Cookie Notice
Last updated: 29 September, 2025
This Cookie Notice applies to our websites and applications (collectively ‘Platform(s)’)
Lalamove.eu (Registered address: Laarderhoogtweg 25, 1101EB Amsterdam; email: info.de@lalamove.eu, hereafter ‘Lalamove’) uses cookies, trackers, scripts and social media buttons (collectively: “Technologies”) on our Platforms to help us deliver a better, faster and more secure experience. Some Technologies are implemented by our processors; others (e.g., marketing pixels) are operated by independent providers acting as separate or joint controllers. These Technologies are also placed by third parties who are engaged by Lalamove.
This Notice is intended to explain to you what Technologies we use and why we use them. The use of Technologies may lead to processing of personal data. At Lalamove we are committed to protecting the privacy of everyone in our community and make use of our Platforms and services (collectively: the ‘Service(s)’). If you would like to know more about how Lalamove processes personal data, including our use of third party providers, please see our Privacy Notice.
If you still have questions about our use of Technologies or the protection of your personal data in relation to the Technologies, please contact our Data Privacy Officer at dpo.de@lalamove.eu.
Manage your Preferences
When you first visit our Platforms from a device (i.e. computer, smartphone or tablet) our cookie banner will appear where you can accept all or only necessary Technologies or select your Technologies settings. However, blocking some types of Technologies may affect your experience on our Platforms and the Services we can provide.
Click “Manage consent Preferences” to adjust your Technologies preference.
We will always store Technologies on your device if they are necessary for operating the basic functionalities of our services, as well as Technologies used to enable and maintain the proper functioning of our Platform. By clicking “Necessary Only” you can close the banner and only such necessary Technologies will be set. For all other types of Technologies, we ask your permission for each different purpose and function. Some Technologies are also placed by third party providers that appear on our pages. Please note, that disabling certain Technologies may affect your experience on our Platforms and the Services we can provide.
See our Technologies list for a specific overview of all the Technologies we use, as well as the purposes and functions associated with them, the cookie type, including their lifespan, as well as applied third party providers. This list is regularly updated by us to give you an accurate overview of the Technologies we use.
Why do we use these Technologies?
We place cookies, trackers, scripts, pixels and SDKs with different purposes: (1) necessary, (2) functional, (3) performance/analytics and (4) personalised targeting and advertising purposes. Below you will find an overview of the different purposes for using the Technologies.
1. Necessary Technologies
These Technologies are strictly necessary to ensure that our Platforms and their features function properly and securely. Services you have asked for cannot be provided without these Technologies. We also use these Technologies to keep our Platform secure by monitoring and alerting potential cyber-attacks and fraudulent activities. Additionally, these Technologies help us to monitor the performance on our Platforms in order to detect technical problems and verify improvements and new features to make sure it does not interfere with the operation of the Platform’s core functionality.
2. Functional Technologies
These Technologies allow the Platforms to remember the choices you make to give you better functionality and personal features. For instance, remembering your Platform preferences and choices, such as the language version you prefer, and remembering the address and other information you have included in order forms are examples of features which would not work without Technologies. The information collected through these Technologies is not used for marketing purposes.
3. Performance/analytics Technologies
These analytical Technologies, including statistics, are used to understand how visitors interact with the Platforms and we can measure and improve the performance of our Platforms. For instance, we keep track of which pages are visited the most and how you are navigated to our Platform.
4. Personalized (targeting and advertising) Technologies
These marketing technologies are used to tailor the delivery of information to you based upon your interests and to measure the effectiveness of advertisements, both on our Platforms and our advertising partners' websites. By means of marketing Technologies we can offer offers and/or discounts that may be of interest to you. For this purpose we analyse, among other things, how often you use our Platforms and with which Services you interact. This allows us to better adapt our Service offering and advertisements to you. Another marketing goal for which we use trackers is to verify your visits to the websites of our advertisers. This information is relevant to us to be able to pay our advertisers for the users who visit our Platforms via their platform (or place an order on our Platform).
For a specific overview of all Technologies used by us, the associated purposes and specific functions of the Technologies including the lifespan of Technology used, please refer to our Technologies list at the end of this Notice. This list is regularly updated by us to provide you with an accurate overview of the Technologies we use.
What Technologies do we use?
As mentioned above, we use various Technologies for data collection. Technologies used by us are scripts, trackers, cookies, pixels, web beacons, SDKs, social media buttons or similar technologies. Each Technology will be explained below.
1. What is a script?
A script is a piece of program code that is used to make our Platforms work properly and to make it interactive. This code can be executed on your server or on your equipment.
2. What is a tracker?
A tracker is a small invisible piece of text or image on our Platforms that is used to map the traffic. In order to map the traffic, we use several trackers, each of which stores different types of your data. Third parties may also place trackers on our Platforms to monitor the traffic.
3. What are cookies?
A cookie is a small text file that is sent from some of our Platforms and stored by your web browser on your device's hard drive. Some cookies only help to make the connection between your activities on our Platforms during your visit (Session cookies). Other cookies remain on your device's hard drive and are sent back to our servers or servers belonging to third parties who have placed cookies for us when you visit our Platforms again (persistent cookies). We use:
a. First-party cookies, which are our own cookies and are only set or retrieved by our Platforms if you are visiting it and/or you request our service.
b. Third-Party cookies, which are cookies sent to your device from a device or domain not managed by us, but by another entity that processes any data obtained through cookies.
4. What is a pixel?
A pixel is a small piece of software, and consists of and are nearly invisible pixel-sized “dots” on our Platforms which create a link between your visit to our Platforms and the provider of the pixel, for instance social platforms like Facebook. Please note that when a pixel is placed, the pixel provider is able to follow your browsing behaviour across other websites which have implemented a similar pixel or Facebook social media button.
5. What is a web beacon?
A web beacon is a technique used on our Platform to allow checking what content you have accessed. We use web beacons to help us to understand your user journey through the Platform or a series of our Platforms.
6. What is an SDK?
An SDK is a software development kit, which consists of software tools and programs provided by hardware and software providers which our developers use to build applications for our Platforms. These providers make their SDKs available to help our developers easily integrate our apps with the hardware and software services providers. For example, the iOS SDK for Apple apps, the Java Development Kit for Android apps and the Cloud SDK for Google's Cloud Platform.
7. What are social media buttons?
Our Platforms also use social media buttons. A social media button (or ‘plug-ins’) are small pieces of software which create a link between your visit to our Platform and the social media platform of a third party provider. These buttons are available to promote websites ('likes') or shares ('tweets') on social networks such as Facebook, X or Youtube. These buttons work using pieces of code that comes from Facebook, X and Youtube itself. These functionalities collect information about your social media interaction with us, such as whether or not you have an account with the social media site and whether you are logged into it when you interact with our content on our Platforms. This information may be linked to targeting/advertising activities. We have limited influence over how these social media parties make use of your personal data. These social media parties may also collect your personal data for their own purposes. For more information regarding these tracking Technologies set by the social media parties and the data that they may collect, please refer to their own privacy and cookies policies. We have listed the social media parties most used by us for your reference:
Please note that Technologies are either persistent, or session based. Persistent Technologies are stored on your device and have a certain expiration date. When the Technology expires it will automatically be deleted. If you revisit the technology it will be renewed. Session based Technologies are placed on your device when you reach the Platform and will be deleted immediately after you leave the Platform.
Security of your data with us and with third parties
1. Security for your data at Lalamove
Lalamove takes the protection of your data seriously and takes appropriate precautions for loss, unauthorised access, unwanted disclosure and unjustified changes. If you believe that your data is not properly protected or that there are indications of misuse, please contact us via our DSR FORM.
2. Third Party Technologies
As mentioned above, we use third party Technologies. These third parties help us achieve the described objectives unless expressed otherwise in this Notice. We aim to not allow third parties to use your data for their own purposes or for purposes not consistent with the purposes described in this Notice. As the case maybe, these third parties either qualify as processors who process your data on our behalf and in accordance with our instructions or as separate or joint controllers; please refer to our Privacy Notice for details.
What are your rights?
1. Enabling / Disabling and Deleting Technologies
Except for necessary Technologies, you can actively consent to our use of Technologies, absent of which such Technologies will not be used. You can indicate your consent via our granular cookie consent banner, which appears when you first visit our Platform.
You can always adjust your consent preferences, i.e. change or withdraw your consent via the “Manage your preferences” section above. Necessary Technologies for the operation of the Platform (including some scripts and cookies) can not be deactivated.
Kindly note that when you delete your Technologies from your device(s), we may not always know that you have withdrawn your consent, which is why we recommend changing or withdrawing your consent settings on our Platform to make sure that your withdrawal of consent is properly administered.
If you use multiple browsers, you will need to consent, change and/or withdraw your consent and/or delete Technologies specific to each browser as your preferences are unique to each browser instance used.
2. Your personal data rights
To the extent the use of Technologies on our Platforms involves processing of personal data about you, you can exercise the rights provided for by applicable data protection laws. Relevant processing activities and rights are all listed in our Privacy Notice. To exercise your rights, you can contact us via our DSR FORM.
For the purpose of preventing abuse, we may ask you to identify yourself appropriately in the event of such a request.
3. Questions and complaints
If you have any questions and/or complaints regarding this Notice, you can contact us via our DSR FORM.
Conclusion
We may update this Notice from time to time in response to changing legal, technical or business developments. We reserve the right to amend the content of the Notice at any time. The revised Notice will be effective upon posting. If you are not happy with the revised Notice, you can alter your preferences and delete Technologies.
We encourage you to periodically review this Notice for the latest information. We will keep prior versions of our Notice in an archive for your review.
Technologies list
| Strictly Necessary Technology These technologies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these technologies, but some parts of the site will not then work. These technologies do not store any personally identifiable information. |
|||
| Name | Provider | Purpose | Lifespan |
| __cf_bm [x9] | The __cf_bm cookie is a cookie necessary to support Cloudflare Bot Management. As part of our bot management service, this cookie helps manage incoming traffic that matches criteria associated with bots. This is a CloudFoundry cookie. |
Session | |
| _cfuvid [x4] | The _cfuvid cookie is used by Cloudflare to distinguish individual users who share the same IP address for the purpose of enforcing rate limiting rules. | Session | |
| OptanonConsent [x5] | This cookie is set by the cookie compliance solution from OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the users browser, when consent is not given. The cookie has a normal lifespan of one year, so that returning visitors to the site will have their preferences remembered. | 1 year | |
| OptanonAlertBoxClosed [x5] | When OptanonAlertBoxClosed is dropped on a browser, it indicates an interaction from the user and that the banner will not be shown until the expiration of the cookie. | 1 year | |
| __hs_opt_out | lalamove.eu | Hubspot Cookie. This cookie is used by the opt-in privacy policy to remember not to ask the visitor to accept cookies again. This cookie is set when you give visitors the choice to opt out of cookies. |
Session |
| __hs_cookie_cat_pref | lalamove.eu | Hubspot cookie banner. This cookie is used to record the categories a visitor consented to. It contains data on the consented categories. |
6 Months |
| __hs_gpc_banner_dismiss | lalamove.eu | Hubspot Banner Cookie. This cookie is used when the Global Privacy Control banner is dismissed. It contains the string "yes" or "no". |
6 Months |
| __hs_do_not_track | lalamove.eu | This cookie is used by HubSpot to store 'do not track' signals which will prevent the HubSpot tracking code from sending any information for the visitor. | 5 Months |
| __hs_notify_banner_dismiss | lalamove.eu | Hubspot Banner Cookie. This cookie is used when the website uses a Notify consent banner type. It contains a boolean value of True. |
6 Months |
| __hs_initial_opt_in | lalamove.eu | Hubspot Banner Cookie. This cookie is used to prevent the banner from always displaying when visitors are browsing in strict mode. It contains the string "yes" or "no". |
7 Days |
| hmt_id | api.hcaptcha.com | This cookie is set by the cookie compliance solution from OneTrust. It stores information about the categories of cookies the site uses and whether visitors have given or withdrawn consent for the use of each category. This enables site owners to prevent cookies in each category from being set in the users browser, when consent is not given. The cookie has a normal lifespan of one year, so that returning visitors to the site will have their preferences remembered. It contains no information that can identify the site visitor. | 30 days |
| __cflb | api.hcaptcha.com | The __cflb cookie allows Cloudflare to return an end user to the same customer origin for a specific period of time configured by the customer. This allows the end user to have a seamless experience (for example, this cookie is used for keeping an end user’s items in a shopping cart while they continue to navigate around the website). This cookie is a session cookie that lasts from several seconds up to 24 hours. |
Session |
| JSESSIONID | dappweb.lalamove.eu | General purpose platform session cookie, used by sites written in JSP. Usually used to maintain an anonymous user session by the server. |
Session |
| __stripe_mid | form.typeform.com | Stripe is used to making credit card payments. Stripe uses a cookie to remember who you are and to enable the website to process payments without storing any credit card information on its own servers. |
1 year |
| __stripe_sid | form.typeform.com | Stripe is used to making credit card payments. Stripe uses a cookie to remember who you are and to enable the website to process payments without storing any credit card information on its own servers. |
Session |
| _dd_s | form.typeform.com | Datadog Cookie used to group all events generated from a unique user session across multiple pages. It contains the current session ID, whether the session is excluded due to sampling, and the expiration date of the session. The cookie is extended for an extra 15 minutes every time the user interacts with the website, up to the maximum user session duration (4 hours). |
Session |
| AWSALBTG | form.typeform.com | This cookie is associated with the Amazon Web Services Elastic Load Balancing functionality for routing client request on the server.Used to attribute commission to affiliates when you arrive at the website from an affiliate referral link. It is set when you click on one of our links and used to let the advertiser and us know the website from which you came. |
7 days |
|
AWSALBTGCORS |
form.typeform.com | This cookie is associated with the Amazon Web Services Elastic Load Balancing functionality for routing client request on the server.Used to attribute commission to affiliates when you arrive at the website from an affiliate referral link. It is set when you click on one of our links and used to let the advertiser and us know the website from which you came. |
7 days |
|
tf_respondent_cc |
.typeform.com | Used to implement forms on the website. |
6 months |
|
m |
m.stripe.com |
This domain is associated with Stripe, a company that provides payment processing software and application programming interfaces for e-commerce websites and mobile applications. Determines the device used to access the website. This allows the website to be formatted accordingly. |
1 year |
|
dd_cookie_test_ |
form.typeform.com | This cookie name is used by DataDog to determine if cookies are supported on the website.dd_cookie_test |
Session |
|
Firebase Remote Config |
Remote Config uses Firebase installation IDs to select configuration values to return to end-user devices. |
180 days |
|
|
MQTT SDK |
Lalamove | Send push notifications from backend to mobile apps. |
3 months |
|
Map SDK |
Lalamove & Google | Location reporting for delivery fulfillment and map view rendering based on Google Map SDK. |
1 month |
|
Security SDK |
Lalamove | Collect user IDs, device information, mobile app information to identify illegal access and antibot purpose. Location information collected to detect location spoofing. |
Forever |
| Performance Technology These technologies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these technologies collect is aggregated and therefore anonymous. If you do not allow these technologies we will not know when you have visited our site, and will not be able to monitor its performance. |
|||
| __hssc [x2] | This cookie name is associated with websites built on the HubSpot platform. It is reported by them as being used for website analytics. | Session | |
| __hstc [x2] |
|
This cookie name is associated with websites built on the HubSpot platform. It is reported by them as being used for website analytics. | 5 Months |
| __hssrc [x2] | This cookie name is associated with websites built on the HubSpot platform. It is reported by them as being used for website analytics. | Session | |
|
attribution_user_id |
Used in context with the website’s pop-up questionnaires and messengering. The data is used for statistical or marketing purposes. | 1 year | |
| rl_anonymous_id | Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator. | 1 year | |
| rl_group_id | Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator. | 1 year | |
| rl_group_trait | Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator. | 1 year | |
| rl_trait | Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator. | 1 year | |
| rl_user_id | Registers statistical data on users' behaviour on the website. Used for internal analytics by the website operator. | 1 year | |
| tracking_session_id | Determines when the visitor last visited the different subpages on the website, as well as sets a timestamp for when the session started. | Session | |
| Firebase Crashlytics |
|
Firebase Crashlytics uses crash stack traces to associate crashes with a project, send email alerts to project members and display them in the Firebase Console, and help Firebase customers debug crashes. It uses Crashlytics Installation UUIDs to measure the number of users impacted by a crash and minidump data to process NDK crashes. The minidump data is stored while the crash session is being processed and then discarded. The Firebase installation ID enables upcoming features that will enhance crash reporting and crash management services. Refer to Examples of stored device information for more detail on the types of user information gathered. | 90 days |
| Firebase Performance |
|
Performance Monitoring uses Firebase installation IDs to calculate the number of unique Firebase installations that access network resources, to ensure that access patterns are sufficiently anonymous. It also uses Firebase installation IDs with Firebase Remote Config to manage the rate of performance event reporting. Additionally, it uses IP addresses to map performance events to the countries they originate from. For more information, see Data collection. | 30 days |
| Functional Technology These technologies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these technologies then some or all of these services may not function properly. |
|||
| messagesUtk | lalamove.eu | This cookie is used by HubSpot to recognize visitors who chat via the chatflows tool. It is used to ensure continuity of the chat conversations and to remember the information of visitors who chat in multiple sessions. | Session |
| hubspotutk [x2] | This cookie name is associated with websites built on the HubSpot platform. HubSpot report that its purpose is user authentication. As a persistent rather than a session cookie it cannot be classified as Strictly Necessary. | 5 Months | |
| __cf_bm [x2] | This is a CloudFoundry cookie. | Session | |
| Targeting Technology These technologies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these technologies, you will experience less targeted advertising. |
|||
| __cf_bm | hs-banner.com | This is a CloudFoundry cookie. | Session |
Third-party Cookies
We use third party cookies. These third parties help us achieve the described objectives unless expressed otherwise in this NoticePolicy. We aim to not allow third parties to use your data for their own purposes or for purposes not consistent with the purposes described in this NoticePolicy. We remain responsible for the processing of your personal data by third parties on behalf of Lalamove
| Service Name | Vendor | Categories | Purpose |
| Amazon Web Service (AWS) | Amazon Web Services, Inc. | Strictly Necessary | Provides secure hosting, storage, and computing resources to ensure reliable delivery of our services. |
| CloudFlare | Cloudflare Inc. | Strictly Necessary | Cloudflare’s global cloud platform delivers a range of network services to businesses of all sizes around the world—making them more secure while enhancing the performance and reliability of their critical Internet properties. |
| hCaptcha | Intuition Machines, Inc. | Strictly Necessary | hCaptcha improves overall website security, privacy, and performance by ensuring the traffic is generated by legitimate human users while blocking malicious or automated bot activities. |
| OneTrust | OneTrust | Strictly Necessary |
OneTrust is a provider of privacy management software platform. The company's platform supports organizations to adhere compliance with the data privacy, governance and security regulations across sectors and jurisdictions. |
| Gstatic | Performance |
Gstatic.com is a Web domain owned and used by Google for accessing the Gstatic server: a server where Google hosts its static content like CSS, images or JavaScript. |
|
| Google Tag Manager (GTM) | Google LLC | Performance |
Allows us to manage and deploy marketing and analytics tags on our website without modifying code directly. Helps track user interactions and optimize site performance. |
| Firebase | Google LLC | Performance |
Used for mobile and web app analytics, crash reporting, authentication, and performance monitoring. Helps us improve user experience and app stability. |
| Sendgrid | Twilio Inc. | Functional |
Enables transactional and marketing email delivery, ensuring reliable communication with users (e.g., account confirmations, notifications). |
| Vonage |
Vonage Holdings Corp. |
Functional |
Provides voice, SMS, and messaging services to support customer communication and engagement. |
| TypeForm |
Typeform |
Functional |
Typeform providing the platform for creating and hosting surveys, quizzes, and interactive forms to gather visitor data for statistical, functional, and marketing purposes, enabling website owners to collect and use information to understand their audience and improve their offerings. |
| Hubspot |
HubSpot, Inc. |
Targeting |
HubSpot is a leading CRM platform that provides software and support to help companies grow better. The platform includes marketing, sales, service, operations, and website management products that start free and scale to meet our customers' needs at any stage of growth. |
| Google Maps |
Google LLC |
Functional |
Provides interactive maps, geolocation, and location-based services to enhance user experience on the site or app. |