We are Sungrow Deutschland GmbH, registered in the Commercial Register (Handelsregister) of Munich District Court (Amtsgericht München) under HRB 194275, with registered offices in Balanstraße 59, 81541 München, Germany, with the registered business objective (Gegenstand des Unternehmens) of marketing and selling products in the field of renewable energies.

We are part of Chinese solar photovoltaic (PV) inverter manufacturing group headquartered in Hefei, Anhui Sungrow Power Supply Co., Ltd. You can find more information about our group.

Personal data means any information relating to an identified or identifiable natural person ("Data Subject"). As the Controller in the sense of the GDPR, we collect personal data for the provision of SUNGROW Website services. Below you can find the categories of personal data that we collect and information on how we use and process such data:

2.1. Personal data you provide

2.1.1.      We use necessary cookies to ensure basic functionality. These cookies are essential for the site to work properly. You can find more detailed information through our Cookie Policy here.

2.2. Personal data we collect automatically

2.2.1.      When you visit SUNGROW Website, your visit will be logged like for any other website. This means that initially, the following automatic logging data ("Log Data"), which your browser/device transmits to us. The data mainly includes the time zone, date and time of request, browser type, operating system, pages viewed, access status, and referring URL.

This data is only collected for data security purposes and for error analysis.

We use cookies and similar technologies to ensure the safe and efficient operation of our products and services. These technologies help us verify that you are securely logged in, detect fraudulent or other unlawful activities, and improve service efficiency by enhancing both login and overall response speeds. Read more about our cookies here.

5.1. Third-party service providers

We may share your personal data with third-party service providers (such as hosting providers, IT and maintenance support providers, and on-site service technicians, customer support (manpower) providers) strictly for the purpose of providing and maintaining our services. who are subject to written data processing agreements as required by Article 28 GDPR. These agreements ensure that providers process your data only on our instructions, maintain robust security standards, uphold confidentiality, and do not subcontract your data without our approval. We regularly monitor these providers for ongoing GDPR compliance. Currently, all service providers operate within Germany or the EEA; if your data must be processed outside this area in the future, we will implement appropriate safeguards and inform you accordingly.

5.2. Government authorities, regulators and law enforcement agencies

Personal data may further be shared with government authorities and/or law enforcement officials if required by law or a court order or if required for the legal protection of our legitimate interests in compliance with applicable laws and whilst protecting your personal data.

5.3.Our group companies and affiliates and/or their designated service providers that work with us to provide processing services such as software, tools, systems and messaging services for purposes described in this Privacy Policy.

We process and store personal data collected through the SUNGROW Website on servers located within Germany. We do not transfer your personal data to countries or regions outside of the European Economic Area (EEA) or the UK.

If we ever need to transfer your data outside the EEA or the UK, we will align with all applicable data protection laws and implement the necessary data transfer safeguards and mechanisms. Before such changes, we will update this privacy policy and provide you with a clear and prominent notice.

Sungrow attains great importance to the security of your personal data and has implemented appropriate technical and organizational measures. The SUNGROW Website will use encryption techniques such as transport layer security protocol (TLS) to protect your personal data during transmission. We store your personal data on Microsoft Azure with high level of security features deployed. MS Azure Germany facilities are protected by physical security measures. We strictly control authorities to limit access.

To ensure the security of your personal data, we have implemented strict  privacy protection measures for everyone who may have access rights.

You have the rights to protect your personal data as follows. If you would like to exercise any of the following rights, please contact us as described in Section "Contact us" below.

8.1. Right of access

According to Art 15 of the GDPR, you have the right to receive information about your personal data processed by us upon request.

8.2. Right to rectification

According to Art 16 of the GDPR, you have the right to update or correct your personal data in order to make it accurate.

8.3. Right to erasure

According to Art 17 of the GDPR, you have the right to delete your personal data from our records subject to the following conditions:

1)     the respective processing purpose has been achieved;

2)     we have unlawfully processed your personal data;

3)     you have withdrawn your consent for a certain type of data processing without another legal basis applying to the data processing;

4)     you have successfully objected to the data processing;

5)     in cases where there is an obligation to delete personal data on the basis of applicable law; or

6)     the personal data have been collected in relation to the offer of information society services referred to in Art 8 (1) of the GDPR.

8.4. Right to restriction of processing

According to Art 18 of the GDPR, you have the right to request us to restrict the processing of your personal data under the following conditions:

1)     the accuracy of your personal data is contested;

2)     you request limited processing instead of deletion under the conditions of a justified right of deletion;

3)     the data is no longer required for the purposes pursued by us, but you need the data to assert, exercise or defend legal claims; or

4)     the success of an objection is still disputed.

8.5. Right to data portability

According to Art 20 of the GDPR, you have the right to receive from us all the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. Furthermore, you have the right to request us to forward this personal data to another Controller under the following conditions:

1)     the data processing is based on consent (Art 6 (1) (a) of the GDPR) or the contract (Art 6 (1) (b) of the GDPR); or

2)     the processing is carried out by automated means.

8.6. Right to object

According to Art 21 of the GDPR, you have the right to object to us processing your personal data in certain circumstances. These rights may be limited in some situations – for example, where we can demonstrate that we have a legal requirement to process your data or if making the information available to you would reveal personal data about another person or if we are otherwise legally prevented from disclosing such information.

8.7. Right to withdraw your consent

According to Art 7 (3) of the GDPR, you have the right to withdraw any consent given to us at any time. If you withdraw a consent, we are no longer allowed to continue the data processing which was the subject of the withdrawn consent in the future. This does not affect the legality of the processing carried out on the basis of the consent up to the point of withdrawal of the consent.

You may withdraw your consent easily, e.g. by contacting us via email at:data-protection@sungrowpower.com Withdrawing your consent is free of charge and does not affect your other rights under the GDPR.

8.8. Complaints

If you have any concerns about how we process your data, you can contact us as described in Section "Contact us" below.

In the event you still have unresolved concerns, you also have the right to lodge a complaint with a supervisory authority according to Art. 77 of the GDPR, in particular the data protection authority in the Member State of your habitual residence or place of work. (Please see this directory (https://edpb.europa.eu/about-edpb/board/members) for more details with regard to the local data protection authorities.)

Finally, please note that where we require personal data to comply with legal obligations or to provide you the SUNGROW Website services, the provision of such data is mandatory: if such data is not provided, then we may not be able to manage our business relationship with you, or to meet legal obligations placed on us. In all other cases, provision of requested personal data is optional.

This data is retained only for the period necessary to resolve your inquiry or provide the requested information. Upon your request to delete your personal data, we will erase it, except where we have a legal obligation to retain it.

Sungrow will keep your information only as long as necessary for the duration of any relationship you have with us, and, to the extent permitted, after the end of that relationship for as long as necessary to perform the purposes set out in this privacy policy.

The Website service can only be used by persons of legal age and is not designed for access and use by persons under the legal age threshold (“Minors”). Therefore, Sungrow requires that users do not provide any personal data of Minors. Sungrow does not knowingly collect or store any personal data of Minors. If we learn that personal data of Minors has been collected, we will remove such data.

SUNGROW may update its privacy policy from time to time. If we make major changes to our privacy policy, we will issue announcements and the updated privacy policy on SUNGROW Website.

When we update our Privacy Policy, we will take appropriate measures to notify you, consistent with the significance of the changes we make. We will obtain your consent if and when we materially change this Privacy Policy in a way that reduces the protection of your personal information collected in the past.

Once posted on SUNGROW  Website, the new Privacy Policy will be effective immediately. You can see when this Privacy Notice was last updated by checking the “last updated” date displayed at the top of this Privacy Notice. 

For any queries, feedback, complaints and suggestions in relation to the use of Website , please contact us by using the following contact details of our data protection officer:

Sungrow Deutschland GmbH

Located at Balanstraße 59, 81541 München, Germany

Email address: data-protection@sungrow-emea.com