Privacy Policy

1. Introduction

At Bicycle Blue Book, accessible at bicylebluebook.com, we respect and prioritize your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal information in compliance with applicable privacy laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA). Our commitment to data protection is rooted in a fundamental principle: your personal information is yours, and we are honored to process it responsibly and transparently.

2. Scope of the Policy and Data Controller

This Privacy Policy applies to all users who visit or interact with any portion of the bicylebluebook.com website or its associated services. Bicycle Blue Book is the data controller for the purposes of personal data processed as described herein. This means we are responsible for determining the purposes and means by which your information is processed. Questions regarding data protection or this policy may be directed to [email protected].

3. Categories of Personal Data Processed

We collect various categories of personal data to deliver and improve our services, respond to inquiries, process transactions, and fulfill legal obligations. These categories include:

• Usage Data – Information collected automatically through your interaction with bicylebluebook.com, including IP address, browser type, pages visited, time spent on the site, and session metadata.

• Account Data – Personal details provided during registration and account management, such as full name, physical address, email address, and phone number.

• Profile Data – Information related to your preferences, purchase history, product interests, settings, and online behavior within the website.

• Communication Data – Records of communications initiated through bicylebluebook.com, including customer support inquiries, contact forms, or message logs.

• Technical Data – System identifiers such as device type, operating system, software versions, and browser configurations.

• Transaction Data – Payment and financial details necessary for order fulfillment including billing and shipping information, transaction identifiers, and payment confirmation details. Note: No complete payment card details are stored directly on our servers.

• Preference Data – Marketing preferences, opt-in or opt-out choices, newsletter subscriptions, and expressed interests in specific bicycle categories or services.

4. Legal Bases for Processing

We process your personal data under one or more of the following lawful bases, as applicable under the GDPR and other relevant laws:

• Contractual Necessity – To perform a contract with you or to take steps in preparation for entering into a contract, such as processing transactions or facilitating requested services.

• Consent – When you voluntarily provide personal data (e.g., newsletter subscription or marketing preferences), you may withdraw your consent at any time.

• Legitimate Interests – For purposes such as maintaining network security, improving web functionality, or marketing similar products to existing customers, provided such interests are not overridden by your rights.

• Legal Obligation – When processing is required to comply with a statutory or regulatory obligation.

5. Your Data Protection Rights

Depending on your jurisdiction, you may have specific rights in relation to your personal information:

• Right of Access – Request confirmation and access to the personal data we hold about you.

• Right to Rectification – Request correction of inaccurate or incomplete data.

• Right to Erasure (“Right to be Forgotten”) – Request deletion of personal data under certain conditions.

• Right to Restrict Processing – Request that we limit the processing of your data while concerns are being resolved.

• Right to Data Portability – Receive a copy of personal data in a structured, machine-readable format and transmit it to another controller.

To exercise any of these rights, please contact us at [email protected]. We respond to rights requests in accordance with applicable data protection laws.

6. Security Measures

We take appropriate technical and organizational measures to secure your personal data, including but not limited to:

• Encryption of data in transit and at rest.

• Access controls and two-factor authentication for administrative users.

• Regular data backups and system integrity checks.

• Employee privacy training and restricted access to sensitive data.

While we employ robust protections, no technology is entirely foolproof. Users are encouraged to protect their account credentials and practice safe browsing.

7. International Data Transfers

Where personal data is transferred outside of jurisdictions with equivalent data protection laws (e.g., to servers or partners located outside the European Economic Area), we implement standard contractual clauses and other safeguards as prescribed by the GDPR.

We ensure that your data at bicylebluebook.com is protected regardless of location by applying consistent compliance frameworks and ensuring third-party service providers likewise maintain high security standards.

8. Data Retention

We retain personal information only for as long as necessary to fulfill the purposes for which it was collected or as required by legal, regulatory, or operational obligations:

• Account Data – As long as your account remains active or until deletion is requested.

• Transaction Data – Typically retained for a minimum of 7 years to comply with financial regulations.

• Communication Data – Maintained for up to 2 years for customer service and audit purposes.

• Marketing Preferences – Retained until preferences are updated or withdrawn.

• Usage and Technical Data – Typically stored in anonymized or aggregated form for analytical purposes, or deleted after a maximum of 24 months.

9. Cookie Policy

Cookies are small data files stored on your device when visiting our site. At bicylebluebook.com, we use the following categories:

• Essential Cookies – Required for core functionality such as authentication and maintaining session state.

• Functional Cookies – Enable personalized content and user preference settings.

• Analytics Cookies – Help us understand usage behaviors and improve our website performance, often provided by third-party vendors like Google Analytics.

• Performance Cookies – Measure page load times and other metrics that reflect site efficiency.

10. Cookie Management and Compliance with GDPR & CCPA

You can manage your cookie preferences upon your first visit through our cookie consent banner, and at any time via in-browser settings or the “Cookie Preferences” link on our website. Under GDPR and CCPA, users have the right to refuse non-essential cookies and can opt out of data sale (if applicable) using the “Do Not Sell My Personal Information” link provided on our site.

11. Children’s Privacy

Our website is not directed to children under the age of 13, and we do not knowingly collect personal information from minors. If you are a parent or guardian and believe your child has submitted personal data to us, please contact us immediately at [email protected], and we will take appropriate steps to delete such data.

12. Policy Updates

We may revise this Privacy Policy from time to time to reflect changes in legal obligations, technologies, or operational practices. Users will be notified of material changes via updates on bicylebluebook.com and, where appropriate, via email notification. Continued use of our services after changes are made constitutes acceptance of the updated Privacy Policy.

13. Contact Information

If you have questions, concerns, or wish to exercise your data protection rights, please contact us at:

Email: [email protected]

We are committed to promptly addressing and resolving any privacy-related inquiries.

Bicycle Blue Book is dedicated to maintaining full compliance with GDPR, CCPA, and other applicable data protection regulations globally. Your trust is important to us, and we are committed to safeguarding your privacy in everything we do.