Privacy policy

PRIVACY STATEMENT

Prior to submitting any business or personal data to Volta Charge Points you will be required to read and accept the terms of this privacy statement.

Please read this privacy statement carefully to understand our arrangements regarding your personal data and how we capture, store, and process it.  We recommend that you visit our website from time to time, to stay up to date with any changes. Our Data Protection Policy is also available upon request - email us on sales@voltaev.co.uk for a copy. 

Personal Data

Personal data is information that can be used to identify a person - this can be through business to business (B2B) or business to consumer (B2C) transactions. Volta Charge Points Ltd (hereafter “Volta Charge Points”) does not consider personal information to include information that has been made anonymous or consolidated, so that it can no longer be used to identify a specific person.

Scope and Consent

Volta Charge Points and our supply partners recognise our moral, legal, and ethical duty to manage business and personal information in line with contractual agreements (e.g. Non-disclosure agreements and terms and conditions, etc.), our own Data Protection Policy, and the law.  We will not make your business or personal information available to any third party not bound by subcontract agreements.

This Privacy Statement sets out our collection, use, storage, disclosure, retention, manipulation, and protection of your business or personal information.  It applies to our website where the Privacy Statement appears at the bottom of the page, and to any other Volta Charge Points application, software, service, or tool (collectively "Services"), where this Privacy Statement is referred to, regardless of how you access or use them, including through mobile devices. By using our services, and or making business enquiries with us, you are required to accept the terms of this Privacy Statement and provide consent to our collection, use, disclosure, retention, and protection of your personal information as outlined in this Privacy Statement.

Once you submit your business or personal data, Volta Charge Points becomes the data controller for that information, as per the General Data Protection Regulation (GDPR) (EU) 2016/679 (hereafter “GDPR”), Article 5(2), “the controller shall be responsible for, and be able to demonstrate compliance with the GDPR principles” (See Volta Charge Point’s Data Protection Policy)

 Internal Arrangements

Volta Charge Points Data Protection Officer

  • Has been appointed to support the Data Protection duty of care holder, Volta Charge Point’s Managing Director.
  • The Data Protection Officer can be contacted by emailing sales@voltaev.co.uk (Please title the email – GDPR Complaint/Enquiry, as appropriate).

Job Applicants, Current and Former Employees

  • Volta Charge Point is the data controller for your information during the hiring process and during employment, unless otherwise stated.
  • Applicants that have been unsuccessful during the hiring process will have their data fully erased once the process is completed.
  • If you have any queries regarding how we handle your information, please contact us at sales@voltaev.co.uk and title the email “Recruitment”.

Customers/Clients

It has been a Volta Charge Points philosophy for many years to ensure privacy and data protection by design, applying the principles of data protection at the onset of any transaction or client project.

Depending on the size and complexity of a project, it may be necessary to draft a General Data Management Plan “GDMP,” to be able to demonstrate risk assessment and the implementation of adequate control measures, whilst assessing each project based on its individual merits.

Types of Personal Data Volta Charge Points Collects

Business/Personal Data Transactions:

  • Contact Numbers
  • Names
  • Addresses
  • Banking Information
  • Faxes
  • Emails
  • Vehicle Details

Job Applicants, Current And Former Volta Charge Points Employees:

  • Contact Numbers
  • Names
  • Addresses
  • Date of Birth
  • Banking Information
  • Faxes
  • Emails
  • National Insurance
  • Next of Kin
  • Right to Work/Passport
  • Driving Licence
  • Medical Questionnaire
  • Curriculum Vitae
  • Qualification & Memberships
  • Training Records
  • Pension Records
  • Employee Contracts
  • References
  • Performance Records
  • Payroll Information

What Does Volta Charge Points Use Your Personal Data For?

 Volta Charge Points uses your personal data to:

  • Complete your orders and enquiries.
  • Achieve statutory compliance.
  • Recruit people and administer employee contracts.
  • Fulfil projects, services, and subscriptions.
  • Fulfil warranty obligations.
  • Deliver after-sales care.
  • Undertake repairs
  • Perform hardware/software upgrades and fixes.
  • Send out promotional offers and news on Volta Charge Points products, services, events, legal updates, technical support (e.g. government grant funded system, etc.)
  • Direct our supply chain and internal resources to fulfil your requirements.

Volta Charge Points Right to Process

If Volta Charge Points holds your personal information we have established one or more of the following lawful bases for processing (Article 6 of the GDPR):

  • Consent: the individual has given clear consent for us to process their personal data for a specific purpose.
  • Contract: the processing is necessary for a contract we have with the individual, or because they have asked us to take specific steps before entering into a contract.
  • Legal Obligation: the processing is necessary for us to comply with the law (not including contractual obligations).
  • Vital Interests: the processing is necessary to protect someone’s life.
  • Public Task: the processing is necessary for us to perform a task in the public interest or for our official functions, and the task or function has a clear basis in law.
  • Legitimate Interests: the processing is necessary for our legitimate interests or the legitimate interests of a third party unless there is a good reason to protect the individual’s personal data which overrides those legitimate interests.

Who May Have Access To Your Personal Information?

Volta Charge Points contractors who support us to deliver the services you require, e.g.:

  • Couriers.
  • Server Hosting Company.
  • Hardware and Software Support Company.
  • Quickbooks Accounting System.
  • Website Support Company.
  • Klarna*

*In order to be able to offer you Klarna’s payment options, we will pass to Klarna certain aspects of your personal information, such as contact and order details, in order for Klarna to assess whether you qualify for their payment options and to tailor the payment options for you. General information on Klarna you can find here. Your personal data is handled in accordance with applicable data protection law and in accordance with the information in Klarnas privacy statement.

In cooperation with Klarna Bank AB (publ), Sveavägen 46, 111 34 Stockholm, Sweden, we offer you the following payment options. Payment is to be made to Klarna:

  • Pay later.

Further information and Klarnas user terms you can find here. General information on Klarna you can find here. Your personal data is handled in accordance with applicable data protection law and in accordance with the information in Klarnas privacy statement.

Where reasonably practicable, Volta Charge Points will:

  • Operate a need to know policy with its internal employees and contractors, limiting access to information to only that data which is necessary to fulfil your order or enquiry.
  • Hold your information in a form that will not easily identify the data subject.
  • Have data and physical security measures in place to protect your data.

B2B (Business to Business) - Volta Charge Point’s Suppliers and Contractors: Personal Names Used In Email Addresses

To support the flow of day-to-day business activities, Volta Charge Points has established that a legitimate interest exists for processing personal email address data (only) under the following circumstances:

  • The processing is of clear benefit to the businesses involved.
  • There is limited privacy impact on the individual.
  • The recipient reasonably expects Volta Charge Points to use their data in this way.
  • A precedence already exists.

Note: We do not want to bother people with disruptive consent requests when they are unlikely to object in any event.

How Long Do We Keep Your Information For?

  • The GDPR does not set out any specific minimum or maximum periods for retaining personal data.
  • Volta Charge Points will retain information for no longer than is necessary.
  • You may decide to grant permission to Volta Charge Points to hold your business and or personal information by actively opting-In, so we can send you communications on the following topics:

- Software/hardware updates and fixes

- Updates on Volta Charge Points products and services

- Event information and news

- Technical support e.g. government grant funded systems

- Promotional offers

- Legal Updates

- Product information

- Training and awareness programmes

    • Once a business or person has actively opted-In, Volta Charge Points may contact you from time to time to ensure that the data we hold for you is accurate and up to date.

    Right To Be Forgotten, Withdraw Your Consent Or Fully Erase Your Data

    • You may unsubscribe from any of the Volta Charge Points mailing lists by selecting “unsubscribe”.

    You may contact Volta Charge Points to request your Right to be Forgotten, withdraw your consent or fully erase your data at any time - simply email: sales@voltaev.co.uk and request “Active GDPR Opt-Out”.

    • Once the “Active GDPR Opt-Out” has been received, Volta Charge Points will process your request within 30 days.

    How Can You Submit A Complaint Or Enquire About the Data That Is Held About You?

    Simply send an email to sales@voltaev.co.uk and title your email “GDPR Complaint/Enquiry.”

    You may:

    • Object to the processing of your personal information.
    • Ask for your data to be transferred.
    • Provide permissions for someone to act on your behalf regarding your personal information.
    • Request correction or access of personal information.
    • Request the removal of personal information in relation to a living or deceased person.

    Note: Please allow up to 30 days for the processing of your enquiry, request, or complaint.

    Will We Use Your Personal Data For Any Other Purpose?

    Volta Charge Points will only use your data for the purpose(s) that you have agreed.

    Notification Of Data Breaches Or Loss

    As per the requirement of GDPR, Volta Charge Points will:

    • Submit a data breach notification to the ICO (Information Commissioner’s Office) where information loss or breach is likely to affect the rights and freedoms of individual(s).  
    • Volta Charge Points and our supply partners will inform the data subject and the ICO, in the required format and within 72 hours of first becoming aware of any loss or breach.  

    If Volta Charge Points, through an investigation and risk assessment, will determine that there is no need to report a breach, we will use formal documentation to justify this decision. In assessing risk to rights and freedoms, Volta Charge Points will focus on the potential negative consequences for individuals (e.g. any emotional distress, physical and material damage that could result).

    Recital 85 of the GDPR explains: “A personal data breach may, if not addressed in an appropriate and timely manner, result in physical, material or non-material damage to natural persons such as loss of control over their personal data or limitation of their rights, discrimination, identity theft or fraud, financial loss, unauthorised reversal of pseudonymisation, damage to reputation, loss of confidentiality of personal data protected by professional secrecy or any other significant economic or social disadvantage to the natural person concerned.”

    Contacting Volta Charge Points By Telephone, Mobile, Email or Fax

    When you make contact with Volta Charge Points your permission will be sought to collect your personal data and/or send you marketing communications.  To ensure we are fulfilling the requirements of the GDPR, audit trail of consent will be sought.

    Security

    Volta Charge Points protects your information using security systems and measures to mitigate risks, unauthorised access, misuse, disclosure losses and alterations. Some of the current safeguards we employ are encryption, firewalls, anti-virus software and physical access controls.

    Our information technology provision is:

    • PCI Certified Secure Zone v3.1.
    • SOC 1 Compliant.

    We will also monitor any emails sent to us, including file attachments, for viruses or malicious software. Please be aware that you have a responsibility to ensure that any email you send is within the bounds of the law.

    Cookies

    No personal data is obtained following visits to the Volta Charge Points website.

    Data Protection Audit and Review

    Volta Charge Points operates an audit function via its own Risk and Compliance Department.  One of the objectives for this department is to provide a periodic and disciplined approach to evaluate and improve the effectiveness of risk management, control, and governance processes.

    Training And Awareness

    Volta Charge Point’s in-house data protection training ensures staff members and those who handle personal data are equipped with the necessary skills and knowledge to comply effectively with GDPR regulation. The training focuses on accountability, whilst maintaining data quality principles and implementing appropriate measures to protect data