Last updated: 14/06/2026
PowerShelter B.V. (“PowerShelter”, “we”, “us”) respects your privacy and is the controller of the personal data described in this Policy. This Policy explains what personal data we collect, why, how we use and share it, how long we keep it, and your rights. It applies to our business customers, to riders who use our Shelters and app, and to visitors to our website.
Who we are
PowerShelter B.V., Jacob van Lennepkade 155H, 1054 ZL Amsterdam, the Netherlands. Chamber of Commerce (KvK) 90888189. For any privacy question or request, contact legal@powershelter.com.
Who this Policy covers, and the role of fleet partners
This Policy covers:
Business customers and prospects (our B2B sales and partner relationships).
App riders who access our Shelters through a fleet, lease or rental partner (for example Zoomo) using our app.
Direct subscribers who pay PowerShelter for access (currently at our Amsterdam location).
Website visitors.
Where you access our services through a fleet, lease or rental partner (for example Zoomo), PowerShelter and that partner are joint controllers of the personal data processed to provide the service. We have an arrangement with each partner setting out our respective responsibilities under data-protection law, including for handling your requests and providing information about the processing; the essence of that arrangement is available on request. You may exercise your data-protection rights against either PowerShelter or the partner.
The personal data we collect
Contact and business data (B2B): name, business email, phone number, company details and role.
Account data (riders): name, email and phone number. For app riders, your email is provided to us by your fleet partner to create your account; direct subscribers provide it when they sign up.
Payment data (direct subscribers): your card details are collected and processed directly by our payment provider, Stripe. We receive transaction confirmations and limited billing information, and we do not store full card numbers.
Usage and session data: Shelter access events, charging sessions, swaps, timestamps, Shelter and Locker identifiers, and the location of the Shelter used.
Location data (app): while you are using the app, your device location is used only to assess how far you are from a Shelter (so you can start a battery swap) and to give you directions to a Shelter. We do not track your location when you are not using the app, and we do not use it for any other purpose. Location is necessary for the app to function; if you do not allow it, the app will not work. You can turn it off at any time in your device settings.
Device and technical data: IP address, device and app identifiers, device type, operating system and app or browser version, and technical log data generated when you use the app or website.
Website and cookie data: information collected on our website (hosted on Framer), including through cookies and analytics - see Section 7.
Communications: messages you send to support and our responses.
Safety-incident data: records relating to safety incidents, thermal events, damage or misuse.
How we use your data, and our legal basis
We use your personal data for the following purposes, on the legal bases shown:
Providing the services (account access, Shelter use, charging, swaps and support): performance of a contract.
Taking payments and issuing invoices (direct subscribers): performance of a contract and compliance with legal obligations.
Assessing your proximity to a Shelter and giving directions (app location): performance of a contract. This is necessary for the swap function to work.
Operating, monitoring, securing and maintaining our Shelters, and preventing fraud and misuse: our legitimate interests in a safe, reliable network.
Managing B2B relationships and responding to enquiries: performance of a contract and our legitimate interests.
Safety monitoring and incident management: our legitimate interests and compliance with legal obligations.
Aggregated analytics and service improvement (not linked to an identifiable rider): our legitimate interests.
Marketing communications: your consent, or our legitimate interests for existing customers where permitted, with an opt-out in every message.
Complying with legal, tax and regulatory obligations: compliance with legal obligations.
Where we rely on legitimate interests, we have weighed those interests against your rights and freedoms. Contact us for more information about that balancing.
App data and third-party components
The app uses Google Maps to display maps and help you find nearby Shelters. To provide the map, Google processes your device location and related usage data in accordance with Google’s own terms and privacy notice. The app does not use any other third-party software development kit (SDK) that collects personal data, and we do not use third-party analytics, advertising or crash-reporting SDKs in the app.
Who we share your data with
We may share personal data with:
Service providers (processors) who support us: Amazon Web Services (cloud hosting, EU region); Stripe (payment processing); Framer (our Netherlands-based website platform); Odoo (EU-based business operations, CRM and invoicing); and Google (Google Workspace for our business email and document storage, and Google Maps for in-app maps).
Fleet, lease or rental partners (for example Zoomo) where you access our services through them - account, access, usage and incident data, to operate the service.
E-bike brand partners where you have used their chargers.
Professional advisers, and authorities or regulators where required by law.
We do not sell your personal data.
Cookies and similar technologies
Our website uses cookies and similar technologies, including for analytics and functionality. Strictly necessary cookies are always active. We place non-essential cookies only with your consent through our cookie banner, and you can change or withdraw your choices at any time. Full details, including the categories we use and how to manage them, are set out in our Cookie Policy.
International transfers
Most of your personal data stays in the EU. Our application data is hosted with AWS in the EU region, our business systems run on Odoo (an EU-based provider), and our website platform, Framer, is a Netherlands-based company.
Some providers process limited personal data outside the EEA. In particular, payments are handled by Stripe (you contract with Stripe Payments Europe, in Ireland, and Stripe transfers certain data to the United States), and Google provides our business email and document storage (Google Workspace) and our in-app maps (Google Maps) from the United States. Framer serves our website through a global content-delivery network, which may include locations outside the EEA.
Where personal data is transferred outside the EEA, we rely on appropriate safeguards - an EU adequacy decision, the EU–US Data Privacy Framework, and/or the European Commission’s Standard Contractual Clauses.
How long we keep your data
Account data: for the duration of your relationship with us and up to 5 years afterwards.
Payment, invoice and transaction data: 7 years, to meet our Dutch fiscal retention obligation (art. 52 AWR).
Usage and session data: up to 5 years, then deleted or anonymised.
Safety-incident records: up to 10 years, in line with the product-liability long-stop and applicable limitation periods.
Support communications: up to 5 years.
Cookie and analytics data: for the lifetime of each cookie, up to 14 months.
Marketing data: until you opt out or withdraw consent.
We may keep data for longer where the law requires it, or to establish, exercise or defend legal claims.
Your rights
Under the GDPR (and the UK GDPR where it applies) you have the right to access, rectify, erase, restrict or object to the processing of your personal data, to data portability, and to withdraw consent at any time where processing is based on consent. To exercise your rights, contact legal@powershelter.com. You may also complain to the Dutch Data Protection Authority (Autoriteit Persoonsgegevens) or to the supervisory authority in your EU or UK country of residence.
Children
Our services are not intended for anyone under the age of 16, and we do not knowingly collect personal data from children under 16.
12. Children
Our services are not intended for anyone under the age of 16, and we do not knowingly collect personal data from children under 16.
13. Automated decision-making
We do not use your personal data for automated decision-making or profiling that produces legal or similarly significant effects.
14. Security
We use appropriate technical and organisational measures to protect your personal data against unauthorised access, loss, misuse or disclosure, and we review those measures regularly.
15. Changes to this Policy
We may update this Policy from time to time. We will post the updated version here and, where changes are material, take reasonable steps to notify you.
Contact us
If you have any questions or requests, please contact us at:
PowerShelter B.V.
Jacob van Lennepkade 155H 1054ZL Amsterdam, NL
legal@powershelter.com