Privacy notice

Last updated: 9 April 2026

This notice describes how personal data may be processed in connection with the SBSDispatch platform. Your organisation (the “customer”) is often the data controller for operational data; the operator processes data as described here and in your agreement. This summary does not replace your organisation’s own privacy policy where one applies to you.

Who we are

SBSDispatch is operated by Xpeedite for your organisation’s subscription. For data protection questions directed at the operator, use the contact method your administrator provides, or the support channel shown on your deployment.

Data we may process

Depending on how you use the service, this may include:

• Account data: name, email address, phone number, role, credentials, and security logs.
• Operational data: order details, addresses, contacts, shipment contents descriptions, pricing, signatures, photos, scans, status updates, and messages sent through the platform.
• Location data: where enabled for drivers or tracking, approximate or precise location for operational purposes.
• Technical data: IP address, device type, browser, timestamps, cookies or similar identifiers, and diagnostic information.
• Billing data: where applicable, billing contacts and transaction references processed by your organisation or its payment providers.

Purposes and legal bases

We process personal data to:

• Provide, secure, and improve the service (performance of contract / legitimate interests).
• Authenticate users, prevent abuse, and comply with law (legal obligation / legitimate interests).
• Send operational or service messages (contract / legitimate interests). Marketing, if any, only where permitted.
• Analyse aggregated or de-identified usage to improve reliability and features (legitimate interests).

Sharing

We may share data with subprocessors that host infrastructure, send notifications, or provide maps and integrations you enable. We may disclose information if required by law or to protect rights, safety, and integrity of users and the service. Your organisation may access data you submit as part of its account.

Retention

Data is kept for as long as needed to provide the service, meet legal and accounting requirements, and resolve disputes. Retention periods may be set by your organisation’s configuration or agreement.

Security

We implement appropriate technical and organisational measures designed to protect personal data. No method of transmission or storage is completely secure.

Your rights

Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing, and to lodge a complaint with a supervisory authority. Many requests must be routed through your organisation if it controls the data. Contact your administrator or the operator using the support channel published for your deployment.

International transfers

Data may be processed in countries where we or our subprocessors operate. Where required, we use appropriate safeguards described in your agreement or standard contractual clauses.

Children

The service is not directed at children, and we do not knowingly collect personal data from children.

Changes to this notice

We may update this privacy notice from time to time. We will adjust the “Last updated” date and, where appropriate, provide additional notice through the application or your organisation.