Privacy Policy

Last update: March 22nd 2024


Fin mile logistics limited (“fin”, “we” or “us”) holds personal data on its clients. This Client Data Privacy Notice details the personal data Fin may retain, process and share with third parties relating to your business and any data associated with your deliveries. Fin is committed to ensuring that your information is secure, accurate and relevant. To prevent unauthorised access or disclosure, we have implemented suitable physical, electronic, and managerial procedures to safeguard and secure personal data we hold.

We respect the privacy rights of individuals and are committed to handling personal information responsibly and in accordance with applicable law. This Notice sets out the personal information that we collect and process as a data processor, the purposes of the processing and the rights connected with it. Fin is also considered a Data Controller for some personal data, including data we store in relation to the creation and access of user accounts, administration, the methods of processing and service access.

We’re confident that you’ll find the information that you need in this policy but please don’t hesitate to get in touch if you have any questions or concerns.


Fin Mile Logistics LTD (the “Company”)


Registered Office

New Derwent House, 69-73 Theobalds Road, London, WC1X 8TA

Office address:

8a St Leonard’s Rd, London NW10 6ST


Types of personal information we collect


Fin may collect personal information about you when:

  • You use our services through our network of collection and delivery partners
  • You use our website
  • You contact us
  • You are a recipient of our services

We will never collect any unnecessary personal data from you and do not process your information in any way, other than as specified in this notice.

We may collect the following types of information:

  • Your name
  • Address
  • Email address
  • Landline Telephone Number
  • Mobile Telephone Number
  • Proof of delivery in the form of a signature or photo of left safe location
  • Company IT information required to provide access to Fin systems and networks such as IP addresses, log files and login information
  • Information about current, past and prospective employees; customers (including any 3rd party information provided by them), suppliers and supporters.

Purposes for processing personal information

Our legal basis for collecting and using the personal information described above will depend on the personal information concerned and the specific context in which we collect it.

However, we will normally collect personal information from you only where we have your consent to do so, where we need the personal information to perform a contract with you (i.e. provision of services),  or  where  the  processing  is  in  our  legitimate  interests  and  not overridden  by  your data protection interests or fundamental rights and freedoms.   In some cases, we may also have a legal obligation to collect personal information from you or may otherwise need the personal information to protect your vital interests or those of another person.

Fin  have  policies  and  controls  in  place  to  try  to  ensure  that  your  data  is  not  lost,  accidentally  destroyed, misused  or disclosed,  and  is not accessed  without authorisation  and  only  accessed  or used  for specific legal purposes.


Service-related purposes

Fin collect and  use  this  personal  information  for  supporting  and  managing  our delivery service for our clients’ customers – for example address, telephone and delivery instruction. 

To collect and deliver goods that you have requested from third parties.

We primarily process this personal information through our proprietary online delivery portal (we call ‘Flare’), which is a tool that helps us to manage all of our deliveries.  This portal has been built specifically for us by our ISO accredited partners


Contractual purposes

We use this personal information when it is necessary for the provision  of  our  services,  in  line  with  the purposes agreed upon between our client and Fin.


For advertising and marketing purposes

With your permission and/or where permitted by law, we may use your data for marketing purposes which may include contacting you with information, news and offers on our products and/or services. We will not, however, send you any unsolicited marketing or spam and will take all reasonable steps to ensure that we fully protect your rights and comply with our obligations under the GDPR and the Privacy and Electronic Communications (EC Directive) Regulations 2003.


Legal purposes

In some cases, we will need to use your personal data to fulfil a legal obligation (for example, if we receive a legitimate request from law enforcement agencies), and in other cases (such as the detection of fraud or ensuring the security of the site) we will rely on our legitimate interests as a business to use your data in this way. 


Legitimate interest

We may also collect and use personal information when it is necessary for other legitimate purposes, such as to  help  us  conduct  our  business  more  effectively  and  efficiently  –  for  example,  for  general  IT  security management  when  auditing  access  of  our  platforms.  We  may  also  process  your  personal  information  to investigate violations of law or breaches of our own internal policies.


How do we collect personal information

Fin collects personal information:

  • From our delivery and collection partners.  e.g. when you order goods from a third party, that party may pass your information on to Fin in order to ship your consignment and for further processing. 
  • From consignments that pass through our sortation systems – we may collect information from the outside of parcels e.g. name and address information so that we can route them through our networks for delivery to the addressee.
  • Directly from recipients. e.g. If you submit an enquiry through our website, or contact us directly via. email or telephone.
  • When our services are provided together with one of our licensees, the information is collected by them in order for us to provide you with the product or service.
  • Directly from job applicants e.g. if you submit a job application to us directly or through our recruitment partners.
  • If you connect your social media accounts via our website or any of our apps, certain personal data from your social media account will be shared with us which may include personal data that is part of your profile or your friends’ profiles;

Via Cookies:

Our site uses cookies to recognise you when you visit and use the site. This helps us to provide you with a good experience when you browse our site and also allows us to improve our site.  If you do not want information collected through the use of cookies, there is a simple procedure in most browsers that allows you to decline the use of cookies. To learn more about this procedure and cookies more generally please visit the page provided by the Information Commissioner’s Office (ICO).

Third parties whose content appears on our Site may use third party Cookies, as detailed below. Please note that we do not control the activities of such third parties, nor the data they collect and use and advise you to check the privacy policies of any such third parties.

Through your browser or device or through our servers:

Certain information is collected by most browsers or automatically through your device, and we also collect your IP address (this enables us to recognise your computer or device when you use the site) via our server log files.

Who we share personal information with

We take care to allow access to personal information only to those who require such access to perform their tasks and duties in relation to the provision of our services, and to third parties who have a legitimate purpose for accessing it to support these purposes. Whenever we permit a third party to access personal information, we will implement appropriate measures to ensure the information is used in a manner consistent with this notice and that the security and confidentiality of the information is maintained.


Transfers to third-party service providers

In addition, we make certain personal information available to third parties who provide services to us. We do so on a  “need  to  know”  basis  with  appropriate  security  measures  in  place  –  this  is  done  in  accordance  with applicable data privacy law. A list of key service providers can be found in Annex A.


Transfers to other third parties

We may also disclose personal information to third parties on other lawful grounds, including:

  • To  comply  with  our  legal  obligations,  including  where  necessary  to  abide  by  law,  regulation  or contract,  or  to  respond  to  a  court  order,  administrative  or  judicial  process,  including,  but  not limited to, a subpoena, government audit or search warrant
  • In  response  to  lawful  requests  by  public  authorities  (including  for  national  security  or  law enforcement purposes)
  • As necessary to establish, exercise or defend against potential, threatened or actual litigation
  • Where necessary to protect the vital interests of our employees or another person
  • In connection with the sale, assignment or other transfer of all or part of our business; or
  • With your expressed consent


International transfer of your data

Some of the processes involved in our use of your personal data may require our data to be stored or processed in countries outside of Europe. For example, your data may be held in countries outside of Europe as a result of third party data hosting agreements. Whenever we send (or permit a third party to send) your personal data outside of Europe, we will make sure that we take steps necessary to protect your data as required by applicable laws.  For example, we may implement specific contract terms or we may rely on service providers who adhere to certain compliance programmes overseas, or we may select service providers based in countries with strong local laws to protect your personal data.


Data retention periods

Personal information will be stored in accordance with applicable laws and kept for as long as needed to carry out the purposes described in this Notice or as otherwise. Our data retention policy details this. 

The Fin online portal automatically deletes the following personal data from the delivery record after 3 months:

  • names of sender and recipient
  • email
  • telephone number
  • delivery instruction

Proof of Delivery (POD) data is kept for 12 months before being deleted.


Data privacy rights

The following rights are available under applicable data protection law:

  • Access, correct, update or request deletion of personal information
  • Object to processing of personal information, ask us to restrict processing of personal information or request portability of personal information.
  • If  we  have  collected  and  processed  personal  information  using  a  person’s  consent,  then  this  can  be withdrawn  at  any  time.   Withdrawing  consent  will  not  affect  the  lawfulness  of  any  processing  we conducted  prior  to  withdrawal,  nor  will  it  affect  processing  of  personal  information  conducted  in reliance on lawful processing grounds other than consent.
  • You  have  the  right  to  complain  to  a  data  protection  authority  about  our  collection  and  use  of personal information.   For more information, please contact your local data protection authority. 

We  respond  to  all  requests  we  receive  from  individuals  wishing  to  exercise  their  data  protection  rights  in accordance    with    applicable    data    protection    laws.    You    can    read    more    about    these    rights    at:


Updates to this Notice

This Notice may be updated periodically to reflect any necessary changes in our privacy practices. 

Contact details

Please address any questions or requests relating to this Notice to Fin’s Data Protection Officer at [email protected] or by mail: 23a Cudworth Street, E1 5QU, London 



Key third-party processors

The following are Fin’s key third-party processors in relation to client data.


Fin uses Google tools for business for eg email and cloud-based storage. Please see Google’s Privacy Notice for more information.


Additional third-party processors

Data may be shared with several third-party processors to meet legal requirements, where Fin outsources aspects  of  its  processes  or  when  providing  specific  services  relating  to  maintaining  our  services.  These organisations may include, but are not limited to, the following:


  • Xero (Accounting & Payroll)
  • Deputy Scheduling
  • Zelt
  • HMRC
  • AWS


Where the above third-party processors transfer data overseas outside of the European Economic Area (EEA), appropriate safeguards are in place to protect the data transferred