie records what links the user has clicked. This cookie is a session cookie and will expire when the browser is closed.
Analytics: Measures whether a visitor is a new visitor or a repeat visitor.
More information about Privacy at Adobe
Akamai provides a defensive shield built to protect websites, mobile infrastructure, and API-driven requests. The Akamai Data Protection and Privacy Program protects the personal information that is processed by respecting global privacy principles.
Used by Akamai to optimize site performance and security.
Akamai Bot Manager: Security cookie
Akamai Bot Manager: Fraud prevention
Akamai Load Balancing cookie
Akamai Load Balancing cookie
More information about Privacy at Akamai Privacy Trust Center
1st party Cookies1
This cookie is set when site visitors have agreed to the general setting of cookies. To do this, site visitors must accept or confirm the general "Cookie Disclaimer". The cookie is set when clicking on "Accept", it is valid globally for the respective language variant of the site (i.e. EN/DE).
This cookie is set when site visitors have accepted the disclaimer text on a disclaimer-protected page. If you do not accept the disclaimer text, you will be forwarded to the respective homepage and the cookie will not be set. The actual text of the disclaimer-protected page is only displayed if the site visitors accept the disclaimer text. The cookie is only valid for a single page/URL, the page protected by the disclaimer.
Website's language selection DE/EN
Investor Relations Chat Bot Cookies4
The IR Chat Bot is a service that allows to interact with our IR section and the information it contains.
This cookie contains the visitor ID value used to identify repeat visitors. Its default lifetime is 13 months.
This cookie determines whether chatbot visitors came to our site from a referring website or whether they accessed the chatbot directly. Its default lifetime is six months.
This cookie is responsible for ensuring that the session with the chatbot is trackable for 30 minutes after the last tracked interaction. Once this timeframe elapses, the visit is considered over, meaning that the next chatbot interaction will start a new tracking session.
The IR Chat Bot is based upon IBM Watson and is administered by a subcontractor. The data protection policy of IBM Deutschland GmbH, Ehningen (Germany), and other relevant documents can be found here:
OneTrust Cookie Consent Management Cookies1
OneTrust offers a cookie consent solution that scans websites for first and third party tracking technologies including cookies, tags, pixcels, web beacons, and more. This software automatically categorizes the trackers and blocks them until consent is given.
This cookie is set by websites using certain versions of the cookie law compliance solution from OneTrust. It is set after visitors have seen a cookie information notice and in some cases only when they actively close the notice down. It enables the website not to show the message more than once to a user. The cookie has a one year lifespan and contains no personal information.
This cookie is set by the cookie compliance solution from OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the users browser, when consent is not given. The cookie has a normal lifespan of one year, so that returning visitors to the site will have their preferences remembered. It contains no information that can identify the site visitor.
More information about cookies and privacy at OneTrust Privacy Notice
Online Survey Cookies4
These cookies are set to support the technical control of our online customer survey. The recording and readout of this information serves the sole purpose of not inviting you too frequently and not to survey you repeatedly.
We do not store information you have provided for the survey in any cookie and no personal data is collected or transferred,
This domain is owned by .companion Strategieberatung. Is used to determine if cookies are enabled in the browser.
This domain is owned by .companion Strategieberatung. Is used to control recruitment for a web survey (i.e. avoid multiple invites, do not invite again if a user does not want to participate). Relevant for German Site/Survey.
This domain is owned by .companion Strategieberatung. Is used to control recruitment for a web survey (i.e. avoid multiple invites, do not invite again if a user does not want to participate). Relevant for English Site/Survey.
More information at WebXF Web Excellence Forum
Performance cookies collect analytical data for Deutsche Post DHL Group to understand how visitors use and view webcasts. For example, we can see which webcasts are most popular, identify which webcasts have been watched the most etc.
- bhCookieSess, bhResults
This combination of session and persistent first-party cookies deliver webcast and live streaming functionality to the Deutsche Post DHL Group website.
Certain detection cookies are set as soon as a visitor arrives at a webcast page. These functional cookies detect the user’s device including the browser, OS (Operating System) and plug-in being used. Based on the results given, StreamStudio will provide streaming media that will work for the specific visitor.
- STST_AUTH_<BCID>, STST_REG_CO_<COID>, STST_REG_CSO_<CSOID>, STST_REG_<BCID>, STST_STATS_SESSION_<BCID>, STST_STATS_STATUS_<BCID>
Functional cookies also store user preferences including registration. STST_REG_CO_<COID>, STST_REG_CSO_<CSOID>, STST_REG_<BCID> do not have an expiry date, STST_AUTH_<BCID> expires after 24 hours and any other functional cookies expire at the end of the current session.
These cookies allow web analytics services to recognize your browser or device and, for example, identify whether you have visited our streaming services before. The information is anonymous and only used for statistical purposes.
Analytics are used confidentially only by Deutsche Post DHL Group internally to improve its websites and the user experience and the cookies expire at the end of the current session.
Please note that StreamStudio webcasts will not work properly if cookies are turned off.
More information about StreamStudio privacy
Cookies used in the online annual reports from 2013 and 2014
- dhlBasket3 | Shopping basket function
This cookie is used to collect and download the online annual reports from 2013 and 2014 in the Documents section of the Download Center. The cookie expires after one day.
- dhlFontsize3 | Font size
This cookie sets the font size.
- _pk_id* / _pk_ses* 2 | Web mining
Piwik cookies collect anonymized information to determine how visitors use the website.
- session_id_* 3 | Mark page and login
This application cookie is used for the "Mark page" function and for logging into the backend. The cookie is deleted when the browser is closed.
- PHPSESSID2 | Video
Implemented in the 2014 annual report. A cookie is set when a video is integrated using iFrame. It is then deleted when the browser is closed.
Sharing Tools: Third Party Cookies4
Deutsche Post DHL Group now uses embedded 'share' buttons on its websites. These make it easy for visitors to bookmark and share content through their favorite social networks. When you click on one of these buttons, a cookie may be set by the service you have chosen to share content through. Deutsche Post DHL Group does not control the use of these cookies and you should therefore check the relevant third party's website for more information. The 'share buttons' are provided by AddThis which may implement the following cookies:
This cookie is associated with the AddThis social sharing widget which is commonly embedded in websites to enable visitors to share content with a range of networking and sharing platforms. It stores an updated page share count.
This cookie is associated with the AddThis social sharing widget which is commonly embedded in websites to enable visitors to share content with a range of networking and sharing platforms. This is believed to be a new cookie from AddThis which is not yet documented, but has been categorised on the assumption it serves a similar purpose to other cookies set by the service.
This AddThis cookie stores the visitors geolocation to record location of sharer.
This cookie tracks how often a user interacts with AddThis.
Third Party Cookies in embedded content
Please note that on some pages of our websites you may notice that cookies have been set that are not related to Deutsche Post DHL Group. When you visit a page with content embedded from, for example, YouTube or Vimeo, these service providers may set their own cookies on your web browser. Deutsche Post DHL Group does not control the use of these cookies and cannot access them due to the way that cookies work, as cookies can only be accessed by the party who originally set them. You should check the third party websites for more information about these cookies.
Using our products and services without cookies is also possible. In your browser, you can deactivate the saving of cookies, limit them to particular websites, or set the browser to notify you when a cookie is sent. You can also delete cookies from your PC hard drive at any time (file: "cookies"). Please note that in this case you will have to expect a limited page presentation and limited user guidance.
Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit: All about cookies
For further EU-specific advice on cookies and the various opt out options available to you, you can also visit the following website: Your online choices
To opt out of being tracked by Adobe Analytics, visit Adobe Experience Cloud Opt-Out.
Please remember that if you delete your cookies, or use a different browser or computer you will need to set your opt-out status again.
Please note that it is not technically possible to detect the Opt-Out if you delete the cookies from your browser.
On our website and in accordance with Art. 6 (1) f) GDPR we are using social-media-plug-ins (like facebook, google+, twitter etc.) in order to promote our brand, products and services and to get in touch with our customers. Therefore these advertising purposes are regarded as carried out for a legitimate interest. It is the responsibility of the respective social-media provider to be in line with all applicable laws and regulations.
Career opportunities within Deutsche Post DHL Group are as diverse as our teams all over the world. With approximately 550,000 employees in over 220 countries, we connect people, improving their lives. If you would like to apply for one of our open jobs you will find more information, also on data protection, here.
Deutsche Post DHL Group does not share, sell, transfer or otherwise disseminate your personal data to third parties and will not do so in future, unless required by law, unless required for the purpose of the contract or unless you have given explicit consent to do so. For instance, it may be necessary to pass on your address and order data to our contractors when you order products. Further information on data protection in specific services and products is available at the relevant Customer Portal.
External service providers that process data on our behalf are contractually obliged to maintain strict confidentiality as per Art. 28 GDPR. Deutsche Post DHL Group retains responsibility for safeguarding your information in such circumstances. The service providers follow the instructions of Deutsche Post DHL Group, and this is guaranteed by technical and organizational measures, as well as by means of checks and controls.
Facebook Fanpage DHL
The following information explains how your personal data are handled within the context of the DHL Global Facebook Fanpage.
We have no influence on the collection of data and its further processing by Facebook. In addition, we are unable to see the extent to which, the location at which and the duration for which the data are stored by Facebook, the extent to which Facebook complies with existing erasure obligations, which analyses and links are made with the data by Facebook, and to whom Facebook transmits the data. If you do not want Facebook to process personal data which you have supplied to us, please contact us by other means.
Controllers' name and contact details
Where we are the sole processor of the data which you have transmitted to us via Facebook, the data controller for the purposes of the General Data Protection Regulation (GDPR) is Deutsche Post AG, Charles-de-Gaulle-Str. 20, 53113 Bonn, Germany, Tel.: +49/ (0) 228/ 18 20, e-mail: impressum.brief[at]deutschepost.de.
Where the data which you have transmitted to us on Facebook are also or exclusively processed by Facebook (Insights data), Facebook Ireland Ltd., 4 Grand Canal Square, Grand Canal Harbour, Dublin 2 Ireland, is, in addition to ourselves, also a data controller for the purposes of the GDPR. You can contact Facebook's Data Protection Officer via the online contact form provided by Facebook at https://www.facebook.com/help/contact/540977946302970. In such cases, data are processed on the basis of an agreement between joint controllers pursuant to Art. 26 GDPR, which you can view here: https://www.facebook.com/legal/terms/page_controller_addendum.
The controller responsible for processing personal data is the natural or legal person which alone or jointly with others determines the purposes and means of the processing of personal data.
Data processing when you make contact with us
We collect personal data if, for example, you contact us using a contact form or messenger service. The relevant contact form enables you to see which data we collect when you make contact via a contact form. These data are stored and used solely for the purpose of responding to your enquiry and/or for making contact and for the associated technical administration process. The legal basis for the processing of the data is our legitimate interest in responding to your enquiry pursuant to Art. 6 (1) (f) GDPR. If you make contact with the aim of concluding a contract, the additional legal basis for processing is provided by Art. 6 (1) (b) GDPR. Your data will be erased after your enquiry has been definitively processed, provided no statutory retention requirements stand in the way. We shall assume that an enquiry has been definitively processed if circumstances indicate that the matter in question has been definitively resolved.
Data processing for statistical purposes using Page Insights
Facebook provides us with Page Insights for our Facebook page: https://www.facebook.com/business/a/page/page-insights. These are aggregated data which provide us with an insight into how persons interact with our page. Page Insights can be based on personal data which are recorded in connection with a visit or an interaction by individuals to or with our page and its contents. In accordance with Article 6 (1) (f) GDPR, this serves the purpose of our prevailing legitimate interest (based on a balancing of interests test) in achieving optimised presentation of our page and effective communication with customers and interested parties.
You may object at any time to your data being processed for the above purposes by amending your settings for advertisements in your Facebook user account at https://www.facebook.com/settings?tab=ads.
Apart from the right to obtain you have the following rights:
- You can request information as to what personal data is stored
- You can request that we correct, delete or block your personal data provided these actions are permitted by law and in compliance with existing contractual conditions.
- You can request to receive personal data you have provided in a structured, commonly used and machine-readable format.
- You may lodge a complaint with the supervisory authority. To find your competent data protection authority, please click here.
Right to object
The right to object applies for all processing of personal data which is based on Art. 6 (1) f) GDPR.
To exercise your right, simply get in touch with us by using the contact details mentioned under "Contact".
Deutsche Post DHL Group takes all of the necessary technical and organizational security measures to protect your personal data from being lost or misused. For instance, your data is saved in a secure operating environment which is not accessible to the public. In certain cases, your personal data is encrypted by Secure Socket Layer technology (SSL) during transmission. This means that an approved encryption procedure is used for communication between your computer and the Deutsche Post DHL Group servers if your browser supports SSL. Should you wish to contact Deutsche Post DHL Group by e-mail, we would like to point out that the confidentiality of the information sent cannot be guaranteed. The contents of e-mail messages can be read by third parties. We therefore recommend you send us confidential information only by post.
Further information on data protection in specific services and products is available at the relevant Customer Portal.
Deutsche Post DHL Group reserves the right to change its Privacy Notice at any time with or without prior notice. Please check back frequently to be informed of any changes. By using Deutsche Post DHL Group's websites you agree to this Privacy Notice.
This statement was last updated on 22 May 2018.