American Battery Solutions ESS Division Spins-off; Forms American Energy Storage Innovations, Inc.
This version effective date (updated continually): 1 September 2023
We may collect various types of information from and about users of our Website, including:
Personal Information: Information that may personally identify you, such as your name, email address, postal address, phone number, and job title.
Non-Personal Information: Information that does not individually identify you, including details about your employer, its location, and generic information about your browsing habits and the devices you use to access our Website.
Automatic Data Collection: As you interact with our Website, we may use automatic data collection technologies to gather information about your browsing actions, including traffic data, location data, logs, and other communication data. This may include details about your computer, such as IP address, operating system, and browser type.
We collect information from you through two primary methods:
Information You Provide: This includes data you voluntarily provide to us when you complete forms on our Website, request services or information, or communicate with us through the contact information provided on our Website.
Automatic Data Collection Technologies: We utilize technologies like cookies, Flash cookies, web beacons, and log files to automatically collect certain information about your browsing behavior on our Website. You can manage your cookie preferences by adjusting your browser settings, although this may affect your access to certain parts of our Website.
Our Website may feature content or applications from third parties, such as ad networks and content providers, who may use tracking technologies like cookies and web beacons to collect information about your online activities. We do not control these third-party tracking technologies or how they are used. If you have concerns, we encourage you to contact the responsible provider directly.
We may use the information we collect for various purposes, including:
To provide and improve our Website, products, and services.
To respond to your requests and inquiries.
To fulfill contractual obligations and enforce rights arising from agreements between you and us.
To notify you about changes to our Website or our offerings.
To enable your participation in interactive features on our Website.
For marketing and customer relationship management.
For any other purpose you consent to or as described at the time of data collection.
We may disclose your information in the following ways:
To our subsidiaries and affiliated companies.
To third-party contractors, service providers, and partners who assist in supporting our business and who are bound by confidentiality obligations.
In the event of a merger, divestiture, or similar corporate transaction, your information may be transferred to a buyer or successor.
To comply with legal obligations, court orders, or government requests.
To protect the rights, property, or safety of AESI, our customers, or others.
Depending on your location and applicable regulations, you may have specific rights regarding your personal data. These rights may include:
Right of access to your personal data.
Right to rectify incorrect or incomplete personal data.
Right to erasure in certain circumstances.
Right to restrict processing.
Right to data portability.
Right to object to processing for certain purposes.
Rights related to automated decision-making and profiling.
Right to withdraw consent.
To exercise these rights or inquire further, please contact us using the details provided in the "Contact Information" section below. We will respond to your request in accordance with applicable laws.
We take reasonable measures to safeguard your personal information from unauthorized access, use, alteration, or disclosure. While we employ security measures, please be aware that no method of transmission over the internet or electronic storage is entirely secure. Your use of our Website is at your own risk.
United States - (CAN-SPAM, CCPA, Nevada Privacy Law) >additional information<
AESI complies the CAN-SPAM Act for sending commercial email messages in the United States. We provide clear identification information, opt-out mechanisms, and respect your choices regarding email communications.
If you are a resident of Nevada, we acknowledge and comply with the Nevada Privacy Law, which provides certain rights related to the sale of your personal information. For more information, please contact us as indicated in the "Contact Information" section below.
Canada - (CASL) >additional information<
AESI respects the Canadian Anti-Spam Legislation (CASL). We only send commercial electronic messages with your express consent. If you wish to unsubscribe from our communications, please follow the instructions provided in our messages or contact us directly.
European Union (EU) - (GDPR) >additional information<
United Kingdom - (UK DPA) >additional information<
AESI complies with the United Kingdom Data Protection Act 2018 (UK DPA) when processing personal data of individuals in the United Kingdom. The UK DPA aligns with GDPR principles and provides additional protections for UK residents.
Australia - (Cth, APPs) >additional information<
AESI adheres to the Australian Privacy Principles (APPs) under the Privacy Act 1988 (Cth) when collecting and handling personal information from individuals in Australia. We are committed to ensuring the privacy and security of your data in accordance with Australian data protection laws.
American Energy Storage Innovations, Inc.
2 Cabot Road | Suite 202 | Hudson, MA 01749 | USA
Attention: Data Privacy Officer – Deanna O’Donnell
Phone: +1 (978) 699-4999
Email: [email protected]
We are committed to addressing any questions or concerns you may have regarding your privacy and data protection.
United States - (CAN-SPAM, CCPA, Nevada Privacy Law)
Identification and Transparency: Marketers must clearly identify themselves in all commercial emails. The "From," "To," and "Reply-To" fields should accurately represent the sender.
Opt-Out Mechanisms: Every commercial email must include a conspicuous and easily accessible mechanism for recipients to opt out of future emails. Marketers should promptly honor unsubscribe requests.
Content Requirements: Marketing emails should not contain deceptive subject lines, false header information, or misleading content.
Physical Address: Include a valid physical postal address in every email, allowing recipients to contact the sender.
CCPA (California Consumer Privacy Act):
Transparency and Notice: Marketers should inform California residents about the types of personal information collected and the purposes for which it will be used.
Opt-Out Rights: Provide a clear and accessible opt-out mechanism for consumers who do not wish to have their personal information sold. Respect opt-out requests promptly.
Data Security: Ensure the security and protection of personal information collected during marketing activities.
Data Minimization: Collect only the personal information necessary for the intended marketing purpose.
Nevada Privacy Law:
Sale of Personal Information: Marketers should understand the definition of "sale" under the Nevada Privacy Law and be aware that certain activities related to sharing personal information for monetary benefit may trigger compliance requirements.
Opt-Out Requests: Companies must establish mechanisms for Nevada residents to submit opt-out requests regarding the sale of their personal information.
Canada - (CASL)
Express Consent: CASL requires express consent from individuals before sending them commercial electronic messages (CEMs). Express consent means that recipients must explicitly agree to receive emails from the company.
Opt-In Mechanisms: Clear and unambiguous opt-in mechanisms on the website and other communication channels. This could include checkboxes or subscription forms that clearly state the purpose of collecting email addresses.
Clear Identification: All CEMs must include clear and accurate identification information, including the sender's identity and contact information. This ensures recipients can easily identify who is sending the email.
Unsubscribe Mechanism: Every CEM must provide recipients with a simple and easily accessible way to unsubscribe from future emails. AESI must ensure that unsubscribe requests are processed promptly and recipients are removed from the mailing list.
Recordkeeping: AESI must keep records of express consent received from individuals. These records are essential to demonstrate compliance in case of inquiries or audits.
Third-Party Consent: If AESI shares an email list lists with third parties for marketing and/or sales purposes, it will ensure that those third parties also have valid express consent from individuals. AESI will have agreements in place to ensure compliance with CASL for any instance of list sharing.
European Union (EU) - (GDPR)
Lawful Processing: AESI will process personal data only when there is a lawful basis for doing so. We recognize that lawful bases may include consent, legitimate interests and contractual necessity, and we will ensure compliance with these principles in all data processing activity.
Consent Management: Where applicable, AESI will obtain clear and unambiguous consent from individuals for processing their personal data. Consent shall be freely given, specific, informed and easily revocable.
Data Minimization: AESI will collect and process only the personal data necessary for the specific purposes for which it was collected, avoiding unnecessary data collection.
Transparency and Privacy Notices: AESI will provide clear and concise privacy notices to individuals, explaining how their data will be used. These notices will be easily accessible, particularly when collecting data online.
Data Subject Rights: AESI acknowledges individuals' rights under GDPR, including the right to access, rectify, delete or restrict the processing of their data. We also recognize the right to data portability.
Data Security: AESI is committed to implementing appropriate security measures to protect personal data from breaches or unauthorized access.
Cross-Border Data Transfers: When transferring data outside the European Union (EU), AESI will ensure an adequate level of data protection.
Profiling and Automated Decision-Making: AESI shall ensure transparency in automated profiling or decision-making processes, provide individuals with meaningful information about the logic involved and allow them to opt out when applicable.
Data Protection Impact Assessments (DPIAs): For high-risk processing activities, AESI shall conduct DPIAs to assess and mitigate potential risks to data subjects' rights and freedoms.
Data Protection Officers (DPOs): AESI will appoint a Data Protection Officer in the future when it becomes necessary due to large-scale processing or processing of sensitive data.
Data Retention: AESI shall establish and adhere to data retention policies and timeframes, ensuring data is not kept longer than necessary.
United Kingdom - (UK DPA)
Principles: Follow data protection principles, including lawful and fair processing, data minimization, accuracy, and data security.
Consent: Obtain clear and informed consent for data processing, especially for sales/marketing purposes.
Individual Rights: Be prepared to address individuals' rights, like access, rectification, and the right to be forgotten.
Direct Marketing: Comply with rules for electronic marketing, get consent, and offer opt-out options.
Data Sharing: Ensure third parties have proper permissions and data protection compliance.
International Data Transfers: Use safeguards for data transfers outside the UK or EEA.
Data Impact Assessments: Conduct assessments for high-risk data processing.
Data Protection Officers: Appoint a DPO if necessary.
Data Breach Reporting: Report and address breaches promptly.
Training: Educate sales and marketing teams on data protection.
Privacy Notices: Provide clear and accessible notices to individuals.
Legitimate Interests: Document justifications for data processing.
ICO Guidance: Stay updated on ICO regulations and guidance.
Complaint Handling: Establish procedures for addressing data protection complaints.
Record Keeping: Maintain records of data processing and consent.
Australia - (Cth, APPs)
Collect data lawfully and fairly.
Use data only for its intended purpose.
Minimize data collection.
Maintain data accuracy.
Store data for the necessary period.
Ensure data security.
Consent and Notification:
Obtain informed consent for data collection.
Provide clear privacy notices.
Individual Rights: Respect individuals' rights to access and correct their data.
Direct Marketing: Comply with rules for opt-in and opt-out marketing.
Cross-Border Data Transfers: Safeguard data when transferring outside Australia.
Data Breach Reporting: Report and address data breaches promptly.
DPIAs: Conduct assessments for high-risk data processing.
DPOs: Appoint a Data Protection Officer when deemed as required.
"*" indicates required fields