DATA PROTECTION, PRIVACY NOTICE & COOKIE POLICY

AG Bikes is committed to data protection and data privacy. With the General Data Protection Regulation (GDPR) becoming enforceable from 25 May 2018, we have undertaken a GDPR readiness programme to review our entire business, the way we handle data and the way in which we use it to provide our services and manage business operations.

We hold personal data on customers to manage and administer your account, meet legal obligations and to perform vital internal functions. This notice details the personal data we may retain, process and share with third parties relating to your account with us and vital business operations. We are committed to ensuring that your information is secure, accurate and relevant. To prevent unauthorised access or disclosure, we have implemented suitable physical, electronic, and managerial procedures to safeguard and secure personal data we hold.

Introduction

We have issued this notice to describe how we handle personal information that we hold about our customers (collectively referred to as "you").

We respect the privacy rights of individuals and are committed to handling personal information responsibly and in accordance with applicable law. This notice sets out the personal data that we collect and process about you, the purposes of the processing and the rights that you have in connection with it.

If you are in any doubt regarding this notice, please contact ROS BROWN.

Types of personal data we collect and purposes for processing personal data

Information we process because we have a contractual obligation with you

When you create an account with us, buy a product or service from us, or otherwise agree to our terms and conditions, a contract is formed between you and us. In order to carry out our obligations under that contract we must process the information you give us. Some of this information may be personal information.

We may use it in order to:

Verify your identity for security purposes

Sell products to you

Provide you with our services

Provide you with estimates, suggestions and advice on products and services

We process this information on the basis there is a contract between us, or that you have requested we use the information before we enter into a legal contract.

Information we process with your consent

Through certain actions when otherwise there is no contractual relationship between us, such as when you browse our website, social media or ask us to provide you more information about our products and services, you provide your consent to us to process information that may be personal information.

Sometimes you might give your consent implicitly, such as when you send us a message by e-mail to which you would reasonably expect us to reply.

Sending a message to our customer contact staff

When you contact us by e-mail, telephone or via social media we collect the data you have given to us in order to reply with the information you need.

We record your request and our reply in order to increase the efficiency of our business.

We keep personally identifiable information associated with your message, such as your name and email address or telephone number so as to be able to track our communications with you to provide a high quality service.

Any information you choose to provide us will not be used for marketing purposes by us. We will hold your personal data only for the purposes of administering and managing your account and our contracts with you.

Legitimate business purposes

We may also collect and use personal information when it is necessary for other legitimate purposes, such as to help us conduct our business more effectively and efficiently – for example, for general IT security management, accounting purposes or financial planning. We may also process your personal information to investigate violations of law or breaches of our own internal policies.

The IT Department will record and monitor usage of all our IT equipment, user activity, voice traffic, email and Internet usage as deemed necessary. The IT Department will observe the strictest confidentiality when undertaking these activities. They will make their report directly to ROS BROWN who will determine the actions that may need to be taken in any particular case. Our site(s) is/are protected by circuit television (CCTV) systems throughout its premises as deemed necessary and customers should expect all areas (other than those where use would contravene common decency) to be visible on a television monitoring system. Any information obtained from systems will be used with strict adherence to the GDPR. Information will be used for the prevention and detection of crime and to ensure compliance with our policies and procedures and our legal obligations.

Legal purposes

We may also use your personal data where we consider it necessary for complying with laws and regulations, including collecting and disclosing customer personal information as required by law (e.g. for tax, health and safety, anti-discrimination laws), under judicial authorisation, or to exercise or defend our legal rights.

Legal basis for processing personal data

Our legal basis for collecting and using the personal data described above will depend on the personal data concerned and the way we collect it. We will normally collect personal data from you only where we need it to perform a contract with you (i.e. to manage the customer & contractor/supplier relationship), where we have your freely given consent to do so, or where the processing is in our legitimate interests and only where this interest is not overridden by your own interests or fundamental rights and freedoms. In some cases, we may also have a legal obligation to collect personal information from you or may otherwise need the personal information to protect your vital interests or those of another person. Any processing based on consent will be made clear to you at the time of collection or use – consent can be withdrawn at any time by contacting ROS BROWN.

Who we share your personal data with

We take care to allow access to personal data only to those who require such access to perform their tasks and duties, and to third parties who have a legitimate purpose for accessing it. Whenever we permit a third party to access personal information, we will implement appropriate measures to ensure the data is used in a manner consistent with this notice and that the security and confidentiality of the data is maintained.

For example, some personal data will be available to our service providers and third-party companies who provide us with health and safety support, tax and accounting services, insurance providers, loss assessors, building control services, and sub-contractors and suppliers providing a service or goods relating to your contract with us.

Transfers to third-party service providers

In addition, we make certain personal data available to third parties who provide services to us. We do so on a "need to know basis" and in accordance with applicable data protection and data privacy laws.

Transfers to other third parties

• To comply with our legal obligations, including where necessary to abide by law, regulation or contract, or to respond to a court order, administrative or judicial process

• In response to lawful requests by public authorities (including for national security or law enforcement purposes)

• As necessary to establish, exercise or defend against potential, threatened or actual litigation

• Where necessary to protect the vital interests of our employees or another person

• In connection with the sale, assignment or other transfer of all or part of our business; or

• With your freely given and explicit consent

Transfer of personal data abroad

We may need to transfer personal data to countries outside of the United Kingdom. When we export your personal data to a different country, we will take steps to ensure that such data exports comply with applicable laws. For example, if we transfer personal data outside the European Economic Area (EEA), such as to the United States, we will implement an appropriate data export solution such as entering into contracts with the data importer that contain EU model clauses or taking other measures to provide an adequate level of data protection.

Data retention

Personal data will be stored in accordance with applicable laws and kept for as long as needed to carry out the purposes described in this notice or as otherwise required by law. Generally, this means your personal information will be retained until the end or your work relationship with us plus a reasonable period of time thereafter to respond to contract or work-related inquiries, to comply with legal obligations including the period demanded for accounting purposes, or to deal with any legal matters.

For more information, please see our Data Retention Policy which outlines our current document retention schedule.

Your rights

You may exercise the rights available to you under data protection law as follows:

• The right to be informed.

• The right of access.

• The right to rectification.

• The right to erasure.

• The right to restrict processing.

• The right to data portability.

• The right to object.

Rights in relation to automated decision making and profiling.

We respond to all requests we receive from individuals wishing to exercise their data protection rights in accordance with applicable data protection laws.

You can read more about these rights at: https://ico.org.uk/for-the-public/is-my-information-being-handled-correctly/

To exercise any of these rights, please contact ROS BROWN by emailing gebrownson@f2s.com.

Issues and complaints

We try to meet the highest standards when collecting and using personal information. For this reason, we take any complaints we receive about this very seriously. We encourage people to bring it to our attention if they think that our collection or use of information is unfair, misleading or inappropriate. We would also welcome any suggestions for improving our procedures. Please contact us in writing at AG Bikes, The Old Mill, Low Row, Richmond, North Yorkshire DL11 6NH or email gebrownson@f2s.com.

This notice was drafted with clarity in mind. It does not provide exhaustive detail of all aspects of our collection and use of personal information. However, we are happy to provide any additional information or explanation needed.

If you want to make a complaint about the way we have processed your personal information, you can contact the Information Commissioner’s Office in their capacity as the statutory body which oversees data protection law – www.ico.org.uk/concerns.

Updates to this notice

This notice may be updated periodically to reflect any necessary changes in our privacy practices. In such cases, we will update the copy held on our website www.agbikes.co.uk . We encourage you to check this notice periodically to be aware of the most recent version.



Contact details

Please address any questions or requests relating to this notice to ROS BROWN by emailing gebrownson@f2s.com or in writing to the address at the top of this notice.

COOKIE POLICY

This Cookie Policy explains how AG Bikes uses cookies and similar technologies to recognise you when you visit our website at www.agbikes.co.uk. It explains what these technologies are and why we use them, as well as your rights to control our use of them.

In some cases we may use cookies to collect personal information, or that becomes personal information if we combine it with other information.

What are cookies?

Cookies are small data files that are placed on your computer or mobile device when you visit a website. Cookies are widely used to improve user experience across websites and allow efficient information reports.

Cookies set by the website owner (in this case, AG Bikes) are called "first party cookies". Cookies set by parties other than the website owner are called "third party cookies". Third party cookies enable third party features or functionality to be provided on or through the website (e.g. like advertising, interactive content and analytics). The parties that set these third party cookies can recognise your computer both when it visits the website in question and also when it visits certain other websites.

Why do we use cookies?

We use first and third party cookies for several reasons. Some cookies are required for technical reasons in order for our website to operate, and we refer to these as "essential" or "strictly necessary" cookies. Other cookies also enable us to track and target the interests of our users to enhance the experience on our Online Properties. Third parties serve cookies through our website, analytics and other purposes. This is described in more detail below.

The specific types of first and third party cookies served through our websites and the purposes they perform are described below (please note that the specific cookies served may vary depending on the specific Online Properties you visit):

How can I control cookies?

You have the right to decide whether to accept or reject cookies. You can exercise your cookie rights by setting your preferences in the Cookie Consent Manager. The Cookie Consent Manager allows you to select which categories of cookies you accept or reject. Essential cookies cannot be rejected as they are strictly necessary to provide you with the services.

The Cookie Consent Manager can be found in the notification banner. If you choose to reject cookies, you may still use our website through your access to some functionality and areas of our website may be restricted. You may also set or amend your web browser controls to accept or refuse cookies. As the means by which you can refuse cookies through your web browser controls vary from browser-to-browser, you should visit your browser's help menu for more information.

In addition, most advertising networks offer you a way to opt out of targeted advertising. If you would like to find out more information, please visit www.aboutads.info/choices/ or www.youronlinechoices.com.

The specific types of first and third party cookies served through our website and the purpose they perform are described below.

Essential website cookies:

These cookies are strictly necessary to provide you with services available through our website and to use some of its features, such as access to secure areas.

Advertising cookies:

These cookies are used to make advertising messages more relevant to you. They perform functions like preventing the same ad from continuously reappearing, ensuring that ads are properly displayed for advertisers, and in some cases selecting advertisements that are based on your interests.

Other tracking technologies

Cookies are not the only way to recognise or track visitors to a website. We may use other, similar technologies from time to time, like web beacons (sometimes called "tracking pixels" or "clear gifs"). These are tiny graphics files that contain a unique identifier that enable us to recognise when someone has visited our website or opened an email including them. This allows us, for example, to monitor the traffic patterns of users from one page within a website to another, to deliver or communicate with cookies, to understand whether you have come to the website from an online advertisement displayed on a third-party website, to improve site performance, and to measure the success of email marketing campaigns. In many instances, these technologies are reliant on cookies to function properly, and so declining cookies will impair their functioning.

Targeted advertising

Third parties may serve cookies on your computer or mobile device to serve advertising through our websites. These companies may use information about your visits to this and other websites in order to provide relevant advertisements about goods and services that you may be interested in. They may also employ technology that is used to measure the effectiveness of advertisements. This can be accomplished by them using cookies or web beacons to collect information about your visits to this and other sites in order to provide relevant advertisements about goods and services of potential interest to you. The information collected through this process does not enable us or them to identify your name, contact details or other details that directly identify you unless you choose to provide these.

Updates

We may update this Cookie Policy from time to time in order to reflect, for example, changes to the cookies we use or for other operational, legal or regulatory reasons. Please therefore re-visit this Cookie Policy regularly to stay informed about our use of cookies and related technologies.

Further Information

If you have any questions about our use of cookies or other technologies, please email Ros at gebrownson@f2s.com