The controller of personal data is Gridio 2.0 OÜ, registry code14494626, address Tallinn, Peetri 11, 10414 (“Gridio”).
What personal information we collect
During the sign-up, we collect the following personal information:
The legal basis for processing this data is the performance of a contractin order to provide you with our services.
You will also have the option to sign up using other third-partyplatforms. If you choose to do so, we will ask permission to access basicinformation from that account. You can stop sharing that information with us atany time by removing Gridio’s access to that account.
For what purpose do we collect personal information
Gridio processes personal data for the following purposes:
Use of personal data
Battery and tariff data is used toschedule charging to coincide with the cheapest energy windows.
Location data is used solely toverify that the EV is at the designated charging location and to optimise thecharging schedule. EV location data is never stored permanently, never sharedwith third parties, and is only accessed when necessary to provide our chargingservices.
Access and transfer of personal data
Gridio employees have access to personal data to the extentnecessary for the performance of their duties.
Your personal data may be transferred to third parties (for example,technical support) if this is strictly necessary for the provision of ourservices.
If personal data is shared with third parties (including App Store,Google Play), then Gridio is not responsible for such third-party dataprotection practices. We recommend that you review the relevant third-partyprivacy notices.
External processors
Besides payment processing, we also use external processors to analyzethe usage of our services, carry out A/B testing of new and improved featuresand services, and provide technical support to our users.
The following list contains the names of such processors along withthe brief descriptions of the processing they do for us, and links to theirprivacy policies.
AppsFlyer (https://www.appsflyer.com/privacy-policy/)- enables acquisition attribution on native applications
AWS (https://aws.amazon.com/privacy/) -storing of all End User related data and processing of user OEM account,credentials and user vehicle coordinates
Google Analytics for Firebase (https://firebase.google.com/terms)- used for application error monitoring and product usage data
Google Workspace (https://cloud.google.com/terms/cloud-privacy-notice)– used for customer support emails
Sentry (https://sentry.io/privacy/) -Application quality monitoring and automatic error reporting
Slack (https://slack.com/trust/privacy/privacy-policy)- used for customer support purposes
RevenueCat (https://www.revenuecat.com/privacy/)- manages subscription details, including renewal status and payment methods.
Third-Party Service Providers (e.g. car manufacturers)
As part of our collaboration with certain car manufacturers, you mayhave the option to use our services when purchasing a vehicle from one of ourpartnered manufacturers (“Partner”). In such cases, the service will beprovided through a separate application under a different name. While you willbe using such a service, please note that the privacy practices and terms ofuse for the mobile application may differ from the mobile application weprovide directly to end-users.
In cases where you access our services through the third-party appprovided by a Partner, they will be the data controller for any personal datacollected through their application. As the data controller, the Partner isresponsible for determining the purposes and means of processing your personaldata in relation to their app and services. We, as the service provider, willact as a data processor under their instructions and functionalities providedby our mobile application when processing your data as part of our serviceoffering.
When you purchase a vehicle, the Partner will share limited personaldata with us, such as your email address, for the sole purpose of sending youan invitation to join our service. We do not use this information for any otherpurpose unless and until you register and start using the mobile application.
If you receive our service through a Partner, this Privacy Policystill applies to your personal data. We treat your personal information withthe same level of care and in accordance with the terms outlined in thispolicy, regardless of whether you receive access to our service.
Unless explicitly stated, the Partner does not have access to thepersonal data you provide directly to us as part of using our services. We donot share, sell, or transfer your personal information to the Partner, exceptas necessary for the performance of the contract or as otherwise permitted bythis Privacy Policy.
Regardless of how you access our services, you retain your rightsunder applicable privacy laws, including the right to access, correct, orrequest deletion of your personal data held by us.
Your personal data will be retainedfor as long as you have access to the mobile application. Once the Partnerwithdraws from their agreement with us, your data will be deleted or may bestored in an anonymized form for statistical and analytical purposes.
You may agree on data continuity in the event that you stopreceiving the service from a Partner, but you wish to continue using Gridio’sservices.
In case of a request, mobile application or complaint concerning theservice, please contact us at support@gridio.io. We will review yourinquiry and, where appropriate, forward relevant information to the Partner toensure your concern is addressed in coordination with them.
Security
Personal data is stored on servers located in the European Union.Personal data may be transferred to third parties in the United States, butonly to companies that provide a sufficient level of security.
Gridio has implemented appropriate technical and organizationalmeasures to ensure the security of personal data, including unauthorized orunlawful processing, and accidental loss, destruction or damage of personaldata. For example, the GPS location of your EV is never stored by Gridio,except when you first set up the service, and this information is never sharedwith any other parties. This information is only used to verify whether or notthe vehicle is at your designated smart charge location.
If a personal data breach occurs and such a violation may pose ahigh risk to your privacy, Gridio informs you and the relevant authorities ofsuch a breach.
Rights
You have the right to request rectification, access and, ifnecessary, objection to the processing of personal data.
You may request the deletion of personal data, after which we willinform you about the terms and time limit for deleting the personal data. Thepersonal data will not be deleted if there is a legal basis for its retention.
You have the right to receive personal data in machine-readable formand to transfer such data to another data processor.
You have the right to withdraw your consent to the processing of personaldata at any time.
In order to exercise your rights on personal data, please contactGridio at support@gridio.io.
You also have the right to appeal to your local Data ProtectionInspectorate.
Retention
Your personal data shall be retained until you ask to delete yourpersonal data. After some time, we may renew your consent in order to keep itactive and valid. Personal data may be stored anonymized for statisticaland analytical purposes.
In the event of a dispute, the personal data will be retained untilan agreement is reached or until the due date for the claim expires.
Direct marketing
If you are using our services, we may send direct marketing messagesto your email address. You can opt out of these messages at any time bycontacting us or clicking the “Unsubscribe” button at the bottom of themessage. Please note that you cannot unsubscribe from service-relatednotifications.
Miscellaneous
In case of a request, application or complaint concerning theprocessing of personal data, please contact support@gridio.io.
Gridio has the right to change this privacy policy at any time.Gridio will notify you of any changes to this privacy policy on its webpage.