Hello project14,
Someone did request a SAM software key using your email address, but there have been no SAM software starts using that key.
NREL keeps a record of the email address used to request each SAM software key with the date the request was made in a database on a secure server.
Each time someone starts the SAM software, it contacts the server, and a record of the SAM software version number and IP address is stored in the database. This provides NREL with information about how many people are using the software and their approximate location for use in reports and requests for funding to the US Department of Energy. (The IP address provides location information at the city level.)
SAM does not share any data from the .sam file with the registration server.
If the solar installer you mentioned is using SAM, I would expect them to use their own email address to register SAM to ensure that they receive the key. In any case, if they did run SAM using a key requested using your email address, they would not gain access to any information.
Best regards,
Paul.
