This is our policy regarding the processing of personal data

1 – Compliance Statement

AddBike is dedicated to conforming to regulations pertaining to the protection of personal data, ensuring a heightened level of safeguarding for all processed data. We strictly adhere to the principles outlined in the General Data Protection Regulation (GDPR) and implement the stipulations prescribed by ISO 27701 and 27001 standards to guarantee the security and confidentiality of the personal data we process.

2 – Principles of Data Processing

AddBike adheres to the legal requirements governing the protection of personal data, particularly the GDPR and the Data Protection Act.

To ensure the protection of personal data, AddBike:

  • Collects solely the indispensable data.
  • Retains data for the period necessary to achieve the objectives for which it was collected and to fulfill legal obligations.
  • Ensures the accuracy of the data.
  • Ensures data security and respects the rights of individuals.

3 – Rights of Data Subjects

In accordance with Law No. 78-17 of January 6, 1978, concerning information technology, files, and freedoms, AddBike acknowledges the rights of individuals whose personal data is processed. These rights encompass the right to access, rectify, erase, restrict processing, object to processing, and data portability. Data subjects also possess the right to withdraw their consent at any time.

4 – Security Measures

AddBike is committed to implementing the necessary measures to guarantee the protection of personal data and ensure transparency in data processing. We also undertake to inform our customers about the purposes of processing their personal data and their associated rights.

Payment by credit card is processed through PayPlug. PayPlug is certified as a PCI Level 1 service provider, attaining the highest level of certification in the payment industry, and adheres to the following conditions:

  • PayPlug employs a secure technology called HTTPS to safeguard all information shared on their website and dashboard.
  • Your sensitive data, such as credit card numbers, is shielded using a robust encryption system (AES-256).
  • None of PayPlug’s internal servers possess access to complete credit card numbers.
  • PayPlug maintains a distinct infrastructure for the storage, decryption, and transmission of credit card numbers.
  • PayPlug has achieved the utmost level of security certification in the payment industry (PCI Level 1).
  • Your personal data is solely used to process your payments and ensure the proper functioning of PayPlug’s services.

5 – Internal Procedures

AddBike has established the following internal procedures:

  • Procedure for the collection of personal data.
  • Procedure for handling requests for access, rectification, and erasure of personal data.
  • Procedure for managing requests for restriction of processing and objection to the processing of personal data.
  • Procedure for managing complaints and personal data breaches.
  • Procedure for implementing security measures.

You can contact us via email at or by postal mail at 40 rue Decomberousse, 69100 Villeurbanne, France.