Last update: Apirl 2025
SUNGROW always holds the attitude of being responsible for users and attaches great importance to users' privacy rights and interests. In order to let every user clearly understand how we collect, use, store and protect your personal data, this privacy policy (“Privacy Policy”) is hereby formulated. This Policy will describe in detail the matters related to personal privacy in the process of using the official website of SUNGROW and related services, which is an important basis for you to understand your own rights and interests as well as our privacy protection work.
Information Collection Guidelines
(I) Who we are
The controller of this webpage is Sungrow Deutschland GmbH, registered in the Commercial Register (Handelsregister) of Munich District Court (Amtsgericht München) under HRB 194275, with registered offices in Balanstraße 59, 81541 München, Germany, with the registered business objective marketing and selling products in the field of renewable energies.
We are part of Chinese solar photovoltaic (PV) inverter manufacturing group headquartered in Hefei, Anhui Sungrow Power Supply Co., Ltd. You can find more information about our group https://en.sungrowpower.com/AboutSungrow/1/introduction.
Email: data-protection@sungrow-emea.com
(II) Processing of personal data
The types of personal data that we used, related purposes and other information:
Purpose of processing | Legal basis | Personal data processed | Recipients | Transfer outside EU/EEA | Retention period |
Registration of an account | Fulfilment of contract Art. 6 (1) b GDPR | Name, valid contact information (cell phone/email), postal address. company name, department and position (for enterprise users) | Hosting Provider |
| Data is deleted when you delete your account. |
Ordering and delivery | Fulfilment of contract Art. 6 (1) b GDPR | Name, contact information, address and other information provided by you to accurately arrange for the shipment and delivery of products | Hosting provider, Logistics and distribution services Payment settlement processing Enterprise-level equipment installation and commissioning |
| .. Information will be valid for three years |
Legal obligations | Legal obligation Art. 6 (1) c GDPR | Tax and accounting related information | Hosting provider |
| [based on information regarding legal obligations] |
Technical support | Fulfilment of contract Art. 6 (1) b GDPR | Name, valid contact information (cell phone/email), product consultation records, service request contents | Hosting provider |
| The data is deleted when the support is completed. |
Customer service | Legitimate interest Art. 6 (1) f GDPR. Our legitimate interest is to carry out communication with users who ask questions. | Information related to your transactions | Hosting provider |
| The data is deleted when the service is completed. |
Personalized ads | Consent Art. 6 (1) a GDPR | Browsing history, purchase preferences, consultation records and other information | Hosting provider |
| [..] |
Analytics | Legitimate interest Art. 6 (1) f GDPR. Our legitimate interest is to improve and optimise our products and services. | Browsing records, the time you stayed on each page, device information, such as device model, operating system type, browser version and your IP address | Hosting provider |
| […] |
The investigation and defence of claims | Legitimate interest Art. 6 (1) f GDPR. Our legitimate interest is to protect the legal position. | Personal data related to claims | Hosting provider |
| The data will be stored for the duration of the statute of limitations for claims i.e. 3 years from the time the claim arose counting from the end of the calendar year, or in the event of the initiation of a dispute until the end of the dispute. |
·Identity verification information: identity card number (only for real-name authentication scenarios), etc.
User Rights Protection
Right of access
According to Art 15 of the GDPR, you have the right to receive information about your personal data processed by us upon request.
Right to rectification
According to Art 16 of the GDPR, you have the right to update or correct your personal data in order to make it accurate.
Right to erasure
According to Art 17 of the GDPR, you have the right to delete your personal data from our records subject to the following conditions:
1) the respective processing purpose has been achieved;
2) we have unlawfully processed your personal data;
3) you have withdrawn your consent for a certain type of data processing without another legal basis applying to the data processing;
4) you have successfully objected to the data processing;
5) in cases where there is an obligation to delete personal data on the basis of applicable law; or
6) the personal data have been collected in relation to the offer of information society services referred to in Art 8 (1) of the GDPR.
Right to restriction of processing
According to Art 18 of the GDPR, you have the right to request us to restrict the processing of your personal data under the following conditions:
1) the accuracy of your personal data is contested;
2) you request limited processing instead of deletion under the conditions of a justified right of deletion;
3) the data is no longer required for the purposes pursued by us, but you need the data to assert, exercise or defend legal claims; or
4) the success of an objection is still disputed.
Right to data portability
According to Art 20 of the GDPR, you have the right to receive from us all the personal data concerning you, which you have provided to us, in a structured, commonly used and machine-readable format. Furthermore, you have the right to request us to forward this personal data to another Controller under the following conditions:
1) the data processing is based on consent (Art 6 (1) (a) of the GDPR) or the contract (Art 6 (1) (b) of the GDPR); or
2) the processing is carried out by automated means.
Right to object
According to Art 21 of the GDPR, you have the right to object to us processing your personal data in certain circumstances. These rights may be limited in some situations – for example, where we can demonstrate that we have a legal requirement to process your data or if making the information available to you would reveal personal data about another person or if we are otherwise legally prevented from disclosing such information.
Right to withdraw your consent
According to Art 7 (3) of the GDPR, you have the right to withdraw any consent given to us at any time. If you withdraw a consent, we are no longer allowed to continue the data processing which was the subject of the withdrawn consent in the future. This does not affect the legality of the processing carried out on the basis of the consent up to the point of withdrawal of the consent.
Complaints
If you have any concerns about how we process your data, you can contact us as described in Section "Contact us" below.
In the event you still have unresolved concerns, you also have the right to lodge a complaint with a supervisory authority according to Art. 77 of the GDPR, in particular the data protection authority in the Member State of your habitual residence or place of work. (Please see this directory (https://edpb.europa.eu/about-edpb/board/members _en) for more details with regard to the local data protection authorities.)
Finally, please note that where we require personal data to comply with legal obligations or to provide you the iSolarCloud services, the provision of such data is mandatory: if such data is not provided, then we may not be able to manage our business relationship with you, or to meet legal obligations placed on us. In all other cases, provision of requested personal data is optional.
Retention Period of Personal Data
Where you are a customer, we will keep your data for the duration of any contractual relationship you have with us, and, to the extent permitted, after the end of that relationship for as long as necessary to perform the purposes set out in this notice in accordance with applicable law.
Where we process personal data with your consent, we process the data until you ask us to stop and for a short period after this (to allow us to implement your requests). We also keep a record of the fact that you have asked us not to process your data so that we can respect your request in future.
Data about your visits to our websites and where we process personal data for website security purposes, we will retain this data for [6/12] months following your last visit to our website.
Laws may require us to store certain data of you for specific legal retention periods (this can be up to ten years in case of invoices). In other cases, we may retain data for an appropriate period after any relationship with you ends to protect us from legal claims (until the end of statutory limitation periods), or to administer our business (e.g. for tax obligations).
Protection of Special Groups
(I) Protection of Minors
SUNGROW is well aware of the importance of protecting the privacy of minors, and we always maintain a highly cautious and strict protection attitude towards the personal information of minors. Our official website and related services are mainly for adults, and in principle, we do not actively collect personal information of minors under 18 years old. If, due to special circumstances, we knowingly collect the personal information of minors, we will only use, store and process such information with the express consent of their legal guardians and in accordance with laws and regulations. For example, if a minor participates in an online popularization activity organized by us, we will ask him/her to provide a statement of consent from his/her guardian at the registration stage of the activity, so as to ensure the legality and compliance of the information collected. Once it is found that the information of minors has been collected without the consent of the guardian, we will immediately take measures to delete the relevant information in order to effectively protect the privacy rights of minors.
International Transmission Standards
Mechanism for updating the terms and conditions
SUNGROW will pay close attention to the changes in laws and regulations, business development needs and user feedback, and update the privacy policy in due course. Once the terms are updated, we will notify you in a timely manner by means of a prominent announcement on the official website. At the same time, if you provide a valid e-mail address when you register, we will also send you an e-mail notification to inform you of the specifics of the updated terms and conditions and the main content of the update, to ensure that you are able to be the first to know. For example, when there is a significant change in the laws and regulations on the cross-border transfer of personal information, we will immediately update the relevant content of the Privacy Policy and notify you in a timely manner through the above mentioned means.
Cookies & Similar Technologies
Contact and Feedback
If you have any questions, suggestions or comments about privacy protection, please feel free to contact SUNGROW. You can give feedback in the following ways: log in the official website of SUNGROW, find the special channel for privacy feedback in the “Contact Us” board, and fill in the detailed feedback content; you can also call our customer service hotline, and the customer service personnel will patiently listen to your questions and forward them to the relevant departments for processing in a timely manner; you can also send an e-mail to the special privacy feedback mailbox. You can also send an e-mail to the special privacy feedback mailbox, please clearly state your problem and related claims in the e-mail. We solemnly promise that we will arrange a professional team to handle your feedback in a timely and serious manner and give you a reply in the shortest possible time to fully protect your privacy rights and interests and continuously optimize our privacy protection work.
Contact Us
Sungrow Deutschland GmbH
Located at Balanstraße 59, 81541 München, Germany
Email: data-protection@sungrow-emea.com