This privacy statement (Privacy Statement) explains how we collect personal data:
– from you through this website (https://www.goodenergies.org/); or
– when you are, or work at, one of our grantees, suppliers, or business contacts of Good Energies Foundation (all together, Partners).
Please read our Cookie Statement for personal data collected through our website via cookies and other technology.
Please read this Privacy Statement carefully to understand our practices regarding your personal data. This Privacy Statement may be amended from time to time.
Controller of your personal data
Good Energies Foundation (Good Energies) is the controller of the personal data collected through this website and the personal data collected from Partners. Good Energies is a Swiss foundation, located at Grafenauweg 10, 6301 Zug, Switzerland.
Good Energies is supported by Philanthropy Support AG, a Swiss limited company located at Grafenauweg 10, 6300 Zug, Switzerland (CPS AG), and Philanthropy Support B.V., a Dutch private company located at Jachthavenweg 111, 1081 KM Amsterdam, the Netherlands (CPS NL, together with CPS AG, CPS), which makes them joint controllers with Good Energies. Good Energies and CPS have entered into a joint controller agreement. Core of this agreement is that the CPS Legal Team is the main contact point for all privacy and data protection related matters of personal data collected through the website and of personal data of Partners. Porticus can be contacted through email@example.com.
CPS has entered into a service agreement for specific transitional services with COFRA AG, a company limited by shares (Aktiengesellschaft) under Swiss law, registered in the Commercial Register of Canton of Zug under CHE-116.087.148, with address at Grafenauweg 10, 6300 Zug, Switzerland (COFRA). CPS and COFRA have also entered into a joint controller agreement.
The term ‘we’ or ‘us’ in this Privacy Statement means Good Energies and CPS for all website visitors and for Partners who are in contact with Good Energies.
Information we collect from you
We process personal data we collect from you directly online or offline, either (i) when we are in contact through email, telephone or via the contact form on our websites, (ii) when you visit our offices or events, (iii) when you enter into transactions or business arrangements with us, or (iv) when we contact you in the context of our learning and development activities.
We may also collect your personal data via other sources, such as professional social media websites or trade registers.
Our use of your personal data
When you submit a request via the contact form on our website, we will use your personal data to communicate with you.
When you are or will become our Partner, we may use your personal data for the purpose of assessing and accepting grantees, suppliers and partners, including confirming and verifying identities and conducting due diligence and screening.
We will also process personal data necessary to conclude and execute agreements with our Partners, including to record and financially settle delivered services and projects (with the support of COFRA where required).
As our Partner, your personal data may also be processed by us for the purposes of audits, accounting, management reporting and analysis or compliance with legal obligations such as tax obligations.
We may also process your personal data for purposes related to relationship management and learning and development, including maintaining and promoting contact with Partners, sending out surveys and establishing partnerships and alliances.
The grounds for processing your personal data are either to fulfil certain contractual or legal obligations or our legitimate business interest. Where we rely on legitimate interest as a legal ground, we will always maintain a balance between our legitimate business interests as described above and your privacy rights.
Disclosure of your personal data
To support our business, we engage a number of parties that work on our behalf, such as IT service providers, payment providers or professional providers like accountants or consultants. We make sure that, if required, so‑called data processing agreements are signed with the other parties, under which these parties are obliged, amongst other things, to protect the personal data and to handle these in compliance with the law.
We do not undertake marketing activities for third parties, nor do we provide information to third parties for their own marketing purposes. We will endeavor to process your personal data solely within Switzerland or the European Union, but we may also transfer your personal data to any other country worldwide. If we need to transfer your personal data outside Switzerland and the EU to a country whose legislation does not provide for an adequate protection of personal data, we will respond appropriately to provide an adequate level of protection (in particular by concluding appropriate contracts and implementing technical and organizational measures).
How long do we retain personal data
In general, we will retain your personal data for the duration of your business relationship and for the time it is necessary to keep your personal data after the end of that relationship. This period will depend on our purpose of use of your personal data. Examples are:
- Where your business contact details are included in invoices, we will keep your personal data together with our invoices (usually 7 years based on tax legislation).
- Where we need your personal data for identification and screening purposes, we will keep your personal data for as long as we are required to keep proof of the screening based on local law.
This statement relates only to our website. Our website may from time to time contain links to third party websites. If you follow such a link, please note that these websites may have their own policies. We recommend that you check the policies of third-party websites before submitting any personal data. We do not accept any responsibility for third party websites or policies.
Your rights regarding your personal data
You have several rights related to your personal data. Below you find an explanation of these rights.
Right of access: You have the right to request a copy of your personal data which are processed by us or on behalf of us. You can also ask for other information on the processing of your personal data, such as details of the storage period and third-party recipients.
Right of rectification: If your personal data are incorrect or incomplete or are not processed in compliance with any applicable law, you have the right to have your data rectified or completed by us.
Right of restriction: You have the right to have the processing of your personal data restricted by us. In that case, we will not process your data for a certain period: for instance, while we are checking the rectification of your personal data.
Right of erasure of personal data: You have the right to have your personal data deleted. Please note that this right may not apply when we have a legal obligation or other pressing need to keep your personal data.
Right of data portability: At your request, we will provide you with a structured copy of your personal data, which is suitable for common digital use. You also have the right to have these personal data transferred by us to a third party.
Right to object: You have the right to object to the processing of your personal data by Good Energies.
Please note that the above-mentioned rights might be restricted in certain cases, for instance if we have a legal obligation to process certain personal data or have an overriding interest in doing so (insofar as we are entitled to rely on this).
You may also be able to request a transfer of your personal data. To submit a request to us in this respect, please send an email to firstname.lastname@example.org.
If you have any questions about this Privacy Statement, or if you want to lodge a complaint, please send an email to email@example.com. If you feel that we have not satisfactorily addressed any complaint that you have, you can submit a complaint to the competent data protection authority. The competent data protection authority in Switzerland is the Federal Data Protection and Information Commissioner (http://www.edoeb.admin.ch).