Privacy Policy

1. Prompt Terms

We are glad that you are interested in our enterprise. Data protection is of a particularly high priority for the management of the Alpha ESS Co., Ltd. The use of the Internet pages of the Alpha ESS Co., Ltd is possible without any indication of personal data; however, if any data subject wants to use some specific enterprise services via our website, personal data needs to be processed. Our enterprise wishes to inform the public about the character, scope and purpose of the personal data we collect, use and process through this policy,. Furthermore, data subjects are informed of the rights of them. As the controller, the Alpha ESS Co., Ltd has implemented numerous technical and organizational measures to ensure the most complete protection of personal data processed through this website. Thus, each data subject is therefore free to transmit personal data to us by other means (e.g. by telephone).

If you have any questions, comments or suggestions regarding to this policy, you can contact Alpha ESS at the following contact details.

Alpha ESS Europe Ltd.

Tel: +49 6103 459 160 1

Email: europe@alpha-ess.de

The Data Protection Officer of Alpha ESS Europe GmbH is: Michael Steininger-Yang

Alpha ESS Europe Ltd.

Tel: +49 6103 459 160 1

Email: europe@alpha-ess.de

2. The data we collect

We collect personal data for a variety of purposes, including efficient operations and providing you with the best possible product experience. Alpha ESS collects data that you provide to us, about your interactions with Alpha ESS, and about product usage. Users provide data directly, for example the data about creating an Alpha ESS account. Other data is collected by us through your interactions with the product, your use and experience of the product and related communications channels.

We also obtain data from third parties. We protect the data obtained from third parties in accordance with the purposes described in this statement and any other restrictions imposed by the data source:

Google Analytics: Google Analytics is a web analytics service. Web analytics is the collection, gathering and analysis of data about the behaviour of visitors to a website. The data web analytics service collecting includes websites address visitor comes from (so-called referral sources), visited sub-pages, or how often and for how long sub-pages are viewed. Web analytics is mainly used for optimising websites and cost-benefit analysis of internet advertising. The operator of the Google Analytics component is Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, United States.

Baidu Map: We convert the latitude and longitude from Google Maps to Baidu Map, use the official Baidu Map API, locate the corresponding block by country and postcode, confirm the area where the equipment is located, and display the equipment location on the map. This function is only used to count the number of equipment within this area and is not used to pinpoint the user's address. Baidu Maps Privacy Policy: https://lbsyun.baidu.com/index.php?title=openprivacy.

Google Maps: We use the official Google Maps API to locate the corresponding block by country and postcode, confirm the area where the equipment is located, and display the equipment location on the map. This function is only used to count the number of equipment within this area and is not used to pinpoint the user's address. Google Maps Privacy Policy: https://policies.google.com/privacy?gl=CN&hl=zh-CN.

Weather data: We use the Google Maps location plugin to locate the corresponding block by country address and postcode, and after confirming the area where the equipment is located, we use the official Weatherbit API to get the latest local weather information and display these information on current area on the platform. Weatherbit privacy policy: https://www.weatherbit.io/privacy.

When we require you to provide personal data, you can refuse. Our products may require you to provide certain personal data in order to operate and provide services to you, but if you do not provide it, the related product or feature cannot be operated and used.

The data we collect includes the following:

Contact data: E-mail address, mailing address, telephone number.

Credentials: Passwords and security information for authentication and account access.

Statistics: Data relating to you, such as country/region and preferred language.

Interaction: Regarding your use of the Alpha ESS platform, such data is provided by you for the purpose of using the product when searching for queries; such data is provided by us when the reporting an error. Interactive data includes:

Equipment and usage data: Data about your device and the products and features you use, including your hardware and software, our product performance, and the information you set. For example:

Equipment and configuration data: Data about your equipment, your equipment configuration and nearby networks. For example, IP addresses, equipment identifiers, regional and language settings and information about WLAN access points in the vicinity of the equipment. This data is only used for equipment interaction and not for other purposes.

Troubleshooting and help data: Data you submit when contacting Alpha ESS for help, such as identification data, equipment data about this equipment and related products.

Location data: data about the location of your equipment (the block where the equipment is located), we infer the location from the country address and postcode.

3. Purpose of using personal data

We outline the purposes for which personal data are used below.

Personal data Purpose of data use
Email address, mailing address, telephone number User registration, user login, password retrieval, user name retrieval, making product suggestions, creating customer complaints and other related functions.

4. Cookies and similar technologies

Alpha ESS pages use cookies, which are small text files placed on the equipment to store data. The web server that places the cookie in the domain can call up this data. This data usually contains a string of numbers and letters that uniquely identifies your computer, but can also contain other information. We use cookies and similar technologies to enable you to log in. You can reset your web browser to reject all cookies, or specify that specific cookies be sent. If cookies are disabled on your equipment, certain features of websites and services will not function properly. We respect “Do Not Track” signals or similar technologies that are detected and recognized by the system, and we do not track information or plant cookies when such “Do Not Track (DNT)” browser mechanisms are in place on your equipment.

Set your browser to block cookies.

Internet Explorer:http://windows.microsoft.com/en-gb/internet-explorer/delete-manage-cookies

Google Chrome:https://support.google.com/chrome/answer/95647?hl=en

Mozilla Firefox:https://support.mozilla.org/en-US/kb/cookies-information-websites-store-on-your-computer?redirectlocale=en-US&redirectslug=Cookies

Safari:https://support.apple.com/en-gb/guide/safari/sfri11471/mac

Opera:https://help.opera.com/en/latest/web-preferences

5. Rights of data subjects

  • a) Right of recognition

    Every data subject should have the right to obtain authorization from European legislators and obtain confirmation from the controller whether his or her personal data is being processed. The data subject can exercise the right of confirmation at any time by contacting our Data Protection Officer or another employee of the controller.

  • b) Access rights

    Every data subject should have the right to obtain authorization from European legislators, and information about his or her personal data stored at any time and a copy of that information can be obtained from the controller for free. In addition, European directives and regulations grant the data subject access to information such as the purposes of processing; the categories of personal data concerned; recipients or categories of recipients who have or will disclose personal data, in particular recipients in third countries or international organizations; the expected duration of storage of the personal data or the criteria used to determine that duration; and whether the right to request the controller to rectification or erasure of personal data, or restrict the processing of personal data related to the data subject, or to object to such processing; the existence of a right to lodge a complaint with the supervisory authority; and, if the personal data were not collected from the data subject, then use any available information about their origin.

  • c) Right to rectification

    Every data subject should have the right to obtain authorization from European legislators in order to obtain the correction of inaccurate personal data about him or her from the controller in time. The data subject shall have the right to complete the incomplete personal data considering the purpose of the processing, including by means of providing additional declarations. If the data subject wants to exercise this right to rectification, he or she can at any time contact our Data Protection Officer or another employee of the controller.

  • d) Right to erasure (right to be forgotten)

    Each data subject shall have the right to obtain the rights granted by European legislators to delete his or her personal data from the controller in a timely manner, and the controller is obliged to delete personal data without delay in the following circumstances: applicable, no need to process: the personal data are no longer necessary for the purposes of collecting or processing in other way. The data subject withdraws the consent on which the processing was based in accordance with Article 6(1) point (a) of the GDPR or Article 9(2) point (a) of the GDPR and there is no other legal basis for the processing. The data subject objects to the processing in accordance with Article 21(1) of the GDPR and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing in accordance with Article 21(2) of the GDPR. The personal data has been processed unlawfully. The personal data must be deleted in order to comply with the legal obligations of the Union or Member State law to which the controller is subject. The personal data is collected in connection with the provision of information society services as described in Article 8(1) of the GDPR.

    If one of the aforementioned reasons applies, and a data subject wishes to request the erasure of personal data stored by the Alpha ESS Co., Ltd, he or she can at any time contact our Data Protection Officer or another employee of the controller. the Data Protection Officer of the Alpha ESS Co., Ltd or another employee shall promptly ensure that the erasure request is complied with immediately. The user deletes user data by himself or herself and can cancel the account via the following route: [Basic Settings] - [User Information Settings] - [Account Cancellation].

    If the controller has made personal data publicly available and is obliged to delete the personal data pursuant to Article 17(1), the controller shall take into account the available technology and the costs of implementation and shall take reasonable measures, which include technical measures, to inform other controllers who process the personal data requested by the data subject. If there is no processing required, such controller shall delete all links or reproduced information of these personal data. the data protection officer or other employees of Alpha ESS Co., Ltd will arrange the necessary measures in individual cases.

  • e) Restricted handling rights

    Each data subject shall have the right granted by the European legislator to obtain a restriction of processing from the controller where one of the following circumstances applies: the accuracy of the personal data is questioned by the data subject, and the controller can verify the accuracy of the personal data for a period of time. The processing is unlawful and the data subject objects to the erasure of the personal data and instead requests that its use be restricted. The controller no longer needs the personal data for processing purposes, but the data subject needs the data to establish, exercise or defend a legal claim. The data subject has objected to the processing in accordance with Article 21(1) of the GDPR, pending verification that the legitimate grounds of the controller override those of the data subject.

    If one of the aforementioned conditions is met, and a data subject wishes to request the restriction of the processing of personal data stored by the Alpha ESS Co., Ltd, he or she can at any time contact our Data Protection Officer or another employee of the controller. the Data Protection Officer of the Alpha ESS Co., Ltd or another employee will arrange the restriction of the processing.

  • f) The right to data portability

    Each data subject shall be granted the right by the European legislator to receive personal data relating to him or her provided to the controller in a structured, commonly used and machine-readable format. He or she shall have the right to transfer such data to another controller without hindrance from the controller who provided the personal data, if the processing is based on consent under Article 6(1)(a). GDPR or Article 9(2) point (a) of the GDPR, or a contract pursuant to Article 6(1) point (b) of the GDPR, and the processing is carried out by automated means, provided that the processing is not necessary for the performance of a task carried out in the public interest or for the exercise of the controller's official powers. Furthermore, in exercising his or her right to data portability in accordance with Article 20(1) of the GDPR, the data subject has the right to transfer personal data directly from one controller to another, where this is technically feasible and where doing so adversely affects the rights and freedoms of others. In order to assert the right to data portability, the data subject may at any time contact the Data Protection Officer designated by the Alpha ESS Co., Ltd or another employee.

  • g) Right to object

    Each data subject shall have the right to be granted by the European legislator the right to object at any time to the processing of personal data concerning him or her on grounds relating to his or her particular situation, on the basis of (e) or (f) point) Article 6(1) of the GDPR. This also applies to analyses based on these provisions. The Alpha ESS Co., Ltd shall no longer process the personal data in the event of the objection, unless we can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defence of legal claims.

    In addition, the data subject has the right to object, on grounds relating to his or her particular situation, to processing of personal data concerning him or her by Alpha ESS Co., Ltd for scientific or historical research purposes, or for statistical purposes pursuant to Article 89(1) of the GDPR, unless the processing is necessary for the performance of a task carried out for reasons of public interest.

    In order to exercise the right to object, the data subject may directly contact the Data Protection Officer of the Alpha ESS Co., Ltd or another employee. Furthermore, in the context of the use of information society services, the data subject is free to use his or her right to object by means of an automatic means of using technical regulations, notwithstanding Directive 2002/58/EC.

  • h) Automated personal decision making, including analysis

    Each data subject shall have the right to be granted by the European legislator and shall not be bound by a decision based solely on automated processing (including analysis) which would have legal effect on him or her or similarly affect him or her in a similarly significant manner, only if that decision (1) is not necessary for the conclusion or performance of a contract between the data subject and the data controller, or (2) is not authorised by the law of the Union or Member State to which the controller is subject and also provides for appropriate measures to safeguard the rights and freedoms and legitimate interests of the data subject, or (3) is not based on the data subject's explicit consent. If the decision (1) is necessary for entering into, or the performance of, a contract between the data subject and a data controller, or (2) it is based on the data subject's explicit consent, Alpha ESS Co., Ltd shall take appropriate measures to safeguard the data subject's rights and freedoms and legitimate interests, at least the right to obtain human intervention on the part of the controller, in order to express his or her point of view and contest the decision.

  • i) Right to withdraw data protection consent

    Each data subject shall have the right to withdraw his or her consent to the processing of personal data concerning him or her at any time by the European legislator. If the data subject wishes to exercise the right to withdraw the consent, he or she can at any time directly contact our Data Protection Officer of the Alpha ESS Co., Ltd or another employee of the controller.

6. How do we use your personal information?

Alpha ESS will only share/disclose your personal information with relevant persons in a way that you are only aware of and in the circumstances mentioned below.

  • 1. Sharing with explicit consent, and obtaining your explicit consent for us to transfer your user information to other parties.

  • 2. To third party service providers who provide certain business-related services to us, such as web hosting, data analytics, infrastructure provisioning, customer support services, email delivery services and other similar services, so as to ensure that they can provide services to us. See the purposes of use of personal data above for more details.

7. Safety and security measures

We employ commercially reasonable physical, administrative and technical safeguards to maintain the integrity and security of your personal information and Alpha ESS offers a variety of security safeguards to effectively ensure the security of user and equipment information:

  • 1. In terms of data communication, communication using secure algorithms and transmission encryption protocols is supported.

  • 2. In terms of data processing, strict data filtering and validation and a complete data review process are used.

  • 3. In terms of data storage, all user data is securely encrypted and stored on Microsoft Azure servers, which are continuously monitored 7*24 by the operations and maintenance teams in Azure data centres, eliminating all unauthorised access to data and services as well as guarding against a number of risky environments,the server is currently located in Singapore.

  • 4. In addition to the above-mentioned security measures at the technical level, Alpha ESS has also put in place a series of security measures at the institutional and control levels, such as assigning duties and responsibilities, organising security and privacy training courses, enhancing staff awareness of data protection and controlling access rights, in order to prevent data loss, illegal use, receipt of unauthorised access or leakage, tampering or destruction.

If for any reason you believe that your interaction with us is no longer safe, please let us know immediately by sending an Email to europe@alpha-ess.de as follows.

In the event of a security incident affecting the security of your personal information, we will be the first to notify you via your email address, telephone number, information push and other means, and inform you of recommendations to reduce or method the relevant risks and other information, if necessary, we will follow the internal security incident contingency plan, take timely and appropriate remedial measures, and report to the relevant authorities in accordance with the provisions.

8. How to exercise your privacy rights

We respect your right, while protecting your personal information, to exercise any of the following rights:

1. Send us an email at europe@alpha-ess.de

You do not have to pay any fees to exercise your personal rights. In accordance with local data protection laws, we will respond to your request within 15 working days if your account is serviced in mainland China, or within 30 days if your account is serviced outside mainland China.

In your request, please indicate what information you wish to change, whether you wish your personal information to be removed from our database or what restrictions you wish us to place on our use of your personal information. Please note that for security reasons, we may require verification of your identity.

You can:

  • 1. Request access to the personal information we process about you

  • 2. Request us to correct inaccurate or incomplete personal information relating to you

  • 3. Request to delete your personal information

  • 4. Request a temporary or permanent restriction on our processing of some or all of your personal information

  • 5. Require us to process your information on the basis of your consent or contract with you, and when we process your information automatically, to transfer personal information to you personally or to third parties

  • 6. When we use your personal information based on your consent or our legitimate interests, choose to object or refuse our use of your personal information, you can send an email to europe@alpha-ess.de and we will comply with your request as far as reasonably practicable.

9. Data retention period

We will process your personal information for the minimum period necessary to achieve the purposes described in this policy, unless a longer retention period is required by specific legal requirements. We will determine the appropriate retention period based on the volume, nature and sensitivity of the personal information and, at the end of the retention period, we will destroy your personal information. When you explicitly request the deletion of personal information, we set this as a task and do not retain your personal information. If we are unable to destroy the data for technical reasons, we will take appropriate measures to prevent further use of your personal information.

10. Collection and usage instructions for SDK from third parties

In order to ensure the stable operation or functionality of the Alpha.ESS service, we may access software development kits (SDKs) provided by third parties for the aforementioned purposes. We will conduct strict security checks on the application programming interfaces (APIs) and software tool development kits (SDKs) used by our authorised partners to access such information and will agree with our authorised partners on strict data protection measures for the handling of personal information in accordance with this policy and any other relevant confidentiality and security measures.

We will keep you up to date on our access to third-party SDKs in this note as new service requirements and changes in business functionality arise.

Alpha.ESS has access to third party SDKs in the following situations (personal data collection is determined by whether you use the following third party services).

Name of third party Purpose of use Personal Information Collection Details Privacy Policy Address
Umeng (Friendship League) SDK Enables statistical analysis of user behaviour. equipment model, equipment name, app version, crashes, lag, daily activity, usage time, memory usage, APP BundleID, CPU architecture, network type, new users, active users, number of launches, version distribution, channel, SSID, IMEI https://www.umeng.com/policy?spm=a211g2.211692.0.0.70087d23tNlINT