MAC-renewables-colour
MAC-renewables-colour

Privacy Policy

Trustpilot

Privacy Policy

MAC Renewables Ltd (formerly MAC Solar) (“MAC Renewables”, “we”, “us”, and “our”) is committed to protecting the privacy and security of your personal data. This Privacy Notice describes how we collect, use, and look after your personal data when you visit our website (regardless of where you visit it from), including when you purchase a product from us or engage our services, including MCS certification. It also tells you about your rights and how the law protects you.

 

Important Information

This Privacy Notice supplements the other notices and terms published on our website (including our terms and conditions for the supply of products and our cookies policy) (“Terms”) and is not intended to override them.

MAC Renewables is the controller and responsible for your personal data.

To assist you further in understanding this Privacy Notice, we have set out in the Schedule a glossary of terms used in this Privacy Notice, examples of types of personal data we collect, how we use it, the lawful basis for processing such data, and further details of your rights.

Emma Connor is our Data Protection Manager (“DPM”). If you have any questions about this Privacy Notice, including any requests to exercise your legal rights, please contact our DPM in writing, either by:

  • Email: [email protected]
  • Post: MAC Renewables, 24 Manor Park Road, Birmingham, England B36 0DJ
  • Or by using the contact form on our website.

You have the right to make a complaint at any time to the ICO (www.ico.org.uk), the UK’s supervisory authority for data protection. However, we would appreciate the chance to deal with your concerns before you approach the ICO, so please contact us first.

Our website is applicable to both business customers and individual consumers. Please note our website is not intended for children, and we do not knowingly collect data relating to children.

Your Duty to Inform Us of Changes

It is important that the data we hold about you is accurate and current. Please keep us informed of any changes to your personal data.

Third-Party Links

Our website includes links to third-party websites, plug-ins, and applications. By clicking on these links, you may be allowing third parties to collect or share your personal data. We do not control these third-party websites and are not responsible for their privacy notices. You should read their privacy notices to understand how they use your personal data.

The Data We Collect About You

We may collect, use, store, and transfer different kinds of personal data about you, which we have grouped together in Part 1 of Schedule 1.

We also collect, use, and share aggregated data for statistical purposes. If this data is combined with your personal data in a way that identifies you, it will be treated as personal data.

We do not collect any special categories of personal data or information about criminal convictions and offences.

Failure to Provide Personal Data

If you do not provide personal data that we need to perform a contract with you (such as for MCS certification), we may not be able to fulfil the contract or provide you with services. In this case, we may need to cancel your order, but we will notify you if this is the case.

How Personal Data is Collected

We collect personal data in the following ways:

  • Direct Interactions: You may provide personal data by completing online forms (including the “Contact Us” section of our website), purchasing products, or corresponding with us by post, phone, or email.
  • Automated Technologies: As you interact with our website, we automatically collect technical data using cookies, server logs, and similar technologies.
  • Publicly Available Sources: We may collect personal data from publicly available sources such as Companies House, the Electoral Register, credit reference agencies, and HETAS.
  • Third Parties: We may receive personal data from analytics providers, advertising networks, and service providers such as payment processors or delivery services.

How We Use Your Personal Data

We will only use your personal data when the law allows us to. Most commonly, we will use your personal data for:

  • Performance of Contract: To fulfil our contract with you, including MCS certification requirements for solar installations.
  • Legal Obligation: To comply with legal or regulatory requirements.
  • Legitimate Interests: Where necessary for our legitimate interests (or those of a third party) and where your interests and rights do not override those interests.

Please see Part 2 of Schedule 1 for more details on the lawful bases for processing your data.

Marketing

We may send marketing communications if you have requested information or purchased products from us, or if you have consented to receive marketing. You can opt out of marketing communications at any time.

We will not share your personal data with third parties for their marketing purposes without your express opt-in consent.

Change of Purpose

We will only use your personal data for the purposes for which we collected it, unless we need to use it for another reason that is compatible with the original purpose. If we need to use your personal data for an unrelated purpose, we will notify you and explain the legal basis for doing so.

Disclosure of Your Personal Data

We may need to share your personal data with third parties, including MCS certification bodies, for regulatory purposes. All third parties are required to respect the security of your personal data and act in accordance with the law.

International Transfers

Some of our external third parties may be based outside the European Economic Area (EEA), so processing of your personal data may involve a transfer of data outside the EEA. Whenever we transfer your personal data outside the EEA, we ensure it is protected by implementing safeguards like standard contractual clauses or transferring to countries with adequate protection levels.

Data Security

We have implemented appropriate security measures to prevent your personal data from being accidentally lost, used, or accessed in an unauthorised way. We limit access to your data to employees, contractors, and other third parties who need it for business purposes.

We have procedures in place to deal with any suspected data breaches, and we will notify you and any applicable regulator if we are legally required to do so.

Data Retention

We will only retain your personal data for as long as necessary to fulfil the purposes we collected it for. This may include keeping your data for up to 25 years to meet MCS certification and warranty requirements for solar installations.

After the retention period, we will securely delete or anonymise your data.

Your Legal Rights

You have the right to:

  • Access your data
  • Request correction of your data
  • Request erasure of your data
  • Object to processing
  • Request the transfer of your data
  • Withdraw consent at any time

For more details, see Part 3 of Schedule 1.

We try to respond to all requests within one month. Occasionally, it may take longer if your request is complex or you have made multiple requests.

Updates

We may update this Privacy Notice from time to time. Please check back regularly to stay informed of any changes. This Privacy Notice was last updated on [current date].

Schedule 1

Part 1: Types of Personal Data

  • Contact Data: Billing address, delivery address, email address, and telephone number.
  • Financial Data: Bank account and payment card details.
  • Identity Data: First name, last name, username, title, date of birth, and gender.
  • Marketing and Communication Data: Preferences in receiving marketing and communication preferences.
  • Profile Data: Username, purchases, orders, preferences, feedback, and survey responses.
  • Technical Data: IP address, login data, browser type, time zone, browser versions, and operating system.
  • Transaction Data: Details about payments and purchases.
  • Usage Data: Information about how you use our website and services.

Part 2: Lawful Basis for Processing

We rely on the following lawful bases to process your personal data:

  • Consent: You have given your consent for processing.
  • Contract: The processing is necessary to perform our contract with you.
  • Legal Obligation: We must process your data to comply with the law.
  • Legitimate Interests: Processing is necessary for our legitimate business interests.

Part 3: Your Legal Rights

You have the following rights under data protection law:

  • Access: Request access to your personal data.
  • Correction: Request correction of inaccurate data.
  • Erasure: Request deletion of your data in certain situations.
  • Objection: Object to processing of your data.
  • Restriction: Request the restriction of processing in certain cases.
  • Transfer: Request the transfer of your data to a third party.
  • Withdraw Consent: Withdraw your consent where applicable.

Part 4: Third Parties

We may share your data with:

  • Service Providers: Who provide IT, payment, and delivery services.
  • Professional Advisors: Including lawyers, bankers, and auditors.
  • Regulators: Including HMRC and MCS certification bodies.
  • Marketing Advisors: Who provide communication services.

Part 5: Glossary

  • Aggregated Data: Statistical or demographic data that cannot identify you.
  • Controller: The entity responsible for data processing.
  • Processor: An entity that processes data on behalf of a controller.



MAC Renewables
MAC Renewables
MAC Renewables
MAC Renewables
MAC Renewables
Scroll to Top