Privacy statement
Introduction
This privacy statement applies to all personal data that BIKEBAZE, a trade name of D-Estate BV, KVK: 90426843, with the address Marconistraat 16 (mailbox 22), 3029 AK, Rotterdam, Netherlands (visit by appointment), processes from its customers and users of its services and products.
Responsible
D-Estate BV, trading under the name BIKEBAZE, is responsible for processing personal data as described in this privacy statement. The contact person for AVG-related matters can be reached at legal@bikebaze.nl.
Cookies
BIKEBAZE uses functional, analytical and tracking cookies. See our cookie statement for more information.
Security measures
We take adequate technical and organizational measures to protect your data against unauthorized access, alteration, disclosure or destruction.
Rights of data subjects
As a data subject, you have the right to access, rectify, delete data, restrict processing, and the right to data portability. You can withdraw your consent at any time.
Data sharing for analysis
The data collected via forms is used anonymously for analyses to gain insights into the problem of bicycle theft, to support companies and government agencies in their policies and measures against bicycle theft.
Complaints
Do you have complaints about the processing of your personal data? Then get in touch with us.
Changes
This privacy statement is subject to change. The most current version is always available on our website.
Contact details
For questions or comments about our privacy policy, please contact legal@bikebaze.nl.
Processes
General retention period
For all processes listed below, there is a retention period until the end of the legal period and/or limitation period after termination of the contract.
We process the following data items for:
- Customer appointments: Customer Name, Email Address, Phone Number, Date & Time.
- Delivery of goods and/or services: Customer Name, Email Address, Telephone Number, Home Address.
- Customer billing and accounting: Customer Name, Email Address, Home Address, Bank Account, Payment History.
- Correspondence: Customer Name, Email Address, Contents of Correspondence.
- Company website: Electronic identifiers, Various types of Cookies.
- Card or app payments by customers: Customer Name, Email Address, Address, Payment Card details.
- Clients Newsletter/Promotion: Customer Name, Email Address. (Retention period: As long as the customer remains subscribed to the newsletter.)
- Client file layout and treatment: Customer Name, Email Address, Address, Telephone Number, Customer File.
- Customer support: Customer name, Email address, Correspondence content.
- Returns and recalls: Customer Name, Email Address, Address, Payment Card Details, Purchase Financing Information.
- Customer prospecting: Customer Name, Email Address, Home Address.
- Webshop: Customer Name, Email Address, Address, Payment Card Details, Cookies.
Security measures
All processes are subject to functional and technical security measures in accordance with the best industry standards. Data processing takes place within the EU.
For questions or comments about these processes, please contact our GDPR coordinator at legal@bikebaze.nl.
Systems
As part of our interaction with customers, BIKEBAZE uses various software packages and systems. Below is an overview of the most important systems we use for customer-related activities:
- PCs, Laptops, Smartphones, Tablets:
Usage: Interact with customers using computer devices.
- Google Gmail & Apps
Use: Online productivity apps for communication and document management.
System Provider: Google.com
Type: Public cloud.
- Paper Files with Documentation and Correspondence
Usage: Management of printed or printed documentation and correspondence.
System Supplier: Various.
Type: Physical Storage.
- Microsoft Outlook & Office
Usage: Productivity suite for email, document creation, and data management.
System Provider: Microsoft.com.
Type: Public cloud.
- Zapier
Usage: Linking different data exchange applications.
System Provider: Zapier.
Type: Public cloud.
These systems are used to improve the efficiency and effectiveness of our customer service and interaction. We take the necessary measures to ensure the security and confidentiality of the personal data processed through these systems.
For questions about these systems or how your data is processed, please contact us at legal@bikebaze.nl.
Shared with third parties
Wanneer je jouw fiets als gestolen meldt via ons platform, worden je voor- en achternaam, telefoonnummer en e-mailadres gedeeld met derden die je fiets proberen te traceren door de SafeTag te scannen of het framenummer op te zoeken.
Doel: Deze gegevens worden gedeeld om de kans te vergroten dat jouw fiets wordt teruggevonden en om je snel te kunnen contacteren.
Wie krijgt toegang: Alleen personen die actief een gestolen fiets opsporen via onze tools krijgen toegang tot deze informatie.
Toestemming: Door je fiets als gestolen te melden, geef je expliciet toestemming voor het delen van deze gegevens.
Gedeeld met derden
BIKEBAZE works with various external parties where personal data is shared. Below is an overview of the most important processes and the third parties with which this data is shared:
- Accounting
Purpose: Correct bookkeeping and/or correct tax returns and VAT returns.
Legal basis: Legal Obligation
Third Party: anonymized.
Processing Agreement: Accepted.
Location Processing: Processed within the EU.
Data: Bank Account, Company Address, Payment Summary, Customer Account, VAT Number, Email Address, Customer Name, Employee Name, Phone Number, Home Address
- Social Media - LinkedIn
Purpose: Promoting the company and services.
Legal basis: Legitimate Interest
Third Party: LinkedIn Ireland Unlimited Company.
Processing Agreement: Accepted.
Location Processing: Processed within the EU.
Dates: Date & Time, Electronic Identifiers, Electronic Localization Data, Photos/Images, Customer Name, Employee Name
- Social Media - Facebook/Instagram
Purpose: Promoting the company and services.
Legal basis: Legitimate Interest
Third Party: META PLATFORMS IRELAND LIMITED (ex-Facebook).
Processing Agreement: Accepted.
Location Processing: Processed outside the EU.
Dates: Date & Time, Electronic Localization Data, Photos/Images, Customer Name, Employee Name
- Marketing Platform - Mailchimp
Purpose: Promoting the company and services.
Legal basis: Legitimate Interest
Third Party: The Rocket Science Group LLC (Mailchimp).
Processing Agreement: Accepted.
Location Processing: Processed within the EU.
Data: Email address, customer name
- Webshop Provider - Webflow
Purpose: Selling products online.
Legal basis: Contract.
Third Party: Webflow, Inc.
Processing Agreement: Accepted.
Location Processing: Processed within the EU.
Data: Payment History, Payment Card Details, Payment Summary, Customer Account, Email Address, Customer Name, Phone Number, Home Address
- Payment partner - Stripe
Purpose: To process payments
Legal basis: Contract.
Third Party: Stripe Payments Europe Limited
Processing Agreement: Accepted.
Location Processing: Processed within the EU.
Data: Payment card details, Signature, Customer Name, Personal Email Address, Home Address
- Consent to share contact information: By submitting a theft form, the user gives permission for his/her contact information (name, first name, email address, phone number) to be visible to others who scan the SafeTag or look up the bicycle in the database. This facilitates direct communication when recovering a stolen bicycle.