Home » Privacy policy

1- Introduction

As part of its commercial activities promoting energy transition and related activities, IRISOLARIS processes information about you. This privacy policy describes how we collect, use, store and protect your personal data in accordance with Regulation (EU) 2016/679 (GDPR) and applicable French legislation.

We only use your personal data in the cases provided for by the regulations in force:

  • the existence of a clearly defined legitimate interest.
    Your individual rights always take precedence over our legitimate interest.
  • the execution of pre-contractual measures at your request,
  • compliance with legal obligations,
  • your freely given consent for certain purposes,

 2- DATA CONTROLLER

The controller of the processing operations mentioned in this document is IRISOLARIS SA, a public limited company with a share capital of €2,214,057, registered with the Trade and Companies Register under number 510 375 835 00442, located at 1200 avenue Olivier Perroy, 13790 Rousset, France.

If you have any questions regarding this document, please contact the Data Protection Officer at: dpo@irisolaris.com

3- DATA WE COLLECT

3.1 Data you provide to us directly

We collect information that you provide to us during your interactions with us, including:

contact form, account creation, communication with our sales representatives, requests for information or quotes, and finally when sharing our content on social media.

 3.2 Data we collect during our business relationship

 The data we collect during our business relationship with you includes the following:

  • Your participation in promotional offers, competitions or events;
  • Requests you have made to our community manager or incidents you have reported to us, for example concerning the performance of our services;
  • As part of our commercial meetings, we may collect electricity bills provided by you (or for your project). These bills may contain:
    • the account holder’s identity details,
    • delivery point (PRM),
    • annual consumption,
    • contracted power,
    • supplier and amounts invoiced.

This information is necessary to analyse the energy situation, determine the scope of a project and, subject to consent, for subsequent commercial prospecting activities.

3.3 Data we collect automatically

 Each time you visit our websites and applications, we collect information about your connection and browsing. Various technologies may be used to collect this data. The main one is cookies.

 ● Data collected through cookies

A cookie is a text file that is placed on your computer or mobile device when you visit a website, application or online advertisement and stored in a specific area of your hard drive. Cookies are managed by your web browser, and only the issuer of a cookie can decide to read or modify the information contained therein.

A cookie has a limited period of validity. It is placed and stored on your device in accordance with applicable legislation and subject to the choices you have made, which you can change at any time, under the conditions specified in Article 9 below.

 A cookie does not identify you personally. It allows its issuer to recognise your device and collect certain information relating to the browsing activity carried out on that device.

 Cookies have several functions, such as allowing you to navigate efficiently on a website or application, remembering your choices, the goods and services you wish to purchase, and offering you relevant advertising content based on your interests expressed during your browsing. You can find more information about cookies on the following websites:

The cookies placed by IRISOLARIS, subject to your choices, give us access to the following information in particular:

– Identifiers for the equipment you use (your computer’s IP address, Android ID, Apple ID, etc.),

– Type of operating system used by your terminal (Microsoft Windows, Apple OS, Linux, Unix, BeOS, etc.),

– Type and version of the browser software used by your device (Microsoft Internet Explorer, Apple Safari, Mozilla Firefox, Google Chrome, etc.),

– Dates and times of connection to our services,

– Address of the referring webpage (“referrer”),

– Browsing data on our services, content viewed.

● Data collected by standard Internet technologies

We may also use standard Internet technologies such as scripts, pixels and redirects. Scripts (sometimes called tags), written in JavaScript, are programmes that run in your browser and perform various actions, such as sending information to our servers. Scripts are also capable of creating pixels. Pixels (sometimes called clear GIFs, clear GIFs or web bugs) are lines of code that allow a graphic image (usually invisible) to be displayed on a web page or in an email. Redirects allow a web page to be available at multiple page addresses (URLs). When a browser opens a redirect URL, a page with a different URL is opened.

The purpose of these technologies is to improve your experience on our websites and applications, including providing you with personalised content based on your interests. For example, when a user clicks on a button to share an article, a script creates a pixel that counts the share. This allows us to know the total number of shares for an article and rank the most shared articles.

These technologies give us access to the following information, among other things:

– Information relating to your use of our websites and applications;

– Information relating to the presence of cookies on your device, the time and date of a page visit, and a description of the page where the web beacon is placed;

– Information about whether or not you read the e-mails we send you, and about the links you click on in those e-mails.

Our websites and applications may also include third-party scripts, pixels, and redirects. These technologies enable third-party service providers to collect certain information, such as your browser type and the web page that referred you to our websites. These third-party service providers process the information they collect for auditing, research, and reporting purposes regarding our websites and applications and the advertisements viewed on them. We do not share your identifying information with these third parties in connection with their use of these technologies.

● Data provided by mobile devices

Some mobile devices, depending on the features you have enabled (e.g. “Push” or “Geolocation”) when downloading one of our applications, send information, including: your phone model, operating system version, connectivity type, name and version of the application used.

This data, which is necessary for the proper functioning of the mobile applications we publish, is processed automatically by our servers and those of some of our partners (notably AT Internet and SmartAdServer) in order to provide you with a service and advertisements tailored to the technical characteristics of your device and to measure the audience of our application.

Furthermore, if you have accepted this feature when downloading our applications, we are able to identify the physical location of your device (geolocation), in particular to inform you about content or offers that we believe are in line with your expectations or interests, or to improve your experience on our mobile applications. In accordance with applicable law, geolocation features can be disabled at any time in your device’s system settings.

3.4 The data we assume

 By combining the data we have about you with general, anonymous statistical information, we may make assumptions about the content and services that are likely to suit your tastes or habits.

3.5 Data relating to minors

 In principle, our products and services are intended for adults who are capable of entering into contractual obligations.

Minors must obtain the consent of their legal guardian before disclosing personal data concerning them.

Internet users under the age of 18 at the time of publication or creation of an online account have a specific right to have data concerning them deleted. For further information, please contact the IRISOLARIS data protection officer (dpo@irisolaris.com).

3.6 Data relating to a third party

Before offering a third party a product or service that we market, you must ensure that the person concerned agrees to their personal data, including their postal address, being shared with us.

3.7 Exclusion of sensitive data

We do not collect sensitive data as defined in Article 9 of the GDPR (racial origin, political opinions, health data, etc.). If such information is provided to us, it will be deleted immediately.

4- FOR WHAT PURPOSES DO WE USE YOUR DATA?

This article outlines the main purposes for which we use the data mentioned in Article 3.

4.1 Operations necessary for the supply of products or services

The data collected is used for the following purposes:

  • Email alerts;
  • Customer relations: sales department available by e-mail for any questions or complaints;
  • Conducting satisfaction surveys;
  • Sending information about changes or developments to our services;
  • Management of the exercise of your rights over your personal data, under the conditions set out in Article 9;
  • Verification of compliance with applicable legislation, our contracts and general terms and conditions of use.
  • study and size a third-party investment project,
  • respond to your requests for information or contact. Legal
    basis: execution of pre-contractual measures at your request.

4.2 Marketing and sales prospecting activities relating to IRISOLARIS publications, products and services.

• We may use your contact details and the data collected for subsequent commercial prospecting activities, in particular to offer:

  • electricity supply offers,
  • additional equipment or services,
  • customised energy solutions. With regard to the latter, the legal basis for processing is the explicit consent you gave us at the time of collection. You may withdraw this consent at any time.

But also for the following purposes:

  • Compilation of trade statistics.
  • Bringing your personal information into line with postal standards, updating, enriching and deduplicating it in a dedicated IRISOLARIS database;
  • Sending information about our group, its publications and activities;
  • Sending marketing, advertising and promotional offers relating to our products and services by post, inserts, e-mail, mobile notifications, on social networks or any other medium;
  • Personalised customer loyalty or sales prospecting initiatives;
  • Implementation of promotional campaigns;
  • Collection of customer reviews;
  • Compilation of trade statistics

We use your data to provide you with information about our publications, products and services, and to conduct marketing campaigns in accordance with applicable law.

The legal basis for this processing may be consent or legitimate interest, depending on the circumstances.

The objectives pursued are as follows:

Organisation of competitions or other promotional or event-based activities with commercial partners.

Sharing, exchanging or renting files with business partners in compliance with applicable regulations and security requirements;

Sending marketing, advertising and promotional messages relating to partners’ products and services by post, inserts, e-mails, mobile notifications, on social networks or any other medium;

4.4 Purposes associated with storing cookies on your browser

● Operation and optimisation of navigation on our websites and applications

o Adapting the presentation of our websites and applications to the display preferences of your device (language used, display resolution, operating system, etc.) during your visits, depending on the hardware and software used for viewing or reading on your device;

o Storing information relating to a form you have filled in on our website (registration or access to your account) or to products, services or information you have chosen on our website (service subscribed to, content viewed, purchase made, etc.);

o Automatic connection to reserved or personal areas of our site, such as your account, using identifiers or data that you have previously provided to us;

o Provision of tools for sharing on social media;

o Management of our platforms and performance of internal technical operations in the context of problem solving, data analysis, testing, research, analysis, studies and surveys;

o Implementation of security measures;

o Quality measures to ensure that our content is displayed appropriately on your device.

● Traffic and audience measurement

o Compiling statistics and traffic volumes and usage of the various elements that make up our site (sections and content visited, paths taken) in order to improve the interest and usability of our services;

o Audience analysis based on advertising campaign results;

o Determination of interests and behaviours;

o Improving customer/user knowledge for personalisation purposes.

● Personalisation of advertisements on our websites and applications

o Adapt advertising spaces to the display preferences of your device (identification of advertisements, compilation of statistics and traffic volumes and use of the various elements that make up our site: sections and content visited, browsing history) in order to improve the interest and usability of our services;

o Adapt the advertisements displayed on your device when you browse our websites and applications to its technical characteristics (1), your previous browsing choices (2), your interests and usage (3), the data you have previously provided to us (4), where applicable, and the geographical location data of your device (5);

o Recognise you in order to display personalised advertisements on social media;

o Measure the effectiveness of our advertising campaigns and service offerings.

5- HOW LONG DO WE KEEP YOUR DATA?

Your personal data is retained for a period that complies with legal provisions or is proportionate to the purposes for which it was recorded. Certain retention periods are in the legitimate interest of IRISOLARIS, as specified in the introduction.

Retention periods vary depending on whether we have an ongoing contractual relationship with you (you are an active customer), whether we have had a contractual relationship with you in the past (you are an inactive customer) or whether we have never had such a relationship with you (you are a prospective customer). Data related to your browsing of our online services collected by cookies that you have authorised has a specific retention period.

In any event, we regularly review the information we hold. When there is no longer any legal, commercial or customer account management requirement to retain it, or if you have exercised your right to modify or delete it, we will securely delete it.

The data is retained for a period proportionate to the following purposes:

Project study/ongoing business relationship: time required to complete the project.

  • Commercial prospecting (if consent given): 3 years from the last active contact.
  • technical, analytical or navigation data: according to the specific periods provided for by the applicable regulations (maximum 13 months).

 6- WHO IS LIKELY TO HAVE ACCESS TO THE DATA WE COLLECT?

6-1 Access to data within IRISOLARIS

The following parties may have access to some of your data:

• Administrative and accounting staff

and management control, IT, marketing and sales.

Access to your data is based on individual and limited access authorisations. Staff members who have access to personal data are subject to a confidentiality obligation (through a nominal and personal confidentiality agreement).

The following parties may also have access to some of your data:

• Subcontractors

Our subcontractors’ access to your data is based on signed contracts that specify their obligations regarding data security and confidentiality.

• Social media platforms

The use of social networks to interact with our websites and applications (in particular the “share” buttons on Facebook, LinkedIn, YouTube) may result in data being exchanged between IRISOLARIS and these social networks. For example, if you are logged into Facebook and visit a page on the website , Facebook may collect this information. We therefore invite you to consult the personal data management policies of the various social networks to find out how they collect and process your data.

• Our business partners

They promote products or services on their own behalf or on behalf of advertisers. Please note that if you decide to subscribe to the products or services of our business partners and allow them to access certain information about you, in particular by logging on to their websites or applications, their privacy policies and cookie policies will apply to you. We have no control over the collection or processing of your data by our business partners on their own platforms.

• Police authorities, judicial or administrative authorities

When we are legally obliged to do so or in order to safeguard the rights, property and safety of the Irisolaris Group.

7- ARE YOUR DATA TRANSFERRED OUTSIDE THE EUROPEAN UNION?

We store your personal data within the European Union. In all cases, we ensure that processing is carried out in accordance with this privacy policy and that it is governed by the European Commission’s standard contractual clauses, which guarantee an adequate level of protection for individuals’ privacy and fundamental rights.

8- HOW IS YOUR DATA PROTECTED?

As data controller, we implement appropriate technical and organisational measures in accordance with applicable legal provisions to protect your personal data against alteration, accidental or unlawful loss, unauthorised use, disclosure or access, including:

• The appointment of a data protection officer;

• The establishment of a unit dedicated to information system security;

• Raising awareness of confidentiality requirements among our employees who need to access

to your personal data;

• Securing access to our premises and IT platforms;

• Implementation of a general IT security policy for the company;

• Securing data access, sharing and transfer;

• High standards of data protection when selecting our subcontractors and partners.

9- WHAT ARE YOUR RIGHTS?

9.1 Your rights regarding access to your personal data

You have the right to access your personal data and request that it be corrected, completed or updated. You may also request the deletion of your data or object to its processing, provided you have a legitimate reason.

You may request to exercise your right to data portability, i.e. the right to receive the personal data you have provided to us in a structured, commonly used format and the right to transmit this data to another data controller.

You may also formulate guidelines regarding the storage, deletion, and disclosure of your personal data after your death.

You may exercise your rights by contacting IRISOLARIS’s Data Protection Officer at the following email address: dpo@irisolaris.com

Before responding to your request, we may verify your identity and/or ask you to provide us with further information in order to respond to your request. We will endeavour to respond to your request within a reasonable time and, in any event, within the time limits set by law.

If you are not satisfied with the response, you may lodge a complaint with the French Data Protection Authority (CNIL).

9.2 Your rights to object to commercial solicitations

We may use your contact details for marketing purposes, in accordance with applicable law and the terms of this privacy policy. You may object to these communications at any time, in accordance with the terms and conditions that depend on the communication channel we use to send them to you.

• Commercial solicitations by electronic means (e-mail):

We comply with the provisions of Article L.34-5 of the French Postal and Electronic Communications Code, which requires your prior and express consent to be obtained before sending commercial communications by electronic means (e-mail, push notifications or SMS).

However, your express prior consent is not required when you are already a customer of IRISOLARIS and the purpose of our solicitation is to offer you products or services similar to those we already provide to you.

In any case, you always have the option to opt out of receiving these solicitations by clicking on the unsubscribe link provided in each email.

• Commercial solicitations on mobile applications

When you first open the IRISOLARIS mobile applications on your smartphone or tablet, you can give permission to receive mobile or “push” notifications. These notifications allow us to send you editorial content (news alerts, content highlighted by the editorial team) and may, from time to time, be used for commercial offers. You can disable these notifications at any time in your smartphone settings.

9.3 Your rights regarding the acceptance and management of cookies

The storage of a cookie on your browsing device is subject to your consent. You may change your preferences regarding the acceptance or rejection of cookies stored on your device at any time, either in your browser or online with various operators.

In order to manage cookies in accordance with your preferences, we invite you to configure your browser settings taking into account the purpose of cookies.

How to exercise your choices?

a. Make your choices in your browser

You can configure your browser software so that you are asked to accept or refuse cookies each time before a cookie is likely to be stored, or so that cookies are always accepted or always refused on your device.

We would like to alert you to the fact that any settings on your browser software that refuse technical and functional cookies may affect your browsing experience on our websites, or even prevent you from using some of our services that require the use of these cookies.

Where applicable, we accept no responsibility for the consequences of the impaired functioning of our websites and services resulting from our inability to store or access the cookies necessary for their functioning, which you may have refused or deleted.

Each browser has different settings for managing cookies and your choices. These settings are described in your browser’s help menu, which will tell you how to change your cookie preferences.

• Microsoft Internet Explorer

• Microsoft Edge

• Apple Safari

• Google Chrome

• Mozilla Firefox

• Opera

• Adobe Flash Player Flash cookies

Adobe Flash Player is a computer application that enables the rapid development of dynamic content using the Flash computer language. Flash (and similar applications) stores settings, preferences and usage of this content using technology similar to cookies. However, Adobe Flash Player manages this information and your choices through an interface that is different from that provided by your browser software.

If your device is capable of displaying content developed using Flash, we invite you to access your Flash cookie management tools directly from the website.

• “Do not track”

You can also configure your browser to send a code indicating to websites that you do not wish to be tracked (the ‘Do Not Track’ option).

Microsoft Internet Explorer

Microsoft Edge

Apple Safari

Google Chrome

Mozilla Firefox

Opera

b. Make your choices online

For audience measurement cookies and analytical cookies

Analytical cookies enable us to obtain anonymous statistics on visits to our website in order to optimise it and detect any malfunctions. They are placed on our websites and applications by Google Analytics, ATInternet (XiTi), Parse.ly, Weborama and ACPM.

If you do not want our websites and services to store cookies in your browser for audience measurement purposes, you can click on the following links for further information:

– Google Analytics cookies

– ATInternet cookies

– Parse.ly cookies

– Weborama cookie

For “Social Media” cookies

We use Facebook, LinkedIn, and YouTube share buttons.

To manage your data on Facebook

To manage your data on LinkedIn

Disabling these cookies therefore prevents any interaction with social networks.

For advertising cookies

We use the Doubleclick and SmartAdserver platforms to manage advertising displays on our websites.

To manage Doubleclick cookies

To manage SmartAdserver cookies

You can also visit https://www.youronlinechoices.com/fr/, a website created by digital advertising professionals who are members of the European Digital Advertising Alliance (EDAA) and managed in France by the Interactive Advertising Bureau France.

This European platform is shared by hundreds of online advertising professionals and provides a centralised interface allowing you to express your refusal or acceptance of cookies used by these companies to tailor the advertisements likely to be displayed on your device to your browsing information:

Finally, some cookies are placed by third-party providers for the purpose of personalised advertising. You can also click on the following links to learn more about their practices and exercise your choices:

– Rubicon Cookies

– DoubleClick for Publisher cookies

– AppNexus cookies

– Weborama cookie

– Cookie Index Exchange