Data protection according to EU-GDPR
At parcelLab we protect your data like it’s our own

The protection of your customer data is very important to us. Therefore we are open and transparent about our data protection policy.

https:DPO | Icon

Data Protection Officer

Our DP officer is ePrivacy GmbH. All employees are clearly trained in data protection Art. 32 Para. 4 GDPR.
Contact ePrivacy
https:GDPR | Encryption | Icon

Data encryption

The transmission and storage of personal data is encrypted so that the confidentiality and integrity of the data is protected.
https:GDPR | German Server

Server in Germany

The contractual agreement with the cloud infrastructure stipulates that the data itself will not be transferred to other server locations or regions.

Security & Privacy Features

Everyone at parcelLab is committed to protecting our customers.
The promises below have been part of our goals from day one.

https:icon-physical security

Physical Security

Our services are hosted on AWS who provides robust, physical data center security and environmental controls.
https:Security & Privacy Features | Encryption Security & Privacy Features | Encryption


Important and sensitive data is encrypted both at rest and in transit over external and internal facing networks.
https:GDPR | Security & Privacy Features | Data Usage

Data Usage

We never use or access your data for advertising purposes.
https:GDPR | Security & Privacy Features | Data Security

Data Security

Two levels of security ensure that all your data is 100% secure. We host your data in a encrypted and password-protected database.
https:GDPR | Security & Privacy Features | Integrated Services

Integrated Services

We use OAuth2 to securely authorize other SaaS services and do not store username or password for those services.
https:GDPR | Security & Privacy Features | Privacy & Safety Features

Privacy & Safety Features

Adjust the privacy settings of our features and tools to easily meet all your needs.
https:GDPR | Security & Privacy Features | Data Privacy

Data Privacy

We only use your customers data to provide our service; we don’t look into your account without your permission.
https:GDPR | Security & Privacy Features | Data Recovery

Data Recovery

Your data regularly gets backed up to provide a 24-hour RTO and RPO.
https:GDPR | Security & Privacy Features | Data Ownership

Data Ownership

Your data belongs to you. 100%. All personal data is automatically deleted after 90 days. We will never delete the data in your account without your knowledge.

Status Transparency
We continuously monitor our uptime and make our system status publicly available.


General questions about parcelLab’s data protection

Does parcelLab have a data protection officer?

We have appointed an external data expert for data protection issues. ePrivacy is a certified data protection officer and works for many other well-known companies alongside parcelLab. If you have any questions regarding data protection at parcelLab, please contact us at

Is it possible to sign a DPA with parcelLab?

Yes, we sign a DPA with all our customers according to Art. 28 EU-GDPR, which regulates the processing of all data by the parcelLab software. For this purpose we have developed a template with our data protection officer for DE & EN, which we will send to you in electronic form before the signing of the contract.

How does parcelLab protect personal data?

All data is backed up during transmission. The processing of personal data is encrypted so that the confidentiality and integrity of the data is protected at all times.

Is our data encrypted?

Yes. Your customers personal data is encrypted at all time and is 100% secure. We host your sensitive data in a encrypted and password-protected database.

How does parcelLab ensure that employees are entrusted with the legal requirements?

parcelLab hires qualified professionals to conduct special annual data protection training sessions with its employees. It is particularly important to us that all employees know the requirements of GDPR. Data protection and the trusted handling of personal data, as well as sensitive customer data, is not a task for our employees, but rather a matter of course. In addition to this extra measures such as user authorisations were implemented.

What happens in the event of a data breakdown?

If, contrary to expectations, a data glitch should occur in which the personal data of our customers is affected, parcelLab will inform you immediately in accordance with the legal and contractual obligations. In order to prevent data protection breakdowns in the first place, parcelLab carries out penetration tests of the IT infrastructure as well as audits of the technical and organisational measures at regular intervals. The findings are documented and processes optimised as required.

Is parcelLab EU-GDPR compliant?

Yes, parcelLab is EU-GDPR compliant. We meet all requirements of the EU data protection basic regulation, which concern the organisation itself as well as our software provided for dealers. This includes the right to complete deletion, the right to information or the right to data transfer (chapter 3 EU-GDPR) of customer data, which merchants can request from parcelLab.

Who owns the data we store in your service? Will you use our data to build advertising products?

As a parcelLab customer you own and control your data. We do not use your data for anything other than the service you booked with us.