Privacy policy


Green Genius, a company developing renewable energy projects (hereinafter referred to as “We”, “Green Genius”) values and protects the privacy of personal data, and in this policy (hereinafter referred to as “Privacy Policy”) we provide details of how we process the personal data of individuals (hereinafter referred to as “You”, “Data Subjects”).

In processing personal data, we comply with Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data and repealing Directive 95/46/EC (“General Data Protection Regulation”, “GDPR”) and other applicable legislation on the protection of personal data.

In this Privacy Policy, we provide you with the most important structured information about the protection of your personal data, i.e. what personal data we collect, how and for what purposes we use it, on what legal grounds we process it, for how long we store it, to whom we transfer it, as well as our obligations in the processing of your personal data, the rights that you have and the means of exercising them.

The Privacy Policy is a constantly evolving document and we may improve, change and update it from time to time as necessary, so please visit the Website from time to time where you will always find the most up-to-date version of the Privacy Policy. The new version of the Policy shall come into effect from the date of its posting on the Website.


The latest changes to the Privacy Policy have been made and are effective from  30.05.2024

The previous version of the Privacy Policy is available here: Privacy Policy until 29th of May in 2024


  • Website –  the website accessible at
  • Applicable data privacy legislation – General Data Protection Regulation (EU) 2016/679 (GDPR) and other mandatory legislation of the European Union and its Member States (including the Republic of Lithuania) applicable to the processing of Personal Data.
  • Personal Data –  any information relating to a natural person, i.e. a data subject, whose identity is known or can be established, directly or indirectly, by reference to data such as a personal identification number, one or more factors specific to that person, such as his or her physical, physiological, genetic, psychological, economic, cultural or social characteristics.


Your data controller is:


International Office UAB “Green Genius”

Company registration number: 302841738

Registered office address: Ozo g. 10A, Vilnius, LT-04326, Lithuania

Phone, email :  +370 655 45222,

Data Protection Officer:

Polamd “Green Genius“ Sp. z o.o.

Company code: 561031

Registered office address: ul. Ludwika Waryńskiego 3a, 00-645 Warsaw

Phone, email:, +48 537 537 326

Data Protection Officer:

Rumunija „Green Genius Romania“ S.R.L.

Company code: 42482240

Address: Bucharest, Str C.A. Rosetti, nr 17, 3rd floor , room 305, sector 2, 020011,

Phone, email :  +40 (721) 755 000
Data Protection Officer:


Ispanija „Green Genius Development Spain“ S.L.

Company code: B87772844
Address: Orense 11 Planta 2 Puerta H 28020 Madrid
Phone, email:, +34 680 520 914.
Data Protection Officer:

Italy „Green Genius Italy“ S.r.l.

Company code: 13908821005

Address: CORSO GIUSEPPE GARIBALDI 49 CAP 20121, Milan, Italy
Data Protection Officer:


Olandija „Green Genius International“ B.V.
Company code:  66202213

„Green Genius Global“ B.V.,
Company Code: 73583952

Address: Fred. Roeskestraat 115, 1076EE Amsterdam, Netherlands

Phone:  + 31 (20) 3690943

Data Protection Officer:




Company code: 43310929

Address: 52, Bogdana Khmelnitskogo  Str., 01030, Kiev, Ukraine, room 610
Email, phone:, +38(066)7229569

Data Protection






We receive your personal data directly from you, when you send us enquiries via the contact forms on the Website or via the emails you have provided us with, or when you enter into cooperation, lease or other agreements. We also obtain/collect information from other sources where permitted by law and where necessary for the purposes of processing our personal data:

– Public registers, in accordance with data provision agreements concluded with public registry centres;

– other official bodies (e.g. municipalities) or individuals;

– Internet/communication service providers – when you visit the Website, enter the field of CCTV cameras, etc.;

– other companies within the Green Genius group;



We process your personal data for the following purposes:

Purpose – Website administration.

Legal basis for data processing – consent, GDPR Article 6(1)(a).

Categories of personal data – information collected through cookies.


The use of cookies and data collection using cookies (including specific cookies used and their retention periods) is regulated by the Cookie Policy, which can be found at the bottom of each page.

Purpose – Management of social media tools. Legal basis for data processing – legitimate interest, GDPR Article 6(1)(f).

Categories of personal data – Your comments, feedback, and other information that you share on our social media accounts.


Green Genius has social network accounts where relevant information related to the company’s brand is posted. Users of these accounts are subject to the Privacy Policy and rules of the social network on which Our account is located. We recommend reading the privacy notices of third parties and contacting service providers directly if you have any questions about how they use your personal data:


LinkedIn Privacy Notice:

Facebook Privacy Notice:

Instagram Privacy Notice:

YouTube Privacy Notice:

Purpose – Administration of inquiries submitted on your website.

Legal basis for data processing – consent, GDPR Article 6(1)(b).

Categories of personal data – name, surname, email address, telephone number, additional information and documents you provide.

Data retention period – 2 years from the resolution of your inquiry.


Purpose – Event organization.

Legal basis for data processing – legitimate interest, GDPR Article 6(1)(f).

Categories of personal data – email address, image, if the event is filmed and photographed.

Data retention period – 2 years.

Purpose – Formation of land lease agreements.

Legal basis for data processing – contract performance, GDPR Article 6(1)(b).

Categories of personal data – tenant’s name, surname, address, email address, bank account number, information about the leased property contained in the National Land Registry extract.

Data retention period – 10 years after termination of the lease agreement.

Purpose – Informing neighboring landowners and collecting their consents for planned/ongoing energy projects.

Legal basis for data processing – legal obligation, GDPR Article 6(1)(c).

Categories of personal data – owners’ name, surname, residential address, contact details: email address, phone number.

Data retention period – during the project development.


Purpose – Maintenance of supplier relationships.

Legal basis for data processing – contract performance, GDPR Article 6(1)(b).

Categories of personal data – name, surname, position, company, email address, telephone number.

Data retention period – until the end of the contract.






Purpose – Organization of recruitment for vacant positions.

Legal basis for data processing – consent, GDPR Article 6(1)(a); legitimate interest, GDPR Article 6(1)(f).


Attention! All information regarding the processing of candidates’ personal data is provided in the Candidate Privacy Policy:




Purpose – Video surveillance in our premises and areas to ensure property security.

Legal basis for data processing – legitimate interest, GDPR Article 6(1)(f).

Categories of personal data – images of individuals captured by surveillance cameras. Video is recorded without sound.

Data retention period – 30 days.



In certain cases (e.g., to ensure the continuity of our operations, provide services to you, fulfill legal requirements, or defend our legitimate interests), we may disclose information about you to:

  • Our professional advisors, auditors, and lawyers;
  • Companies providing data center, hosting, cloud, website administration, and related services, companies that develop, provide, support, and maintain software, companies providing information technology infrastructure services, and communication service providers;
  • State institutions as prescribed by law, such as the State Tax Inspectorate, the Registry Center, etc.;
  • Law enforcement agencies upon their request or on our initiative if there is suspicion of criminal activity, as well as to courts and other dispute resolution bodies.



Your personal data are transferred to third countries only in compliance with applicable legal requirements. Whenever it is necessary to transfer your personal data to a third country or an international organization for warranty service and/or for other purposes specified in this Privacy Policy, one of the following conditions is met:

(i) The data are transferred to a country which has been deemed to provide an adequate level of protection (third countries which meet the required protection level are approved by the European Commission);

(ii) The data transfer is carried out using appropriate safeguards as specified in legal regulations (e.g., legally binding and enforceable documents between governmental or public institutions; binding corporate rules according to Article 47 of the General Data Protection Regulation; standard data protection clauses adopted by the European Commission following the procedure outlined in Article 93(2) of the General Data Protection Regulation);

(iii) Other exceptions allowed by legal statutes are adhered to, if data cannot be transferred under the above conditions.




Your personal data will be processed in accordance with the requirements of applicable data privacy legislation. In handling your personal data, we implement organizational and technical measures that ensure protection against accidental or unlawful destruction, alteration, disclosure, as well as against any other unlawful processing. These measures include, but are not limited to:

  • Strict access control based on the “need to know” principle;
  • Execution of confidentiality agreements with individuals who have access to your data;
  • Periodic organization of training on data protection and information security;
  • Documentation and implementation of internal data protection procedures;
  • Appointment of a data protection officer.



If we process your personal data for the purposes set out in this Privacy Policy, or if you believe that we are processing your personal data, you, as a data subject, have the following rights under the GDPR:

  • The right to be informed – to know about the processing of your personal data;
  • The right of access – to receive confirmation whether your personal data is being processed, and if so, to access your personal data and obtain a copy of it;
  • The right to rectification – to request correction of inaccurate or incomplete personal data;
  • The right to object – to object to the processing of your personal data;
  • The right to withdraw consent – in cases where data is processed based on your consent;
  • The right to restrict processing – to request that processing of your personal data be restricted for a certain period;
  • The right to erasure / to be forgotten – to request the deletion of personal data that are no longer necessary for the purposes for which they were collected or otherwise processed;
  • The right to data portability – to receive your personal data in a structured, commonly used and machine-readable format and to transmit those data to another data controller;
  • The right to lodge a complaint – to file a complaint with the State Data Protection Inspectorate (L. Sapiegos St. 17, LT-10312 Vilnius, email, but we recommend contacting us first, and we will try to resolve any requests together with you.

You can exercise your rights by submitting a request using the contact details provided at the top of this Privacy Policy.


When submitting a request, you, as a data subject, must verify your identity using one of the following methods:


  • If submitting a request in person, you must present a valid identity document;
  • If submitting a request by mail or courier, you must include a copy of a valid identity document, certified according to the procedure established by law;
  • If submitting a request electronically, you must authenticate it using electronic communication means that allow proper identification of the person (e.g., mobile signature, qualified electronic signature, etc.).

Upon receiving your request regarding the implementation of data subject rights, we will respond promptly, but no later than one month from the day of the request. This period may be extended by another month if necessary, considering the complexity and number of requests. You will be informed about such an extension within the first month. The information you request will be provided free of charge. However, if your requests are manifestly unfounded or disproportionate, particularly because of their repetitive character, we reserve the right to charge a reasonable fee (i.e., to request reimbursement for administrative costs) or to refuse to act on your request.


The response will be provided in the manner chosen in your request. If no method is specified, the response will be sent by the same means as the request was submitted.




Your personal data are collected and processed in order to efficiently and properly conduct operations and respond to your inquiries, requests, and complaints. If you do not provide your data, we will not be able to adequately respond to your inquiries, requests, complaints, and/or other requirements that require our action.