Privacy Policy

1. Data Controller

The data controller for the processing of personal data on this website is NextDay Drop GmbH, headquartered in Frankfurt am Main, Germany. For all privacy-related inquiries, please contact us at privacy@nextdaydrop.net.

2. Data We Collect

We collect and process the following categories of personal data when you use our services:

• Identity data: full name, date of birth (for pet transport)
• Contact data: email address, phone number, postal address
• Shipment data: origin, destination, weight, dimensions, type of goods, pet details
• Payment data: bank account details, cryptocurrency wallet addresses, payment confirmation documents
• Technical data: IP address, browser type and version, operating system, device information, pages visited, time of access
• Account data: email, password (encrypted), account preferences

3. How We Use Your Data

Your personal data is processed for the following purposes:

• To process, manage, and deliver your shipments
• To provide quotes and respond to customer inquiries
• To generate invoices and process payments
• To send service-related communications and status notifications
• To comply with legal, regulatory, and customs requirements
• To improve our website functionality and user experience
• To prevent fraud and ensure security of our systems

4. Legal Basis for Processing (Art. 6 GDPR)

We process your personal data based on: (a) performance of a contract (Art. 6(1)(b) GDPR) when fulfilling shipment and transport services; (b) your consent (Art. 6(1)(a) GDPR) for marketing communications and non-essential cookies; (c) compliance with legal obligations (Art. 6(1)(c) GDPR) for tax, customs, and regulatory requirements; (d) our legitimate interests (Art. 6(1)(f) GDPR) for fraud prevention, system security, and service improvements.

5. Cookies

Our website uses the following types of cookies:

• Essential cookies: Required for core website functionality, language preferences, and session management. These cannot be disabled.
• Analytics cookies: Used to understand how visitors interact with our website, helping us improve performance and user experience. These are only set with your consent.

You can manage your cookie preferences at any time through the cookie settings banner or your browser settings.

6. Data Storage Duration

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected. Specifically: shipment records and invoices are retained for a minimum of 10 years in accordance with German commercial and tax law (§ 257 HGB, § 147 AO). Account data is retained for the duration of the account relationship and deleted within 30 days of account closure. Technical logs are retained for a maximum of 90 days. Payment records are retained for 10 years as required by German financial regulations.

7. Third-Party Services

We share your data with the following categories of third parties, only to the extent necessary:

• Airlines and transport partners for shipment and pet transport coordination
• Customs authorities for international shipment clearance
• Payment processors for secure transaction handling
• Veterinary authorities for pet health documentation compliance
• IT service providers for website hosting and security

We do not sell, rent, or trade your personal data to any third party for marketing purposes.

8. Your Rights Under GDPR

As a data subject, you have the following rights under the General Data Protection Regulation:

• Right to access (Art. 15): You may request a copy of the personal data we hold about you.
• Right to correction (Art. 16): You may request correction of inaccurate or incomplete personal data.
• Right to deletion (Art. 17): You may request deletion of your personal data, subject to legal retention requirements.
• Right to data portability (Art. 20): You may request your data in a structured, commonly used, machine-readable format.
• Right to withdraw consent (Art. 7): You may withdraw consent for data processing at any time, without affecting the lawfulness of prior processing.
• Right to restriction (Art. 18): You may request restriction of processing under certain circumstances.
• Right to object (Art. 21): You may object to processing based on legitimate interests.

To exercise any of these rights, please contact us at: privacy@nextdaydrop.net

You also have the right to lodge a complaint with the competent supervisory authority. For Germany, this is the Hessischer Beauftragter für Datenschutz und Informationsfreiheit.

9. Data Security

We implement appropriate technical and organizational measures to protect your personal data against unauthorized access, alteration, disclosure, or destruction. These measures include encrypted data transmission, secure server infrastructure, access controls, and regular security audits.

10. International Data Transfers

When your shipment involves international destinations, your data may be transferred to countries outside the European Economic Area (EEA). In such cases, we ensure adequate data protection through Standard Contractual Clauses (SCCs) approved by the European Commission, or other lawful transfer mechanisms.

11. Changes to This Policy

We may update this privacy policy periodically. Any changes will be posted on this page with an updated revision date. We encourage you to review this policy regularly.

Last updated: February 2026