• en
  • fr
  • it
  • es
  • pl
  • pt-pt

Cookies & Personal Data Privacy Policy

Welcome to https://www.greenflex.com/en/. By visiting or browsing on the website, you acknowledge that you have read, understood and accepted, unconditionally and unreservedly, this Cookies & Personal Data Privacy Policy (the “Policy”) and our General Terms and Conditions of Use. Please note that other General Terms and Conditions and Personal Data Privacy Policies apply to other Total SE group websites and we would recommend that you read them carefully.

The Policy aims to provide you with information about the rights and freedoms which you may assert in relation to our use of your personal data and sets out the measures which we implement in order to protect them.

GreenFlex SAS is the “data controller” for personal data used for managing the website. These processing operations are carried out in compliance with the applicable law.

  1. Purpose, legal basis and storage period for the data processing

When using this website, you may need to provide some personal data, such as your name, surname and e-mail address, in order to, in particular, use the services available on the website and receive answers to your requests for information. Your data may also be processed for analysis and investigative purposes.

The data may be processed for the following reasons:

  • The data controller has legitimate interest in providing you with services when the purpose is to manage customer relations or requests specifically submitted to GreenFlex;
  • performance of a contract into which you have entered or implementation pre-contractual measures taken at your request;
  • compliance with legal and regulatory obligations relating, in particular, to but not limited to, the obligations of website publishers;
  • you have provided your consent for your personal data to be processed for one or more specific purposes, including for marketing purposes, if applicable.

The data are needed to enable us to process your request and interact with you better. In our online forms, the obligatory fields are marked with an asterisk. If you do not provide an answer to the obligatory questions, we will not be able to provide you with the service(s) that you have requested .

Your personal data will not be subsequently processed in a way that would be incompatible with the purposes described above or below the collection forms.

When collecting personal data, each form or service shall only collect data that it needs and, in particular, shall state:

  • who the data controller for the personal data is;
  • why these data are being collected;
  • whether these data are obligatory or optional for managing your request;
  • the data recipients;
  • the data storage period;
  • your rights and how you can exercise them.

Once the storage period relating to the processing period has elapsed, your data will be archived temporarily for a period which complies with the relevant provisions governing limitation periods.

  1. Data recipients

Your data may be disclosed to some of the data controller’s departments or companies in the Total SE group, as well as some partners or subcontractors for analysis and investigative purposes.

  1. Data transfers

Any time that data is transferred to a third country outside of the European Economic Area, it is carried out in accordance with applicable laws and in a way that ensures that data are properly protected.

For the purposes of the services provided on the site, your data may be transferred to Total SE Group companies located outside of the European Union: the United States.

In order to properly protect personal data from the European Economic Area which may be transferred to Total SE


Group entities outside of the European Economic Area, “Binding Corporate Rules” (BCR) have been adopted.

Any time that data is transferred to countries located outside of the European Economic Area and the BCR does not apply, other measures are in place to ensure that data are properly protected.

You may obtain a copy of the BCR and the other measures for protecting data by writing to the contact address below.

  1. Security and privacy of your data

The data controller takes appropriate steps in order to protect the security and privacy of your personal data and, in particular, to prevent them from being altered, damaged or disclosed to unauthorised third parties.

  1. Cookie management

5.1. Principle

A cookie is a file which saves information about your computer’s browsing activities on the website (for example, the number of visits and the number of pages viewed) and, in particular, makes your experience on the website smoother.

You may delete cookies installed on your computer at any time, block new cookies and receive a notification before a new cookie is installed by adjusting your web-browser settings using the instructions below.

Please note that if you delete a cookie or you block cookies on your computer, you may not be able to use some services on the website.

5.2. Types of cookies, cookies and statistics and settings
The cookies which may be installed on your server when you browse on the website are cookies solely intended for enabling or simplifying electronic communications or are strictly necessary for providing the service which you are requesting (such as language cookies and ID cookies), or are statistical cookies or other cookies, as described in the circumstances below.

When cookies require your agreement before they are installed, we ask for your agreement through the “Find out more” link which appears on the first page of the website, which states that you are deemed to have agreed to them if you continue browsing on the website.

Statistical cookies are used to measure the number of visits, the number of pages viewed, users’ activity on the site and how often they return. The statistical tool used generates a cookie with a unique identifier. Your IP address is also collected in order to establish the city or town where you are located when visiting the website. This IP address is immediately anonymised after it is used, which prevents you from being individually identified. The data collected are not disclosed to third parties and are not used for other purposes. You may, at any time, block these cookies by opting out using the cookie management processes below.

5.3. Storage period

Cookies saved on your device or any other item used for identifying you for statistical or technical purposes will be stored only as long as they are relevant for these processes. This period will not be automatically extended when you visit the site again. Once this period has elapsed, raw browsing data linked to an identifier is either deleted or anonymised.

  1. Your rights / Contact

In accordance with current regulations, you are entitled to access, amend, delete and object to the use of your personal data. You are also entitled to provide prior consent for your personal data to be used for marketing purposes and to object to this, under the applicable regulations. You can ask for your personal data to be sent to you and are entitled to give instructions about what happens to your personal data after your death. You are also entitled to not to be subject to a decision based solely on automated processing, including profiling. You can also make requests relating to restrictions on your data and portability of your data, and/or submit a complaint to the CNIL (French Information Technology and Civil Liberties Commission).

Please send your request to the Data Protection Officer (DPO) at GreenFlex SAS, as the following e-mail address: dpo@greenflex.com. You can also send it via post at the following address: GreenFlex SAS, DPO – Data Protection Officer (DPO), 7 – 11 boulevard Haussmann – 75009 Paris, France.