Personal Data

How do we collect your data?

You directly provide Electra with most of the data we collect. We collect data and process data when:

• You contact us by email.

• You use or browse our website or our service through cookies and your browser requests.

• You register, log in, or use one of our products or services.

• You respond to a satisfaction survey.

• You contact the hotline.

• You subscribe to our newsletter.

• You apply for a job offer.

What data do we collect?

On the Electra website:

• When browsing: IP address;

• When providing your contact details in “Host a station”: email address;

• When applying for a job offer: email address;

• When subscribing to our newsletter: email address.

On the Electra applications:

• When using: IP address;

• When registering: phone number;

• When completing your information: first name; last name; email; postal address; postal code; city; country of residence; bank details;

• When registering as a professional: company registration certificate (KBIS), VAT number, copy of the legal representative’s identity document;

• When adding a vehicle: license plate number;

• When searching for a charging space reservation: GPS coordinates.

At our stations, on our charging terminals:

• When charging: the unique identifier of your vehicle (MAC address of the vehicle’s network device), images of individuals, vehicle license plate number, RFID number.

Via a form (satisfaction, customer experience):

• Title, age group, phone number.

Via the hotline:

• Phone number.

How will we use your data?

Electra and its partners collect your data so that we, Electra, can:

• Manage your account;

• Manage your subscriptions to one of Electra’s offers;

• Monitor the proper functioning and technical performance of our services;

• Ensure proper management of technical support;

• Produce analyses and statistics to improve our services and visibility;

• Establish action logs to debug our services and assist you;

• Combat fraud;

• Comply with legal and regulatory obligations;

• Respond to your requests;

• Send newsletters (to offer you new products or inform you of new features).

Legal Bases for Processing

In accordance with Article 6 of the GDPR, each processing of personal data must be based on at least one of the six legal bases provided for in said regulation: legal obligation, contract, legitimate interest, consent, public interest, protection of vital interests.

The personal data collected and used for the aforementioned purposes are processed on the following legal bases:

• Consent;

• Legitimate interest;

• Performance of a contract (General Terms and Conditions of Use).

How do we store your data?

Electra does not directly store your data but uses the services of partners/service providers to do so. We systematically choose secure data storage and, whenever possible, on European servers.

How long do we retain your data?

Electra will retain your data for 24 months after your last use of our service and for 1 month for images captured in our charging stations equipped with video surveillance systems. Once this period has expired, we will process your data by deletion or anonymisation.

Recipients, Service Providers and Partners

The personal data collected on Electra’s website, our applications and our charging stations are primarily intended for Electra; however, they may be shared with our partners and service providers.

In order to carry out, in particular, the maintenance of the website, some of your data may also be shared with our subcontractors.

We ensure that all our partners, service providers and subcontractors are subject to adequate personal data protection mechanisms in compliance with the GDPR.

List of our main partners and service providers (with their privacy policy):

• Amazon Web Services (AWS) – Hosting and storage of user data – https://aws.amazon.com/privacy/

• Auth0 – Authentication and identity management – https://auth0.com/privacy

• Cloudflare – Security, CDN, protection against attacks (including IP collection) – https://www.cloudflare.com/privacypolicy/

• Datadog – Monitoring and logs (may contain identifiers or personal data) – https://www.datadoghq.com/legal/privacy/

• DocuSign – Electronic signature of documents containing personal data – https://www.docusign.com/privacy

• Google Ads – Advertising targeting and processing of behavioural data – https://policies.google.com/privacy

• Intercom – Customer support (chat, messages) with direct data collection – https://www.intercom.com/legal/privacy

• Leanplum – Sending personalised push notifications, behavioural segmentation – https://www.leanplum.com/privacy/

• LinkedIn (Ads / Sales Navigator) – Targeted advertising / B2B prospecting – https://www.linkedin.com/legal/privacy-policy

• Mapbox – Map display, possible processing of geolocation data – https://www.mapbox.com/legal/privacy/

• SendGrid – Sending transactional emails (email addresses processed) – https://www.twilio.com/legal/privacy

• Snowflake – Data warehouse (hosting and processing of personal data) – https://www.snowflake.com/privacy/

• Twilio – Sending SMS / voice messages (processing phone numbers and contents) – https://www.twilio.com/legal/privacy

Personal data will only be processed by authorised personnel bound by a confidentiality clause or equivalent contractual document.

Your Data Protection Rights

Electra wishes to ensure that you are fully aware of all your data protection rights.

1.       Right of access and rectification of your data
You have the right to obtain from the controller confirmation as to whether or not personal data concerning you are being processed and, where that is the case, the right to access and/or rectify them. (See Articles 15 and 16 of the GDPR.)

2.       Right to erasure of your data
In accordance with Article 17 of the GDPR, you have the right to request the erasure, without undue delay, of your personal data, for certain reasons/under certain conditions set out in that Article.

3.       Right to restriction of data processing
You have the right to request the restriction of the processing of your personal data in the cases provided for under Article 18 of the GDPR.

4.       Right to object to data processing
In accordance with Article 21 of the GDPR, you have the right to object to the processing of personal data concerning you when the processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, unless compelling legitimate grounds override your interests, rights and freedoms, in particular where the data subject is a child.

5.       Right to data portability
You have the right to data portability, which entitles you to receive the personal data you have provided to us in a structured, commonly used, and machine-readable format, and to transmit those data to another controller. The exercise of this right is subject to the conditions laid down in Article 20 of the GDPR.

6.       Right to withdraw your consent
In accordance with Article 7 of the GDPR, in cases where processing is based on consent, you have the right to withdraw your consent at any time. This will terminate the processing of your data.

7.       Right to set post-mortem instructions
You have the possibility to define instructions regarding the retention, erasure, and disclosure of your personal data after your death with a trusted third party, certified and responsible for ensuring the deceased’s wishes are respected, in accordance with the requirements of the applicable legal framework (Article 85 of French Law No. 78-17 of 6 January 1978 on Information Technology, Files and Freedoms).

Procedures for exercising your rights
All the rights listed above may be exercised by writing to the following email address: dpo@go-electra.com, or by post accompanied by a copy of an identity document, addressed to ELECTRA at the following address: 104 rue de Richelieu, 75002 PARIS, France.

Email and SMS Communication

Transactional

Transactional communications are necessary for the proper functioning of Electra’s services or inform you of the status of your recharges/purchases/... with Electra’s services. Electra does not currently send any transactional emails.

Electra sends transactional SMS messages in the following cases:

• Sending a code to log in to the Electra mobile and web applications;

• Sending a code to access restricted-access stations.

Marketing

Electra wishes to send you information about our products and services that we believe may be of interest to you. If you have agreed to receive marketing communications, you may unsubscribe at any later date.

You have the right, at any time, to prevent Electra from contacting you for marketing purposes. To this end, we include, in each marketing email, a management link enabling immediate opt-out from such communications.

Cookies

Cookies are text files placed on your computer to collect standard Internet log information and visitor behaviour information. When you visit our websites, we do not collect any information about you through cookies or similar technologies.

Privacy Policies of Other Websites

The Electra website contains links to other websites. Our privacy policy applies to our website and our application; therefore, if you click on a link to another website, you should read their privacy policy.

Amendments to Our Privacy Policy

Electra regularly reviews its Privacy Policy and posts all updates on this web page. This Privacy Policy was last updated on 17 July 2024.

How to Contact Us

If you have any questions about Electra’s Privacy Policy, the data we hold about you, or if you wish to exercise any of your data protection rights, you can contact us at the following email address: dpo@go-electra.com.