Privacy Notice

1. Information about the collection of personal data

In addition to our online offering, we provide a mobile app that you can download to your mobile device. In the following, we will inform you about the collection of personal data when using our mobile app. Personal data is all data that can be related to you personally, e.g. name, address, email address, user behavior.

The companies of the LOGPAY group of companies work closely together. This also concerns the processing of your personal data. When processing personal data, LOGPAY Financial Services GmbH and LOGPAY Transport Services GmbH are jointly responsible for the protection of your personal data (Art. 26 GDPR). As part of their joint responsibility under data protection law, these companies of the LOGPAY group of companies have agreed on who will fulfill which obligations under the GDPR. This concerns in particular the exercise of the rights of the data subjects and the fulfillment of the information obligations pursuant to Articles 13 and 14 of the GDPR.

You can reach us at

LOGPAY Financial Services GmbH
Schwalbacher Strasse 72
65760 Eschborn
Email: info@logpay.de

You can reach our data protection officer at datenschutz@logpay.de or at our postal address by adding "the Data Protection Officer".

Our offer can be basically used without disclosing your identity. In case of using one of our personalized services, you will be asked separately for the data necessary for processing the services. It is your free decision to use these services and to enter the corresponding data.

When you contact us by email or via a contact form, the data you provide (your email address and, where applicable, your name and telephone number) will be stored by us in order to answer your questions. We will delete the data collected in this context, once storage is no longer required, or limit processing thereof, if legally mandated retention periods apply.

If we use contracted service providers for individual functions of our offer or would like to use your data for advertising purposes, we will inform you in detail about the respective processes below. In doing so, we will also indicate the defined criteria for the storage period.

2. Processing of your personal data when using our mobile app

2.1. Information processed during downloading

When downloading our mobile app, the required information will be transferred to the App Store (e.g. Google Play or Apple App Store), i.e. in particular user name, email address and customer number of your account, time of download, payment information and the individual device identification number. We have no influence on this data collection and are not responsible for it. We process the data in accordance with sentence 1 of point (f) of Art. 6 (1) GDPR and Section 25 para. 2 of the German Federal Act on Privacy in Telecommunications and Digital Services (TDDDG) only to the extent necessary for downloading the mobile app to your mobile device.

2.2. Information that is processed automatically

When you use the mobile app, we will process the personal data listed below that is technically necessary for us to offer you the functions of our mobile app and to improve the functions and performance features of the mobile app and to ensure stability and security. The legal basis is sentence 1 of point (b) of Art. 6 (1) GDPR, as the processing is necessary for the fulfillment of the contract between you and us for the use of the mobile app, and sentence 1 of point (f) of Art. 6 (1) GDPR and Section 25 para. 2 TDDDG, as we have a legitimate interest in ensuring the functionality and error-free operation of the mobile app and in being able to offer a service that is in line with the market and our interests.

Your internal device ID and the data volume transferred in each case will be processed during the time you use the mobile app, but will not be stored.

2.3. Creation of a user account (registration) and login

When you create a user account or log in, we will use your access data (email address and password) to grant you access to and manage your user account. All details except for first and last names are mandatory. The indication of the first and last name can be skipped using the "Skip" button. If you do not provide the mandatory data, you will not be able to create a user account.

Alternatively, the app can be accessed via Audi ID, VW ID, FS ID or Verimi. When using one of these IDs, you must actively agree to the email address stored with the identity provider being shared with LOGPAY.

In addition, you can provide the following voluntary information as part of the registration process: first name and last name.

We will use the mandatory information to authenticate you when you log in and to follow up on requests to reset your password. We will process and use the data you provide during the registration or login process to verify your authorization to manage the user account; to enforce the mobile app terms of use and all related rights and obligations; and to contact you in order to send you technical or legal notices, updates, security notifications, or other communications, such as those related to the management of the user account.

We will use voluntary information to complete your user profile and display it in the mobile app.

This data processing is lawful because the processing is necessary for the performance of the contract between you and us pursuant to sentence 1 of point (b) of Art. 6 (1) GDPR for the use of the mobile app, or we have a legitimate interest in ensuring the functionality and error-free operation of the mobile app (sentence 1 of point (f) of Art. 6 (1) GDPR and Section 26 para. 2 TDDDG).

2.4. Use of the mobile app

As part of using the mobile app, you can enter, manage and edit various information, tasks and activities. This information includes in particular:

The mobile app also requires the following authorizations:

In addition, optional app authorizations can be granted:

Usage data is processed and used to provide the service. This data processing is lawful because the processing is necessary for the performance of the contract between you and us pursuant to sentence 1 of point (b) of Art. 6 (1) GDPR for the use of the app.

2.5. Optional services

If you have given your consent to receive so-called push notifications through this app when installing the app, we will send you selected notifications about important news such as network expansions, new functions or outages to your mobile device without you having to open the app. For this purpose, we use Firebase Cloud Messaging from the provider Google Ireland Limited, Gordon House, Barrow Street, Dublin 4, Ireland, whose parent company is based in the USA.

A pseudonymized push reference is assigned to your mobile device, which serves as the destination for the push messages. For the data transfer, we also process your IP address, the language of your device, whether a fuel card is stored and, if so, whether charging or Mobile Fueling is activated for it.

With your express consent, we send crash reports in order to improve the stability and reliability of our apps. For this purpose, we use Firebase Crashlytics, a service of Google Ireland Ltd, Google Building Gordon House, Barrow Street, Dublin 4, Ireland, whose parent company is based in the USA.

In the event of a crash, the following information is transferred to Google's servers in the USA and stored: state of the app at the time of the crash, installation UUID, crash trace, manufacturer and operating system of the mobile phone, last log messages. This information is stored in Firebase Crashlytics so that it can be retrieved in order to rectify the error.

We also use Google Analytics for Firebase to evaluate user behavior in the app. In addition to the IP address, cookie identifiers, Internet protocol addresses and device identifiers are also processed in this context. Google Analytics creates user profiles on the basis of pseudonyms. For this purpose, permanent cookies are stored on your terminal device and read by us. In this way, we are able to recognize returning visitors and count them as such. This will only take place if you have expressly consented to this.

To display the map, the mobile app uses the API of the Google Maps map service from the provider Google. When you open the map, information relating to your use of the mobile app, in particular your IP address and – if you have given your consent to this – your location data is transmitted to Google and processed there.

Processing in the context of the use of Google Maps and information obtained via Google Maps is carried out in accordance with the Google Maps Platform Terms of Service and the Controller Terms.

Insofar as we store information in your terminal device as part of the optional services or access information that is already stored in the terminal device, this is done on the basis of your consent in accordance with Section 25 para. 1 TDDDG. Subsequent data processing is carried out in accordance with sentence 1 of point (a) of Art. 6 (1) GDPR. You can revoke your consent at any time with effect for the future by deactivating the respective function in the app settings of your end device.

3. Data sharing and data transfer

In addition to the cases explicitly mentioned in this privacy notice, your personal data will be shared without your express prior consent only if this is permitted or required by law. This may be the case, for example, if data processing is necessary to protect the vital interests of the user or another natural person.

3.1. The data provided by you during registration will be shared within our group of companies for internal administrative purposes, including joint customer support, to the extent necessary.

Any disclosure of personal data is lawful because we have a legitimate interest in disclosing the data for administrative purposes within our group of companies (sentence 1 of point (f) of Art. 6 (1) GDPR).

3.2. Personal data will be forwarded to law enforcement or other authorities and possibly to injured third parties or legal advisers where this is necessary to clarify any illegal or abusive use of the mobile app or for legal prosecution. However, this will be done only if there are indications of unlawful or abusive behavior. Disclosure may also take place if this serves to enforce terms of use or other legal claims. We are also required by law to provide information to certain public authorities upon request. These include law enforcement authorities, authorities that prosecute administrative offenses subject to fines, and fiscal authorities.

Any disclosure of personal data is lawful where the processing is necessary for compliance with a legal obligation to which we are subject pursuant to sentence 1 of point (c) of Art. 6 (1) GDPR in conjunction with national legal requirements to disclose data to law enforcement authorities, or if we have a legitimate interest in disclosing the data to the aforementioned third parties if there are indications of abusive behavior or to enforce our terms of use, other conditions or legal claims (sentence 1 of point (f) of Art. 6 (1) GDPR).

3.3. We rely on the following external service providers to provide our service:

External service providers are carefully selected by us as processors in accordance with Art. 28 (1) GDPR, regularly checked and contractually obliged to process all personal data exclusively in accordance with our instructions.

Further information on data protection and data processing by Amazon can be found at https://aws.amazon.com/de/compliance/eu-data-protection/.

4. Data transfers to third countries

We also process data in countries outside the European Economic Area ("EEA"). This concerns in detail:

For more information on the purpose and scope of data collection and processing by Google, please refer to Google's privacy policy. There you will also receive further information about your rights in this regard and setting options for protecting your privacy: https://policies.google.com/privacy?hl=de.

With regard to Google, an adequate level of data protection is guaranteed on the basis of the adequacy decision (EU-U.S. Data Privacy Framework). Google also undertakes to conclude standard contractual clauses with other sub-processors.

In order to ensure the protection of the personal rights of users also in the context of these data transfers, we make use of the standard contractual clauses of the EU Commission pursuant to Art. 46(2)(c) GDPR when structuring the contractual relationships with Google in third countries. These are available at https://ec.europa.eu/info/law/law-topic/data-protection/international-dimension-data-protection/standard-contractual-clauses-scc_de.

5. Data storage period

We will delete or anonymize your personal data as soon as it is no longer necessary for the purposes for which we collected or used it in accordance with the preceding paragraphs. As a rule, we will store your personal data for the duration of the usage or contractual relationship via the app plus a period of 6 months, during which we will keep backup copies after deletion, unless this data is needed longer for criminal prosecution or to secure, assert or enforce legal claims.

Specific statements in this privacy notice or legal requirements for the retention and deletion of personal data, in particular data that we must retain for tax reasons, remain unaffected.

6. Your rights

You have the following rights with respect to us regarding your personal data:

You also have the right to complain to a data protection supervisory authority about our processing of your personal data.

7. Objection or withdrawal of consent to the processing of your data

If you have given your consent to the processing of your data, you can revoke such consent at any time. Such revocation will affect the permissibility of processing your personal data once you have declared it to us.

Insofar as we base the processing of your personal data on a weighing of interests, you may object to the processing. This is the case, in particular, if processing is not necessary for the performance of a contract with you, which is shown by us in each case in the following description of the functions. When exercising such an objection, we ask you to explain the reasons why we should not process your personal data as we have done. In the event of a justified objection, we will review the merits of the case and will either discontinue or adapt the data processing or show you our compelling legitimate grounds based on which we will continue the processing.

Of course, you can object to the processing of your personal data for purposes of advertising and data analysis at any time. You can inform us of your advertising objection at the above contact details.

8. Changes to the privacy notice

The technical development of the mobile app, our offer or changes in the legal situation make it necessary to adapt the privacy notice. Therefore, we reserve the right to change it from time to time and to update any changes in the collection, processing or use of your personal data. The current version is always available under "Legal" within the mobile app.



Valid as of: 06/2024