No products in the cart
This is our policy regarding the processing of personal data
1 – Compliance Statement
AddBike is dedicated to conforming to regulations pertaining to the protection of personal data, ensuring a heightened level of safeguarding for all processed data. We strictly adhere to the principles outlined in the General Data Protection Regulation (GDPR) and implement the stipulations prescribed by ISO 27701 and 27001 standards to guarantee the security and confidentiality of the personal data we process.
2 – Principles of Data Processing
AddBike adheres to the legal requirements governing the protection of personal data, particularly the GDPR and the Data Protection Act.
To ensure the protection of personal data, AddBike:
- Collects solely the indispensable data.
- Retains data for the period necessary to achieve the objectives for which it was collected and to fulfill legal obligations.
- Ensures the accuracy of the data.
- Ensures data security and respects the rights of individuals.
3 – Rights of Data Subjects
In accordance with Law No. 78-17 of January 6, 1978, concerning information technology, files, and freedoms, AddBike acknowledges the rights of individuals whose personal data is processed. These rights encompass the right to access, rectify, erase, restrict processing, object to processing, and data portability. Data subjects also possess the right to withdraw their consent at any time.
4 – Security Measures
AddBike is committed to implementing the necessary measures to guarantee the protection of personal data and ensure transparency in data processing. We also undertake to inform our customers about the purposes of processing their personal data and their associated rights.
The collection and utilization of your personal data have been duly reported to the National Commission for Data Protection and Liberties under registration number 2056899.
Payment by credit card is processed through Stripe. Stripe is certified as a PCI Level 1 service provider, attaining the highest level of certification in the payment industry, and adheres to the following conditions:
- Stripe employs a secure technology called HTTPS to safeguard all information shared on their website and dashboard.
- Your sensitive data, such as credit card numbers, is shielded using a robust encryption system (AES-256).
- None of Stripe’s internal servers possess access to complete credit card numbers.
- Stripe maintains a distinct infrastructure for the storage, decryption, and transmission of credit card numbers.
- Stripe has achieved the utmost level of security certification in the payment industry (PCI Level 1).
- Your personal data is solely used to process your payments and ensure the proper functioning of Stripe’s services.
5 – Internal Procedures
AddBike has established the following internal procedures:
- Procedure for the collection of personal data.
- Procedure for handling requests for access, rectification, and erasure of personal data.
- Procedure for managing requests for restriction of processing and objection to the processing of personal data.
- Procedure for managing complaints and personal data breaches.
- Procedure for implementing security measures.
You can contact us via email at email@example.com or by postal mail at 40 rue Decomberousse, 69100 Villeurbanne, France.