• English
  • Português
Login

1. SCOPE OF THIS PRIVACY POLICY

Greenole (“Greenole“, “we”, “us”, or “our”) respects your privacy. This Privacy Policy applies to personal data and building telemetry data collected by Greenole through the Greenole public website (e.g., greenole.com), the Greenole Platform (e.g., app.greenole.ai), our
GreenEdge hardware devices, and related applications, integrations, and services (collectively, the “Services“)
As used in this Privacy Policy, “personal data” means any information that relates to, is capable of being associated with, describes, or could be linked to an identified or identifiable natural person. This Policy also governs how we handle non-personal telemetry data
generated by your physical environments, Green Clusters, and Green Nodes (such as HVAC systems, IoT sensors, and energy meters) By accessing or using our Services, you agree to the collection, use, and disclosure of your information as described in this Privacy Policy and our applicable Terms of Use

. THE CATEGORIES OF DATA WE COLLECT

  • Contact and Identifier Information: Information used to communicate with you and provision your System Account or User Account, such as first and last name, job title, company name, corporate email address, recovery email, telephone number, and
    postal address Account and Commercial Information: Information maintained in association with your account, such as your username/user ID, encrypted password, GreenCoins balance, subscription tier (e.g., Base, Advanced, Enterprise), billing history, and
    support inquiries.
  • Internet or Network Activity (Action Logs): Information collected when you visit our website or interact with the Platform, including IP address, browsing history, login sessions, audit logs (tracking User clicks, dashboard creations, or modifications to alert rules), browser type, and operating system.
  • Telemetry and IoT Data: Data transmitted continuously by your physical devices, connected GreenEdge controllers, and third-party API integrations (such as BACnet, Modbus, or MQTT protocols). This includes temperature, humidity, energy consumption, vibration metrics, and equipment runtimes.

 

3. HOW WE COLLECT DATA (SOURCES OF DATA)

Greenole collects data directly from you, automatically through our infrastructure, and from
third-party partners:

  • Directly from You: When you create a System Account or User Account, configure an Environment (Green Cluster/Node), register devices, set up Continuous Commissioning rules, or contact our Customer Success team for support.
  • Automatically via Technology: We collect telemetry data directly from the GreenEdge gateways and IoT sensors installed at your facilities via secure protocols (e.g., MQTT). We also collect platform usage data via cookies, local storage, and analytics instruments (such as New Relic and Google Analytics) to monitor user behavior and platform performance.
  • From Third Parties: We may receive user provisioning data from our authorized System Integrators (Partners) who deploy Greenole solutions in your facilities, or via Single Sign-On (SSO) integrations if you choose to log in via third-party systems like Google or Microsoft.

 

4. HOW WE USE (PROCESS) YOUR DATA

Greenole uses the collected data for the following business purposes:

  • Service Delivery & Authentication: To verify your identity (including Multi-Factor Authentication), provision your access to specific Green Clusters, and maintain session state to ensure the security of your account.
  • Platform Operations & Features: To deliver real-time dashboards (Single Pane of Glass), trigger user-defined alerts, perform Fault Detection and Diagnostics (FDD), and generate automated operational reports based on your telemetry data.
  • Billing and Administration: To monitor your resource consumption—including data storage size, attributes updated per hour, and GreenCoins utilization—in order to manage subscriptions, calculate billing, and enforce SLA terms.
  • Security and Troubleshooting: To track unauthorized access, diagnose platform errors, maintain system uptime, and log user actions for compliance and auditing purposes.

 

5. DATA OWNERSHIP, AGGREGATION, AND GREEN AI

While the raw telemetry data originating from your building systems belongs to you, Greenole invests significant resources into the collection, consolidation, transformation, and processing of this data.

  • Consolidated Data Rights: You grant Greenole the right to aggregate, anonymize, and de-identify your building telemetry data. Greenole retains full ownership of these consolidated, anonymized datasets.
  • Green AI & Market Benchmarking: We utilize anonymized data to train our proprietary Green AI agents, improve our Continuous Commissioning algorithms, and generate macro-level analytics. This allows us to provide vertical market benchmarking (e.g., comparing a school’s energy efficiency against the national average for educational facilities). No personally identifiable information or specific organizational identifiers will ever be exposed in these aggregated market comparisons.

 

6. HOW WE DISCLOSE (SHARE) YOUR DATA

Greenole does not sell your personal information. We may disclose your data in the following scenarios:

  • Business Partners and Service Providers: We share data with trusted third-party sub-processors that support our operations, such as cloud hosting providers (Amazon Web Services – AWS), transactional email services, and payment processors. These providers are strictly bound by confidentiality agreements.
  • System Integrators (Partners): If your account is managed by an authorized Greenole Partner (System Integrator), their designated administrators may have access to your telemetry data and user roles to provide localized support and maintenance.
  • Legal Compliance: We may disclose data as required by law, regulation, or legal process, or to protect the rights, property, and safety of Greenole, our users, or the public.
  • Business Transfers: In the event of a merger, acquisition, or sale of all or a portion of our assets, user data and telemetry datasets may be transferred to the acquiring entity under appropriate confidentiality protections.

 

7. COOKIES AND OTHER TECHNOLOGY

We use cookies, local storage, and similar tracking technologies to enhance your experience on our platform:

  • Required Cookies: Essential for platform functionality, maintaining secure login sessions, and navigating between environments without needing to re-authenticate.
  • Functional & Performance Cookies: Used to analyze how you interact with the platform (e.g., measuring dashboard load times, tracking the most-used widgets) to improve UI/UX and overall platform performance.

You can manage your cookie preferences through your browser settings, though disabling required cookies may severely impact your ability to use the Greenole Platform.

 

8. YOUR RIGHTS AND CHOICES (LGPD, GDPR, CCPA)

Greenole is committed to adhering to the most stringent data protection frameworks, taking the Brazilian General Data Protection Law (LGPD) as a rigorous baseline for protecting our users’ rights globally, alongside the GDPR and CCPA.

Subject to applicable law, you have the right to:

  • Access & Portability: Request a copy of the personal data we hold about you.
  • Correction: Edit your personal information, contact details, and platform preferences
    directly through the “User Account Settings” in the Platform.
  • Erasure (Deletion): Request the deletion of your personal data. Please note that for security and auditing purposes, platform usage logs and anonymized telemetry datasets cannot be deleted, but your personal identifiers will be removed.
  • Restriction & Objection: Object to or restrict certain processing activities.

To exercise any of these rights, please contact us at the details provided below.

 

9. VERIFICATION

Before responding to a request regarding your personal data, we must verify your identity to protect your information. We may ask you to confirm details associated with your account or require you to submit the request from the email address registered in the Greenole Platform.

 

10. HOW WE STORE AND PROTECT YOUR INFORMATION

Your data is securely stored on cloud infrastructure (AWS) located in the United States and other applicable regions.
Greenole implements robust physical, administrative, and technical safeguards. Our platform relies on encrypted data transmission, token-based authentication (JWT/OAuth), and strict Role-Based Access Control (RBAC). Furthermore, we continuously monitor our cloud environments and strive to maintain PCI DSS compliance standards to ensure maximum security.
Data Retention: When a Partner Account or Green Cluster is paused or expired, user access is blocked immediately. After a predefined configurable period, telemetry data is moved to cold storage in accordance with our retention policies.

 

11. CROSS BORDER DATA TRANSFERS

Greenole operates globally. Your personal data and telemetry information may be transferred to and processed in countries other than the country in which you are resident (including the United States). We utilize standard contractual clauses and appropriate technical safeguards to ensure that your data remains protected according to this Policy and applicable international laws.

 

12. CHANGES TO THIS PRIVACY POLICY

As our Platform and Green AI capabilities evolve, we may update this Privacy Policy. We will notify you of material changes by updating the date at the top of this document, providing a notice upon your next login, or sending a notification via your registered email address.

 

13. HOW TO CONTACT US

If you have any questions, concerns, or requests regarding this Privacy Policy, our data practices, or the terms of our service, please contact our Legal and Compliance team:
Email: privacy@greenole.ai
Address: Avenida das Nações Unidas, n° 14.401, Conjunto 1708, São Paulo