Privacy Policy

PowerSync Technologies complies with Australian Privacy Principles (APPs) contained in the Privacy Act 1988 (Cth) (Privacy Act). This Privacy Policy sets out the PowerSync Pty Ltd (PowerSync Technologies) privacy obligations to you and explains the types of Personal Information that we may collect, hold, use and with whom the information is shared. It also sets out how you can contact us if you have any queries or concerns about this information.

PowerSync Technologies collects Personal Information and Energy Data from our customers.

The types of Personal Information we may collect include:

• Contact information such as your name, address, email address, telephone number;
• Your electricity billing information such as your electricity retailer, tariff, and billing;
• Platform information such as how you use our Service, information you or your nominated provider entered into our platform, correspondence with us, additional information collected during special offers and trials.

The types of Energy Data we may collect include:

• Energy system information such as location, size, equipment configuration, circuit names, System status and performance;
• NMI (energy meter identifier), electricity generated, electricity consumed, grid side voltage and power factor.

All Personal Information collected by PowerSync Technologies is used for our business functions and activities and it may be used for the purposes of:

• Providing you with our Products or Services that you have requested, such as maintaining your account details and billing, managing your energy assets and, improving our Products and Services;
• Communicating with you to respond to your requests, enquires and/or complaints; notify you about developments in our procedures, products, services, activities and programs that might be useful to you; marketing purposes; gather feedback;
• Provide anonymised, aggregated or de-identified Data to third parties;
• To comply with the law as required.

In addition to the above purposes, we may collect, hold, use and disclose Energy Data for the following purposes

• To support cost-effective electricity grid operations and maintenance;
• To promote the expansion of renewable energy, battery storage and the integration of increasing e-mobility.

PowerSync Technologies will take reasonable steps to ensure Personal Information that it keeps is accurate, up-to-date and relevant to the purposes for which it is to be used.

PowerSync Technologies must only use or disclose your Personal Information to the extent necessary to comply with laws, perform PowerSync Technologies’s functions or exercise its rights.

We may share your Personal Information and Energy Data with the following:

• Our third party service providers required for us to deliver our Services to you, eg internet servers;
• Our business partners, successors in title, potential purchasers of our business or shares in our business;
• As anonymous, de-identified or aggregated data (this data is not identifiable to you);
• We may share Energy Data that is identifiable to your Energy Assets location with electricity grid operators and regulators to support the effective operation of the electricity grid;
• In certain circumstances we may request your consent to share your Personal Information outside the bounds of this policy.

In all of these cases, PowerSync Technologies expects these organisations to protect the privacy of that Personal Information.

You may contact support@PowerSync.com.au at any time to request that your Data is no longer shared, however this may restrict or limit the products and services offered to you and may impact your Warranty or other Terms and Conditions between you and your Energy Asset provider.

Personal information may be collected by PowerSync Technologies by way of provision of Personal Information by individuals via the phone, online contact forms, user-generated content; market research, emails, and during face-to-face meetings. Where necessary and with your consent, we supplement the information we receive from you with information from third party sources.

PowerSync Technologies takes all reasonable steps to protect your Personal Information from loss, misuse or unauthorised disclosure, modification or destruction. PowerSync Technologies’s code of conduct and information security policies prohibit employees from looking at, recording or disclosing Personal Information about you except in course of performance of their duties. Security measures include:

• limiting access to the information we collect about you to “a need-to-know” basis;
• requiring any third party providers to have adequate security measures; and
• limiting physical access to our premises and putting in place other physical, electronic, and procedural safeguards in line with industry standards.

PowerSync Technologies’ digital information is stored on servers within Australia, although we may use or access data from third party providers that store data outside Australia. PowerSync Technologies takes all reasonable steps to ensure that it deals with reputable entities for the purposes of securely storing Personal Information.

PowerSync Technologies only retains Personal Information for periods required by law and/or our business operations. Otherwise PowerSync Technologies will take reasonable steps to securely destroy or permanently de-identify the Personal Information.

Under the APPs, you may be able to obtain a copy of the Personal Information that we hold about you. The APPs provide some exceptions to your rights in this regard. To make a request to access this information, please contact us in writing to one of the contact addresses below. We will require you to verify your identity and specify what information you require. We may charge a fee to cover the cost of verifying the application and locating, retrieving, reviewing and copying any material requested.

We endeavour to ensure that the Personal Information we hold about you is accurate, complete and up-to-date. Please contact PowerSync Technologies if you believe that the information we hold about you requires correction or is out-of-date.

We will endeavour to respond to written requests within 30 business days after a request is received by us.

PowerSync Technologies will only engage in direct marketing practices in accordance with the law. You may contact support@PowerSync.com.au at any time to request that you no longer receive any marketing information from us.

Accessing PowerSync Technologies’s websites will result in some information being logged including the time of access, IP address and the pages that have been viewed or accessed.

Our website may contain links to third party websites. We do not operate these websites and therefore are not responsible for the collection or handling of Personal Information by the operators of these websites.

Cookies are files with a small amount of data that are commonly used as anonymous unique identifiers. These are sent to your browser from the websites that you visit and are stored on your device’s internal memory.

We use cookies to:

• Understand and save user’s preferences for future visits.
• Compile aggregate data about site traffic and site interactions in order to offer better site experiences and tools in the future. We may also use trusted third-party services that track this information on our behalf.

You can choose to have your computer warn you each time a cookie is being sent, or you can choose to turn off all cookies. You do this through your browser preference settings. If you choose to refuse our cookies, you may not be able to use some portions of this Service.

PowerSync Technologies complies with the amendments to the Privacy Act, effective from 22 February 2018, in relation to notifiable data breaches and has an updated plan to ensure compliance with the new requirements, including notification of the Australian Information Commissioner and affected individuals of certain types of data breaches, and is able to promptly respond to any suspected data breaches. A notifiable data breach happens when there is unauthorised access to, unauthorised disclosure of, or loss of, Personal Information which is likely to result in serious harm to the individual to whom the information relates.

In addition to the Privacy Act, individuals located in the European Union (EU) may also have rights under EU based rules known as the General Data Protection Regulation (GDPR). The key obligations under the GDPR include Notice, Individual Rights, and Retention. Each user has a right of confirmation (to confirm whether or not Personal Information concerning the user is being processed), access (the right to request what Personal Information is stored about the user and obtain a copy of that said information), erasure (the right to request that any Personal Information concerning the user be erased without delay when no longer required, or when the user withdraws consent), rectification (the right to rectify any inaccurate information concerning the user), portability (the right to receive the Personal Information concerning the user, which was provided to us, in a readable format), object (the right to object the processing of the Personal Information concerning the user unless we can demonstrate compelling legitimate grounds for the processing which overrides the interests, rights, and freedoms of the user/data subject, or for the establishment, exercise or defence of legal claims), restriction of processing (the right to restrict processing where the accuracy of the Personal Information is contested by the user/data subject for a period enabling the controller to verify the accuracy of the Personal Information; or the processing is unlawful and the user/data subject opposes the erasure of the Personal Information and requests instead the restriction of their use instead; or we, the controller, no longer need the Personal Information for the purposes of the processing, but they are required by the user/data subject for the establishment, exercise or defence of legal claims), as set out in Articles of the General Data Protection Regulations of the EU.

If you believe that PowerSync Technologies has breached one or more of its privacy obligations, your complaint (including a summary of the privacy concern or alleged breach and copies of any relevant documentation) shall be addressed to one of the contacts provided in PowerSync Technologies Contact Details section below. PowerSync Technologies will investigate the complaint and will endeavor to respond to you within 30 business days. PowerSync Technologies will take immediate steps to redress proven privacy concerns or breaches.

Lodging a complaint with the Australian Information Commissioner – Personal Information

If you do not receive a response from PowerSync Technologies after 30 days or if you are not satisfied with the response, you can then lodge a complaint with the OAIC (telephone: 1300 363 992 | at www.oaic.gov.au).

This policy can be viewed at our website at www.PowerSync.com.au. Alternatively, you can request a copy of this policy using our contact details below.

PowerSync Technologies Contact Details

Postal Address: Suite 201, 275 Alfred Street N, North Sydney, NSW, Australia | T: 1 300 101 429 | E: support@PowerSync.com.au