Data Protection
Processes to comply with data privacy framework and legislation like GDPR (DSGVO, RGDP) or CCPA like deletion of customer data or creating a data excerpt for a customer can be triggered via API.
API Limitations
The API is restricted as such:
Max. 1 request per second
Max. 500 entries in
emailListMax. 100 entries in
customerNoList
Request Payload for All Data Protection APIs
Requests against the following endpoints /wipe and /disclose expect data to be provided in the following format as a JSON payload:
{
"emailList": [ ... ],
"customerNoList": [ ... ]
}Both the emailList as well as the customerNoList keys are arrays of strings. For emailList, the API enforces a valid email address format. Both keys are optional and can be used in parallel.
The following limitations are applied to the keys:
emailListMax. 500 email address per API request
All entries are required to be valid email addresses
Selects all records related to data provided with same key in
email
customerNoListMax. 100 customer numbers per API request
Selects all records related to data provided with same key in
customerNo
Dealing with Invalid Requests (API status code 400)
400)If the request has an invalid payload, the API will respond with status code 400 and provide payload validation errors in the response body:
{
"type": "invalid_request",
"code": "validation.fail",
"message": "Provided data is not valid",
"context": {
"errors": [
{ ... } // AJV Validation Error, see below
]
}
}In the response, key context.errors is an array of validation errors as provided by Ajv. For details, please refer to Ajv spec here:
Right to Erasure, API /wipe
/wipeTo comply with the right to erasure according to GDPR Art. 17 (also known as right to be forgotten) or CCPA, this API offers the wipe of PII from records in parcelLab using the wipe endpoint. This is a synchronous operation, in which data will be deleted from the production database and backups and confirmed with the API response.
The following data will be removed:
PII removed from
trackings, but the records themselves are kept for logistics analysisemailandcustomerNorecipientandrecipient_notificationstreet,citycomplete object in
customFields
All sent
emailsare completely deletedAll sent
smsare completely deleted
Details of how the wipe endpoint can be used to wipe PII from records in the parcelLab system are described below.
After a successful /wipe operation the API response body contains the following metadata:
{
"modified": { // number of affected records by category
"trackingsUpdate": { "modifiedCount": 1 },
"emailsUpdate": { "deletedCount": 0 },
"smsUpdate": { "deletedCount": 0 }
},
"signature": "" // SHA265 signature of request
}The modified key features the number of affected records:
trackingsUpdate.modifiedCountis the number of trackings for which PII was removedemailsUpdate.deletedCountandsmsUpdate.deletedCountare the number of records deleted respectively
The signature is a SHA256 signature of the request operation. It does not include or expose any PII, but can be used afterward to verify whether the request payload was executed. As parcelLab cannot store logs or records on wipe requests, please keep this reference.
Right of Access, API /disclose
/discloseThis API allows you to synchronously generate a set of .csv files that lists all PII stored of customers using the disclose endpoint. Requests with both email address and customer number in parallel are possible and supported. Due to the response structure, individual requests by customers are strongly recommended.
Details of how the disclose endpoint can be used to generate .csv files listing PII information from records in the parcelLab system are described below.
Each key (that is: trackings, emails and sms) contains a .csv formatted string of all records selected by the request (even if spanning multiple customers) grouped by type.
Format of the CSV:
Includes headers
Row delimiter is
\nColumn delimiter is
;Charset is UTF-8
Last updated
Was this helpful?