This Data Protection Policy (hereinafter, “Policy”) applies to all activities of ZIM Integrated Shipping Services Ltd. (hereinafter called “ZIM” or “we”) with respect to the protection of personal data that ZIM collects, processes and stores in the course of its business activities, including through the ZIM websites (“Websites”), the MyZIM Personal Area (the “Personal Area”), Applications (“Apps”), and other interfaces with data subjects that we may use in connection with our Websites or Apps. ZIM is registered in Israel with its head office located at 9 Andrei Sakharov Street, Haifa, Israel. For any questions regarding the collection, processing, or use of personal data relating to you (as explained below) please contact our Data Protection Officer at: firstname.lastname@example.org.
ZIM is committed to ensuring that your personal data is protected in accordance with applicable data protection laws and the best practices available. Personal data means any information that relates to an identified or identifiable natural person and (hereinafter, “Personal Data”).
Your Personal Data, as set forth, will be collected and stored lawfully, fairly and transparently by ZIM. In processing your data, we take all necessary actions or measures in order to act in good faith, in a proportionate manner, and with the appropriate technical and organizational measures.
The collection, processing, and use of Personal Data may be carried out, in the course of ZIM’s business and supply of services, by external data processors on behalf of ZIM. ZIM requires from its external data processors to comply with relevant legal data protection rules and legislation applicable to the services they provide to ZIM, whether within the framework of its contracts or by other measures. We may revise this Policy from time to time, and such changes shall come into effect from the moment ZIM notifies you of such changes and/or updates, either by email, on the Websites or in some other reasonable manner.
Important note: If you do not consent to the collection, use, processing and disclosure of this data as set forth hereunder, please refrain from logging in and making use of the Websites, Personal Area and Apps, or otherwise providing ZIM with your Personal Data. Your consent may be obtained by, among others, ticking a box, clicking on an “I approve” or “I agree” buttons, e-signing or by other similar active methods which enable your positive indication of consent.
ZIM’s Data Protection Policy
This Policy is divided into the following sections:
Consent - We will only process Personal Data if you have consented to such processing, unless we are legally authorized or obliged to collect and further process your Personal Data, including in the event of legal proceedings, court order or other processing activated allowed under other lawful bases, or if we have a legitimate business interests to do so. Processing of Personal Data which relies solely on your informed consent, will be limited to the purposes and processing activities informed within the scope your consent.
Withdrawal of consent - You may revoke or withdraw your consent at any time by using this Consent Withdrawal Notice. Upon receipt of your request, we will cease from continued processing of your personal data that was unauthorized by you, unless otherwise mandated or authorized under our legitimate business interests under applicable law. Note that your notification of consent withdrawal may not be upheld by ZIM for lack of relevant information provided by you.
The “right to be forgotten” and data correction - You may also request the erasure or correction of all or part of your personal data held by ZIM, by using this Erasure and Correction Request Form. Upon your request, we will close your account/registration and/or remove or correct your Personal Data from all of our records, as soon as reasonably possible and when technically feasible, unless there is an overriding legal interest or other authorized basis for the continuation of the data processing. The foregoing notwithstanding, ZIM will store just enough of your Personal Data to ensure that the restriction is respected in the future. Please be aware that in the event of deletion or correction of Personal Data upon your request, ZIM may not be able to further provide services via the Websites, Personal Area, Apps and other interfaces in whole or in part: in so requesting, you irrevocably agree and waive any claim against ZIM's inability to provide the services through the Websites and Personal Area, or any interruption or malfunction resulting therefrom. Note that your request may also be rejected by ZIM for lack of relevant information provided by you.
Personal data of children and minors - We do not knowingly collect or process Personal Data relating to children and minors under the age of 16 years unless we are legally obliged to do so. If we become aware that Personal Data was transferred to us or collected by us relating to children and minors under the age of 16 years without the informed consent of a parent or legal guardian, we will delete such Personal Data without undue delay. If the request for erasure of data relates to the Personal Data of a child or minor, please attach to the request adequate proof of your status as a parent or guardian of the child or minor.
Transparency. You are entitled to ask us for information about what type of personal data about you has been collected online by ZIM. You are also entitled to obtain (in a commonly used and machine-readable form) and reuse your personal data as you have provided to us (via consent or contract performance) and which We process by automated means for your own purposes across different services and free of charge, subject to technical feasibility and lawfulness considerations. To do so, please use this Data Portability Request Form. Note that your request may also be rejected by ZIM for lack of relevant information provided by you.
Automated decision-making. ZIM shall not intentionally take any potentially damaging decision concerning you because of using automated processing operations without human intervention; and commits to giving you the opportunity to obtain human intervention in such a decision, express your point of view, and obtain an explanation of the decision. To do so, please use this Automated Processing Request Form.
In the implementation of these data protection rights, ZIM is committed to providing a timely and transparent response to your requests and upholding your right to contact ZIM’s Data Protection Officer directly. To forward a request, please click here. Please note that your requests may also be rejected if you fail to provide, or if ZIM otherwise does not obtain sufficient information required to process your request.
ZIM uses your personal data for the following reasons:
to provide the services requested by you.;
to ensure that content in the Websites, Personal Area, Apps and other relevant interfaces is presented in the most effective manner for you; and
to process your requests and inquiries, including those that include payment-related data, where applicable;.
Cookies and tracking tools are used in the Websites, Personal Area and Apps to distinguish you from other users and to improve your use of these interfaces, which may include analytics and use of session tracking technologies provided to us by third party service providers. In most cases, the data being used by the service providers is statistical or deidentified only, but in certain cases, it may include identifiers which may be attributed to Personal Data. Please note that some features may not function if you remove the strictly necessary cookies from your browser.
THE TYPE OF PERSONAL DATA WE COLLECT AND HOW WE USE IT
The Personal Data collected and used by ZIM is limited strictly to the data necessary for us to provide you with services we supply in the course of our ongoing business, while operating under ZIM's applicable legal data protection legislation and regulations obligations, including the principles of data protection, reduction and data minimization.
The data collected and processed is both general in nature, (for example, for technical purposes) and Personal Data, contact details, signatures and other information inputted by you, depending on the services selected and utilized by you.
Some automatic processing of your Personal Data may occur. Data processed may include specifically your name, some identifying numbers, the name of your internet provider, your IP address, browser type and system software, as well as the websites you have visited before being transferred to ZIM websites and apps, including keywords used for searches and the sites from which you have been transferred (e.g., search engine or linked content). As is true of most organizations operating websites and apps, we also gather certain information automatically and store it in log files. This information includes but is not limited to IP addresses, browser type, Internet service provider (ISP), referring/exit pages, operating system, date/time stamp and click stream data. We use this information, among others, to analyze trends, to administer the site, to track users' movements around the site and to gather information about our user base as a whole. We may link this automatically-collected data to personal information for legitimate business purposes, such as to detect and prevent fraudulent activity; for legitimate interests, including for marketing of ZIM’s services and other authorized purposes.
THIRD PARTIES AND DATA SHARING
Payment Service Providers – Additionally, when you receive services from ZIM through the Websites, Personal Area and Apps, you may also be directed to a payment service providers operated by Third Party Service (such as credit card or online payment providers). When ZIM uses such Third Party Service as payment processors, ZIM does not store credit card details, but instead rely on the Third Party Service provider to process Personal Data in order to provide these services. ZIM is not responsible for payment service providers operated by Third Party Service, yet requires such payment processors to comply with the data protection and other laws and regulations applicable to their payment processing services. If you have questions regarding our use of payment service providers, please get in touch with our Data Protection Officer. To protect your information we recommend that you carefully review the privacy policies of all Third Party Service that you access, and their compliance with applicable laws prior to usage of any such processor's services.
Data Sharing – Within the scope of our work with Third Party Services (including, for example, business partners, sub-contractors in technical, payment and delivery services, advertising networks, analytics providers, search information providers, etc.) we may receive information about you from them.
We may also disclose your data to a Third Party if we are required to do so by applicable law, court order or governmental regulation, or if such disclosure is otherwise authorized and necessary in support of any criminal or legal investigation or proceeding. We may need to transfer the data submitted by you for the purposes described above to parties in locations outside the country in which you are physically located, potentially including countries which may not require an adequate level of protection for your Personal Data compared with that provided in your country. By accepting this Policy, you consent to the data transfer as described in this section.
ZIM’S PROTECTION OF YOUR PERSONAL DATA
We are doing our best to maintain reasonable, industry-standard technical and organizational measures to protect your Personal Data against loss, alteration, theft, or access by unauthorized third parties.
We will not sell, share, transfer or use the data we collect from you for purposes other than those purposes stated herein above.
ZIM deletes Personal Data where the business purpose for which the data was being collected or processed ceases to apply, or if applicable data protection rules require us to delete such Personal Data.
Notwithstanding the above, ZIM will not be liable or responsible for any damage or loss resulting from the improper use or any breach of security leading to the accidental or unlawful destruction, loss, alteration, unauthorized disclosure of, or access to, Personal Data.