Data Protection

Privacy Policy

Learn how CargoPay collects, uses, and protects your personal and business data. GDPR compliant data handling for logistics payment services.

GDPR Compliant

Full EU data protection compliance

Data Encrypted

All data protected with encryption

User Rights

Full control over your data

1. Introduction
2. Information We Collect
3. How We Use Your Information
4. Legal Basis for Processing
5. Data Security
6. Data Sharing & Disclosure

7. Your Data Rights
8. Data Retention
9. Cookies & Tracking
10. International Transfers
11. Changes to Policy
12. Contact Information

1. Introduction

CargoPay ("we", "us", or "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our payment platform. This policy applies to all users of the CargoPay platform, including carriers, shippers, brokers, and other registered users.

We are committed to complying with the General Data Protection Regulation (GDPR) and all applicable data protection laws in the European Union.

2. Information We Collect

We collect the following types of information:

2.1 Personal Information

Name, email address, and contact information
Company registration details and tax identification numbers
Billing and payment information
Verification documents including ID and proof of address

2.2 Transaction Information

Payment transaction details and history
Shipment details and delivery information
Communication records through the platform

2.3 Technical Information

IP address, browser type, and device information
Log data and usage patterns
Cookie information as described in our Cookie Policy

3. How We Use Your Information

We use your information for the following purposes:

To create and manage your user account
To process payments and facilitate transactions
To verify your identity and maintain platform security
To provide customer support and respond to inquiries
To send important service updates and notifications
To detect and prevent fraud and unauthorized activities
To comply with legal and regulatory requirements

4. Legal Basis for Processing

Under GDPR, we rely on the following legal bases for processing your personal data:

Purpose	Legal Basis
Account creation and management	Performance of contract
Payment processing	Performance of contract
Fraud prevention and security	Legitimate interests
Compliance with legal obligations	Legal obligation
Marketing communications	Consent

5. Data Security

We implement appropriate technical and organizational measures to protect your personal data:

End-to-end encryption for all payment transactions
Secure socket layer (SSL/TLS) technology for data transmission
Regular security audits and vulnerability assessments
Access controls and authentication protocols
Employee training on data protection practices

6. Data Sharing & Disclosure

We may share your information with:

Payment Processors: Stripe and other authorized payment partners
Service Providers: IT, hosting, and customer support services
Legal Authorities: When required by law or to protect our rights
Verification Partners: For identity and company verification purposes

Important: We never sell your personal data to third parties for marketing purposes.

7. Your Data Rights

Under GDPR, you have the following rights regarding your personal data:

Right of Access

Request a copy of the personal data we hold about you.

Right to Rectification

Request correction of inaccurate or incomplete data.

Right to Erasure

Request deletion of your personal data ("right to be forgotten").

Right to Restriction

Request restriction of processing your data.

To exercise any of these rights, please contact us at privacy@cargopay.com with your request. We will respond within 30 days of receiving your request.

8. Data Retention

We retain your personal data for as long as necessary to fulfill the purposes for which it was collected, including:

7 years for accounting and tax records
5 years for transaction records after account closure
3 years for customer support records

9. Cookies & Tracking

We use cookies and similar tracking technologies to enhance your experience on our platform. You can manage your cookie preferences through your browser settings.

10. International Transfers

Your data may be transferred to and processed in countries outside the European Economic Area (EEA). When we transfer data outside the EEA, we ensure appropriate safeguards are in place, including standard contractual clauses approved by the European Commission.

11. Changes to Policy

We may update this Privacy Policy periodically. We will notify you of significant changes via email or platform notification. Continued use of the platform after changes constitutes acceptance of the updated policy.

12. Contact Information

For privacy-related inquiries or to exercise your data rights, contact our Data Protection Officer at:

Email: info@tarlabs.es

Last Updated: April 2026