Ga naar de inhoud

Internal Privacy Policy

Your privacy is very important to us at Smappee. We don’t want our personal data to be made public either, you see. That’s why we think it’s important to inform you extensively in our privacy policy.

1. Applicability

In these General Terms and Conditions, the following terms are to be understood as:

  • ‘Smappee’: Smappee LLC (t/a) Smappee, with registered office at Evolis 104, B 8530 HARELBEKE, listed under enterprise number BTW-BE 0849.366.642.
  • ‘Purchaser’: any legal entity (B2B) that has or will be having a contractual relationship of whatever nature with Smappee.
  • ‘Products’: the subject of one or more sales contracts, in this case – but not exclusively limited to – the energy product ‘Smappee’, consisted of hardware, software, websites and web services. Smappee is fully aware of the content of her own terms.
  • ‘Privacy act’: Belgian act of 8-december-1992 for the protection of privacy in respect to the processing of personal data.

2. To which ends will my data be used?

Smappee attaches great importance to the protection of your privacy and personal data. Smappee will use your data only in accordance to the Privacy act and other relevant current legal prescriptions.

First and foremost, we will use your personal data to guarantee the proper technical operation of our products. Data will be requested to this end. We can also use your personal data to provide you with informative news updates, new promotions or products of Smappee (like upgrades or updates of our energy products), important news updates, et cetera. Access to your data (sending newsletters or promotional updates) can be transferred to third parties or partners, for informative or publicity purposes. Your personal data itself will never be sold or transferred to third parties. Smappee has taken all possible legal and technical precautions to avoid unauthorized access and usage. For this reason Smappee will not be held liable for identity theft, data theft or information crime. In case of burglary into

Smappee’s IT-systems, Smappee will take al possible measures to minimize theft and/or damage.

3. Which personal data are collected?

For the application of the Privacy Act, ‘personal data’ is to be understood as every piece of information concerning an identifiable individual. ‘Identifiable’ is defined as any individual that can be identified directly (or indirectly) using an ID number or an element that is typical for his physical, physiological, mental, economic, cultural or social identity.

Every individual has the right to the protection of his fundamental rights and freedom, especially for the protection of his privacy. Smappee acknowledges this right and makes great efforts to enhance this right in practice and online. The Privacy Act is only applicable to (total or partial) automated process of personal data, or in case of manual processing when personal data are written in a file.

The personal data need be processed in an honest and rightful way, obtained for precisely defined and justifiable ends. The purposes are explicitly defined in title 2. The collected data are sufficient and not collected in an excessive way.

We can also collect analytic data around the usage and installation of our website. These analytic data is often anonymous and is used only to judge the performance of our website.

4. How will the data be secured?

The data registered by the Smappee devices will be stored in an anonymous way, as much as possible and will be strictly devided from your personal data (Chinese Wall Principle). Smappee however, has the right to acces personal profiles of consumption, but these profiles can not be linked to the user. The anonymity of the user is guaranteed in this way.

Only after having received your explicit permission Smappee has the right to connect the recorded data with your personal data, for means like user support. In this case, the User will be asked to identify an ID-code and pass this on to Smappee.

5. Additional protection

As an additional measure for the security and confidentiallity we advice the User to use a username which doesn’t give an indication about the identity of the user. It’s also important to chooce a safe password for the Smappee-login and to keep this password strictly private. The password gives acces to the recorded data.

The Smappee devices should not be made accessible to third parties.

6. Will location data be stored?

The analytic data (Google Analytics for example) of Smappee do indeed show location data. Based on these data your (putative) location can be defined and displayed on a map (‘Map’). These indications (based on an IP-address) however, are far from accurate, thus largely insufficient to determine your exact location.

We use the location data not to identify you, but to guarantee the proper technical performance of the website.

7. Who is responsible for processing?

‘The responsible for processing’ is defined as any individual or legal entity that, in cooperation with others or by itself, defines the purpose and means for the processing of personal data.

Smappee is responsible for the processing. Smappee defines the purpose (title 2) and the legal and technical means for processing. Smappee however does not process the data itself; this is the work of the actual processor.

8. Who is the actual processor?

‘Processor’ is defined as the individual or legal entity who, commissioned by the ‘responsible for processing’ processes the personal data, except the individuals who, under the direct authority of the responsible for processing, are authorized to process the data.

As actual processor is indicated: Amazon Web Services, Inc. (“AWS”) – https://aws.amazon.com/legal. The actual processor is responsible for the proper technical performance of the website (data transmission). The responsible for processing does not accept any liability for the loss or corruption of data, identity theft, data theft, viruses or trojan horses, SQL-injections or other attacks on the IT-systems or online cloud portals. The actual processor decides in an autonomous way about the best technical application to process the data, and does so from his professional expertise. The responsible for processing cannot be expected to have this same expertise and speciality.

This processer offers sufficient guarantees with respect to the technical and organizational measures of security with regard to the data that needs be processed and thus meets the requirements set by Article 16, §1 of the Privacy Act.

9. Which rights do I have?

The responsible for processing and/ or actual processor, has to at least provide the user with the following information, at latest on the moment at which the data are collected:

  • Name and address of the responsible for processing: title 1 and 7.
  • Name and address of the actual processor: title 8.
  • Purposes of processing: title 2.
  • Duration of the processing: We will not store your data for a period of time longer than strictly necessary. We will however keep an archive of your data, as long as your account is active, or when your personal data is necessary to be able to offer a certain service. Should you wish to stop or delete your account, please address a registered letter to Smappee.
  • The existence of the right to oppose to the intended processing of your personal data on request and for fee, in case the processing is performed for the purpose of direct marketing: First and foremost Smappee collects or processes personal data to ensure the proper technical performance of Smappee and it’s website. The collected data can indeed, in case the technical and practical requirements are met, be used for marketing purposes, however: the user can oppose to this by addressing a registered letter to Smappee. Smappee therefore satisfies the foregoing provision. The software and hardware of Smappee need certain data streams, in order to guarantee a proper performance and prognosis/analysis.
  • Other additional information, namely: the existence of the right of access to and improvement of his own personal data: You always posses the legal right to complete, improve or delete your personal data, in whole or partially. Smappee commits to responding to your request within 15 working days following the request. A written request can be sent by mail (title 1) or by e-mail to support@smappee.com.

When proving your identity, you have the right to receive the necessary information about the processing of your personal data by a simple request.

10. Will my data be used outside of the EU?

Smappee is a Belgian enterprise. However processing and/or transmitting of data in countries outside the EU may occur. Considering article 21 of the Privacy Act, personal data can only be transferred to countries that guarantee the same adequate level of protection, and where the same or similar provisions of the privacy act are observed. The country, duration of transmission and storage, nature of data and precise purpose are criteria that need be examined case per case.

Smappee guarantees not to process or store data in countries that cannot offer the same guarantees, except in case:

  • In case the concerned has given it’s explicit permission;
  • In case the transmission is necessary for the implementation of the agreement (between the user and Smappee);
  • In case the transmission is necessary for the closure or implementation of an agreement, concluded or to be concluded in the interest of the user between the responsible for processing and a third party;
  • In case the transmission is necessary or legally obligated (substantial public interest or right);
  • In case the transmission happens from a public register, meant for the education of the public.