Privacy Policy

PRIVACY POLICY – INTEC Energy Solutions Group

Last updated: February 2026

This Privacy Policy informs you pursuant to Articles 12 et seq. GDPR about the processing of personal data in connection with this website and the business activities of the INTEC Energy Solutions Group.

  1. Joint Controllers (Art. 26 GDPR)

The joint controllers are:

INTEC Energy Solutions Holding Ltd (INTEC UK)
25 Cabot Square, Canary Wharf
London E14 4QA, United Kingdom

and

INTEC Energy Solutions GmbH (INTEC Germany)
Singapurstraße 1
20457 Hamburg, Germany

(hereinafter jointly referred to as “INTEC”).

The controllers have concluded an agreement on joint controllership pursuant to Art. 26 GDPR.

  1. Allocation of Responsibilities
  •  Website operation and hosting: INTEC UK
  • Business operations and projects: INTEC Germany
  • Data protection compliance: INTEC Germany
  • IT security coordination: INTEC UK and INTEC Germany

Data subjects may exercise their rights against either controller.

  1. Data Protection Officer

You can reach the data protection officer of INTEC Energy Solutions GmbH using the following contact details:

Herting Oberbeck Datenschutz GmbH

Hallerstr. 76, 20146 Hamburg

Telefon: +49 (0)40 22634560

Email: datenschutzbeauftragter@in-tecenergy.com

  1. Scope of Application

This Privacy Policy applies to:

  • Website visitors
  • Business partners, customers, and suppliers
  • Investors and interested parties
  • Applicants and candidates
  • Other contractual partners
  1. Categories of Personal Data

We process in particular:

  • Identification data
  • Contact data
  • Communication data
  • Technical data
  • Contractual and billing data
  • Compliance and risk data
  • Application documents
  1. Sources of Data

Data is collected:

  • Directly from you
  • From business partners
  • From public registers
  • From professional networks
  • From authorities where permitted
  1. Purposes of Processing

Processing is carried out for:

  • Website operation and security
  • Business communication
  • Contract negotiation and performance
  • EPC and project development
  • Accounting and controlling
  • Legal compliance
  • Risk management and audits
  • Investor relations
  • Human resources
  • Protection of legitimate interests
  1. Legal Bases

Processing is based on Art. 6 GDPR:

  • Consent
  • Contract performance
  • Legal obligation
  • Legitimate interests
  1. Data Recipients

Recipients may include:

  • IT and cloud providers
  • Professional advisors
  • Banks and insurers
  • Public authorities
  • Group companies
  1. International Transfers

Transfers may take place to the UK and other countries based on:

  • Adequacy decisions
  • Standard Contractual Clauses
  • Appropriate safeguards
  1. Retention Periods
    Data is stored only as long as necessary and in accordance with statutory retention periods.
  1. Technical and Organisational Measures
    Measures include access controls, encryption, firewalls, backups, and staff confidentiality obligations.
  1. Cookies and Log Files
    Only technically necessary cookies are used.
    Server logs include IP address, date, time, and browser data.
  1. Communication
    Data is processed to handle enquiries.
  1. Business Relationships
    Processing for contract management, billing, and compliance.
  1. Applications
    Legal basis: Art. 6 GDPR and Section 26 BDSG.
    Deletion after [6] months.
  1. Marketing
    Processing for corporate communication with right to object.
  1. Data Subject Rights
    Access, rectification, erasure, restriction, portability, objection, withdrawal.
    Requests answered within one month.
  1. Right to Lodge a Complaint
    You may lodge a complaint with a supervisory authority.
  1. Automated Decision-Making
    No automated decision-making or profiling.
  1. Confidentiality and Training
    Employees are regularly trained and bound to confidentiality.
  1. Amendments
    This Privacy Policy may be amended.