This Privacy Policy explains how Planno FZ-LLC, doing business as Planno (“Planno,” “we,” “us,” or “our”), collects, uses, retains, shares, and protects personal data when you visit our website at http://www.planno.io (the “Site”) or use the Planno platform and related services (collectively, the “Services”). It also explains the rights available to you and how to exercise them.
This Privacy Policy is incorporated into and forms part of our Legal Terms (the “Terms”). Where this Policy and the Terms address the same subject, they are intended to be read consistently. Capitalised terms not defined here have the meaning given to them in the Terms.
WHO THIS POLICY IS FOR
Planno is a business-to-business platform used by solar development companies, EPCs, and independent power producers (IPPs). Our users are business professionals acting in a professional capacity. The Services are not directed at consumers and are not intended for anyone under the age of 18. We do not knowingly collect personal data from minors, and we do not collect data from individuals other than in a business context. If you believe a minor has provided us with personal data, contact us using the details at the end of this Policy and we will delete it.
THE DATA WE COLLECT
We collect only the data we need to provide and improve the Services. We do not collect special categories of sensitive personal data (such as health, biometric, racial, religious, or political data), and we do not collect or store payment card data on our own systems. The categories of data we collect are as follows.
Account and registration data. When an account is created, we collect the user’s name, corporate email address, and company name, together with any role or account-configuration details provided during onboarding.
Usage data. When you use the platform, we collect data about how the Services are accessed and used. This includes log data such as IP address, browser type, device and operating-system information, pages and features used, actions taken within the platform, and the dates and times of access. This data helps us operate, secure, and improve the Services.
Demo request data. When you submit a demo request form or book a demo, we collect the contact and company information you provide, the market or use case you indicate an interest in, and any message you include.
Pricing proposal data. Where we issue a personalised pricing proposal through a unique link, we record visit data associated with that proposal — including the fact that the link was opened, and the date and time of the visit — so that we can manage the proposal and follow up appropriately.
Communications data. When you contact us by email or through a form, we keep a record of that correspondence and any information you choose to provide.
The rooftop, ownership, energy, and contact intelligence presented within the platform is market and business-asset data sourced from public registries, commercial data providers, and our own geospatial analysis. To the extent any such data constitutes personal data relating to identifiable individuals in their professional capacity (for example, a named business contact at an operator), we process it as described in this Policy and in accordance with applicable law, and we apply source attribution and freshness indicators to that data within the platform.
HOW WE USE YOUR DATA
We use personal data to create and administer accounts and authenticate users; to provide, maintain, and improve the Services; to respond to demo requests, enquiries, and support requests; to manage pricing proposals and related follow-up; to send transactional and service communications such as confirmations and notifications; to monitor, secure, and troubleshoot the Services and prevent fraud or misuse; to understand how the Services are used so that we can improve them; and to comply with our legal obligations and enforce our Terms.
Where applicable data-protection law requires a legal basis for processing, we rely on the performance of our contract with you, our legitimate business interests in operating and improving a B2B service (balanced against your interests and rights), your consent where we ask for it (for example, for non-essential cookies), and compliance with legal obligations. We do not use your personal data to make decisions producing legal or similarly significant effects through solely automated means.
HOW LONG WE KEEP YOUR DATA
We keep personal data only for as long as it is needed for the purposes described in this Policy, after which we delete or anonymise it. Account data is retained for the duration of the account relationship and for a reasonable period afterwards to meet legal, accounting, and dispute-resolution requirements. Demo request and enquiry data is retained for as long as needed to evaluate and follow up on the request and, where relevant, for our ongoing business relationship. Pricing proposal pages auto-expire 45 days after issue, subject to manual reactivation, and the associated visit records are retained while the proposal remains commercially relevant. Usage and log data is retained for a limited period appropriate to security, troubleshooting, and analytics. Where we are required to retain data to comply with a legal obligation, we keep it for the period that obligation requires.
WHO WE SHARE YOUR DATA WITH
We do not sell personal data. We share personal data only as described here.
We share data with service providers who process it on our behalf and under contract, solely to provide functions that support the Services. These currently include:
- Amazon Web Services (AWS) — hosting and infrastructure for the product application
- Vercel — hosting and analytics for the marketing website (planno.io)
- Sanity — content management system
- Resend — transactional and service email delivery
- Google Analytics 4 — website usage analytics
- Calendly — demo scheduling
- A customer relationship management (CRM) system used internally to manage sales and account relationships
We may also share data where necessary to comply with applicable law, regulation, legal process, or an enforceable governmental request; to enforce our Terms or protect our rights, property, or safety, or those of our users or others; and in connection with a merger, acquisition, financing, or sale of assets, in which case we will require the recipient to honour this Policy or notify you of any material change.
INTERNATIONAL DATA TRANSFERS
Planno is established in the United Arab Emirates, and our service providers operate in a number of jurisdictions, including the United States and the European Union. As a result, your personal data may be transferred to, stored in, and processed in countries other than the one in which it was collected, where data-protection laws may differ from those in your jurisdiction. The Services are hosted in the United States, and by using the Services you understand that your data may be transferred to and processed there. Where we transfer personal data internationally, we take steps to ensure it is protected to a standard consistent with this Policy, including by using contractual safeguards with our service providers where appropriate.
YOUR RIGHTS
We respect the data-protection rights that apply to you. Although these Terms and this Policy are governed by the laws of the United Arab Emirates, we apply the following rights, aligned with GDPR principles, to all users:
- Access — the right to be told what personal data we hold about you and to receive a copy of it.
- Correction — the right to have inaccurate or incomplete personal data corrected.
- Deletion — the right to have your personal data deleted where it is no longer needed or where you withdraw consent on which processing relied, subject to our legal and contractual retention obligations.
- Portability — the right to receive certain personal data you provided to us in a structured, commonly used, machine-readable format, and to have it transmitted to another controller where technically feasible.
- Objection and restriction — the right to object to, or ask us to restrict, certain processing based on our legitimate interests.
- Withdrawal of consent — where we rely on consent, the right to withdraw it at any time, without affecting processing carried out before withdrawal.
Exercising these rights is free in most cases and will not disadvantage you. We may need to verify your identity before acting on a request, and we may decline or limit a request where an exception or legal obligation applies, in which case we will explain our reasoning.
HOW TO EXERCISE YOUR RIGHTS
To exercise any of the rights above, or to ask a question about this Policy, contact us at helpdesk@planno.io. We will respond within a reasonable period and, where applicable law sets a specific timeframe, within that timeframe. If your personal data is held within a customer’s account or workspace, that customer may be the controller of the data, and we may direct your request to them or act on their instructions.
HOW WE PROTECT YOUR DATA
We maintain technical and organisational measures designed to protect personal data against unauthorised access, loss, misuse, and alteration. These include access controls and authentication, encryption in transit, hosting on reputable infrastructure providers, restriction of access to personal data on a need-to-know basis, and contractual controls on our service providers. No method of transmission or storage is completely secure, so while we work to protect your data, we cannot guarantee absolute security. You are responsible for keeping your account credentials confidential.
COOKIES
Our Site uses cookies and similar technologies. How we use them, and how you can control them, is explained in our Cookie Policy, which forms part of this Privacy Policy.
CHANGES TO THIS POLICY
We may update this Privacy Policy from time to time. When we do, we will revise the “Last updated” date at the top of this Policy and post the updated version on the Site. Where a change is material, we will take reasonable steps to bring it to your attention. Your continued use of the Services after an update takes effect means you have read and understood the revised Policy. We encourage you to review this Policy periodically.
GOVERNING LAW AND DISPUTES
This Privacy Policy is governed by the laws of the United Arab Emirates. Any dispute arising out of or in connection with this Policy is subject to the governing-law and dispute-resolution provisions of our Terms, including binding arbitration under the International Commercial Arbitration Court of the European Arbitration Chamber, with the seat of arbitration in Dubai, United Arab Emirates, and proceedings conducted in English.
CONTACT US
In order to ask a question about this Privacy Policy, exercise a data-protection right, or raise a concern about how we handle personal data, please contact us at:
Planno FZ-LLC
in5 Innovation Centre
Dubai Internet City
Dubai, United Arab Emirates
helpdesk(at)planno.io