Privacy policy, Cookies and Data Protection

Rangel welcomes your visit to our website and your interest in our company and our products and services. For us, it is very important to ensure the privacy and protection of your personal data during the collection and processing thereof, as well as in the business relationship.

Hereunder we explain what information is collected by Rangel when you visit/use our website and how this information is used.

  • Data Controller

    • Rangel Invest-Investimentos Logísticos, S.A. and all affiliated companies that are part of the Rangel Group, under the commercial designation Rangel Logistics Solutions.

  • Personal Data

    • Personal data means specific information about personal or factual characteristics related to an individual that can be identified from such data. This includes information such as name, address, telephone number and date of birth.

      Information that does not allow identification of the individual or that cannot be directly linked to his/her identity is not considered personal data.

      Any Rangel customer account holder is required to provide certain personal information to ensure that we clearly identity all participants in the shipping process and to exchange important information with them (for example, when to drop an item at the collection post).

      This data is requested at the time of customer registration and may include surname, name, e-mail address and/or mobile phone number and date of birth (to ensure the user is not a minor). The user may also have the option to enable messaging services as additional notification channels, including SMS. The user will also be asked about the type of information and what notifications we are allowed to send.

  • Personal data collection and processing

    • Rangel is committed to preserving the privacy of its website users. When they visit our Web pages, our Web servers always keep the following data temporarily and only for security and/or statistical purposes: the connection data of the computer that is connecting to our website, a list of the Web pages that the user visited in our website, the date and duration of the visit, identification data of the type of browser and operating system used, as well as the website through which the user accessed our website. Additional personal information, such as the name, address, telephone number or e-mail address are not collected unless the user provides this information voluntarily, for example, by completing an online contact form as part of a registration, query, contract fulfilment or request for information.

      Certain areas of Rangel's websites, including, but not limited to, the customer account, require a registration or password to access it. Information obtained from the users in these areas may also be used by Rangel for marketing purposes, within the limits of the national legislation.

      In cases where we have your consent or when permitted under applicable law, we may send you marketing or commercial communications (which may include e-mails, text messages or telephone calls) related to services that we believe are relevant to the customer. We may also use information related to service provision to send you more relevant messages.

      Certain shipment data is provided to the authorities of the country of transit or destination for customs clearance or for tax settlement or for security screening, as required by the laws of the relevant country. The information normally provided includes: name and address of the consignor, name and address of the consignee, description of the goods, number of pieces, weight and value of the shipment.
  • Use and transmission of personal data

    • We use the personal data you have provided us exclusively for the technical administration of the Web pages and to respond to your requests or to fulfil a contract with you. On the other hand, it helps us to improve the services we offer you, to make the content and services of our website easier to use and more suitable for the customer.

      In addition, we only use this data for product-related queries and marketing-related purposes if previously permitted by you, if stipulated by legal regulations or if you have not raised any objections.

      Rangel does not share, sell, transfer or otherwise disclose customer personal data to third parties and will not do so in the future unless required by law, required by the contract or if the customer has given his/her express consent to do so. For example, it may be necessary to transmit the address or order data to our subcontractors when ordering products.

      The compliance with customer requests and the execution of contracted services may require the sharing of data with subcontractors.

      The processing of shared data in the situations described above is always carried out in accordance with our instructions and in compliance with our Privacy and Data Protection Policy, as well as any other applicable security and confidentiality measures.

  • Information regarding Rangel services

    • Rangel would like to contact you (the customer) to provide the latest information regarding updates to our website or our offers, news, products and services. If you contact Rangel or register with any Rangel portal, please let us know if you would like to receive our newsletters, promotional materials and information regarding our services. If you are already a Rangel customer, you will of course continue to receive the necessary information regarding major changes to the existing contracts (for instance, fee changes) or in cases where Rangel has a legitimate interest in such processing.
  • Cookies policy

    • What is a cookie?

      A "cookie" is a small text file that is placed in the user's web browser or device and is used to remember, as well as to retrieve, information about it. The users of our website may receive a cookie when visiting our websites or when using our mobile applications. In some cases, when permitted by applicable law, cookies may also be used for specific e-mail campaigns.

      What type of cookies do we use and how can we use them? We use three main types of cookies, including:

      Functional cookies – these cookies support the use of the website and applications and enable certain resources to improve the customer's experience. For instance, we can use functional cookies to make it easier to purchase services and to remember your selections while moving to other pages. We may also use functional cookies to remember things like your login preferences to avoid having to type them again.

      Performance cookies – these cookies collect information that is required to support the website and our applications, allowing us to improve our website and identify any problems you may have experienced when visiting our website. For instance, performance cookies can provide us information on how you reached our website and how you browsed it. We can also use those cookies to provide certain statistical and analytical information such as the number of visitors to our website or the efficacy of our advertising campaigns.

      Targeted cookies – these cookies are used to gather information about you to help us improve our products and services, as well as to display targeted ads that we believe are relevant to you. We use targeted cookies in all our websites and applications for various marketing initiatives and campaigns. For further information, please see "Targeted Advertising" below.

      For further information on cookies and how they are used, please see: http://www.allaboutcookies.org/ and https://cookiepedia.co.uk/giving-consent-to-cookies 

      Third-party cookies: as described above, we can use different service providers to help us manage, execute and improve our ads. Such providers may define cookies, under our instructions, to help us gather information and display ads we believe are relevant to you. In some cases, those providers may also help us by providing certain statistical and analytical information related to our marketing practices.

      Cookies management and cancellation: you may choose to visit our websites without cookies but, in some cases, certain services, resources and functionalities may not be available. In order to visit our website without cookies, you may configure your browser to reject all cookies or notify you when a cookie is defined.  Each browser is different so you must check the "Help" menu in your browser to see how to change your cookies preferences.  In addition, you may use the Privacy Preference Centre provided by our website to select the type of cookies you wish to activate or deactivate.

      Other technologies: other technologies, such as pixels and web beacons, may also be used in our websites, mobile applications, e-mail messages or in other areas of our business. These technologies are used to improve our products and services, as well as our marketing efforts.

      Targeted advertising: Rangel and our service providers may display targeted ads by using our own cookies or third-party cookies, pixels and web beacons when the Customer visits our website or uses our mobile applications. In some cases, these may be persistent cookies. To know more about the exclusion of certain types of targeted advertising, please see the section "Cookies management and cancellation" above.

  • Security of information

    • Rangel takes all necessary technical and organizational security measures to protect your personal data from loss and misuse. For example, your data is stored in a secure operational environment that cannot be accessed by the public. In some cases, your personal data is encrypted using Secure Socket Layer (SSL) technology during transmission. This means that an approved encryption process is used for the communication between your computer and Rangel servers, if your browser supports SSL.

      We review our practices for collecting, processing and storing information, including physical security measures to protect from unauthorized access to the systems.

      We restrict the access to personal information to Rangel employees, contractors and agents who need to know this information for processing purposes and who are subject to strict confidential contractual obligations and may be subject to disciplinary action or termination of contract in the event of non-compliance with such obligations.

      If you wish to contact Rangel via e-mail, we would like to point out that it is not possible to guarantee the confidentiality of the information sent. The content of e-mail messages may be read by third-parties. It is therefore recommended that any confidential information should only be sent by mail.

  • Data Privacy Policy

    • What is Data Privacy Policy?

      Rangel Data Privacy Policy (RangelDPP) is a corporate standard that addresses the applicable data protection standards within the company and has been designed to comply with legal data protection requirements. The company is obliged to comply with this policy in the collection and processing of personal data from customers, employees, shareholders and suppliers.

      Rangel, in addition to its commitment to continuous improvement of its services, control and management of risks related to cyber security and privacy of information, is further committed to implement good practices, knowledge and tools to create value and comply with the needs of the citizens.

      It therefore complies with the GDPR principles, such as the "limitation of processing” of personal data, by establishing within its organizations a rule of "data minimisation” (minimisation of data collected in relation to the purposes of the processing) and effective accountability of the controller (principle of accountability).

      Rangel takes into account the risks of privacy since the moment of design of a given project, rather than considering such risks at a later stage – privacy by default and privacy by design.

      Personal data: the rights of the data subject

      The right of correction or update of personal data may be exercised by the Customer at any moment using the form available in our website. Rangel asks its customers to include their name, address, date of birth and e-mail address when they contact us, as this helps Rangel ensure that it accepts corrections and updates requested by the right person. Rangel further asks its customers, in case of changes in personal data, to communicate such changes promptly using the same channel.

      Rangel keeps data for as long as it is reasonably necessary for fulfilling the contract and always in compliance with applicable law.

      If the customer wishes to update, delete, access, object to processing, file a complaint, request processing limitation, request portability or review any possible automated decision regarding his/her data, Rangel requests the customer to submit such request in writing to dpo@rangel.com or the customer may exercise his/her right using the form provided in the Data Protection area of our website.

      If the customer has subscribed any service to receive marketing communications, he/she may cancel the subscription at any time using the removal link indicated in the e-mail received or using the form provided in the Data Protection area in our website.

  • How to file a complaint

    • If the customer wishes to file a complaint or exercise his/her right to complaint regarding any aspect of the personal data or this privacy and data protection policy, the customer should contact: dpo@rangel.com or exercise his/her right using the form provided in the Data Protection in our website.

      If the customer is not satisfied with the results of the complaint, he/she further has the right to submit the case to the National Data Protection Committee.

  • Changes to this privacy policy

    • Rangel aims at reaching high standards and therefore its policies and procedures are constantly being reviewed. Rangel may change this privacy policy whenever deemed adequate and necessary. Therefore, it recommends periodical visits to this page to read and assess the most recent version.
  • GDPR Glossary

    • GDPR: General Data Protection Regulation

      Personal Data: any information, regardless of the relevant medium, including sound and image, related to an identified or identifiable natural person ("Data Subject"); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, or to one or more factors specific to the physical, physiological, mental, economic, cultural or social identity of that natural person.

      Personal Data Processing (processing): any operation or set of operations which is performed on personal data, whether or not by automated means, such as collection, recording, organisation, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, comparison or alignment, as well as restriction, erasure or destruction.

      Data Controller: the natural or legal person, public authority, agency or other body which, alone or jointly with others, determines the purposes and means of processing of personal data.

      Data Processor: the natural or legal person, public authority, agency or other body which processes personal data on behalf of the Controller.

      Third-party: a natural or legal person, public authority, service or body other than the Data Subject, the Controller, the Data Processor and other persons under the direct authority of the Controller or Processor, that is authorised to process personal data.

      Recipient: the natural or legal person, public authority, agency or any other body to which personal data is disclosed, whether being a third-party or not.

      Data Subject Consent: any freely given specific, informed and unambiguous indication of the Data Subject's wishes by which he/she accepts, by a statement or by a clear affirmative action, the processing of personal data related to him/her.

      Privacy by design: this means that the privacy risk is taken into account as of the design of a new product or service rather than considering the privacy issues on a later stage. This implies carefully assessing and implementing the proper technical and organizational procedures and measures since the beginning to ensure that the processing is compliant with the GDPR and protects the rights of the data subjects involved.

      Privacy by default: this means ensuring that the organization has implemented the necessary mechanisms to guarantee that, by default, only the necessary amount of personal data required for each task will be collected, used and stored. This obligation applies to any processing extension, to the storage period and to access. These measures ensure that personal data are not provided without human intervention to an undetermined number of individuals.

      Limitation of Processing: the inclusion of a mark in the personal data stored with the purpose of limiting its processing in the future.

      Data Minimisation: this means that gathered data must be limited to what is necessary considering the purposes for which they are processed.