Privacy policy
1) When does data processing take place?
We collect, record and process your personal data, as described in section 2, in the following circumstances:
- When you visit our website
- When you make purchases in our webshop
- When we handle and invoice your payment for a consultancy service
- When you contact us via email
- When we send you marketing material
- When you have consented to the use of your images and video footage for commercial purposes
2) What data is processed, why and on what basis?
Visitors to the website: We process your personal data when you visit our website based on our legitimate interest in improving and customising the site, cf. Article 6(1)(f) of the General Data Protection Regulation. See our cookie policy for more information about cookies.
Sales on the webshop: We process your contact and payment information to fulfil your purchase, including name, address, email and payment method, in accordance with Article 6(1)(b) of the GDPR.
Consultancy services: We collect your contact information to provide consulting services as described in Article 6(1)(b) of the General Data Protection Regulation.
Requests: Your contact information is used to respond to your enquiries, based on our legitimate interest in customer service, cf. Article 6(1)(f).
Marketing: We use your data, such as name and email, to send you newsletters and electronic mail based on our legitimate interest, cf. Article 6(1)(f).
Commercial content: Images and videos of you are used for commercial content with your consent, cf. Article 6(1)(a) of the GDPR. You can withdraw your consent at any time by contacting us, see section 7 for details.
3) Who do we share the data with?
Where applicable, we may share your personal data with third parties. Some of these recipients act as data processors on our behalf and only process your data according to our instructions. They may not use the data for their own purposes.
When you shop in our webshop and choose delivery in a physical store, we share your contact details with that store to ensure correct delivery.
When signing up for our newsletter, your email may be shared encrypted with Facebook for targeted marketing.
Our IT solutions are managed by B-Bikes ApS, which has access to your data as data processor. We use external suppliers for data storage, development and operation of our website and webshop.
3.1) Email marketing
We conduct electronic marketing, including sending newsletters in co-operation with:
Intuit Mailchimp
405 N Angier Ave. NE
Atlanta, GA 30308 USA
Privacy policy: https://mailchimp.com/gdpr
Email addresses used for email marketing are hosted by Mailchimp, which is why Mailchimp acts as data processor in this respect. A data processing agreement has been entered into with Mailchimp.
4) Information about obtaining marketing consent
Obtaining marketing consent
We obtain marketing consent in two ways, as described below:
Via b-bikes.dk
When you voluntarily give your consent through our sign-up flow, B-Bikes ApS will send you emails, SMS, MMS, and notifications via social media and apps, both from our stores (including the webshop) and national campaigns.
In physical stores
Store clerks can sign up for the store newsletter, which also includes national campaigns from B-Bikes ApS. The newsletters are sent electronically and inform about the conditions of the consent. This "Store consent" authorises B-Bikes ApS to send newsletters on behalf of the store.
5) How long is the data stored?
Processing of personal data
We store and process your personal data for as long as it is necessary for the purposes for which it was collected.
Sales via webshopInformation about your bike purchase is stored for 20 years to help with insurance claims, warranty cases or receipt retrieval. After 20 years, data is deleted or anonymised. You can request earlier deletion, but certain data must be kept for 5 years according to the Bookkeeping Act.
Consultancy services: Data is stored throughout the collaboration and up to 3 years after it ends.
Requests: Data is stored during the processing period and 1 year after response.
Marketing and commercialisation: Information is stored until you withdraw your consent. Inactive users are deleted continuously.
Commercial content: Consent and photo material is stored until consent is revoked or 1 year after use.
Bookkeeping: Necessary information is stored in accordance with the Bookkeeping Act for 5 years after the end of the financial year.
6) Data security
We have data security policies and procedures in place to protect the data collected from loss, alteration or misuse.
Our data is protected behind firewalls and by antivirus programmes. These systems will be able to detect, report, investigate and document security breaches.
In the event of a breach, the Danish Data Protection Agency will be notified within 72 hours of the time of the discovery of the personal data breach. In addition, the data subjects will be notified of the breach without undue delay.
7) Exercise of your rights
You have the following rights under the General Data Protection Regulation in connection with our processing of your personal data:
- Right of access: You have the right to know what data we process about you and for what purpose and with whom we share it.
- Correction: You have the right to have incorrect information about you corrected or supplemented.
- Deletion: In certain cases, you have the right to request your personal data to be deleted.
- Limitation: In certain cases, you have the right to have our processing of your personal data restricted.
- Data portability: In certain cases, you have the right to receive the personal data you have provided to us in a structured, commonly used and machine-readable format and to have it transmitted to another controller.
- Objection: In certain cases, you have the right to object to our processing of your personal data.
If you wish to make use of the above rights, please contact us at service@b-bikes.dk
You also have the right to withdraw your consent at any time by written notification to B-Bikes ApS by email: service@b-bikes.dk A revocation does not affect the use of images and video recordings of you that have already taken place prior to your revocation. Upon revocation of your consent, images and video recordings of you will be removed as soon as possible. In digital media, this will be done immediately after the request, while printed and distributed material cannot be withdrawn. In the case of printed but not yet distributed material, we will delete images and video recordings of you unless this would result in unreasonable costs for B-Bikes ApS.
8) Cookies
When you visit ebee.dk, we collect information about you via cookies. Some of this information is passed on to third parties. Read more in our cookie policy.
9) Complaint options
You have the opportunity to complain about the processing of your personal data to the Danish Data Protection Agency via the following contact details:
Carl Jacobsens Vej 35
2500 Valby
Tel. 33 19 32 00
E-mail: dt@datatilsynet.dk
Read more about the right of appeal on the Danish Data Protection Agency's website here: www.datatilsynet.dk.
