Privacy Policy

We know that careful treatment of your personal data is very important to you. Storio places the utmost importance on protecting personal data. Personal data means any information concerning the personal or material circumstances of an identified or identifiable individual. Examples of personal data include e-mail addresses, names and postal addresses. Storio may use personal data for internal purposes, e.g., for data analysis, research, or to improve its products. The personal data collected by Storio is handled with the utmost care. We use and process your personal data solely within the limits of the statutory provisions on data protection and data security applicable in France. Below, you will find information on which data is recorded when you visit our home page and how this is used.

In accordance with the regulations applicable to the protection of personal data, in particular the provisions of the French Data Protection Act of January 6, 1978, as amended, and the General Data Protection Regulation (EU Regulation 2016/679, known as “GDPR”) (collectively referred to as the “Regulation”), Storio Energy SAS (hereinafter, “Storio”, “we”, “our”), in its capacity of data controller within the meaning of the Regulation, whose registered office is located at 7 place de l'Hôtel de Ville, 93600 Aulnay-sous-Bois, FRANCE, informs you that the information collected within the use of the website accessible via the URL https://storioenergy.com/ (hereinafter, the “Website”) is subject to processing of personal data.
For the purposes of this policy, all undefined terms shall have the meaning given to them in the Regulation.
This privacy policy is intended for users (“User”, “you”, “your”) of the Website.

DATA COLLECTED

The following categories of personal data are collected when you use the Website: Contact information: surname, first name, e-mail address, postal address; If you agreed to the receipt of our newsletter: your IP address and the date and time of your registration; Any information you have voluntarily entered in a comment section available on the Website.

PURPOSES OF THE PROCESSING

The personal data are collected in order to allow us to provide you with your personal account on the Website and, if you agreed to it, to send you information about our products and services. The data collected will be used anonymously and in aggregate form for a variety of purposes. For instance, we will use this data and feedback from the users to refine and improve the accuracy and relevancy of recommendations, estimated savings, and calculating local and national averages. Anonymous aggregated data may also be provided to utilities or regulatory bodies to help improve or measure the effectiveness of various conservation programs.

LEGAL BASIS FOR THE PROCESSING

The legal basis for the processing of the personal data is, depending on the case: Your consent to the processing of your personal data; The processing of personal data is necessary for the performance of a contract to which you are party.

DATA RETENTION PERIOD

Storio retains your personal data only for as long as it is necessary to fulfil the purposes for which it is used, in accordance with the Regulation and current recommendations.

RECIPIENTS OF PERSONAL DATA:

The data collected by Storio within the framework of the Website will only be accessible to Storio and its authorized personnel. In some cases, Storio processes the data using external service providers, who exclusively save, process and use the data on our behalf for the purposes outlined above. We assure you that your data will not be passed on to third parties for commercial purposes. Finally, Storio may also communicate data in order to respond to legal or regulatory requests, court decisions, subpoenas or legal proceedings, if required to comply with the regulations in force.

TRANSFER OF PERSONAL DATA OUTSIDE THE EU

The data collected in the context referred to above is processed within the European Union. In cases where transfers of personal data outside the European Union take place, Storio undertakes to ensure that the recipient is located in a country benefiting from an adequacy decision of the European Commission or that measures are put in place to ensure that the transferred data benefit from adequate protection, in accordance with the provisions set out in the Regulation.

RIGHTS OF THE USERS

In accordance with the Regulation, you have the right to (a) access, (b) rectification, (c) erasure, (d) limitation of data processing as well as (e) data portability and (f) object. In addition, you have the right to define directives relating to the conservation, deletion and communication of your personal data after your death (g). a) Right of access You have the right to request confirmation that Storio is processing your personal data and, if so, to receive a copy. b) Right of rectification You have the right to request rectification of your personal data if you find it to be inaccurate. c) Right to erasure You have the right to request the deletion of your personal data. This right can only be exercised in certain cases, where one of the grounds set out in Article 17 of the GDPR applies. This may involve, for example, personal data that is no longer necessary for the purposes for which we collected it or that has been processed unlawfully. If you exercise this right, we will delete your personal data as soon as possible if one of the reasons applies. d) Right to limit data processing You have the right to limit the processing of your personal data. This means that we mark the data, if we do indeed keep it, with a view to temporarily suspending its processing. This right can be exercised on the grounds set out in Article 18 of the GDPR. This right does not give rise to their erasure and we are obliged to inform you before the corresponding processing restriction is lifted. e) Right to data portability You have the right to request the supply of personal data that you have directly communicated to us in a structured, commonly used and machine-readable format, if their processing is automated and based on the collection of your consent. This right does not apply to other legal bases for processing. Where applicable and technically possible, you also have the option of requesting the transfer of such data directly to another data controller. f) Right to object You have the right to object to the processing of your personal data when the processing is legally based on the legitimate interests of Storio. However, this right of objection cannot be exercised in the case of processing necessary for Storio to comply with its legal obligations, which is notably the case for data processing in connection with obligations arising from the transparency mechanism. g) Right to decide what happens to your personal data after your death You have the right to organize the fate of your personal data after your death by adopting general or specific directives. Storio undertakes to respect these directives. How to exercise your rights: If you wish to exercise your rights, simply send a request to Storio: Storio Energy SAS 7 place de l'Hôtel de Ville 93600 Aulnay-sous-Bois France or dataprotection@storioenergy.com In order to process your request as efficiently as possible, we kindly ask you to include the necessary identification details (surname, first name, e-mail) with your request, as well as any other information required to confirm your identity. If there is any doubt about your identity, you may be asked to show proof of identity. Requests are processed as quickly as possible, and in any event within one month of receipt. If necessary, this period may be extended by two months, depending on the complexity and number of requests we receive. In this case, you will be informed of the extension and the reasons for the postponement. If, after contacting us and despite our efforts, you feel that your rights have not been respected, you may also lodge a complaint with the Commission Nationale de l’Informatique et des Libertés (CNIL): 3 Place de Fontenoy – TSA 80715 – 75334 Paris Cedex 07 or directly on its website at https://www.cnil.fr.

SECURITY OF PERSONAL DATA

As the confidentiality and security of personal data are central concerns for Storio, technical and organizational security measures are put in place to preserve their security and, in particular, to prevent any accidental or unlawful destruction, loss, alteration, disclosure, intrusion or unauthorized access to such data. Storio implements such technical and organizational measures in order to ensure that personal data is kept securely for as long as is necessary for the purposes for which it is to be used, in accordance with applicable law. In accordance with the Regulation, in the event of a proven breach of personal data likely to give rise to a risk to the rights and freedoms of the persons concerned, Storio undertakes to communicate this breach to the competent supervisory authority and, where required by said regulations, to the persons concerned.

APPLICABLE LAW

This privacy policy is governed by French law.

Start your evaluation now