Our Privacy Policy
Last updated: 26 August 2025
Please Note: Due to changes set out by Ofgem in relation to Mandatory Half Hourly Settlement (see Ofgem's Electricity Settlement Reform) this Policy now gives us the right to automatically collect half hourly readings from your smart meter when you join us, change tariff or get a smart meter. This change is required to enable Ofgem’s plans for market-wide half-hourly settlement. We don’t actually currently do this (the default is daily) and we will always let you know before we start to do so. You can change how often your smart meter takes readings. See clause 3.2 for more information.
Contents
Introduction - protecting your data
1. The data we collect and how we do this
2. How do we use your personal data
3. How we use Smart Energy data
4. How we use your sensitive personal data
5. The data we get from third-party sources
6. The legal bases for data processing
8. Who we share your personal data with
9. How your personal data is sent outside of the European Economic Area
10. How long we keep your personal data
11. Protecting your personal data
12. How we might change this privacy policy
13. The choices and rights you have when it comes to your personal data
Your data is in safe hands
Our customers are at the centre of everything we do. So, as well as giving you excellent value and the best service around, we’re committed to protecting your privacy.
This privacy policy relates to OVO Energy and is here to help you understand what data we collect, why we collect it, and what we do with it. Please read carefully, because it tells you some important stuff – about how we handle your personal data, and the steps you can take to look after it.
The boring bit:
The responsible data controllers are: OVO Electricity Limited (No. 06858121); OVO Energy Ltd No (06890795); OVO (S) Gas Limited (No. 02716495); OVO Gas Ltd (No. 06752915); OVO (S) Energy Solutions Limited (No. SC386054); Corgi Homeplan (No. SC358475)
When we refer to “we”, “us”, and “our”, we mean any one or more of those data controllers, as appropriate. By “you” or “your” we mean any individual, sole trader and/ or partnership that gets products or services from us, uses our website, or interacts with us in another way. This privacy policy supplements, or may be supplemented by, other privacy policies we might give you – but it doesn’t replace them.
If you have any questions, comments, or concerns about this policy, we’d love to hear them. Get in touch anytime: our contact details are in section 14.
Thanks for reading! We hope this policy helps.
1.0 The data we collect and how we do this
We (or third parties who act on our behalf) collect your personal data when you use our website, talk to us over the phone, by letter, by email, on social media, video, digital messaging (such as Whatsapp or live chat), in person, receive our products and/or services, or ask to join schemes which you’re eligible for. We also collect information provided by third party data brokers to contact you about our services see section 2.2 Marketing. We might collect the following types of data:
Your contact details and the contact details of people associated with your account.
Remember: if you give us someone else’s personal data, make sure you always have their permission.
Full name
Email address
Billing address
Property address
Phone number
Any other relevant info we need in order to know that it’s you and be able to contact you directly.
Details of a secondary contact, such as nominees or attorneys (for example, their name and number)
Your account data and the account data of other people associated with your account.
Remember: If you give us someone else’s personal data, make sure you always have their permission.
Unique account number
Date of birth
Title
National Insurance number
Whether you’re a homeowner or renting
Survey responses
Feedback responses (e.g. via our communication platforms, or directly in survey results and trials you have participated in, though these responses will usually be stored anonymously where possible)
Energy Performance Certificate (EPC) data
Photos of your meters
Information about any other accounts you hold for gas or electricity including the name of the supplier and payment methods
Conversations we have with you, including phone calls and emails, which may be monitored or recorded
Household details and property type
Complaints and/or incident details
Appointment details
Notes added to your account
Financial data
Bank account details
Your credit history
Details of state benefits you receive
Sometimes, details of outstanding debt
Technical data
Internet protocol (IP) address used to connect your computer to the internet
Login data (like your username and password)
Your browser type and which version on the browser you’ve got, plus which devices you use to access our websites
Your time zone setting
Operating system and platform
Your behaviours on our website or app (for example, the pages that you click on page response times, download errors, length of visits to pages and how you interact with pages)
Your rough location when you connect to our websites (this will be just the city or county you’re using your device in)
We track technical data by using cookies
If you have an electric car we may collect the following data to provide you with services: car make, model, battery capacity & efficiency, kWh used by the charger from the grid and from the home (local power generation) kWh and minutes boosted
If you have a heat pump we may collect data on the usage and efficiency
If you add Battery Boost to your tariff, battery data will be processed in order to optimise the battery use
Optimisation Data
For some of our products and services, such as OVO Greenlight we might ask you to give us some extra data about your home and lifestyle, to make sure you get the most out of whatever you are using. This includes data like:
Number of people and rooms in your home (and any additional details about your home that might be needed for services such as Solar Panel installations)
What type of heating system you have
What and how much you recycle
What transport you use
Marketing and communications data
Your marketing and communication preferences in receiving marketing from us and/or third parties your consent status, and limited contact data (e.g. email, phone number, device/browser info, cookie IDs) we may use to show you digital or direct marketing content
Energy supply data
The date we start supplying your energy
Technical meter details
Meter Point Administration Number (MPAN) for electricity customers
Meter Point Reference Number (MPRN) for gas providers
Your plan
Energy usage (like meter readings and units of gas and electricity used over a period of time)
Sensitive/Special categories of data
Data about your needs and the needs of other people in your household. This helps us understand if you have any special requirements. For example, this data may cover age, disabilities, health and/or any financial vulnerability. And, if it applies to you we might add you to the Priority Services Register - see section 4.
If we think that someone might have committed fraud or stolen energy from us (for example by tampering with a meter or diverting the energy supply) we’ll record this information (see section 4 for further details)
OVO Homeplan (formerly OVO Corgi Homeplan) boiler cover and services
Details of your boiler make, model, and system type
Length of time you've had boiler cover
Your service and claims history
Information about your property that affects heating (e.g. hot water cylinder type or geographical factors relevant to pricing).
Other
If you’re applying for Help to Heat Group Benefits, we need a mortgage statement.
If you want to attend one of our sponsored events, we might need venue and dietary preferences, accessibility needs and an emergency point of contact
If you speak to us through social media, we take your name and store a link to your social media profile, which we keep with details of your previous correspondence with us.
If you take part in trials, market research, surveys or any related incentive or activity
If you register an account for services with us, we create and record customer ID numbers for you and record the date of your application.
If you are part of the Group Feed-in-Tariff (“FIT”) Scheme or Smart Export Guarantee (“SEG”) Scheme, we’ll gather the following: regular generation/export meter readings; generation/export meter details; data needed for identification and address checks; details of company affiliations; details of nominated persons; contract details; micro generation certification scheme information; and (where necessary) EPC information for the property.
If you consent to video recordings using your camera for virtual home assistance and/or repair, or when we (or third parties who act on our behalf) visit your home wearing a body camera (such as related to debt collection or discussion), we may capture visuals of you, your home or your household. These videos may also be used for safety, training, and service delivery purposes.
Power Move Flex
If you have signed up to Power Move Flex we will collect a variety of data including survey responses and your half-hourly usage data for the duration of the service. We will also collect and analyse data from your OVO account. This data will be aggregated or made anonymous and shared with ESO and any Power Move Flex project partner, on a continuous basis throughout the trial. For more information about Power Move flex and how your data is used please see the Just in Time notice here.
It’s really important that the personal data we hold about you is up to date so please let us know if your personal data changes at any time.
If you do not provide us with any personal data which we may request from time to time, we may not be able to provide you with certain services.
2. How do we use your personal data?
Here’s some more information about how we use your data.
2.1 Reasons
We might use your data for the following reasons (this can include our agents and contractors too)
To serve your account
To identify you
To give you relevant products and/or services, benefits and rewards
To give you information about the amount of each service you’ve used, and which charges apply. For example, how much electricity or gas you have used and what this will cost
For contacting you about your account, whether that’s via post, email, your online account, SMS, live chat or other forms of electronic communication (including, messages sent through a smart meter) or by visiting you (to take a meter reading for example)
To carry out additional services you have requested, including (but not limited to) Solar Panel installations, EV Charger installations.
To assess your financial circumstances in order to offer payment plans and other associated financial and affordability activity. Sometimes we do this using affordability checkers and tools.
To verify and confirm cash-back and/or rewards that you may be entitled to via third party sites offering OVO-related offers.
To predict the amount of energy you’re likely to use in any period of time
To calculate payments due to you or OVO
For deciding which products and/or services and which terms and conditions we can offer you. For example, if you ask for a certain plan we’ll check to see if it works for you
We will use data collected from your smart meter to work out your bills, to identify you, and to prevent fraud or energy theft. If you have a smart meter, you’ll find more details about how we use your information in our terms and conditions, as well as in our Guide to Smart Meter Data and Data Collection
When you switch to us from your last energy supplier, or when you switch away from us to a new one
To spot and prevent crime, fraud or loss
So you can use interactive online features
As part of arranging and carrying our visits to your property (such as for reading meters)
To give you incentives or run a loyalty scheme
To answer your complaints or questions
To send you relevant marketing messages by email, post, SMS, or phone, depending on your preferences. We may also use your data (such as email address, phone number, or cookies) to show you personalised adverts on social media, platforms, search engines, or other digital platforms. See more about marketing in Section 2.2. Marketing.
To help us improve
For training our team and improving our products and services, which might mean we monitor and record conversations we have with you (like phone calls,emails,SMSs and live chats)
When using data analytics to understand and improve the way we do things as a business
To carry out market research and to get in touch with you about this (for example when doing customer satisfaction surveys and questionnaires)
To create internal reports or profiles while analysing information for forecasting and marketing purposes
When we are conducting trials of technology and infrastructure to help develop and improve products and services
For training our AI models which perform quality and compliance monitoring checks; and assist our customer care agents in providing the services you request.
To create new business models and propositions
To keep in contact
For us (or authorised third parties) to get in touch with you, about our services and/or products - such as to send you info when you sign up or change plans, service announcements and administrative messages
To contact you (by letter, phone call, SMS or email) with details of products and services that we or members of the OVO Group offer, which are similar to those that you have already, or to give you info about services or products you’ve opted in to getting from us
To see if you would like any help when you start but don’t finish our sign up journey, or when you have asked for a quote from us
To contact you about any outstanding matters after the account is closed or you have switched to a different supplier
To support the business
To ensure the health and safety of you, our team and contractors
When using Feed-in Tariff (FIT) data to register the installation on the FIT scheme through the Central FIT Register, when acting as administrators and facilitating payments through this scheme, and when acting as a mandatory licensed supplier for the SEG (Smart Export Guarantee) scheme
To comply with any procedures, laws and regulations which apply to us – including where we think it's in our best interests to comply (or in the interests of others)
To allow internal corporate reporting, business administration, adequate insurance coverage, the security of company facilities, research and development, and to find business efficiencies and put these into practise
When your letting agent has given us personal information about you, we might need to share this with your local council and water authority - so they can get in touch with you about any tax or charges
To help with system maintenance, testing and training
To run credit checks and check your credit score, which might affect the services we offer you
To carry out or help with fraud prevention, identity or money laundering verification and legal enforcement when needed
To take payments and go after any money owed to us, and manage our debt collection and recovery activities
To administer and protect our business and to manage and protect our website (including troubleshooting, data analysis, testing, system maintenance, support, reporting and hosting of data)
Where you have voluntarily taken part in a survey, study, or trial of any kind, we will use this information to evaluate the trial and understand its impact. We may also therefore use your information in associated ways, such as prize/incentive distribution, and/or contacting you for additional feedback (unless you have opted-out). Please note that if you take part in any of our "Refer a friend" offers, you agree that you’ll only contact anyone who wants to benefit from the offer.
To respond to media or parliamentary enquiries as part of our right to respond
2.2 Marketing
We may send you marketing messages about our products and services, the wider OVO Group, or our trusted partners. This might include:
Postal marketing - sent under our legitimate interests, unless you tell us not to.
Live marketing calls - made under our legitimate interests, provided you’re not on the Telephone Preference Service (TPS) or have not opted out with us. Emails and SMS marketing - sent only with your consent.
We also use your personal data to show you digital ads via the My OVO app, social media, search engines, or other websites. You can manage these settings and what adverts you see on the relevant platform or your device (i.e. by blocking/rejecting cookies, or configuring your app preferences).
If you want to change your marketing preferences, you can do this at any time. Our contact details are in section 14.
Finally, If you decide to leave us, we may contact you to allow us to market our products and services to you after you have left for up to one year, unless you opt out.
You can manage or opt out of marketing at any time.
Service Messages
Not all messages are marketing. We send service messages to help manage your account - for example, appointment reminders, fixed tariffs ending, safety information, billing updates, or changes to your contracts and/or terms. These are necessary for delivering our services to you and are not affected by your marketing preferences. These service messages might be sent by email and/or SMS.
3. How we use smart meter data
3.1 Here’s how we use energy consumption data, given to us by your smart meter
We will use your energy consumption data we obtain remotely from your smart meter for the following purposes:
To calculate your energy usage
To produce bills based on real readings
For industry reasons, and to predict the demand for energy
To give you information and feedback about your energy use, as well as how you could manage your energy use better and save money
To track trends in energy use, analyse your energy data, and to compare it over time with other customers’ energy use. This is so we can create tailored products and services for you
To spot faults when they happen and fix these faster, as well as any other issues with your meter
To give interactive tools to analyse your energy use through your online account, or through communications we may send you (like when we send you energy saving advice)
To give you tailored advice on how to lower the amount of energy you use based on your energy use specifically
To carry out internal reporting, modelling and analysis to understand our customers better
3.2 How often your smart meter sends us readings
When you join us the default position is that your smart meter will send us half hourly readings for settlement purposes, and daily for billing. This is due to the new rules introduced by Ofgem for half hourly readings for energy settlement.
Historically, Customers had to “opt-in” to half hourly readings, however if you change supplier, switch tariff or have a new smart meter installed on or after 3 November 2022, half hourly meter readings will be taken from your meter for settlement purposes by default. Our opt out window on receipt of an email advising of your half hourly default is 7 days, or on receipt of a letter 10 days at which point we will start to collect your data for settlement purposes. You can however, choose to opt out to daily at any time if your type of tariff allows, by either logging on to your account or getting in touch with our customer service team. You will still need to opt-in to half hourly meter readings for other purposes (see below)
Scenarios where you can’t opt out of half hourly readings.
If you supply (export) energy to the network, you will not be able to opt-out of half hourly meter readings from your export meter for settlement. In addition, some of our Time of Use tariffs may not allow you to opt-out of half hourly meter readings for settlement purposes
How long will it take to process the changes?
It will take up to 5 days to carry out from the date that you contact us. Additional FAQs are attached for your information.
Additionally, if you can opt out of half hourly and choose to do so, we might not be able to give you some of our products and services. Or at the very least, your use of some products and services could be limited.
Meter reading frequency information:
Half hourly – your smart meter will collect data every 30 minutes and send this to us once a day (this will be the default setting that you have consented to when you join us, get a new smart meter or switch tariff unless you opt out);
Daily - your smart meter will send us a reading once a day
Monthly – your smart meter will send us a reading once a month. Please note this is the lowest level of data we’re allowed to take for billing and regulatory reasons. If you choose this option, we’ll also take ad hoc daily meter reads, as and when we need to to make sure we’re serving you properly. For example, to keep billing you accurately, or if we need to use the data to answer a question, or if we think your smart meter isn’t working properly)
We might also get smart meter readings when:
your prices change
you move to another of our energy plans
you move home
you ask us to
you switch to another supplier
Additional information on Settlements can be found on the Ofgem website, along with their Privacy Policy.
4. How we use your sensitive personal data
We treat some of the data we collect about you as extra sensitive (also known as ‘special category data’). This could be about your needs, or details of criminal offences (see section 1). We’ll only use this data in the following ways:
4.1 How we look after you and others in your home
We collect data about you and other people in your household, to make sure we’re aware of any needs you might have. This could be data on age, health, or disability, for example to:
Look after you and others in your household. For example, to make sure we don’t turn off your power if you have a vulnerability. And so we can respond in the right way, if there’s an emergency situation.
Give you products and/or services in a way that suits you, like if you need large print or braille
Assist staff and third-party contractors
Make sure you have the best experience when you come to an OVO event – let’s say, if we need to make sure the space is easily accessible for you
4.2 Criminal offences data
We use details of any criminal offences you’ve been accused of, together with information about whether the gas or electricity supply to your property has been tampered with or stolen in the past (or if we think it has), for the following reasons:
To make decisions about which products and services we can offer you, as well as the relevant terms and conditions
To make decisions about whether to disconnect your energy supply
To spot and prevent fraud or crime, with the help of any third parties when needed
5. The data we get from third party sources
We also get your personal data from the following third-party sources:
Other energy suppliers
Meter readings Payments from your existing supplier, when you ask to switch from us We might also get details of suspected fraud or energy theft, so we can spot fraud or crime
National databases (ECOES, Xoserve and PAF)
We might get details like your MPAN and other information about your energy supply, to help if you’re going through the process of switching suppliers. And to access this info, we might use a third party.
Debt collection agencies
Information about payments you’ve made or payment plans you have agreed to Information about your personal circumstances such as your ability to pay and any additional needs you have
Credit reference or fraud prevention agencies
You can find more info about this kind of data in sections 7 and 8
Third party data providers
We collect aggregated data about your geo-demographic lifestyle and property energy performance. We analyse this along with your account information so we can gather insights, plan marketing activities to tell you about relevant products and services; and to conduct market research and business development. If you’ve entered our collections process, we collect contact details to help us get in contact with you Debt consolidation providers give us information on your debt profile, to help us create payment plans if you’re struggling financially If we’re doing something that may impact the service you receive, we may ask tracing agents or other third parties to collect your contact details to help us communicate with you To contact you about our services.
Councils, local authorities or housing associations
We might get your name, address and contact details from councils, local authorities, or housing associations. This could be when these organisations want to apply for carbon-cutting measures for your property as part of the government funded schemes.
Letting agents, landlords, cohabitants, previous tenants or other third parties
We might get your name, address, and contact details if you’ve recently moved into, or taken over a property or supplier. Or if a third party (Like your landlord) introduces you to the OVO Group, so we can set up your account.
Ofgem
As a regulated company, we might get your personal information from our regulator, Ofgem, in order to meet our regulatory obligations
Law enforcement agencies (such as the police)
We might get data about meter tampering, the bypassing of meters, or the illegal use of energy so we can spot and prevent fraud or crime
OVO Group companies
We might get your account data, technical data, optimisation and energy supply data for administrative reasons – like to make sure our customers are getting a consistent service from us, and to make our business more efficient OVO Group includes any of the companies listed at the top of this document. Plus, our related businesses in the wider OVO Group such as CORGI, Kaluza, Field Force, Kantan, and The Renewable Exchange, as well as other subsidiaries of OVO Group Limited from time to time.
Third parties who introduce you to us (such as price comparison websites)
We will obtain the personal data you provided to a third party who introduced you to us for the purposes of setting up your account and providing you with the services you've asked for.
OVO Franchisees
Where OVO has partnered with a franchisee to carry out OVO services, the franchisee will sometimes be the first point of contact with you and directly carry out the services on OVO’s behalf (such as Solar Panel installations). Where this is the case, the franchisee will pass your details (such as your contact details, account data, technical data, optimisation and energy supply data) onto OVO for administrative reasons – like to add the details to your OVO customer account, ensure you are provided with a consistent customer service, to oversee the services are being carried out effectively, and communicate with you, where required.
Department for Work and Pensions
We might obtain details to check if you qualify for government schemes such as the Warm Home Discount, ECO or GBIS schemes.
Department for Business, Energy and Industrial Strategy (BEIS)
We might give them your contact details, account data, and energy supply data. This could be if they ask for information about Feed-in Tariff (FIT) installations, for example.
Third parties who potentially want to sell or disposer the business
We will obtain data from from a potential seller or disposer of their business or operations, including due diligence purposes before sale/disposal. This also includes ensuring continuity of energy supply where we acquire your personal data from another supplier, whether as a result of a merger, acquisition or business reorganisation.
Third party booking agencies
We obtain data from a third party for the purposes of booking an appointment.
Partnerships with third parties that provide offers
If you redeem a voucher/offer from a third party via the OVO Beyond app that provides a reward to your OVO account (such as applying a credit to your bill) the third party will inform us that you have redeemed the voucher and we will apply the relevant information to your account. An example of this is if you book transport with Omio via the OVO Beyond app.
6. Legal Bases for data processing
The legal bases for processing your personal data:
For your contract
Our use of your personal data is necessary to give you the products and services that you’ve asked for (for example, energy products) and to provide you with information about these products and services
Our legal obligations
Our use of your personal data is necessary so we can comply with our supply licence conditions, government obligations and any other legal or regulatory requirements.
Our Legitimate Interests
It might be in our interests to collect and use personal data, as we need this info to give you the services you want more effectively. When deciding whether it's in our interests to use your data, we will also consider your interests as a citizen and your rights under data protection laws. It's in our interests to: • Run, grow, and develop our business • Spot and prevent fraud and Identify, exercise or defend ourselves against legal claims, complaints and investigations (including media, parliamentary and regulator investigations) • Make sure our own processes, procedures, and systems are as good as they can be • Recover debts that are owed to us • To support customers in financial difficulty • Get a better understanding of how people use our website and other channels where people engage with us • Analyse and enhance the information that we collect • Work out how effective our promotional campaigns and advertising campaigns are • To send marketing communications to you by Mail and phone, you can opt-out of these at anytime, please take a look at section 14 • Enhance, modify, personalise, or otherwise improve our services and communications for the benefit of our customers. If you have concerns about the processing activities based on our interests, please take a look at section 14. • Improve the security of our network and information systems • Raise awareness of Smart Meters
Consent
Sometimes, we need your consent if we do want to use your personal data. For example to send you marketing communications about OVO group products in certain circumstances. If you give us consent, but you later change your mind, you may withdraw it, by letting us know. Just get in touch, using the details in section 14 and we’ll stop using your data for that purpose.
Vital Interest
Substantial public interest
7. Automated decision-making
OVO uses machine learning and Artificial Intelligence (AI) for profiling, evaluation and automated decision making purposes.
Profiling and automated decision making will not involve use of protected characteristics under the Equality Act 2010 such as data relating to gender, sex, religion, disability, ethnicity, marital status, age or disability.
If you would like to request a manual review of a decision made by solely automated means, please get in touch using the contact details in section 14.
7.1 To decide your OVO HomePlan pricing, cover, and renewal price
We use your account data and household data to enable us to analyse patterns, trends and create predictive behaviour forecasts based on current behaviours. It enables us to tailor offers, products and services to individuals needs and profiles. This may mean that every offer or service we provide is not communicated or offered to every customer.
In relation to our Boiler Home Services cover, we also use automated calculations which enable us to make a fair and responsible decision on what pricing we can offer you based on the cost of maintaining your boiler. We’ll consider:
your boiler make and model;
the length of time you have had cover;
your geographical location;
your claims history; and
whether non-standard system parts are required (including thermal stores and unvented cylinders).
If your boiler is non-standard and/or you have made a claim against your product, and/or you live in a place where it costs more for us to serve you, your individual renewal price may increase.
7.2 To make credit decisions
We use automated credit-scoring assessments to check how suitable it is for you to take any product or service on a credit basis, and to manage any debt related to your account. To do this, we might look at:
Data that’s included when you apply for a new product or service
Data we already have about you, your account, or your property – such as payment history for existing products and services. This includes data from accounts where you’re named jointly, with one or more other account holders.
Information from one or more credit reference agency
And/or, where it’s appropriate, data from fraud prevention agencies
If we decide that offering unsecured credit is not appropriate, we might need energy customers to pay a security deposit – or to pay using a prepayment meter, or a smart meter in prepayment mode. We might ask you for payment security at any time, if we decide that unsecured credit is no longer right for you.
7.3 For the Warm Home Discount
For both online applications and paper applications, we use an automated process to check people are eligible for Warm Home Discount rebates. This means our computer system will check the benefits you’ve ticked on your application, to see whether you meet the criteria needed to get the rebate. The criteria are described in the online journey and on the paper application form.
9. How your personal data is sent outside of the UK and European Economic Area
9.1 The ways we protect data when we send it
When we send data outside of the EEA, we make sure that all the right safeguards have been put in place to protect your personal data.
This means that we’ll:
Make sure the country where your personal data will be handled has been deemed “adequate” by the Information Commissioner’s Office (“ICO”) in accordance with the UK GDPR.
Include standard data protection clauses (approved by the ICO for transferring personal data outside the UK and EEA) in our contracts with those third parties – these are the clauses approved under Article 46.2 of the UK GDPR.
10. How long we keep your personal data
We keep your personal data for no longer than is necessary. This means that when we don’t need it any more we delete it. The length of time we keep it all depends on why we’re using it and/or what we need to do to comply with applicable laws and to establish, exercise, or defend our legal rights.
In some circumstances, we might anonymise your personal data (so that it can no longer be associated with you) and use this indefinitely, without further notice.
11. Protecting your personal data
We follow strict security procedures to protect your personal data. This includes following certain guidelines (for example, checking your identity when you phone us).
Whilst we take appropriate technical and organisational measures and have in place physical and electronic procedures necessary to safeguard the personal data that you provide to us, no transmission to or from us by post, email, phone, SMS or over the internet can ever be guaranteed as entirely secure. Communications over the web are not secure and as such, we cannot accept any liability or responsibility for any unauthorised access or loss of personal data.
We also have procedures in place to deal with any suspected data security breach. We’ll notify you and any applicable regulator of a suspected data security breach where we’re legally required to do so.
12. How we might change this privacy policy
We may change this privacy policy from time to time. If we make changes, we’ll let you know by revising the date at the top of this policy. If they’re major changes, then we may let you know by getting in touch with you.
13. The choices and rights you have, when it comes to your personal data
Our contact details are in section 14, and you can always get in touch to ask that we:
Let you know if your personal data is being processed
Give you further details about how we process your personal data
Give you a copy of any personal data we hold about you
Withdraw your consent for a way that we’re using your data (where we need your consent legally to use your personal information)
Consider any valid objection you have to us processing your personal data (including the right to object to processing where we’re relying on our interests as a legal basis for processing)
Update or delete personal data that we have about you
Restrict the way that we process your personal data
Consider any valid request to transfer your personal data (that relates to an energy account) to a third-party provider of services (this is called data portability)
Where we carry out automated decision making that has legal or significant effects on you, make sure we get a person to review that decision, give you an explanation of the decision, and/or consider your appeal of the decision
13.1 Exemptions
However, certain personal data may be exempt from the requests above, in certain circumstances. We could need to keep processing your personal data because of our interests, or to meet a legal obligation.
13.2 Response
If an exemption applies, we’ll tell you when we reply to your request. We might ask you to give us some data to confirm your identity before we reply.
14 Getting in touch with us
14.1 Our contact details
Two tips to help us get back to you more quickly:
When you send us your message, let us know if it's a "rights request" as part of your message. This will help us make sure it gets to the right people.
Include your name, account number, address, and if there's any data you're especially interested in, if you can. This will make it easier for us to respond to you properly.
How to contact us:
If you’ve got any questions about data protection, or you’re not happy with how we’ve handled your data, email us at [email protected].
For access to your data, use our online form.
To delete your data, use our online form.
For all other requests, email us at [email protected].
Third party requests for information
This section is applicable to third parties such as the Police, Government Agencies and Insurance providers requesting personal data. To request information please complete this form and attach the appropriate documentation. Personal Subject Access Requests will not be processed via this form (see above: ‘For access to your data’ form under ‘How to contact us’).
14.2 Data Protection Officer (DPO)
You can email our Data Protection Officer (DPO) at [email protected]. You can also write to them:
OVO Energy 1 Rivergate Temple Quay Bristol BS1 6ED
14.3 Information Commissioner’s Office (ICO)
If you’re not happy with our reply to any complaint or you think our processing of your data doesn’t comply with data protection law, you can make a complaint to the Information Commissioner’s Office (ICO). Just use these details:
Address: Information Commissioner’s Office, Wycliffe House, Water Lane, Wilmslow, Cheshire SK9 5AF
Telephone number: 0303 123 1113
Website: ico.org.uk