Legal

Privacy Policy

Last updated:

1. Introduction

This Privacy Policy explains how eNavi collects, uses, and protects personal data when you visit our website or request a demo and/or use our services.

eNavi provides AI-driven production forecasting and OPCOM order management for hydro and photovoltaic producers.

2. Data Controller

MINERVA SOLAR INVESTMENTS SRL acts as the data controller for personal data processed through the eNavi platform and marketing website.

CUI: 45955830
Registered address: Calea Lugojului 48/B, Mezanin, Birou 2, Ghiroda, Timis, 307200, Romania

3. Personal Data We Collect

  • Identity & contact data: name, company, role, email, phone (when you contact us or request a demo).
  • Account data: user identifiers, authentication data, and access logs (if/when you have platform access).
  • Technical data: IP address, browser/device information, approximate location, timestamps, and diagnostics.
  • Operational energy data (business data): plant/unit identifiers, time series production data, availability, metering/telemetry exports you provide, and workflow inputs/outputs needed to operate the platform.
  • Market/trading workflow data (business data): strategy parameters you configure, orders you prepare/approve, and execution-related artifacts for OPCOM workflows (where applicable).

4. Purposes & Legal Basis

We process personal data to deliver the eNavi services, respond to inquiries, send operational communications, secure the platform, and comply with legal obligations.

  • Contract / pre-contractual steps (Art. 6(1)(b) GDPR): to respond to demo requests and provide the service.
  • Legitimate interests (Art. 6(1)(f) GDPR): to operate, secure, and improve the website/service and prevent abuse.
  • Consent (Art. 6(1)(a) GDPR): where required (e.g., certain analytics/cookies, marketing communications).
  • Legal obligation (Art. 6(1)(c) GDPR): to comply with applicable laws.

5. AI Models & Data Training

eNavi uses algorithms to improve forecasting and optimization. Forecasting and recommendations are based on your operational data and external signals such as weather inputs where applicable.

If training or improvement requires using customer-provided operational data, we do so only with appropriate safeguards and, wherever feasible, in aggregated and/or de-identified form.

6. Sharing & Transfers

We do not sell personal data. We may share data with trusted service providers that support hosting, monitoring, analytics, or communications, strictly to operate the website and platform. These partners are bound by confidentiality and data protection obligations.

Data is stored within the EU whenever possible. If transfers outside the EU/EEA are necessary, we use appropriate safeguards such as Standard Contractual Clauses.

7. Retention

We retain personal data only as long as necessary for the purposes described in this policy, and to meet legal/accounting/security requirements. Operational and business datasets are retained according to customer agreements and operational needs.

8. Security

We implement reasonable technical and organizational measures to protect data against unauthorized access, alteration, disclosure, or destruction, including access controls, encryption in transit, strict credential policies, and monitoring.

9. Your Rights

You may request access, rectification, deletion, restriction, portability (where applicable), or object to processing of your personal data. You may also withdraw consent at any time where processing is based on consent.

To exercise these rights, contact us at [email protected]. You may also lodge a complaint with the Romanian National Supervisory Authority for Personal Data Processing.

10. Updates

We may update this policy to reflect changes in legislation or the services. Material updates will be communicated via the platform or email. Continued use of the services after updates constitutes acceptance of the revised policy.