CoDeliver logo

Privacy policy

This policy explains, in simple terms, how CoDeliver (KOUVARITAKIS I.K.E.) processes personal data when you visit the website or use the CoDeliver.io services.

1. Data controller

For data related to the website, contact/demo/newsletter forms and user accounts for the platform, the data controller is KOUVARITAKIS I.K.E., Filimonos 9, Thessaloniki 54351, Greece. For privacy‑related questions you can contact info@codeliver.io.

For data entered into the CoDeliver.io service by our customers about their own business (for example recipients, couriers or other individuals connected with their operations), CoDeliver generally acts as a data processor under GDPR. In those cases, the data controller is the respective customer organisation using the service, which determines the purposes and means of processing and is responsible for informing data subjects and ensuring a valid legal basis.

2. Scope of this policy

This policy applies to:

  • visitors of codeliver.io,
  • users of the CoDeliver.io platform (for example dispatchers, store staff, couriers),
  • recipients of orders created by our customers, whose contact details may be entered to perform deliveries.

For recipients and, more broadly, individuals whose data are entered into the platform by our customers, CoDeliver processes the data solely on behalf of and according to the instructions of those customers. Our customers remain primarily responsible for informing data subjects and selecting an appropriate legal basis for processing.

3. Data we process

Depending on how you interact with the service, we may process:

  • Contact details such as name, email, phone and company when you fill in contact, demo or newsletter forms.
  • Account details such as email, full name and user role for creating and managing access to the platform.
  • Fleet business data such as information about stores, couriers and zones entered by the customer.
  • Recipient data (for example address, name, phone) entered by our customers so deliveries can be completed.
  • Technical data such as IP address, browser information, connection timestamps and basic logs for security and troubleshooting.

4. Purposes and legal bases

We use personal data mainly for the following purposes:

  • Providing the service: creating user accounts, running routes, sending notifications to couriers and stores.
  • Communication: responding to contact requests, arranging demos and discussing partnerships.
  • Improvement and security: analysing anonymous usage trends and keeping logs to detect issues or malicious activity.
  • Marketing communications: sending newsletters or product updates only when you have given consent.

The corresponding legal bases under GDPR are, as applicable, performance of a contract, the Company's legitimate interest, compliance with legal obligations and your consent (for example for newsletters).

Specifically for recipient data and fleet business data entered by our customers, CoDeliver processes such data solely on their behalf, based on our service agreement, and does not use them for its own independent purposes (for example its own marketing). Each customer remains responsible for the lawfulness of collecting and using those data.

5. Data retention

  • Account and fleet business data are kept while the customer has an active relationship with the Company and for a reasonable period afterwards (for example up to 12 months), unless a longer period is required by law.
  • Recipient data for deliveries is kept only as long as necessary to execute each delivery and is then deleted or anonymised; it is not used for marketing.
  • Technical logs are kept for a limited period, usually up to 12 months, for security and audit purposes.

6. Sharing data with third parties

We do not sell or rent your data. We may share data with trusted third‑party providers only when necessary to operate the service, such as:

  • cloud hosting and database providers,
  • email and SMS delivery providers,
  • analytics and monitoring service providers we use.

All such partners are bound by confidentiality and appropriate security measures in line with GDPR. Data may also be disclosed to public authorities when required by law.

7. Cookies and similar technologies

The website may use cookies or similar technologies to:

  • support basic functionality (for example login sessions),
  • collect aggregated, anonymised usage statistics.

You can configure your browser to block cookies, but some features of the site or platform may not work properly as a result.

8. Your rights

Under GDPR you have, where applicable, the right to access, rectify, erase, restrict processing, obtain a copy of your data in a portable format and object to certain processing activities.

To exercise any of these rights you can contact us at info@codeliver.io. You also have the right to lodge a complaint with your local data protection authority if you believe your rights have not been respected.

Where your data have been entered into the platform by one of our customers (for example as a delivery recipient), you should normally address your request directly to that customer (store, delivery company, etc.), who is the data controller. If you contact us, we will endeavour –where feasible– to forward your request to the relevant customer.

9. Data security

We implement technical and organisational measures to protect data, such as access controls, secure communication protocols and regular backups. However, no online service can guarantee absolute security.

10. Changes to this policy

We may update this policy from time to time to reflect changes in our services or in applicable law. The most recent version will always be available on this page and will mention the date of the last update.