CargoFlow
EN RO
Login Get Started Free

Privacy Policy

Last updated: 2026-02-22

1. Introduction

CargoFlow ("we", "us", "our") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our freight exchange platform.

We comply with the General Data Protection Regulation (GDPR - Regulation (EU) 2016/679) and applicable Romanian data protection laws.

2. Data Controller

The data controller for CargoFlow is: [Company name to be added]

For any privacy-related inquiries, contact us at: support@cargoflow.ro

3. Information We Collect

3.1 Account Information

  • Personal identification: Name, email address, phone number
  • Company information: Company name, CUI/VAT number, registration number, registered address
  • Authentication data: Password (encrypted), session tokens

3.2 Business Documentation

  • Trade register extracts
  • Transport licenses and authorizations
  • Insurance certificates (liability, CMR)
  • Vehicle technical inspection documents

3.3 Operational Data

  • Vehicle information: License plates, type, capacity, dimensions, photos
  • Driver information: Name, phone number (for contact purposes)
  • Load/transport details: Pickup/delivery locations, dates, cargo specifications
  • Bidding activity: Prices, messages, terms offered
  • Ratings and reviews: Scores, comments about transactions

3.4 Technical Data

  • IP addresses and device information
  • Browser type and version
  • Operating system
  • Access times and pages viewed
  • Location data (for vehicle tracking, with consent)

4. Legal Basis for Processing

We process your personal data based on:

  • Contract performance: To provide our freight exchange services
  • Legal obligation: Tax records, transport regulations compliance
  • Legitimate interests: Platform security, fraud prevention, service improvement
  • Consent: Marketing communications, optional cookies

5. How We Use Your Information

  • Creating and managing your account
  • Verifying carrier credentials and company documentation
  • Facilitating load posting, bidding, and transport matching
  • Enabling communication between shippers and carriers
  • Processing payments and generating invoices
  • Calculating and displaying ratings and trust scores
  • Providing customer support
  • Ensuring platform security and preventing fraud
  • Complying with legal and regulatory requirements

6. Data Sharing

We may share your information with:

  • Platform users: Limited business information visible to potential trading partners
  • Service providers: Cloud hosting, payment processors, email services (under strict data processing agreements)
  • Legal authorities: When required by law or to protect our rights

We do not sell your personal data to third parties.

7. Data Retention

  • Active accounts: Data retained while account is active
  • After account deletion: Transaction records retained for 10 years (legal requirement)
  • Technical logs: 90 days
  • Marketing data: Until consent withdrawal

8. Your Rights (GDPR)

You have the right to:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data ("right to be forgotten")
  • Restriction: Limit how we process your data
  • Portability: Receive your data in a structured, machine-readable format
  • Object: Object to processing based on legitimate interests
  • Withdraw consent: At any time, without affecting prior processing

To exercise these rights, contact: support@cargoflow.ro

9. Data Security

We implement appropriate technical and organizational measures to protect your data, including:

  • Encryption of data in transit (TLS) and at rest
  • Secure password hashing
  • Access controls and authentication
  • Regular security assessments
  • Data backup and disaster recovery procedures

10. International Transfers

Your data is primarily processed within the European Economic Area (EEA). If transferred outside the EEA, we ensure adequate protection through Standard Contractual Clauses or adequacy decisions.

11. Children's Privacy

CargoFlow is a B2B platform not intended for individuals under 18. We do not knowingly collect data from minors.

12. Supervisory Authority

If you believe your data protection rights have been violated, you may file a complaint with the Romanian National Supervisory Authority for Personal Data Processing (ANSPDCP):

ANSPDCP
B-dul G-ral. Gheorghe Magheru 28-30, Sector 1
010336 Bucharest, Romania
Website: www.dataprotection.ro

13. Changes to This Policy

We may update this Privacy Policy periodically. Material changes will be notified via email or platform notification. Continued use after changes constitutes acceptance.

14. Contact Us

For privacy inquiries:
Email: support@cargoflow.ro