This privacy notice informs you how Viridi Energy Mobility Technology Co., Ltd (“VREMT ”, “we”, “us”, “our”) collects and processes your personal data in connection with your visit on our website.
Where we refer to personal data below, we mean any information relating to an identified or identifiable living person. Personal data that has been anonymized in such a way that the data subject cannot be identified or can no longer be identified (anonymous data) is no longer considered personal data.
We may need to amend or update this privacy notice from time to time. Therefore, please read this privacy notice at regular intervals.
I. Controller, data protection officer
For the purposes of this privacy notice, the controller is:
Viridi Energy Mobility Technology Co., Ltd
No. 198, Yinwan East Road 2, Hangzhou Bay New District, Ningbo, Zhejiang, China
VREMT has appointed data protection officer:
[Hans.Martinsson,
Phone: +46 738 62 17 37
E-mail: hans.martinsson@cevt.se]
II. Content
In this privacy notice, we inform you about the following:
which personal data we process in the context of your visit to our website; the purposes and legal basis of the processing; to whom we transfer your personal data to; whether the provision of your personal data is mandatory and the consequences of not providing it; your rights regarding your personal data and how you can exercise these; the duration of the processing; our security measures; and cookies and similar technologies we use.
III. Personal data categories
When you visit our website, we process the following personal data:
1. When you access our website
Each time you access our website, your internet browser automatically sends certain information to our website server and temporarily stores it in so-called log files. We use Internet log data to improve the user experience, performance, and security of our surveys and other solutions, and for quality assurance purposes. The following internet protocol data is automatically transmitted:
IP address of your device; name of the accessed files and contents; date and time and duration of your website visit; volume of personal data transferred; operating system and internet browser including installed add-ons and other technologies of the your device; internet address of the website from where you accessed our website (so-called origin or referrer URL); Name of the service provider that provides access to our website;
IV. Purpose and legal basis of the processing
We process your personal data on the following legal bases:
Consent: You have given your consent to the processing of your personal data for one or more specific purposes (Art. 6 para. 1 lit. a GDPR); Performance of contract or pre-contractual measures: The processing is necessary for the performance of a contract to which you are a party or to take steps at your request prior to entering into a contract (Art. 6 para. 1 lit. b GDPR); Legal obligation: The processing is necessary for the compliance with a legal obligation to which we are subject (Art. 6 para. 1 lit. c GDPR); Legitimate interest: The processing is necessary for the purposes of our or a third party’s legitimate interests, except where such interests are overridden by your interests or fundamental rights and freedoms which require protection of your personal data (Art. 6 para. 1 lit. f GDPR).
| Purpose | Legal basis |
|---|---|
| Provision of our website for the public and for the purpose of contacting customers and interested parties | Performance of a contract or legitimate interest (VREMT’s interest in providing a functioning website) |
| Collection of statistical information about the use of our website (so-called web analysis) | Consent or legitimate interest (VREMT’s interest in receiving information about the use of our website, e.g. to improve our website). |
| Investigating malfunctions and ensuring system security, including detecting and tracking unauthorised access attempts and access to our web servers. | Compliance of legal obligations (for data security); legitimate interest (VREMT’s interest in system security, in particular troubleshooting and elimination of unauthorised access). |
| Assertion of legal claims and defence in legal disputes | Legitimate interest (VREMT’s interest in asserting, enforcing claims or defending itself in legal disputes) |
V. Recipients
We may share your personal data with other group companies (“the Group”). Within the Group, only employees and departments with a “need to know” have access to your personal data and only to the extent necessary.
We may transfer your personal data to recipients, who are usually processors, outside the Group. These third parties generally belong to the following categories of recipients:
service providers for the operation of our website and the processing of personal data stored or transmitted by the systems (e.g. hosting or service providers for data centre services, payment processing or IT security); consultants and service providers as independent controllers or joint controllers (e.g. insurance companies or accounting service providers); persons who are subject to professional secrecy or are obliged to maintain confidentiality, for example lawyers, tax consultants and auditors; government agencies/authorities, insofar as this is necessary to comply with legal obligations; persons involved in carrying out our business operations (e.g. auditors, banks, insurance companies, legal advisors, regulatory authorities, parties involved in company acquisitions or the establishment of joint ventures); recipients in the course of any reorganisations, mergers, disposals or other transfers of assets. We will then ensure that the recipient of your personal data agrees to handle it in a manner that complies with applicable data protection law and is compatible with the original purposes of the processing. We continue to ensure the confidentiality of your personal data and inform you about the transfer to another controller.
VI.Transfers of Data outside the EU/EEA
Due to the international nature of our business, it may be necessary for us to process your personal data outside the European Union (EU) and/or the European Economic Area (EEA) (“Third Countries”). For this reason, we may transfer your personal data to Third Countries that have different laws and data protection compliance requirements than the country in which you are located. The third countries concerned, e.g. China, may not have the level of data protection that you enjoy under the GDPR. This can mean disadvantages such as an impeded enforcement of data subjects’ rights, a lack of control over further processing and access by state authorities. You may only have very limited legal remedies against this.
Insofar as we transfer your personal data from the EU/EEA to recipients in third countries that are not covered by an adequacy decision of the EU Commission, we achieve an adequate level of data protection by concluding standard contractual clauses of the European Commission or by means of binding corporate rules of our business partners and supplement these transfer mechanisms with further contractual, technical and organisational measures if necessary.
VII. Are you obliged to provide your personal data?
In principle, you are not obliged to provide your personal data. However, if you do not provide your personal data, we may only be able to provide you with limited services or not answer your enquiries.
VIII. Your data subject rights
You have the following rights in relation to your personal data to the extent permitted by law:
right of access and right to receive a copy of your personal data, Art. 15 GDPR right of rectification, Art. 16 GDPR right to erasure (“right to be forgotten”), Art. 17 GDPR right to restriction of processing, Art. 18 GDPR right to data portability, Art. 20 GDPR
Right to object, Art. 21 GDPR: You have a general right to object, on grounds relating to his or her particular situation, if we process your personal data on the basis of our legitimate interest. This means that you must always give reasons for your objection and the reasons for the objection must not result from the processing situation as such but must be justified in your person. We will no longer process your personal data unless we can demonstrate compelling legitimate grounds for the processing which override your interests, rights and freedoms or for the establishment, exercise or defence of legal claims.
Withdrawal of consent: You can withdraw consent at any time with effect for the future by contacting the contact information in section 1.
Right to lodge a complaint: In the event of a (suspected) breach of applicable data protection laws, you may lodge a complaint with the supervisory authority.
We do not make decisions based solely on automated processing, including profiling, which produces legal effects or similarly significantly affects you (Art. 22 GDPR).
IX. Duration of the processing
We will only process your personal data for as long as is necessary to achieve the above purposes. We will delete or anonymise your personal data as soon as it is no longer required for the purposes described in this privacy notice and if we have no legal basis to further store your personal data.
In addition, the retention period may be extended if we are subject to statutory retention and documentation obligations. The retention period may also be based on the statutory limitation periods. In certain circumstances, we may also need to store your personal data for longer, e.g. in connection with authority or legal proceedings.
With regard to the use and retention period of cookies, please note section XI.
X. Security
We protect your personal data from loss, misuse, disclosure, alteration, unavailability, unauthorised access and destruction and maintain the confidentiality of your personal data.
This is also ensured using appropriate technical and organisational measures. We choose our security measures taking into account the state of the art, the costs of implementation and the nature, scope, context and purposes of processing as well as the risk of varying likelihood and severity for the rights and freedoms of natural persons and continuously improve them.
XI. Cookies and other technologies
Our website contains cookies and other technologies (e.g. pixels, scripts) (together “Cookies”). Cookies are used to make our website user-friendly, effective and secure. Cookies are, for example, small text files that are stored on your terminal device and contain personal data such as personal settings and login information.
We use the following categories of Cookies:
Performance Cookies: These Cookies allow us to track visits and website usage so that we can measure and improve the performance of our website. They help us understand which pages are the most or least popular, or to record error messages on the website. All analysis based on this information is aggregated. Functional Cookies: These Cookies allow us to improve the functionality and personalization of the website. They ensure that your website preferences (e.g., settings or filters) are maintained and help us to include third-party services on the website. Any analysis performed based on this information is aggregated. Advertising Cookies: These Cookies help us to better analyze the impact of our website and your interests, e.g. to show you personalized advertising or put other content on our or other websites. These may be displayed on our website or on third-party websites. In particular, the Cookie collects information about your browsing activities in order to understand which topics are relevant to you. Necessary Cookies: these cookies are necessary for the functioning and management of the website and cannot be disabled in our systems. They are usually set based on your input, such as when you set your cookie preferences, log in, or fill out forms. You can set your browser to block these cookies, but then some parts of the website will not work.
We use first party Cookies. First party Cookies come from our platform and send information only to us. We use session Cookies, which are only stored for individual online sessions and are deleted when you close your browser; and persistent Cookies, which are deleted when they reach their expiry date or are deleted by the user.
The placement and subsequent processing of Necessary Cookies is based on our legitimate interest or in order to provide you with an expressly requested tele media service. Our legitimate interest is to provide you with a technically optimized, user-friendly and appropriate website. We use other Cookies only with your consent. You can withdraw your consent at any time with effect for the future, e.g. by managing your Cookie settings or by sending an e-mail to hans.martinsson@cevt.se.
| Cookies | First/ Third party | Lifetime | Type |
|---|---|---|---|
| [ acw_tc] | [First party] | [30min] | [Functional Cookies] |
| [i18n_redirected] | [First party] | [0min] | [Functional Cookies] |
We also use third-party technologies and the personal data is kept until the purpose is fulfilled and no other legal retention periods apply. You can find a list below:
| Name | Description |
|---|---|
| Web beacons | A web beacon (also known as a tracking pixel or pixel tag) consists of a small string of code embedded in a website. The web beacon can also be associated with a graphic. Our website analytics provider, Google Analytics uses web beacons on our website to help us understand how you use our website and to improve the performance of our website. We can use this information to better understand your interests and improve our content. |
You can also use our website without Cookies, but you might not be able to use our website to its full extent or to use certain functionalities.
XII. Questions, exercising your data protection rights, complaints
If you have any questions or complaints about the collection, use or retention of your personal data, or if you wish to exercise any of your rights in relation to your personal data, you can contact our data protection officer by emailing hans.martinsson@cevt.se.
We will investigate and attempt to remedy any complaint or dispute regarding the processing of your personal data. You can also lodge a complaint with the competent data protection authority.