Battery Passport is provided by CodeSmith Technology Ltd, Registered in England and Wales. No. 10933248, Registered Address: Abacus House Pennine Business Park, Longbow Close, Huddersfield, West Yorkshire, United Kingdom, HD2 1GQ.

CodeSmith Technology is the data controller for the Battery Passport service. If you follow a link to another service or site from Battery Passport then that service will be responsible for the data you share with them and should publish their own privacy notice.

This Privacy Policy covers the website BatteryPassport.org and all marketing based interactions with users. The actual Battery Passport service that allows users to see battery data is hosted within another service, on another site, so this policy does not cover those interactions.

A data controller determines how and why personal data is processed.

What data we collect

The personal data we collect from you includes:

• questions, queries or feedback you leave including your email address if you contact Battery Passport.
• your email address and subscription preferences when you sign up to our email alerts.
• how you use our emails – for example whether you open them and which links you click on
• your Internet Protocol (IP) address and details of which web browser you used
• information on how you use the site, using cookies and page tagging techniques

We use Google Analytics and WordPress software to collect information on how you use Battery Passport. This includes IP address.

Google Analytics processes anonymised information about:

• the pages you visit on Battery Passport
• how long you spend on each Battery Passport page
• how you got to the site
• what you click on while you’re visiting the site

We do not store your personal information through Google Analytics (for example your name or address)

We continuously test and monitor our data protection controls to make sure they’re effective and to detect any weakness.

Why we need your data

We collect information through Google Analytics to see how you use the site. We do this to help:

• make sure the site is meeting the needs of its users
• make improvements, for example improving the content

We also collect data in order to:

• gather feed back to improve our services, for example our email alerts
• respond to any feedback you send us
• send email alerts to users who request them
• monitor use of the site to identify security threats

Our legal basis for processing your data

The legal basis for processing personal data in relation to our site security is our legitimate interests, and the legitimate interests of our users, in ensuring the security and integrity of Battery Passport

The legal basis for processing anonymised data for Google Analytics is your consent.

The legal basis for processing all other personal data is that it’s necessary:

• in order to respond to questions and feedback

What we do with your data

The data we collect is not shared outside of CodeSmith Technology Ltd except for our technology providers such as our hosting provider, and only where necessary.

We will not:

• sell or rent your data to third parties
• shared your data with third parties for marketing purposes
• use your data in analytics

We will share your data if we are required to do so by law – for example, by court order, or to prevent fraud or crime.

How long we keep your data

We will only retain your personal data for as long as:

• it is needed for the purposes set out in this document
• the law requires us to

We will keep your email data until you unsubscribe. We will keep your feedback data for 2 years. We will delete analytic log data that could possibly identify you (from IP address) after 120 days.

Children’s privacy protection

Our services are not designed for, or intentionally targeted at, children 13 years of age or younger. We do not intentionally collection or maintain data about anyone under the age of 13.

Where is your data processed and stored

We design, build and run our systems to make sure that your data is as safe as possible at all stages, both while it’s processed and when it’s stored.

All personal data is stored in the European Economic Area (EEA). Data collected by Google Analytics maybe transferred outside the EEA for processing.

How we protect your data and keep it secure

We are committed to doing all that we can to keep your data secure. We have set up systems and processes to prevent unauthorised access or disclosure of your data – for example, we protect your data using varying levels of encryption.

We also make sure that any third parties that we deal with keep all personal data they process on our behalf secure.

Your rights

You have to right to request:

• information about how your personal data is processed
• a copy of that personal data
• that anything inaccurate in your personal data is corrected immediately

You can also:

• raise an objection about how your personal data is processed
• request that your personal data is erased if there is no longer justification for it
• ask that the processing of your personal data is restricted in certain circumstances

If you have any of these requests, get in touch at gdpr@codesmithtechnology.com

Contact us or make a complaint

Contact the team if you:

• have a question about anything in this privacy notice
• think that your personal data has been misused or mishandled

gdpr@codesmithtechnology.com

You may also make a complaint to the Information Commissioner, who is an independent regulator.

casework@ico.org.uk
Telephone: 0303 123 1113
Textphone: 01625 545860
Monday to Friday, 9am to 4:30pm

Information Commissioner’s Office
Wycliffe House
Water Lane
Wilmslow
Cheshire SK9 5AF

Changes to this policy

We may change this privacy policy. In that case, the ‘last updated’ date at the bottom of this page will also change. Any changes to this privacy policy will apply to you and your data immediately.

If these changes affect how your personal data is processed, CodeSmith Technology Ltd will take reasonable steps to let you know.

Last updated 18 June 2020