Privacy Policy

Last updated: May 6, 2026

1. Who are we?

Mithra (mithra.network) is a Dutch company focused on smart energy and monitoring solutions, including battery storage, grid congestion solutions, sensors, and IoT. In this privacy statement, we explain which personal data we process, why, and which rights you have.

Controller:

• Name: Mithra

• Website: https://mithra.network

• Contact: via the contact form on our website

2. Which personal data do we process?

We process only data that you provide to us yourself or that we receive through our website:

• Contact details: first and last name, business email address, phone number.

• Business details: company name, job title.

• Content of your message: what you fill in on a form or write to us in an email.

• Technical data: IP address, browser type, visit data (via cookies and/or tracking pixels), interaction data with our advertisements (such as via LinkedIn Insight Tag).

3. Why do we process your data?

We process your personal data for the following purposes:

• Contacting you: to respond to your request, question, or form submission.

• Service delivery: to inform you about and support you with our solutions.

• Improving our website and marketing: to understand how visitors use our website and which advertisements are effective.

• Legal obligations: insofar as this is necessary to comply with laws and regulations.

4. On what legal basis do we process your data?

We process your data on the basis of one or more of the following legal grounds under the GDPR:

• Consent: when you actively sign up or fill in a form.

• Performance of a contract: when we issue a quote or provide services.

• Legitimate interest: for commercial communications within a business context, and for improving our website and advertisements.

• Legal obligation: where applicable.

5. How long do we retain your data?

We do not retain your data longer than necessary for the purposes for which we collected it. Specifically, we apply the following retention periods:

• Lead and contact details: up to a maximum of 24 months after the last contact, unless you request deletion earlier.

• Customer data (for an active contract): for the duration of the contract, plus the legally required retention periods (such as 7 years for financial records).

• Website data and cookies: as described in our cookie statement.

6. With whom do we share your data?

We never share your data with third parties without cause. We only share it with:

• Processors: suppliers who process data on our behalf (such as our email, CRM, and hosting providers). We enter into a data processing agreement with these parties.

• Advertising partners: such as LinkedIn, insofar as this is necessary to measure campaign effectiveness. Only anonymized or aggregated data is shared here.

• Competent authorities: if we are legally required to do so.

We do not sell your personal data to third parties.

7. Transfers outside the EU

Some of our suppliers may process data outside the European Union. In such cases, we ensure that appropriate safeguards are in place, such as approved standard contractual clauses of the European Commission or an adequacy decision.

8. How do we secure your data?

We take appropriate technical and organizational measures to protect your data against loss or unlawful processing. These include encrypted connections (HTTPS), access control, and limiting the group of employees who have access to personal data.

9. What rights do you have?

Under the GDPR, you have the following rights:

• Access: you may request which data we process about you.

• Rectification: you may have incorrect data corrected.

• Erasure (right to be forgotten): you may request deletion of your data.

• Restriction of processing: you may request that processing be temporarily stopped.

• Objection: you may object to processing based on legitimate interest.

• Data portability: you may request or have your data transferred in a structured format.

• Withdraw consent: if we process your data based on consent, you may withdraw it at any time.

You can exercise these rights by contacting us via the contact form on mithra.network. We will respond within 30 days.

10. Cookies

Our website uses cookies and similar technologies, including the LinkedIn Insight Tag for measuring advertisement effectiveness. For more information, please refer to our cookie statement.

11. File a complaint with the Dutch Data Protection Authority

If you believe that we are not handling your personal data correctly, you have the right to file a complaint with the Dutch Data Protection Authority (AP):

• Website: https://www.autoriteitpersoonsgegevens.nl

• Mailing address: P.O. Box 93374, 2509 AJ The Hague

We would appreciate it if you contact us first so we can address your concern.

12. Changes to this privacy statement

We may amend this privacy statement from time to time. We will publish changes on this page, with the date at the top updated accordingly. We recommend that you review this page periodically.

13. Contact

Do you have questions about this privacy statement or about how we handle your personal data? Contact us via the contact form on mithra.network. We will respond as soon as possible.