Last updated: February 6, 2026
Lastmil is committed to compliance with the General Data Protection Regulation (GDPR) (EU) 2016/679, which came into effect on May 25, 2018. This page outlines our commitment to protecting your personal data and your rights under GDPR.
GDPR applies to all organizations that process personal data of individuals in the European Union (EU), regardless of where the organization is located. We process personal data in accordance with GDPR requirements.
We process your personal data based on the following legal grounds:
As a data subject under GDPR, you have the following rights:
You have the right to obtain confirmation as to whether or not we process your personal data and, if we do, to access that data along with certain information about how it is processed.
You have the right to have inaccurate personal data corrected and incomplete personal data completed.
You have the right to request the deletion of your personal data in certain circumstances, such as when the data is no longer necessary for the original purpose or when you withdraw consent.
You have the right to request that we limit the processing of your personal data in certain circumstances.
You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit that data to another controller.
You have the right to object to processing of your personal data based on legitimate interests or for direct marketing purposes.
Where processing is based on consent, you have the right to withdraw your consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal.
We adhere to the following GDPR principles:
If we transfer your personal data outside the European Economic Area (EEA), we ensure that appropriate safeguards are in place to protect your data, such as:
In the event of a personal data breach that is likely to result in a high risk to your rights and freedoms, we will notify you and the relevant supervisory authority without undue delay, and in any event within 72 hours of becoming aware of the breach.
We have appointed a Data Protection Officer (DPO) to oversee our GDPR compliance. You can contact our DPO at:
Email: dpo@lastmil.com
To exercise any of your GDPR rights, please contact us using the information provided below. We will respond to your request within one month of receipt.
We may request proof of identity to verify your request and ensure the security of your personal data.
If you believe that our processing of your personal data violates GDPR, you have the right to lodge a complaint with a supervisory authority, in particular in the Member State of your habitual residence, place of work, or place of the alleged infringement.
You can find contact details for your local supervisory authority on the European Data Protection Board website.
For any questions or requests regarding GDPR compliance, please contact us:
Email: privacy@lastmil.com
Data Protection Officer: dpo@lastmil.com
Website: lastmil.com