When you visit our social media pages we may process personal data, depending on how you chose to interact with us on these pages. In this section of our privacy notice, we explain what processing takes place in connection with our social media appearances and your interaction thereof.
Controller
We operate on the social media pages listed below and we are responsible for some of the data processed through the platforms. Apart from our processing the operator of the social media platform is also, as a separate data controller, processing personal data that we have very limited or none influence on. Therefore, please be aware of and take a look at the privacy notices published by respective social media platforms.
Facebook/Meta, https://www.facebook.com/about/privacy/
Instagram/Meta, http://instagram.com/about/legal/privacy/
Youtube/Google, https://policies.google.com/privacy?hl=en&gl=en
TikTok/ByteDance, https://www.tiktok.com/legal/page/eea/privacy-policy/en
For our Facebook, Instagram and LinkedIn presence we have in addition a joint controllership for data processing related to data insights services, governed in a special agreement that specifies which data processing operations we or the social media platform are responsible for when you visit our social media page. You can read more here (Meta) or here (LinkedIn).
Tibber’s purposes for processing personal data
Communication and interaction with users of the social media platform
We process personal data when you make a post or make a request on our social media pages, whether as comments, public messages, reactions (likes, etc.). Depending on the post/request, we may reply on the same social media page with a comment, reply, reaction, etc. However, if you post an enquiry to us we will also refer you to other safer methods of communication, such as messenger services, or to our alternative communication channels like e-mail or chat. The choice of appropriate communication channel is your own responsibility.
We can also reach out to our social media audience through comments in our company related accounts, groups, etc. This is particularly when we think feedback from our engaged audience can be beneficial in solving an issue, understanding nuances of identified challenges with our service, etc. Participation in such threads or dialogues is always voluntary.
We will process communication for the purpose of handling the post/inquiry and in the event of follow-up questions. If the communication consists of information aimed at the conclusion of a contract, regarding the delivery of goods or the provision of services, we process your data in order to help you with these contractual matters..
Legal basis: Legitimate interest (Art. 6 para. 1 lit. f) GDPR) in responding to your posts/request or interaction with us, or when we reach out for feedback; Performance of contract (Art. 6 para. 1 lit. b GDPR) if this is the aim of your communication.
Storage period: For communication that makes part of a contractual matter, we will store the information in accordance with such retention periods (as described elsewhere in our privacy notice). For communication where we rely on legitimate interest as the legal basis, the information will be stored until the purpose is achieved. However, the information may continue to be processed for the purpose to strengthen our public relations and communications (see below). The information may also be stored for other purposes described in our privacy notice (e.g. handle legal claims).
Sharing and transfer of data: The data may be shared with another company in the Tibber group and to service providers for communication management tools. Communication that makes part of a contractual matter may be shared to relevant Tibber companies, and service providers used for fulfilment of contractual obligations like database providers, order management systems, etc.
Strengthen the Tibber offer and our public relations and communications
Our social media presence is important for our public relations and to inform about Tibber and the Tibber offer. When you decide to interact with us on our social media pages, you contribute to our honest approach to public exchange of relevant information, whether it is about Tibber, our products/services, or smart energy solutions in general. Public posts or messages that you decide to share will therefore remain as part of our social media presence. Note however, we retain the right to delete content on our pages if this should be necessary.
Legal basis: Legitimate interest (Art. 6 para. 1 lit. f) GDPR). Since the processing is based on information you have decided to post on our social media pages, we consider the processing to be proportionate in relation to the purpose. If we wish to share a post by you elsewhere, we will always ask for your consent.
Storage period: When we assess that content (including posts by the audience) on our social media platform no longer fulfills this purpose (or any other), we will delete it.
Sharing and transfer of data: For this purpose, the data will remain on the social media platform where it was originally posted. If we for any reason would like to use the post elsewhere, we will collect your consent.
Advertising
For advertisement purposes we use target group definitions provided by the social media operator. We use only anonymous target group definitions – so we define characteristics e.g. on the basis of general demographic details, behaviour, interests and connections. These are used by the operator of the social media platform to roll out suitable advertising to its members. The legal basis for this is the consent which the operator of the social media platform obtained from its members. The data collected by the social media platform is used to create user profiles. User profiles may be used for targeted advertisements within or outside the platform. In addition, user profiles may contain data that is gathered from memberships on other platforms. If you wish to know more about how the social media platform processes your personal data for this purpose, please read their privacy and cookie notices. If you wish to revoke this consent, please use the revocation options provided by the operator of the social media platform.
When you visit our website, we may also collect data via tracking technologies (cookie, pixel, etc.) to relate your visit to our website on a specific device with your social media account and make our advertising there more relevant to you. This will only be applicable if you have given consent to this on our website. You can revoke your consent at any time within our cookie policy.
Note that most social media platforms enable you to edit your advertising preferences in your account settings as well.
Legal basis: Consent (Art. 6 para. 1 lit. a) GDPR).
Storage period: You can find the retention periods for the individual tracking technologies in our cookie policy. We use the information accordingly or until you have withdrawn your consent.
Usage statistics and page insights
The social media operator may provide page insights data, aggregated data that gives us insight into how people interact with our page. Page insights data may be based on personal data gathered from visits and interactions on, or with, our social media page, and from connections with provided content. With regard to statistics and insights provided to us by the operator of the social media platform, we have only limited influence over the generation of the statistic and cannot deactivate them. But we only use these statistics, including any optional statistics provided by the social media operator that we enable, for purposes to improve the experience for our social media audiences.
Legal basis: Legitimate interest (Art. 6 para. 1 lit. f) GDPR). Our legitimate interest lies in the optimised presentation of our proposition, the effective information and communication with customers and interested parties as well as in the targeted placement of advertisements. We consider the processing to be proportionate in relation to the purpose.
Storage period: Only aggregated insight data will be available for us in accordance with time frames decided by the social media provider.
Please note that we have no influence on the data gathering and further processing by the social media operator. As a result, we cannot provide any access about where, for how long and to which extent the social media operator retains the data. Furthermore, we cannot make any statements about the extent to which the social media operator complies with existing deletion deadlines, what evaluations and translations are made and to whom the data is transferred. If you want to prevent your personal data being processed by the social media operator, please contact us by other means.
Data processing by the operator of the social media platform
The operator of the social media platform is a separate controller who carries out data processing where we have no influence. You should have been informed when you signed up for an account on the social media platform. As example they may process your activities on the social media platform and content you share to build your profile.
Please be aware: We cannot prevent the operators of the social media platform from using your profile and behavioural data to, for instance, analyse your habits, your personal relationships, your preferences, etc. In this respect we have no influence over the processing of your data by the operators of social media platforms.
Also note that the operator of the social media platform may use web tracking methods. Web tracking can be done regardless of whether you are signed up for an account on the social media platform or not. As already set out, we unfortunately have very little influence over the web tracking methods of the social media platform. We cannot, for instance, deactivate this feature.
When visiting and using the above-mentioned platforms, personal data may be transferred to the U.S. or other third countries outside the EU, therefore further appropriate safeguards are required to ensure the level of data protection under the GDPR. Further information on whether and what suitable guarantees the social media providers can provide in this regard can be found in their privacy notice.
As stated above we recommend you to familiarize with the privacy information provided by the social media provider. You can also reach out to them and their Data Protection Officer if you have any questions:
Facebook/Meta: https://www.facebook.com/help/contact/540977946302970
X/Twitter: https://help.x.com/en/forms/privacy
Instagram/Meta: https://www.facebook.com/help/contact/540977946302970
LinkedIn: https://www.linkedin.com/help/linkedin/ask/TSO-DPO?lang=en-US
YouTube/Googel: You find contact details and a form in Google’s privacy notice
TikTok/ByteDance: https://www.tiktok.com/legal/report/DPO
Any concerns?
If you wish to object to a certain data processing on which we have an influence, or if you have any questions regarding our social media presence and activities when it comes to processing of personal data, please contact us at hello@tibber.com.