Privacy Policy

1. Data controller and scope of data processing

This notice is provided by the company Grimaldi Euromed as data controller, pursuant to and for the purposes of Article 13 of Regulation (EU) 2016/679 (“GDPR”).

The processing operations concern personal and contact data of Shipper, Consignee and Notify, Customers, Invoice Payer and Driver (the “Personal Data”).

2. Purpose and legal basis of the processing

Personal Data will be processed for purposes related to the obligations arising from the contract of carriage of goods or the issuance of the “Driver Card”. Data will be processed for the following purposes:

1. to manage requests for quotes;
2. to conclude, manage and execute the operations related to the contract of carriage of goods;
3. to send logistical information about the trip (e.g. delays, departure pier, etc.);
4. to transmit data to maritime agencies, terminals and port authorities, law enforcement and judicial authorities;
5. to manage “Driver Card” issue requests;
6. to manage the “Driver Cards” issued;
7. to guarantee the benefits provided by the “Driver Card” to the companies providing the services covered by the agreement;
8. To extract anonymous statistical information.

The legal basis of the processing operations listed above from point 1 to point 3 is found in the fulfillment of contractual obligations, pre-contractual and legal measures in order to manage the maritime transport contract (Art. 6, paragraph 1, letter b, of the GDPR).

For point 4, the legal basis of the processing is found in the fulfilment of legal obligations to which Grimaldi Euromed is subject and in the public interest in the protection of safety in ports (Art. 6, paragraph 1, letter c, of the GDPR).

For the points 5, 6, 7 and 8 the legal basis of the treatment is found in the execution of pre-contractual measures adopted at the request of the person concerned, in the fulfillment of legal obligations in order to manage the process of issuing the “Driver Card” and the use by the interested parties of the benefits provided by the card, as well as in the legitimate interest of Grimaldi Euromed to the management of the “Driver Card” itself (art. 6, paragraph 1, lett. b, c, f, of the GDPR).

The provision of Personal Data is necessary for the proper performance of contractual and pre-contractual obligations of Grimaldi Euromed and failure to provide them makes it impossible to process your requests related to entering into a contract of carriage of goods, the issuance and management of the “Driver Card”, as well as to fulfil exactly the legal obligations and those arising from the public interest to protect safety in ports.

3. Disclosure of Personal Data and retention times

Personal Data are stored according to the following table.

Please note that Personal Data may be communicated not only to other companies belonging to the Grimaldi Group, but also to entities established in third countries, even outside the territory of the European Union, with the compliance of appropriate procedures and within the scope of the aforementioned purposes.

It may also be necessary for the Grimaldi Euromed – based on laws, legal proceedings, disputes and/or requests made by public or governmental authorities inside or outside the State of residence of the data subject, national security purposes other matters of public importance – to disclose personal data. When legally possible, we will inform the data subject prior to such disclosure.
We may also disclose personal data if we establish in good faith that it is reasonably necessary to assert and protect our rights and activate available remedies.