Privacy Policy

1. Introduction

PowerDon B.V. ("PowerDon," "we," "our," or "us") is committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy explains how we collect, use, store, and protect your personal data when you use our charging station services, website, mobile applications, and related services (collectively, the "Services").

This Privacy Policy applies to all users of our Services and complies with the General Data Protection Regulation (GDPR), the Dutch Data Protection Act, and other applicable data protection laws. By using our Services, you consent to the collection and use of your information as described in this Privacy Policy.

We may update this Privacy Policy from time to time to reflect changes in our practices or applicable laws. We will notify you of any material changes by posting the updated policy on our website and, where required by law, by sending you a direct notification.

2. Data Controller Information

PowerDon B.V. is the data controller responsible for your personal data. If you have any questions about this Privacy Policy or our data practices, please contact us using the information provided above.

3. Information We Collect

3.1 Information You Provide Directly

We collect information that you voluntarily provide to us when you:

• Create an account or register for our Services
• Rent a power bank from our charging stations
• Contact our customer support
• Subscribe to our newsletter or marketing communications
• Participate in surveys, promotions, or feedback requests
• Apply for partnership or advertising opportunities

This information may include:

• Name and contact information (email address, phone number)
• Payment information (credit card details, billing address)
• Account credentials (username, password)
• Company information (for business partnerships)
• Communication preferences
• Feedback, reviews, and survey responses

3.2 Information Collected Automatically

When you use our Services, we automatically collect certain information, including:

• Device information (device type, operating system, unique device identifiers)
• Usage data (rental history, session duration, charging patterns)
• Location data (when you use our mobile app or rent from our stations)
• Technical data (IP address, browser type, access times)
• App analytics (app crashes, performance metrics, feature usage)
• Station interaction data (which stations you use, rental frequency)

3.3 Information from Third Parties

We may receive information about you from third parties, including:

• Payment processors (transaction data, payment verification)
• Social media platforms (if you connect your social accounts)
• Analytics providers (aggregated usage statistics)
• Event partners (when you use our services at partner venues)
• Marketing partners (with your consent, for promotional purposes)

4. How We Use Your Information

4.1 Primary Purposes

We use your personal information to:

• Provide and maintain our charging station services
• Process rental transactions and payments
• Manage your account and user profile
• Locate nearby charging stations and manage rentals
• Provide customer support and respond to inquiries
• Send service-related notifications and updates
• Ensure the security and proper functioning of our Services

4.2 Secondary Purposes

With your consent or where permitted by law, we may also use your information to:

• Send marketing communications and promotional offers
• Conduct market research and analyze usage patterns
• Improve our Services and develop new features
• Personalize your experience and provide recommendations
• Prevent fraud and ensure platform security
• Comply with legal obligations and enforce our Terms of Use

4.3 Legal Basis for Processing

Under GDPR, we process your personal data based on the following legal grounds:

• Contract performance: To provide our Services and fulfill our contractual obligations
• Legitimate interests: To improve our Services, prevent fraud, and ensure security
• Consent: For marketing communications and optional features
• Legal compliance: To comply with applicable laws and regulations

5. Data Sharing and Disclosure

5.1 Service Providers

We may share your information with trusted third-party service providers who assist us in operating our Services, including:

• Payment processors (Stripe, PayPal, etc.)
• Cloud hosting providers (AWS, Google Cloud, etc.)
• Analytics services (Google Analytics, etc.)
• Customer support platforms
• Email and communication services
• Security and fraud prevention services

These service providers are contractually obligated to protect your information and use it only for the specific services they provide to us.

5.2 Business Partners

We may share limited information with our business partners, including:

• Event organizers and venue partners (aggregated usage statistics)
• Advertising partners (anonymized demographic data)
• Integration partners (for connected services)

5.3 Legal Requirements

We may disclose your information when required by law or when we believe disclosure is necessary to:

• Comply with legal obligations, court orders, or government requests
• Protect our rights, property, or safety, or that of our users
• Investigate and prevent fraud, security breaches, or illegal activities
• Enforce our Terms of Use or other agreements

5.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your personal information may be transferred to the acquiring entity. We will notify you of any such transfer and any changes to this Privacy Policy.

6. Data Retention

We retain your personal information only for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

6.1 Retention Periods

• Account information: Retained while your account is active and for 3 years after account closure
• Transaction data: Retained for 7 years for accounting and tax purposes
• Usage data: Retained for 2 years for service improvement and analytics
• Marketing data: Retained until you withdraw consent or for 3 years of inactivity
• Support communications: Retained for 3 years after resolution

6.2 Data Deletion

When the retention period expires, we will securely delete or anonymize your personal information. However, we may retain certain information if required by law or for legitimate business purposes, such as fraud prevention or legal compliance.

7. Your Rights and Choices

Under GDPR and other applicable data protection laws, you have the following rights regarding your personal information:

7.1 Access and Portability

• Right of access: Request a copy of the personal information we hold about you
• Data portability: Request your data in a structured, machine-readable format

7.2 Correction and Deletion

• Right to rectification: Correct inaccurate or incomplete personal information
• Right to erasure: Request deletion of your personal information ("right to be forgotten")

7.3 Processing Limitations

• Right to restrict processing: Limit how we use your personal information
• Right to object: Object to processing based on legitimate interests or for marketing
• Withdraw consent: Withdraw consent for processing where consent is the legal basis

7.4 Exercising Your Rights

To exercise any of these rights, please contact us at privacy@powerdon.com or through your account settings. We will respond to your request within 30 days (or as required by applicable law).

You also have the right to lodge a complaint with a supervisory authority if you believe we have not handled your personal information in accordance with applicable data protection laws.

8. Cookies and Tracking Technologies

8.1 What Are Cookies

Cookies are small text files stored on your device when you visit our website or use our mobile app. They help us provide and improve our Services by remembering your preferences and analyzing usage patterns.

8.2 Types of Cookies We Use

• Essential cookies: Necessary for the website to function properly (login, security, shopping cart)
• Performance cookies: Help us understand how visitors interact with our website
• Functional cookies: Remember your preferences and personalize your experience
• Marketing cookies: Used to deliver relevant advertisements and track campaign effectiveness

8.3 Third-Party Cookies

We may allow third-party services to place cookies on your device, including:

• Google Analytics (website analytics)
• Social media platforms (social sharing buttons)
• Advertising networks (targeted advertising)
• Payment processors (secure payment processing)

8.4 Managing Cookies

You can control cookies through your browser settings or our cookie preference center. Options include:

• Accepting or rejecting all cookies
• Choosing which types of cookies to allow
• Deleting existing cookies from your device
• Setting your browser to notify you when cookies are being used

9. Data Security

9.1 Security Measures

We implement comprehensive security measures to protect your personal information, including:

• Encryption of data in transit and at rest using industry-standard protocols
• Secure data centers with physical access controls and monitoring
• Regular security audits and vulnerability assessments
• Employee training on data protection and security best practices
• Multi-factor authentication for administrative access
• Regular backup and disaster recovery procedures

9.2 Payment Security

Payment information is processed using PCI DSS compliant payment processors. We do not store complete credit card information on our servers. All payment transactions are encrypted and processed through secure channels.

9.3 Data Breach Response

In the unlikely event of a data breach, we will notify affected users and relevant authorities within 72 hours as required by GDPR. We maintain an incident response plan to quickly address and mitigate any security incidents.

10. International Data Transfers

Your personal information may be transferred to and processed in countries outside the European Economic Area (EEA) where our service providers are located. When we transfer your data internationally, we ensure appropriate safeguards are in place, including:

• European Commission adequacy decisions
• Standard Contractual Clauses (SCCs)
• Binding Corporate Rules (BCRs)
• Certification schemes and codes of conduct

We regularly review and update our international transfer mechanisms to ensure compliance with applicable data protection laws.

11. Children's Privacy

Our Services are not intended for children under the age of 16. We do not knowingly collect personal information from children under 16 without parental consent. If we become aware that we have collected personal information from a child under 16 without parental consent, we will take steps to delete such information.

If you are a parent or guardian and believe your child has provided us with personal information, please contact us at privacy@powerdon.com so we can take appropriate action.

12. Marketing Communications

12.1 Consent and Preferences

We will only send you marketing communications if you have given us your consent or where permitted by law. You can manage your communication preferences through:

• Your account settings
• Unsubscribe links in our emails
• Contacting our customer support
• Our preference center

12.2 Types of Communications

Marketing communications may include:

• Product updates and new feature announcements
• Promotional offers and discounts
• Event invitations and partnership opportunities
• Surveys and feedback requests
• Industry news and insights

13. Updates to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, or legal requirements. When we make material changes, we will:

• Post the updated Privacy Policy on our website
• Update the "Last Updated" date at the top of this policy
• Notify you via email or through our Services (for material changes)
• Obtain your consent where required by law

We encourage you to review this Privacy Policy periodically to stay informed about how we protect your information.

14. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

For general inquiries about our Services, please contact support@powerdon.com.