Privacy Policy

Privacy policy 

This Privacy Policy explains how the Energy Storage Association (“we”, “our”, “us”) collects, uses, stores and protects personal data through this website. We are committed to complying with the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018. By using this website, you are agreeing to the practices described in this policy.

Data controller
The Energy Storage Association is the Data Controller for the personal data processed through this website.

What personal data we collect
We may collect and process the following categories of data:

  • Identity data: name, organisation, job title

  • Contact data: email address, phone number, postal address

  • Technical data: IP address, browser type, device data, cookies

  • Usage data: website interactions, referring sites, page views

  • Marketing preferences: newsletter sign‑ups, consent records

  • Information submitted via forms: enquiries, membership requests, event bookings

We do not collect special category data unless explicitly provided by you and only where lawful to do so.

Lawful basis for processing
Under the UK GDPR, we must have a lawful basis to process your personal data. Depending on the context, we rely on:

  • Consent – e.g., newsletter sign‑ups, cookie acceptance

  • Contract – when you purchase a service or register for an event

  • Legitimate interests – to operate, improve, and secure our website

  • Legal obligation – where required to maintain records or comply with law

Where we rely on legitimate interests, we ensure these interests are balanced against your rights.

How we use your information
We may use your personal data to:

  • Provide information, services, or responses to enquiries

  • Process membership applications or event registrations

  • Send newsletters or marketing communications when consent is given

  • Improve website functionality, security, and user experience

  • Analyse website traffic through analytics tools

  • Maintain our internal records

We do not sell or rent your data to third parties.

7. Contact and communication

Users contacting the website through forms or email do so at their own discretion. Any personal information submitted is stored securely and only used for the purposes for which it was provided.

Although we take all reasonable steps to create a secure submission environment, users should be aware that sending information over the internet is done at their own risk.

Email marketing and newsletters

We operate an email newsletter for members, stakeholders, and interested parties.

  • All members and contacts provided are automatically opted in to receive these.

  • All subscriber data is processed in accordance with the UK GDPR.

  • You can withdraw consent at any time by using the unsubscribe link or contacting us directly.

Marketing emails may contain tracking to measure engagement (e.g., opens, clicks). This helps us improve the relevance of our communications.

We never share subscriber information with external organisations.

Data retention

We keep personal data only for as long as necessary for the purposes for which it was collected, including legal, accounting, or reporting requirements.

After this period, data is securely deleted or anonymised.

Your GDPR rights
Under the UK GDPR, you have the following rights:

  • Right to access – request a copy of your personal data

  • Right to rectification – correct inaccurate or incomplete data

  • Right to erasure – request deletion of your data (“right to be forgotten”)

  • Right to restrict processing – limit how your data is used

  • Right to data portability – request your data in a usable format

  • Right to object – to marketing or processing based on legitimate interests

  • Right to withdraw consent – at any time, where processing is based on consent

To exercise any of the above rights, please contact us.

External Links
Although we aim to provide trusted, high‑quality links, we cannot guarantee the content or security of external websites. Users click external links at their own risk.

We are not responsible for any damages or implications caused by visiting external sites.

Social media platforms
Any engagement on social media platforms is subject to the terms and privacy policies of those platforms.

We will never ask for personal or sensitive data through social media. Users wishing to discuss private matters should contact us directly via email or phone.

Our website may include social sharing buttons. These are used at the user’s own discretion and may result in tracking by the social platform.

Shortened links
Social media platforms sometimes shorten URLs. Users should exercise caution when clicking shortened links posted by the association. We cannot be held liable for issues arising from external links or third‑party content.

Changes to this policy
We may update this Privacy Policy periodically. The latest version will always be published on this page. Continued use of the website signifies acceptance of any changes.