Personal data means any information relating to an identified or identifiable natural person ('data subject'); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person. This includes information such as your real name, address, telephone number and date of birth. Information which cannot be linked to your real identity - such as favorite websites or number of users of a site - is not considered personal data.

This Privacy Notice applies for the data processing carried out by: Deutsche Post AG

If you have queries with regard to the processing of your personal data, please contact the Data Protection team. The Data Protection team is also available to help with information requests, take suggestions or handle complaints.

DHL Group is committed to preserving the privacy of users of our websites. When you visit our web pages, our web servers always temporarily save for connection and set up and security purposes the connection data of the computer connecting to our site, a list of the web pages that you visit within our site, the date and duration of your visit, the IP address of your device, the identification data of the type of browser and operation system used as well as the website through which you linked to our site. Additional personal information such as your name, address, telephone number or e-mail address is not collected unless you provide this data voluntarily, e.g. while completing an online contact form, as part of a registration, survey, competition, fulfillment of contract or an information request.

The legal basis for the processing of the aforementioned data categories is Art. 6 (1) (a) of the European General Data Protection Regulation (GDPR). Due to the said purposes, in particular to guarantee security and a smooth connection setup, we have a legitimate interest to process this data.

The web tracking data will be stored for a period of 25 months and then automatically deleted. Furthermore we are using cookies, tracking-tools and targeting measures. You will find more details hereto below "Use of Web Tracking" and "Use of Cookies".

As far as you have enabled geo localization functions in your browser, respectively in your operating system we will use this data to offer you location-based services (e. g. location of the nearest branch, packing station etc.). We will not use this data for any other purpose. If you disable this function your data will be deleted in due time.

For contractual reasons, we also need personal data to provide our services and comply with the obligations arising from contractual agreements concluded with you. This data is used e. g. for performing a (shipment) contract, managing customer data, handling payments and, as the case may be, assessing creditworthiness. Certain shipment data will also be provided to the authorities of the country of transit or destination for customs and tax clearance or for security screening, as required by the laws of such country. The information provided would usually include: shipper name and address, receiver name and address, description of the goods, number of pieces, weight and value of shipment.

The legal basis is usually Art. 6 (1) b) GDPR since the processing is for the performance of a contract to which you are a party.

Further information on data protection in specific services and products is available at the relevant Customer Portal.

If you are an existing customer of a DHL Group entity, your postal data (e.g. name, address) will be processed to contact you in order to provide you with the latest information about our offers, news, products and services. Apart from an existing consent, we will process your e-mail address exclusively in order to provide you with information regarding DHL Group own and similar products.

Legal basis for the aforementioned processing is Art. 6 (1) f) GDPR. The processing of customer data for own direct marketing purposes is regarded as carried out for a legitimate interest.

You have right to object at any time to the said processing. To exercise your right, simply get in touch with us by using the contact details mentioned under "Who is Responsible".

If you register for one of our newsletters, we are entitled to use your e-mail address for this purpose. You may unsubscribe from the newsletter at any time by clicking the relevant link at the bottom of the newsletter.

In case you file an objection or unsubscribe from our newsletter services the respective data will be blocked, respectively deleted and no longer be processed for such purposes.

We use tracking software to determine how many users visit our website and how often. We do not use this software to collect individual personal data or individual IP addresses. The data are used solely in anonymous and summarized form for statistical purposes and for developing the website.

"Cookies" are small files that enable us to store information related to your device and you, the user, specifically, while you visit one of our websites. Cookies help us to determine how frequently our internet pages are accessed as well as the number of users. And they help us configure our offers so that they are as convenient and efficient as possible for you.

On the basis of Art. 6 (1) f) GDPR, we are using "session cookies" in order to optimize our website and to guarantee and convenient and undisturbed user experience. These cookies are stored exclusively for the duration of your visit to our internet pages. They are automatically deleted when you close your browser.

In addition, we use "persistent cookies" for retaining information about visitors who repeatedly access one of our internet pages. The purpose of using cookies is to be able to offer you optimal user guidance as well as to "recognize" you and thus be able to present (as much as possible) diversified internet pages and new contents during repeated use.

Generally, we do not create an individual profile of your online activities. The content of a persistent cookie is limited to an identification number. Name, email address, IP address, etc., are not saved on the majority of our sites.

We have provided details of all cookies used on this websites in the table below.

All cookies in this table have been categorized according to four numbered groups. Please note that cookies can belong to more than one category.

The categories are as follows:

[1] Strictly Necessary: These cookies are essential in order to enable you to move around the website and use its features. Without these cookies, services you have asked for cannot be provided. As already stated above, this is based on Art. 6 (1) f) GDPR.

[2] Performance: These cookies collect information about how visitors use a website, for instance which pages visitors go to most often. These cookies don't collect information that identifies a visitor. All information these cookies collect is aggregated and therefore anonymous. It is only used to improve how a website works.

[3] Functionality: These cookies allow the website to remember choices you make and provide enhanced, more personal features. For example, these cookies can be used to enable visitors to share content with a range of networking and sharing platforms. Information these cookies collect may be anonymized and they cannot track your browsing activity on other websites.

[4] Targeting or Advertising: These cookies are used to deliver adverts more relevant to you and your interests. They are also used to limit the number of times you see an advertisement as well as helping measure the effectiveness of an advertising campaign. They are usually placed by advertising networks with the website operator's permission.

Adobe Marketing Cloud & Audience Manager Cookies

These cookies are used to collect information in an anonymous form about how visitors use the website. The information is used to improve the site and provide users with content that is more appropriate to them.

• AMCV_###@AdobeOrg⁴
  This is a pattern type cookie name associated with Adobe Marketing Cloud. It stores a unique visitor identifier, and uses an organisation identifier to allow a company to track users across their domains and services.
• AMCVS_###@AdobeOrg⁴
  This is a pattern type cookie name associated with Adobe Marketing Cloud. It stores a unique visitor identifier, and uses an organisation identifier.
• demdex⁴
  This cookie helps Adobe Audience Manager perform basic functions such as visitor identification, ID synchronization, segmentation, modeling, reporting, etc.
• dextp⁴
  This cookie is set by Adobe Audience manager to record the last time it made a data synchronization call.
• dpm⁴
  This domain is owned by Adobe Audience Manager. The main business activity is online profiling for targeted marketing.
• ev_sync_dd⁴
  This domain is owned by Adobe. The main business activity is: Advertising. Used to link anonymous analytics data into a visitor profile and help provide a personalised experience through the website, marketing and advertising.
• everest_g_v2⁴
  This domain is owned by Adobe. The main business activity is: Advertising.
• everest_session_v2⁴
  This domain is owned by Adobe. The main business activity is: Advertising.
• s_cc²
  Adobe Site Catalyst cookie, determines whether cookies are enabled in the browser. This cookie is a session cookie and will expire when the browser is closed.
  
• s_vi²
  This cookie is used to identify unique visitor time/date stamp. This is a permanent cookie which expires after 2 years.
  
• s_fid²
  This cookie is a 'fallback' visitor identifier where the s_vi cookie normally used for this purpose is blocked. It contains a randomly generated, unique id.
  
• s_sq²
  This cookie records what links the user has clicked. This cookie is a session cookie and will expire when the browser is closed.
  
• s_getNewRepeat²
  Analytics: Measures whether a visitor is a new visitor or a repeat visitor.
  

More information about Privacy at Adobe

Akamai Cookies¹

Akamai provides a defensive shield built to protect websites, mobile infrastructure, and API-driven requests. The Akamai Data Protection and Privacy Program protects the personal information that is processed by respecting global privacy principles.

• ak_bmsc
  Used by Akamai to optimize site performance and security.
• bm_mi
  Akamai Bot Manager: Security cookie
• bm_sv
  Akamai Bot Manager: Fraud prevention
• TS0129cac4
  Akamai Load Balancing cookie
• TS0189fea3
  Akamai Load Balancing cookie

More information about Privacy at Akamai Privacy Trust Center

1st party Cookies¹

• cookieDisclaimer
  This cookie is set when site visitors have agreed to the general setting of cookies. To do this, site visitors must accept or confirm the general "Cookie Disclaimer". The cookie is set when clicking on "Accept", it is valid globally for the respective language variant of the site (i.e. EN/DE).
• dpdhl-pageDisclaimer
  This cookie is set when site visitors have accepted the disclaimer text on a disclaimer-protected page. If you do not accept the disclaimer text, you will be forwarded to the respective homepage and the cookie will not be set. The actual text of the disclaimer-protected page is only displayed if the site visitors accept the disclaimer text. The cookie is only valid for a single page/URL, the page protected by the disclaimer.
• lang
  Website's language selection DE/EN

Investor Relations Chat Bot Cookies⁴

The IR Chat Bot is a service that allows to interact with our IR section and the information it contains. 

• _pk_id.269.xxxx
  This cookie contains the visitor ID value used to identify repeat visitors. Its default lifetime is 13 months.
• _pk_ref.269.xxxx
  This cookie determines whether chatbot visitors came to our site from a referring website or whether they accessed the chatbot directly. Its default lifetime is six months.
• _pk_ses.269.xxx
  This cookie is responsible for ensuring that the session with the chatbot is trackable for 30 minutes after the last tracked interaction. Once this timeframe elapses, the visit is considered over, meaning that the next chatbot interaction will start a new tracking session.

The IR Chat Bot is based upon IBM Watson and is administered by a subcontractor. The data protection policy of IBM Deutschland GmbH, Ehningen (Germany), and other relevant documents can be found here:

Data protection policy of IBM
Data Processing Addendum of IBM

OneTrust Cookie Consent Management Cookies¹

OneTrust offers a cookie consent solution that scans websites for first and third party tracking technologies including cookies, tags, pixcels, web beacons, and more. This software automatically categorizes the trackers and blocks them until consent is given.

• OptanonAlertBoxClosed
  This cookie is set by websites using certain versions of the cookie law compliance solution from OneTrust.  It is set after visitors have seen a cookie information notice and in some cases only when they actively close the notice down.  It enables the website not to show the message more than once to a user.  The cookie has a one year lifespan and contains no personal information.
• OptanonConsent
  This cookie is set by the cookie compliance solution from OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the users browser, when consent is not given. The cookie has a normal lifespan of one year, so that returning visitors to the site will have their preferences remembered. It contains no information that can identify the site visitor.

More information about cookies and privacy at OneTrust Privacy Notice

Online Survey Cookies⁴
    
These cookies are set to support the technical control of our online customer survey. The recording and readout of this information serves the sole purpose of not inviting you too frequently and not to survey you repeatedly.

We do not store information you have provided for the survey in any cookie and no personal data is collected or transferred,

• dpost_survey_svcsc
  This domain is owned by .companion Strategieberatung. Is used to determine if cookies are enabled in the browser.
• dpost_survey28_1_1
  This domain is owned by .companion Strategieberatung. Is used to control recruitment for a web survey (i.e. avoid multiple invites, do not invite again if a user does not want to participate). Relevant for German Site/Survey.
• dpost_survey28_2_1
  This domain is owned by .companion Strategieberatung. Is used to control recruitment for a web survey (i.e. avoid multiple invites, do not invite again if a user does not want to participate). Relevant for English Site/Survey.

More information at WebXF Web Excellence Forum

Streaming Cookies³

Performance cookies collect analytical data for DHL Group to understand how visitors use and view webcasts. For example, we can see which webcasts are most popular, identify which webcasts have been watched the most etc.

• bhCookieSess, bhResults
  This combination of session and persistent first-party cookies deliver webcast and live streaming functionality to the DHL Group website.
• STST_BCNAME_<BCID>
  Certain detection cookies are set as soon as a visitor arrives at a webcast page. These functional cookies detect the user’s device including the browser, OS (Operating System) and plug-in being used. Based on the results given, StreamStudio will provide streaming media that will work for the specific visitor.
• STST_AUTH_<BCID>, STST_REG_CO_<COID>, STST_REG_CSO_<CSOID>, STST_REG_<BCID>, STST_STATS_SESSION_<BCID>, STST_STATS_STATUS_<BCID>
  Functional cookies also store user preferences including registration. STST_REG_CO_<COID>, STST_REG_CSO_<CSOID>, STST_REG_<BCID> do not have an expiry date, STST_AUTH_<BCID> expires after 24 hours and any other functional cookies expire at the end of the current session.
  

These cookies allow web analytics services to recognize your browser or device and, for example, identify whether you have visited our streaming services before. The information is anonymous and only used for statistical purposes.

Analytics are used confidentially only by DHL Group internally to improve its websites and the user experience and the cookies expire at the end of the current session.

Please note that StreamStudio webcasts will not work properly if cookies are turned off.

More information about StreamStudio privacy

Cookies used in the online annual reports from 2013 and 2014 

• dhlBasket³ | Shopping basket function
  This cookie is used to collect and download the online annual reports from 2013 and 2014 in the Documents section of the Download Center. The cookie expires after one day.
• dhlFontsize³ | Font size
  This cookie sets the font size.
• _pk_id* / _pk_ses* ² | Web mining
  Piwik cookies collect anonymized information to determine how visitors use the website. 
• session_id_* ³ | Mark page and login
  This application cookie is used for the "Mark page" function and for logging into the backend. The cookie is deleted when the browser is closed.
• PHPSESSID² | Video
  Implemented in the 2014 annual report. A cookie is set when a video is integrated using iFrame. It is then deleted when the browser is closed.

Sharing Tools: Third Party Cookies⁴

Deutsche Post DHL Group now uses embedded 'share' buttons on its websites. These make it easy for visitors to bookmark and share content through their favorite social networks. When you click on one of these buttons, a cookie may be set by the service you have chosen to share content through. Deutsche Post DHL Group does not control the use of these cookies and you should therefore check the relevant third party's website for more information. The 'share buttons' are provided by AddThis which may implement the following cookies:

• __atuvc
  This cookie is associated with the AddThis social sharing widget which is commonly embedded in websites to enable visitors to share content with a range of networking and sharing platforms. It stores an updated page share count.
• __atuvs
  This cookie is associated with the AddThis social sharing widget which is commonly embedded in websites to enable visitors to share content with a range of networking and sharing platforms. This is believed to be a new cookie from AddThis which is not yet documented, but has been categorised on the assumption it serves a similar purpose to other cookies set by the service.
• loc
  This AddThis cookie stores the visitors geolocation to record location of sharer.
• uvc
  This cookie tracks how often a user interacts with AddThis.

For more information about their data collection practices, please take a look at the AddThis Privacy Policy.

Third Party Cookies in embedded content

Please note that on some pages of our websites you may notice that cookies have been set that are not related to Deutsche Post DHL Group. When you visit a page with content embedded from, for example, YouTube or Vimeo, these service providers may set their own cookies on your web browser. Deutsche Post DHL Group does not control the use of these cookies and cannot access them due to the way that cookies work, as cookies can only be accessed by the party who originally set them. You should check the third party websites for more information about these cookies.

Using our products and services without cookies is also possible. In your browser, you can deactivate the saving of cookies, limit them to particular websites, or set the browser to notify you when a cookie is sent. You can also delete cookies from your PC hard drive at any time (file: "cookies"). Please note that in this case you will have to expect a limited page presentation and limited user guidance.

Most web browsers allow some control of most cookies through the browser settings. To find out more about cookies, including how to see what cookies have been set and how to manage and delete them, visit: All about cookies

For further EU-specific advice on cookies and the various opt out options available to you, you can also visit the following website: Your online choices

To opt out of being tracked by Adobe Analytics, visit Adobe Experience Cloud Opt-Out.

Please remember that if you delete your cookies, or use a different browser or computer you will need to set your opt-out status again.

Please note that it is not technically possible to detect the Opt-Out if you delete the cookies from your browser.

On our website and in accordance with Art. 6 (1) f) GDPR we are using social-media-plug-ins (like facebook, google+, X etc.) in order to promote our brand, products and services and to get in touch with our customers. Therefore these advertising purposes are regarded as carried out for a legitimate interest. It is the responsibility of the respective social-media provider to be in line with all applicable laws and regulations.

1. Introduction

Deutsche Post AG (hereinafter called 'DHL Group') is pleased that you have visited our social media presences and are interested in our company and our products and services. In the following, we would like to inform you about certain issues related to data protection that apply when you visit our social media presences.

• Our social media presences are made available by the respective operators of the social media platform pursuant to the applicable terms and conditions of use. The respective platform operator is solely responsible for the technical operation of this profile. 
• DHL Group is solely responsible for the content that DHL Group posts on this page (such as information about our company, products, services, sweepstakes, campaigns) and for our interaction with visitors to our profile. 
• The operators of the social media platform operate the entire IT infrastructure of the platforms. It makes its privacy policy available to users and has its own separate relationship with registered users of the platform. The operators of the social media platforms are solely responsible for all data protection topics involving your user profile, to which we have no access. 
• We have no influence over the data processing by the operators of social media platforms who collect them. Furthermore, we have no information regarding the extent to which, the purposes for which or the length of time that the operators of the social media platforms store personal data and possibly analyze, link or transfer them to third parties. 
• Please note that your personal data can, under certain circumstances, also be processed outside of the European Union/European Economic Area. This could result in data protection risks for users because an adequate level of data protection cannot be guaranteed in such cases and the ability to assert data subject rights is limited.
• Please see the respective privacy policies and cookie policies for the social media platforms to learn more about their data processing activities and how you can exercise your rights vis-á-vis the operators of the social media platforms.
  - Facebook: https://www.facebook.com/policy.php
  - Instagram: https://privacycenter.instagram.com/policy
  - X: https://twitter.com/de/privacy
  - LinkedIn: https://de.linkedin.com/legal/privacy-policy
  - YouTube: https://policies.google.com/privacy?hl=de
  - TikTok: https://www.tiktok.com/legal/privacy-policy-eea?lang=en
• If you would like to contact DHL Group directly - in other words, without the involvement of the social media platforms - please use the contact service on our website.
  

2. Contacting the data controller and data protection officer

DHL Group is the data controller for the information it posts and also for the data processing that falls in its area of responsibility for the following social media presences:

• Facebook: https://www.facebook.com/DHL
• Instagram: https://www.instagram.com/dhl_global
• TikTok: https://www.tiktok.com/@dhl, https://www.tiktok.com/@deutschepostdhl
• X: https://twitter.com/deutschepostdhl, https://twitter.com/DHLglobal
• YouTube: https://www.youtube.com/dhl, https://www.youtube.com/deutschepostdhl
• LinkedIn: https://www.linkedin.com/company/dhl

To the extent that it concerns the processing of personal data as part of page insights, the following platform operators are jointly responsible, along with us, for data processing. Joint data processing is based on an agreement between the joint controllers pursuant to Article 26 of the General Data Protection Regulation (GDPR).

• Facebook/Instagram: Facebook
• LinkedIn: LinkedIn Pages Joint Controller Addendum

3. Purpose and legal basis of processing

3.1 Data processing in connection with our social media presences

We make use of our social media presences to inform you about, for example, our company, products, services, campaigns and sweepstakes and to interact with you regarding various topics and respond to your inquiries. The data processing performed in this connection is undertaken to safeguard our legitimate interests in accordance with Article 6(1)(f) of the GDPR. Our legitimate interest lies in public relations work and communication.

The social media platform operator publishes the information you provide on our profile, such as comments, likes, images and videos, and we process this information solely for the abovementioned purposes. We reserve only the right to erase illegal content should this be necessary. This applies, for example, to posts that constitute infringements of the law or are unlawful, hate comments, suggestive comments (explicitly sexual content) or attachments (such as images or videos), which under circumstances violate copyrights, privacy rights, criminal law or Deutsche Post AG's ethics rules.

Data are also collected for the purpose of holding and processing sweepstakes. The details, such as which data are processed and the purpose of the processing, can be found in the privacy notices and terms and conditions of the respective contest.

If you would like to exchange personal data with us, we recommend that you contact our customer service. 

3.2 Data processing of page insights for statistical purposes

The social media platform operators from Facebook, Instagram and LinkedIn provide us with page insights, for which we are jointly responsible together with the platform operators. Page insights are anonymous statistics that are generated as a result of certain events and are tracked by social media platforms via cookies and similar technologies when a user such as you interacts with our social media profile. We can use the page insights, which contain no personal data, to see which content is particularly accessed by which group of individuals. This allows us to optimize our social media presence. This represents a legitimate interest on our part for the processing that takes place. The legal basis for data processing related to page insights is Article 6(1)(f) of the GDPR. We would like to point out that data processing can also take place independent of whether you are logged in or registered on the social media platform. We are unable to influence the use of cookies and similar technologies on the social media platform and, in this respect, refer you to your ability as a user to change your settings regarding the related data processing via the respective cookie banner on the social media platform (granting or not granting your consent). 

3.3 Social media monitoring

We use social media monitoring in order to obtain a picture of how our business, our products and our services are viewed and, based on this, identify potential for improvement. This entails analyzing posts on the social media platform based on the channel links used and relevant hashtag links. Only those posts to which you allow full public access will be used for this. The legal basis for processing personal data as part of social media monitoring is Article 6(1)(f) of the GDPR because we have a legitimate interest in identifying in freely accessible statements possible deficits in our products or services and responding appropriately. 

4. Rights of the data subject

You may exercise your rights as set forth in this Privacy Notice by using our contact form.

If you would like to exercise your rights as a data subject vis-à-vis the social media platform operators, please use the contact options provided by the platform operators on the social media platforms. Should we receive an inquiry that falls within the area of responsibility of the social media platforms, we will forward it to them for further processing.

5. Storage periods

The length of time during which your data are stored will depend on the particular context of the processing and will be based on the parameters imposed by data protection law. All public posts you make on our profiles will remain on our profiles for an unlimited time, unless we erase them on the basis of an update of the original post, a breach of law or an infringement of our guidelines. You may of course erase your posts, comments and the like at any time yourself or exercise your right to have us erase them. 

In the case of the social media platform operators' erasure of your data, we have no influence over this and therefore refer you to the privacy policy of the respective platform operator.

Career opportunities within DHL Group are as diverse as our teams all over the world. With about 600,000 employees in over 220 countries, we connect people, improving their lives. If you would like to apply for one of our open jobs you will find more information, also on data protection, here.

DHL Group does not share, sell, transfer or otherwise disseminate your personal data to third parties and will not do so in future, unless required by law, unless required for the purpose of the contract or unless you have given explicit consent to do so. For instance, it may be necessary to pass on your address and order data to our contractors when you order products. Further information on data protection in specific services and products is available at the relevant Customer Portal.

External service providers that process data on our behalf are contractually obliged to maintain strict confidentiality as per Art. 28 GDPR. DHL Group retains responsibility for safeguarding your information in such circumstances. The service providers follow the instructions of DHL Group, and this is guaranteed by technical and organizational measures, as well as by means of checks and controls.

Apart from the right to obtain you have the following rights:

• You can request information as to what personal data is stored
• You can request that we correct, delete or block your personal data provided these actions are permitted by law and in compliance with existing contractual conditions.
• You can request to receive personal data you have provided in a structured, commonly used and machine-readable format.
• You may lodge a complaint with the supervisory authority. To find your competent data protection authority, please click here.
  
  

Right to object

The right to object applies for all processing of personal data which is based on Art. 6 (1) f) GDPR.

To exercise your right, simply get in touch with us by using the contact details mentioned under "Contact".

DHL Group takes all of the necessary technical and organizational security measures to protect your personal data from being lost or misused. For instance, your data is saved in a secure operating environment which is not accessible to the public. In certain cases, your personal data is encrypted by Secure Socket Layer technology (SSL) during transmission. This means that an approved encryption procedure is used for communication between your computer and the DHL Group  servers if your browser supports SSL. Should you wish to contact DHL Group by e-mail, we would like to point out that the confidentiality of the information sent cannot be guaranteed. The contents of e-mail messages can be read by third parties. We therefore recommend you send us confidential information only by post.

Further information on data protection in specific services and products is available at the relevant Customer Portal.

DHL Group reserves the right to change its Privacy Notice at any time with or without prior notice. Please check back frequently to be informed of any changes. By using DHL Group's websites you agree to this Privacy Notice.

This statement was last updated on 30 June 2023.