Privacy Statement
Privacy Policy
Privacy policy
Privacy Statement
At Enerdeal, we place great importance on our relationship with business partners, customers, suppliers, and any party interested in our company. As part of these relationships, we pay particular attention to respecting everyone’s privacy and, more specifically, to complying with the General Data Protection Regulation (Regulation (EU) 2016/679, “GDPR”) and local laws complementing the GDPR, such as the Act of 30 July 2018 on the protection of natural persons with regard to the processing of personal data.
If you are reading this privacy statement (“Privacy Statement”), it is because you may have visited our website, or you may have interacted with us over the course of our business activities, as a business partner, customer, prospect, or as a staff member, director, representative or an independent contractor of a business partner, customer, prospect ("you"). This Privacy Statement describes the types of personal data (“Personal Data”) that we collect about you; how your Personal Data is used and processed; to whom we may disclose it; and your rights regarding your Personal Data.
1. Who is the controller?
Enerdeal NV is responsible for the Personal Data collected about you and is therefore the controller under the GDPR.
Enerdeal NV is a Belgian company with its registered office at 1930 Zaventem, Hermesstraat 2A, registered under enterprise number 0821.924.550 (hereinafter “Enerdeal” or “we”).
2. What Personal Data do we collect?
The type of Personal Data we collect depends on your specific situation or on the particular products and/or services offered by Enerdeal or requested by you.
We typically collect and process the following categories of Personal Data:
“Identification Data”: such as first name, last name, employer name, job title, professional address, academic or professional background if relevant;
“Contact Details”: such as phone number, e-mail address;
“Device-related Information”: This includes information automatically collected (and where required, upon your consent) such as operating system type, IP address, web browser type and version, session duration, other details relating to your visit to our website. We collect such information, for example, when we use cookies, web beacons and similar technologies that collect information about your use of our websites or about your interaction with us by e-mail;
“Other Information”: such as other Personal Data disclosed voluntarily by you as part of your interactions with us. These include any directly or indirectly identifiable pieces of information that you reveal, for example in your e-mail or phone-based exchanges with us, within your complaints and requests.
We do not collect or process special categories of Personal Data, such as racial or ethnic origin, religious beliefs, physical or mental health, or sexual orientation. If such Personal Data is transmitted to us, we will not process it and will delete it immediately.
Regarding the use of cookies, web beacons and similar technologies that collect information about your use of our websites, or about your interaction with us by e-mail, you can learn more in our cookie statement.
3. How do we obtain your Personal Data?
Your Personal Data may be collected in various ways, including when:
You contact us to obtain information about our products or servicesYou interact with us through meetings;
You complete a form (online or otherwise) issued by Enerdeal;
You participate in an event or activity organised by Enerdeal;
You visit our website;You subscribe to an Enerdeal newsletter;You respond to a survey;
You follow or interact with us on social media.
We may obtain your Personal Data directly from you, from public sources, or from third parties.
4. Why do we process your Personal Data?
We use and process your personal data for the following purposes:
To prepare, conclude, and execute contracts with you or your organisation for the sale or provision of our products and services.
To respond to your e-mails, or information requests when you submit a request to us (e.g. via our contact page), make a complaint in relation to our products and services or engage in any interactions where you provide us with Personal Data.
To manage invoicing, payment processing, and debt recovery activities, including issuing invoices, monitoring payment status, sending payment reminders, and initiating collection procedures where necessary. This also covers maintaining accurate financial records, reconciling accounts, preparing statutory reports, and complying with applicable accounting, tax and legal obligations.
To conduct due diligence processes aimed at assessing whether our contacts and their associated parties are reliable and trustworthy business partners. This includes verifying professional roles, reviewing relevant information, and evaluating compliance with legal, regulatory, and ethical standards to mitigate risks related to fraud, corruption, or reputational harm.
To analyse trends and compile statistical insights relating to the use of our products and services, as well as interactions with our websites. This includes evaluating usage patterns, performance metrics, and user behaviour to improve functionality, enhance user experience, and inform strategic decisions.
To manage your subscription to our newsletters and to provide you with (personalised) communications for marketing and advertisement purposes about our products and services via email, SMS, other electronic means or otherwise, and to send invitations for events or promotional meetings.
Dispute management and legal defence.
To prevent or detect fraud and illegal uses, abuse, spam, security incidents and other harmful activity.
To evaluate or carry out an acquisition, merger, demerger, restructuring, reorganisation, dissolution or other sale or transfer of some or all of our assets, whether by way of transfer of all or part of the business, or as part of a bankruptcy, liquidation or similar proceeding, where Personal Data held by us forms part of the transferred assets.
When Enerdeal obtains Personal Data directly from you, you are generally free to decide whether or not to provide Enerdeal with Personal Data, except in the event of a legal obligation. If you do not wish to provide your Personal Data, you may not be able to use the products or services offered by Enerdeal, your questions may not be answered and/or you may not be able to conclude an agreement with Enerdeal.
Enerdeal does not make automated decisions within the meaning of article 22 of the GDPR, i.e. an automated decision having a legal or similarly significant impact on you, in the context of the processing described in this Privacy Statement.
5. What is the legal basis for our processing of your Personal Data?
In relation to the above purposes, the legitimate basis to process your Personal Data are the following:
The preparation, conclusion or performance of a contract between us and you;
A legal or regulatory obligation applicable to us;
Our legitimate interests in contexts such as:
- monitoring and managing contracts, business records and transactions;
- choosing and analysing business partners that meet the ethical, reputational and legal standards;
- knowing customers and persons that contact us;
- answering your requests and/or complaints and maintaining our relationship with you or your organisations, with a view to providing an excellent (customer) experience;
- analysing, reporting on, managing and improving our products and/or services and/or our website;
- ensuring that you and your organisation are kept up to date about our products and services, understanding your interests, personalising our interactions with you, and developing our business relationship, as this helps us to preserve our business operations or grow our business (also referred to as “soft opt-in”).Our legitimate interest will no case override your right to privacy.
Your explicit consent, where legally required (e.g. the processing through non-essential cookies and tracking technologies, or the recording of meetings) which you may withdraw at any time (see section 10).
6. With whom do we share your Personal Data?
Enerdeal shares Personal Data collected and processed for the purposes set out in the table in Section 4 above, with:
Internal recipients: Employees and staff of Enerdeal can receive your Personal Data if this is necessary to perform their role within Enerdeal.
Service providers: Enerdeal relies on service providers that process Personal Data in the name and on behalf of Enerdeal. These service providers may be third parties or other group entities. In such case, these service providers act as processors. In particular, Enerdeal uses companies providing the following services, which are mainly: hosting and ICT services, marketing services, logistics services, archiving services, permitting services. We ensure that they take appropriate technical and organisational measures to protect your data and do not disclose it to any third party without legitimate grounds.
Third parties to ensure proper performance of our contractual and regulatory obligations, such as municipalities, grid operators, surveyors, notaries, certifiers.
Authorities in the context of their statutory powers for investigations, orders to provide information.
Consultants and professional service providers acting as data controllers, such as lawyers, accountants and auditors.
Third parties in the context of a corporate transaction such as a demerger, merger or acquisition.
Authorities in the context of their statutory powers for investigations, orders to provide information.
In all cases, we will only share the data strictly necessary for the relevant processing purpose.
7. Will your Personal Data be transmitted to countries outside the European Economic Area?
Where feasible, we will process (and store) your Personal Data in the European Economic Area ("EEA"). Notwithstanding this, the nature of our business involves that your Personal Data may occasionally be disclosed to different entities, such as group entities or service providers. These are not all located in the EEA. Your Personal Data may therefore be processed in some non-EEA jurisdictions. These third parties may have access to or merely host your Personal Data but will always do so under our instructions and/or subject to appropriate contractual requirements.
If a recipient is located in a country without adequate statutory data protection (e.g. where there is no adequacy decision issued by the European Commission in relation to the location of the recipient), we require the recipient to comply with adequate data protection standards by contractually agreeing to appropriate safeguards (for this purpose, we use the EU Standard Contractual Clauses in addition to an appropriate data transfer impact assessment). You can contact us to receive a copy of the appropriate safeguards that apply to the transfer of your Personal Data by using the contact details in Section 10.
8. How long do we keep your data?
We will only retain your Personal Data for as long as necessary to satisfy the purpose for which it was provided by you or collected by us (for example, for the time necessary for us to answer queries or resolve problems) or as long as permitted or required by applicable laws.
We may therefore retain your Personal Data for a reasonable period after your last interaction with us. When Personal Data that we collect is no longer required in this way, we destroy or delete it in a secure manner. We may, instead of destroying or erasing your Personal Data, make it anonymous so that it cannot be associated with or tracked back to you.
Our determination of the storage period is based on the following criteria:
I. The duration of our relationship with you, including when we have a contractual relationship with you,
II. The duration of a legal obligation applicable to us, and
III. The mandatory or recommended storage period in view of the applicable statutory retention or limitation periods.
9. How do we protect your Personal Data?
We use a variety of physical, technical and organisational security standards, technologies and procedures to help protect your Personal Data from loss, misuse, alteration, destruction or damage to an appropriate level depending on the sensitivity of the information.
We take steps to limit access to your Personal Data to those persons who need to have access for one of the purposes listed in this Privacy Statement. Furthermore, we contractually ensure that any third party processing your Personal Data provides for confidentiality and integrity of your data in a secure way.
10. What are your rights?
As a data subject you have the following rights in relation to the Personal Data we hold about you:
Right to be informed: This right ensures that you are fully aware of how your Personal Data is being used.
Right of access: You have the right to obtain a copy of your Personal Data and receive more information about how and why this Personal Data is being processed.
Right to rectification: If your Personal Data is inaccurate or incomplete, you have the right to request that it be corrected or updated. This ensures that your information remains accurate and up to date.
Right to be forgotten (erasure): You have the right to request the deletion of your Personal Data when it is no longer necessary for the purposes for which it was collected, or if you withdraw your consent.
Right to restrict processing: You can request the limitation of our processing your Personal Data in certain circumstances, such as when you contest the accuracy of the Data or object to its processing. This means your data can be stored but not processed further.
Right to data portability: This right allows you to obtain and then reuse some of your Personal Data. You can request that Personal Data be provided in a structured, commonly used, and machine-readable format, and transferred to another controller if technically feasible.
Right to object to processing of your Personal Data for direct marketing purposes or to any processing which we carry out based on our legitimate interest.
Right to withdraw your consent for the processing of your Personal Data (insofar the processing is based on your consent). This withdrawal will however not affect the lawfulness of the processing of your Personal Data for the period prior to the time of this withdrawal and processing activities based on another legal basis.
Please note that some rights may be excluded or limited by the GDPR or local laws, for example where we have an overriding interest or legal obligation to continue to process the data or where data may be exempt from disclosure.
11. How to exercise your rights or ask questions?
For exercising your rights, or for any question or complaint regarding the processing of your Personal Data, you may contact us:
By e-mail: privacy@enerdeal.com
By post: Enerdeal NV, Attn: Grégoire de Pierpont, Hermesstraat 2A, 1930 Zaventem, Belgium
To exercise your rights, we may ask you to give a proof of your identity (e.g. a copy of the front of your identity card or driving license in which the photograph and the national register number or card number must be illegible) to prevent unauthorised disclosure of data.You always have the right to contact the data protection supervisory authority of the
Member State of the EEA where you normally reside, where you have your place of work (if applicable) or where the alleged breach has taken place, and to lodge a complaint if appropriate. For Belgium, this is the Belgian Data Protection Authority (https://www.dataprotectionauthority.be/citizen).
12 Changes to this Privacy Statement
This Privacy Statement may be amended or supplemented at any time.
Last updated: 16 January 2026
If you are reading this privacy statement (“Privacy Statement”), it is because you may have visited our website, or you may have interacted with us over the course of our business activities, as a business partner, customer, prospect, or as a staff member, director, representative or an independent contractor of a business partner, customer, prospect ("you"). This Privacy Statement describes the types of personal data (“Personal Data”) that we collect about you; how your Personal Data is used and processed; to whom we may disclose it; and your rights regarding your Personal Data.
1. Who is the controller?
Enerdeal NV is responsible for the Personal Data collected about you and is therefore the controller under the GDPR.
Enerdeal NV is a Belgian company with its registered office at 1930 Zaventem, Hermesstraat 2A, registered under enterprise number 0821.924.550 (hereinafter “Enerdeal” or “we”).
2. What Personal Data do we collect?
The type of Personal Data we collect depends on your specific situation or on the particular products and/or services offered by Enerdeal or requested by you.
We typically collect and process the following categories of Personal Data:
“Identification Data”: such as first name, last name, employer name, job title, professional address, academic or professional background if relevant;
“Contact Details”: such as phone number, e-mail address;
“Device-related Information”: This includes information automatically collected (and where required, upon your consent) such as operating system type, IP address, web browser type and version, session duration, other details relating to your visit to our website. We collect such information, for example, when we use cookies, web beacons and similar technologies that collect information about your use of our websites or about your interaction with us by e-mail;
“Other Information”: such as other Personal Data disclosed voluntarily by you as part of your interactions with us. These include any directly or indirectly identifiable pieces of information that you reveal, for example in your e-mail or phone-based exchanges with us, within your complaints and requests.
We do not collect or process special categories of Personal Data, such as racial or ethnic origin, religious beliefs, physical or mental health, or sexual orientation. If such Personal Data is transmitted to us, we will not process it and will delete it immediately.
Regarding the use of cookies, web beacons and similar technologies that collect information about your use of our websites, or about your interaction with us by e-mail, you can learn more in our cookie statement.
3. How do we obtain your Personal Data?
Your Personal Data may be collected in various ways, including when:
You contact us to obtain information about our products or servicesYou interact with us through meetings;
You complete a form (online or otherwise) issued by Enerdeal;
You participate in an event or activity organised by Enerdeal;
You visit our website;You subscribe to an Enerdeal newsletter;You respond to a survey;
You follow or interact with us on social media.
We may obtain your Personal Data directly from you, from public sources, or from third parties.
4. Why do we process your Personal Data?
We use and process your personal data for the following purposes:
To prepare, conclude, and execute contracts with you or your organisation for the sale or provision of our products and services.
To respond to your e-mails, or information requests when you submit a request to us (e.g. via our contact page), make a complaint in relation to our products and services or engage in any interactions where you provide us with Personal Data.
To manage invoicing, payment processing, and debt recovery activities, including issuing invoices, monitoring payment status, sending payment reminders, and initiating collection procedures where necessary. This also covers maintaining accurate financial records, reconciling accounts, preparing statutory reports, and complying with applicable accounting, tax and legal obligations.
To conduct due diligence processes aimed at assessing whether our contacts and their associated parties are reliable and trustworthy business partners. This includes verifying professional roles, reviewing relevant information, and evaluating compliance with legal, regulatory, and ethical standards to mitigate risks related to fraud, corruption, or reputational harm.
To analyse trends and compile statistical insights relating to the use of our products and services, as well as interactions with our websites. This includes evaluating usage patterns, performance metrics, and user behaviour to improve functionality, enhance user experience, and inform strategic decisions.
To manage your subscription to our newsletters and to provide you with (personalised) communications for marketing and advertisement purposes about our products and services via email, SMS, other electronic means or otherwise, and to send invitations for events or promotional meetings.
Dispute management and legal defence.
To prevent or detect fraud and illegal uses, abuse, spam, security incidents and other harmful activity.
To evaluate or carry out an acquisition, merger, demerger, restructuring, reorganisation, dissolution or other sale or transfer of some or all of our assets, whether by way of transfer of all or part of the business, or as part of a bankruptcy, liquidation or similar proceeding, where Personal Data held by us forms part of the transferred assets.
When Enerdeal obtains Personal Data directly from you, you are generally free to decide whether or not to provide Enerdeal with Personal Data, except in the event of a legal obligation. If you do not wish to provide your Personal Data, you may not be able to use the products or services offered by Enerdeal, your questions may not be answered and/or you may not be able to conclude an agreement with Enerdeal.
Enerdeal does not make automated decisions within the meaning of article 22 of the GDPR, i.e. an automated decision having a legal or similarly significant impact on you, in the context of the processing described in this Privacy Statement.
5. What is the legal basis for our processing of your Personal Data?
In relation to the above purposes, the legitimate basis to process your Personal Data are the following:
The preparation, conclusion or performance of a contract between us and you;
A legal or regulatory obligation applicable to us;
Our legitimate interests in contexts such as:
- monitoring and managing contracts, business records and transactions;
- choosing and analysing business partners that meet the ethical, reputational and legal standards;
- knowing customers and persons that contact us;
- answering your requests and/or complaints and maintaining our relationship with you or your organisations, with a view to providing an excellent (customer) experience;
- analysing, reporting on, managing and improving our products and/or services and/or our website;
- ensuring that you and your organisation are kept up to date about our products and services, understanding your interests, personalising our interactions with you, and developing our business relationship, as this helps us to preserve our business operations or grow our business (also referred to as “soft opt-in”).Our legitimate interest will no case override your right to privacy.
Your explicit consent, where legally required (e.g. the processing through non-essential cookies and tracking technologies, or the recording of meetings) which you may withdraw at any time (see section 10).
6. With whom do we share your Personal Data?
Enerdeal shares Personal Data collected and processed for the purposes set out in the table in Section 4 above, with:
Internal recipients: Employees and staff of Enerdeal can receive your Personal Data if this is necessary to perform their role within Enerdeal.
Service providers: Enerdeal relies on service providers that process Personal Data in the name and on behalf of Enerdeal. These service providers may be third parties or other group entities. In such case, these service providers act as processors. In particular, Enerdeal uses companies providing the following services, which are mainly: hosting and ICT services, marketing services, logistics services, archiving services, permitting services. We ensure that they take appropriate technical and organisational measures to protect your data and do not disclose it to any third party without legitimate grounds.
Third parties to ensure proper performance of our contractual and regulatory obligations, such as municipalities, grid operators, surveyors, notaries, certifiers.
Authorities in the context of their statutory powers for investigations, orders to provide information.
Consultants and professional service providers acting as data controllers, such as lawyers, accountants and auditors.
Third parties in the context of a corporate transaction such as a demerger, merger or acquisition.
Authorities in the context of their statutory powers for investigations, orders to provide information.
In all cases, we will only share the data strictly necessary for the relevant processing purpose.
7. Will your Personal Data be transmitted to countries outside the European Economic Area?
Where feasible, we will process (and store) your Personal Data in the European Economic Area ("EEA"). Notwithstanding this, the nature of our business involves that your Personal Data may occasionally be disclosed to different entities, such as group entities or service providers. These are not all located in the EEA. Your Personal Data may therefore be processed in some non-EEA jurisdictions. These third parties may have access to or merely host your Personal Data but will always do so under our instructions and/or subject to appropriate contractual requirements.
If a recipient is located in a country without adequate statutory data protection (e.g. where there is no adequacy decision issued by the European Commission in relation to the location of the recipient), we require the recipient to comply with adequate data protection standards by contractually agreeing to appropriate safeguards (for this purpose, we use the EU Standard Contractual Clauses in addition to an appropriate data transfer impact assessment). You can contact us to receive a copy of the appropriate safeguards that apply to the transfer of your Personal Data by using the contact details in Section 10.
8. How long do we keep your data?
We will only retain your Personal Data for as long as necessary to satisfy the purpose for which it was provided by you or collected by us (for example, for the time necessary for us to answer queries or resolve problems) or as long as permitted or required by applicable laws.
We may therefore retain your Personal Data for a reasonable period after your last interaction with us. When Personal Data that we collect is no longer required in this way, we destroy or delete it in a secure manner. We may, instead of destroying or erasing your Personal Data, make it anonymous so that it cannot be associated with or tracked back to you.
Our determination of the storage period is based on the following criteria:
I. The duration of our relationship with you, including when we have a contractual relationship with you,
II. The duration of a legal obligation applicable to us, and
III. The mandatory or recommended storage period in view of the applicable statutory retention or limitation periods.
9. How do we protect your Personal Data?
We use a variety of physical, technical and organisational security standards, technologies and procedures to help protect your Personal Data from loss, misuse, alteration, destruction or damage to an appropriate level depending on the sensitivity of the information.
We take steps to limit access to your Personal Data to those persons who need to have access for one of the purposes listed in this Privacy Statement. Furthermore, we contractually ensure that any third party processing your Personal Data provides for confidentiality and integrity of your data in a secure way.
10. What are your rights?
As a data subject you have the following rights in relation to the Personal Data we hold about you:
Right to be informed: This right ensures that you are fully aware of how your Personal Data is being used.
Right of access: You have the right to obtain a copy of your Personal Data and receive more information about how and why this Personal Data is being processed.
Right to rectification: If your Personal Data is inaccurate or incomplete, you have the right to request that it be corrected or updated. This ensures that your information remains accurate and up to date.
Right to be forgotten (erasure): You have the right to request the deletion of your Personal Data when it is no longer necessary for the purposes for which it was collected, or if you withdraw your consent.
Right to restrict processing: You can request the limitation of our processing your Personal Data in certain circumstances, such as when you contest the accuracy of the Data or object to its processing. This means your data can be stored but not processed further.
Right to data portability: This right allows you to obtain and then reuse some of your Personal Data. You can request that Personal Data be provided in a structured, commonly used, and machine-readable format, and transferred to another controller if technically feasible.
Right to object to processing of your Personal Data for direct marketing purposes or to any processing which we carry out based on our legitimate interest.
Right to withdraw your consent for the processing of your Personal Data (insofar the processing is based on your consent). This withdrawal will however not affect the lawfulness of the processing of your Personal Data for the period prior to the time of this withdrawal and processing activities based on another legal basis.
Please note that some rights may be excluded or limited by the GDPR or local laws, for example where we have an overriding interest or legal obligation to continue to process the data or where data may be exempt from disclosure.
11. How to exercise your rights or ask questions?
For exercising your rights, or for any question or complaint regarding the processing of your Personal Data, you may contact us:
By e-mail: privacy@enerdeal.com
By post: Enerdeal NV, Attn: Grégoire de Pierpont, Hermesstraat 2A, 1930 Zaventem, Belgium
To exercise your rights, we may ask you to give a proof of your identity (e.g. a copy of the front of your identity card or driving license in which the photograph and the national register number or card number must be illegible) to prevent unauthorised disclosure of data.You always have the right to contact the data protection supervisory authority of the
Member State of the EEA where you normally reside, where you have your place of work (if applicable) or where the alleged breach has taken place, and to lodge a complaint if appropriate. For Belgium, this is the Belgian Data Protection Authority (https://www.dataprotectionauthority.be/citizen).
12 Changes to this Privacy Statement
This Privacy Statement may be amended or supplemented at any time.
Last updated: 16 January 2026
ENERDEAL.
%402x.svg){kind=icon}
About us
Through solar top-notch technology,
we create economical, ecological and social value for your business.On your end, processes are made easy with our turnkey solutions and hassle-free value chain.
Newsletter
Signup for news, events and more.