We shall always ensure all personal data is collected in a fair and lawful manner and used only for specified purposes. We will always make sure that any personal data collected and held is relevant to the product or service provided. We will never hold personal data any longer than is necessary for the purpose and we will dispose of it appropriately when it is no longer required.
If you have any questions or concerns about this Policy, please email our data security team at email@example.com.
Personal information means any information about an individual from which that person can be identified. It does not include data where the identity has been removed (anonymous data).
We will collect personal information about you during our sign-up process, when you get in touch with us, use our website or just as part of providing our services to you.
We may also be provided with your personal information by other parties.
We have set out below different categories of data that we may process and include some of the reasons why we need this information.
Apart from when required to (Vulnerability Data referred to above), we do not collect any Special Categories of Personal Data about you (this also includes details about your race, religious or philosophical beliefs, sex life, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
We’ll only use your personal information where necessary and allowed to by law. Generally, this will be under one or more of the following circumstances:
Some of these above-mentioned purposes are for our legitimate business interests. This means that using your information is necessary for us to build our business and provide our services to you. We consider and balance any potential impact on you and your rights before we process your personal data for our legitimate interests.
We’ll always contact you by the method we’ve agreed with you when you signed up to us.
If you use a smart meter and we are able to operate this remotely, we'll normally collect readings from your smart meter once a day. You can decide whether we take a reading for the entire 24-hour period or for each half-hour period. We won't take more than one reading a day unless you have given us your consent. If you'd prefer us to only take one reading a month, you can email us at firstname.lastname@example.org.Analysing your smart meter readings to offer you new products and services with your consent
If you use a smart meter and we are able to operate this remotely, we could use your smart meter readings to understand how you use your energy. For example, we could learn how to buy energy for lower prices and be able to build and offer you new products and services. We will only use your smart meter readings to do this if you have given us your consent. You can email us at email@example.com at any time to withdraw this consent.If you have any questions or concerns about how we use your personal information, please email our data security team at firstname.lastname@example.org.
We sometimes need to allow our service providers to process your personal information on our behalf for the reasons set out in this Policy or as otherwise required by law.
If you decide you want to change your marketing preference, you can change your preference in your So Energy online account or you can just send an email to email@example.com and we’ll update your preferences for you.
We may also transfer your personal data to third parties for the purposes set out in How We’ll Use Your Information.
We make sure that these third parties won’t use your personal data for their own purposes and we only permit them to use it in accordance with our instructions and the law.
Occasionally, we may need to pass your information to our agents and service providers, this may involve people or organisations outside of the European Economic Area (EEA). The laws of some of the jurisdictions in which these people or organisations are located may not be as robust as those of the UK.
We follow strict security procedures to protect personal information. This includes following certain guidelines (for example, checking your identity when you phone us).
We recommend that you do not disclose your account login details to anyone. Please always remember to log out of your account when you have finished accessing your online account.
We review our practices for collecting, processing and storing personal information, including physical security measures, to guard against unauthorised access to systems and backups to prevent the loss of information. We will continue to enhance our security procedures as new technology becomes available.
We restrict access to personal information wherever possible to people who need to know that information to process it and who are subject to contractual confidentiality requirements.
We use encryption to keep your data private while in transit.
We regularly review our practices for collecting, processing and storing personal information, including physical security measures, to guard against unauthorised access to systems and backups.
We will only keep your personal information we collect for no longer than is necessary for the purposes for which we collected it. The length of time depends on the purposes for which we used it, or otherwise to meet or legal obligations.
We will delete any information as soon as we no longer have a valid reason to hold it. if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible.
A 'Cookie' is a piece of information stored on your computer that records how you've used a website. Don't worry they're completely anonymous and we don't store any personal information.
We may use 'cookies' to monitor how people use our website. Cookies help us to understand how our customers and visitors use our website, so we can make improvements to its design, layout and functionality. Short-term cookies are also able to recognise your computer and remember non-personal information each time you use the site, so you can just pick up where you left off each time.
We use programs such as Google Analytics to help us find out:
These insights help us understand how to improve our websites.
We also use third party analytics services like Hotjar, which is similar to Google Analytics.
It allows us to:
We use Facebook Pixel and Google Analytic Advertising to track the performance of our advertising campaigns and allow us to tailor the advertising you might be interested in.
Every email we send to our customers contains small gif files, also known as tracking pixels. These are tiny graphic files that contain unique identifiers that enable us to recognise when our marketing subscribers have opened an email or clicked certain links. This allows us to record each subscriber's email address, IP address, device ID, date, and time associated with each open and click for a campaign. We use this data to create reports about how an email campaign performed and to amend future campaigns based on subscriber interactions.
If you don't want us to use your cookies, you can change the settings of your browser preventing it from accepting cookies, or to notify you when a website tries to put a cookie on your computer. See www.aboutcookies.org for more information on deleting or blocking cookies.
Please bear in mind, if you do disable this function, you might not be able to use some of the products or services on our website.
You can also opt out from these third parties’ targeting through the following sources:
You have various rights in relation to your personal information.
For the purposes of this Policy, “we”, “us”, "our" and “So Energy” means So Energy Trading Ltd. Unless otherwise stated, So Energy Trading is the Data Controller for your personal data.
Last updated: 1 July 2019