Homely and GDPR

 

Under the UK General Data Protection Regulation (UK GDPR) and the Data Protection Act 2018, you have the right to access the personal data we hold about you. This article explains what data we process, why we process it, and how your rights apply.

 

1. Data Collected and Processed

When you use the Homely Hub to monitor and support your heat pump energy system (including via our mobile app and your associated account), we process the following categories of personal data:

  • Account Information: Name, email address, contact details, and account credentials.
  • Energy Usage Data: Information collected by the Homely Hub about your heat pump’s electricity and energy consumption.
  • App Usage Data: Details of your interactions with the mobile app and platform, including login activity, feature use, and preferences.
  • Technical Data: Device details and IP addresses required for secure access to our app.

 

2. Purpose and Legal Basis for Processing

We process your data in order to:

  • Provide and maintain your Homely Hub service.
  • Support the operation of your heat pump in line with your preferences.
  • Improve our products and services.
  • Fulfil our contractual obligations under the Homely Hub End User Licence Agreement.

Our lawful bases for processing include contractual necessity, legitimate interests, and, where applicable, your consent (for example, preference settings or electricity consumption data).

 

3. Data Recipients

Where necessary, your personal data may be shared with:

  • Service providers supporting hosting, IT services, and data analysis.
  • Third parties involved in the installation and maintenance of your heat pump.
  • Regulatory bodies, where required by law.

 

4. Data Retention

We retain personal data only for as long as is necessary to:

  • Provide your Homely Hub service.
  • Meet legal, regulatory, and contractual obligations.

 

5. Data About the Heat Pump

 

We recognise that some requests may relate to data about the operation of your heat pump. It is important to clarify that not all operational data qualifies as personal data.

 

Under UK GDPR, personal data must relate to an identifiable individual. Therefore, the following categories fall within scope:

  • Data clearly about you (e.g. account information).
  • Data relating to your choices (e.g. temperature selections or scheduling).
  • Data impacting you or your household (e.g. electricity or energy consumption).

 

By contrast, technical operational data—such as flow rates or system performance metrics—does not constitute personal data. The Information Commissioner’s Office (ICO) advises that “information about the operation of a piece of machinery… is unlikely to be personal data” (ICO guidance).

 

This technical data does not describe or evaluate your identity, choices, or behaviour, and therefore falls outside the scope of UK GDPR.

 

6. Your Rights

Under data protection law, you have the right to:

  • Access the personal data we hold about you.
  • Request correction of inaccurate or incomplete data.
  • Request erasure of your data in certain circumstances.
  • Object to or restrict processing of your data in certain situations.
  • Lodge a complaint with the Information Commissioner’s Office (ICO) if you believe your rights have been infringed: www.ico.org.uk.

 

Next Steps

If you would like to make a request under UK GDPR, or if you have any questions about the data we hold, please contact us:

 

📧 team@homelyenergy.com

✉️ By post: [Insert company address]