PRIVACY POLICY OF THE SHELLY FLEET ASSISTANT

 

CONTENT

  1. Introduction
  2. Controller
  3. Personal Data
  4. Data Subject
  5. Data Protection Officer
  6. About the Shelly Service
  7. Types of Personal Data That We Process for the Provision of the Service
  8. Cross-Border Data Transfers
  9. Retention of Data
  10. The Service User’s Rights as Data Subject
  11. Information Security Measures
  12. Privacy Policy Updates
  13. Further Information

1. INTRODUCTION

Shelly Fleet Assistant is a mobile application connected to the Shelly Fleet Manager service. It is designed to manage Shelly devices by enabling their addition, removal, and configuration. The Assistant is a secondary service and cannot function without a valid Shelly Fleet Manager account.

When you interact with Shelly Fleet Assistant, Shelly Europe Ltd. processes your data in accordance with this Privacy Policy and GDPR.

2. CONTROLLER

The personal data is processed by:
Shelly Europe Ltd.
UIC: 202320104
Address: 103 Cherni Vruh Blvd., Sofia, 1407, Bulgaria

3. PERSONAL DATA

Personal Data refers to information identifying or enabling the identification of a natural person, including names, identifiers, location data, or other specific factors as defined under GDPR.

4. DATA SUBJECT

Since Shelly Fleet Assistant operates exclusively in conjunction with Shelly Fleet Manager, the Data Subject is the Admin User of the linked account.

5. DATA PROTECTION OFFICER

Contact the Data Protection Officer at:
Email: dpo@shelly.com

6. ABOUT SHELLY FLEET ASSISTANT SERVICE

The Shelly Fleet Assistant allows Admin Users to:

  • Add and remove Shelly devices.
  • Configure devices for monitoring via Shelly Fleet Manager.

The service is accessible on mobile devices or tablets and is governed by the Service User’s account settings and Terminal Device permissions.

7. TYPES OF PERSONAL DATA THAT WE PROCESS FOR THE PROVISION OF THE SERVICE

7.1 Account Data

We collect:

  • Email address, username, password
  • Account ID, language preferences, time zone
  • Customer support interactions

Purpose: To authenticate users, provide customer support, enable service functionality, and ensure security.

7.2 Device Data and Service Usage

Data processed includes:

  • Shelly device identifiers (e.g., SSID, IP address, MAC address).
  • Configuration data from Shelly Devices (e.g., schedules, timers).
  • Terminal device information (e.g., OS version, network credentials).

Purpose: To enable device management, customer support, and notifications.

7.3 Processing Based on Legitimate Interest

Data processed for:

  • Fraud prevention.
  • Monitoring service functionality.
  • Responding to legal claims.

8. CROSS-BORDER DATA TRANSFERS

Your personal data is processed primarily in Bulgaria (EU). Transfers outside the EU comply with GDPR, including using Standard Contractual Clauses (SCCs) for third-party providers in regions like the United States.

9. RETENTION OF DATA

Data retention varies based on processing grounds:

  • Contractual obligations: Data is retained while the account is active.
  • Legitimate interest: Data is retained for the specific purpose’s duration.
  • Compliance: Data is retained according to statutory regulations.

Data may be retained longer if linked to unresolved legal disputes.

10. THE SERVICE USER’S RIGHTS AS DATA SUBJECT

10.1 Right to Access

Users may request copies of their data free of charge.

10.2 Right to Rectification

Users can correct inaccuracies by contacting support or through account settings.

10.3 Right to Erasure (Right to Be Forgotten)

Users may request data deletion under applicable conditions via account settings.

10.4 Right to Restriction of Processing

Users may request temporary data-use restrictions in certain situations.

10.5 Right to Data Portability

Users may request their data in a machine-readable format for transfer to another service.

10.6 Right to Object

Users may object to data processing based on legitimate interest or direct marketing.

10.7 Right to File a Complaint

Users can file complaints with their local supervisory authority.

11. INFORMATION SECURITY MEASURES

We prioritize the security and confidentiality of your data by implementing:

  • Advanced encryption.
  • Regular audits.
  • Technical and organizational safeguards.

No system is entirely impenetrable, but we strive for maximum data protection.

12. PRIVACY POLICY UPDATES

This policy may be updated to reflect service changes or compliance requirements. Updates are effective immediately upon publishing.

13. FURTHER INFORMATION

For questions, contact us at:
Email: dpo@shelly.com

Top