1. Who is the Data Controller?

The data controller is the local Fluence entity with which your organization has a contractual relationship. If you are unsure which Fluence entity applies, you may contact us at dpt_global@fluenceenergy.com.

2. What Personal Data Do We Collect and Why?

We collect and process only the minimum data necessary to:

  • Grant access to the Portal
  • Enable warranty claim submission and related communications
  • Ensure secure login through multi-factor authentication

Categories of personal data processed:

  • Full name
  • Email address
  • Contact number (phone)
  • Role or job title
  • Authentication credentials (e.g., 2FA device enrollment)
  • Technical access logs (e.g., access timestamps, IP address)

We do not use cookies, trackers, or analytics tools for marketing or profiling purposes on this Portal.

3. Legal Basis and Lawful Use

Our processing is based on:

  • Legitimate Interests (e.g., to provide and secure the Portal)
  • Contractual Necessity (e.g., to fulfill support and warranty obligations)
  • Legal Compliance, where applicable (e.g., record-keeping, security obligations)

Depending on your location, additional rights and legal bases may apply in accordance with local data protection laws (e.g., GDPR in the EU/EEA, CCPA/CPRA in California, LGPD in Brazil, PDPA in Singapore).

4. How Do We Protect Your Data?

Access is strictly limited to authorized users based on role and organization.

External users cannot upload general documents, only evidence relevant to specific claims.

Multi-factor authentication is required for access.

The Portal is hosted within Fluence’s secure Microsoft 365 environment, under enterprise-grade cybersecurity controls.

5. Where Is Your Data Stored or Transferred?

Data may be stored in Fluence’s Microsoft 365 infrastructure, with hosting in data centers located in the United States, European Union, or other regions depending on your location and applicable laws.

We apply appropriate safeguards for any cross-border data transfers, including standard contractual clauses (SCCs) where required.

6. How Long Do We Keep Your Data?

Personal data will be retained for as long as required to:

  • Manage the active customer relationship and related claims
  • Comply with legal and regulatory requirements
  • Enforce our rights or defend against claims

Generally, data is deleted 12 months after the closure of the relevant warranty project, unless a longer retention is required by law.

7. Your Rights

Subject to local law, you may have the right to:

  • Access your personal data
  • Request correction or deletion
  • Object to or restrict certain processing
  • Lodge a complaint with a supervisory authority

To exercise your rights, please contact dpt_global@fluenceenergy.com

8. Updates to This Notice

We may update this Notice from time to time. Any changes will be communicated via the Portal or via email, where applicable.