Payment Options by AVIO ADRIA d.o.o.

  1. Bank Transfer
    Payment via internet banking, bank order, or postal order for transactions to the business account of AVIO-ADRIA d.o.o.
    Account Number: HR3523400091110447742 at Privredna banka Zagreb (PBZ), Zagreb.
    SWIFT: PBZGHR2X

  2. Credit/Debit Cards at the Office:
    Credit card payments can be made in person at the AVIO-ADRIA d.o.o. office, located at Kneza Borne 2 (Sheraton Hotel), 10,000 Zagreb – BY APPOINTMENT.

    • ZABA: Single payment via Maestro, Mastercard, and Visa cards, with the option for installment payments in 2-12 installments via Mastercard Standard, Mastercard Gold, Mastercard Go!, Mastercard Platinum, Visa Business, and Visa Avenue Mall cards.

    • PBZ: Single payment via Maestro, Mastercard, and Visa cards, with the option for installment payments in 2-12 installments via VISA Inspire, Visa Premium, and Maestro cards.

    • ERSTE: Single payment via Diners, Discover, DinaCard, Maestro, Mastercard, and Visa cards, with the option for installment payments in 2-12 installments via Diners, Maestro, and Visa (MB+) cards.

    • WSPay: Card payment online via WSPay.

    • Other Cards: Single payment.

  3. Online via WPOS System:

    • ZABA: Single payment via Maestro, Mastercard, and Visa cards.

    • PBZ: Single payment via Maestro, Mastercard, and Visa cards, with the option for installment payments in 2-12 installments via VISA Inspire, Visa Premium, and Maestro cards.

    • ERSTE: Single payment via Diners, Discover, DinaCard, Maestro, Mastercard, and Visa cards, with the option for installment payments in 2-12 installments via Diners, Maestro, and Visa (MB+) cards.
    • Other Cards: Single payment.

Other Cards (In-Person at the Office):

  • Visa (PBZ): Up to 12 installments.
  • Maestro (ZABA and PBZ): Up to 12 installments.
  • MasterCard (ERSTE): Up to 12 installments.
  • Other Cards: Single payment.

For all installment payments (2-12 installments), the agency applies a processing fee of 5%.

AVIO-ADRIA d.o.o. uses Monri WSPay for online payments.

Monri WSPay is a secure online payment system that allows real-time payments using credit and debit cards, as well as other payment methods.
Monri WSPay ensures secure data entry and transfer for both customers and merchants, certified with the PCI DSS certification. It also uses a 256-bit SSL encryption certificate and the TSL 1.2 cryptographic protocol for the highest levels of data protection during entry and transfer.

Rental conditions

  1. The User is obliged to pay the rental fee before taking possession of the rented item, as well as any additional charges determined in accordance with the valid price list and this Agreement.
  1. The User must present a valid identification document for all persons who will operate the e-bike. The User is not authorized to allow persons under 14 years of age to use the rented item without parental or adult supervision, persons who are unable to operate a bicycle, persons under the influence of alcohol, psychoactive substances, or any other individuals who pose an increased risk of causing damage to the rented item.

  2. The User expressly accepts that they are using the rented item at their own risk, and the Lessor is completely excluded from any liability for damages.

  3. In the event that damage is caused to a third party through the use of the bicycle, the User shall bear full responsibility.

  4. The use of a protective helmet is recommended while operating the e-bike, and children under the age of 16 are required to wear a helmet.

  5. The User must comply with the Road Traffic Safety Act Republic Croatia and other mandatory regulations.

  6. The User agrees that only persons registered with the Lessor as users will use the e-bike, for its intended purpose, and that it will not be used under the influence of alcohol, drugs, or other medications, for illegal purposes, for sports events (races or speed trials), nor will it be handed over to third parties or subleased.

  7. The User confirms that they were provided with basic technical and safety instructions on the use of the bicycle prior to the rental.

  8. The User undertakes to protect the rented bicycle from damage and theft while stationary (by using the lock provided as part of the bike’s accompanying equipment, securing the frame to a fixed/immovable object). In case the User uses the rented item contrary to the rights granted by this Agreement, the Lessor has the right to repossess the rented item at any time.

  9. If the User fails to return the rented item more than 24 hours after the rental period ends, for any reason, or in the case of significant damage, the User will bear the cost of the e-bike in the amount of 80% of the average retail price of the same model or, if the model is no longer available, a similar model. Any damage to parts of the rented item shall be fully compensated by the User.

  10. The User agrees to immediately notify the Lessor of any defect, technical problem, or accident, and in the event of an accident, to notify the competent authorities and the Lessor without delay.

  11. The User provides their personal data voluntarily. Personal data is collected for the purpose of concluding and executing this Agreement, and the Lessor undertakes to process, secure, and keep the User’s personal data confidential in accordance with applicable data protection regulations, and exclusively within the scope and purpose for which it was collected. The Privacy Policy is available at: https://www.truebikexp.com/en/gdpr

  12. In the event of a dispute, the competent court in Zagreb shall have jurisdiction, applying the law of the Republic of Croatia.

Personal Data Protection and Privacy Policy

In our business operations, we pay great attention to the processing of personal data. We thank you for your trust, and in case you provide your personal data, we are aware of the responsibilities that arise from it. With the aim of defining the methods of personal data processing and protection, we have adopted this Privacy Policy of the Company in which you can learn about all the details of personal data processing, how they are protected, as well as all other relevant information.

We will gladly answer all your questions regarding the protection and processing of your personal data.

The owner of the website www.truebikexp.com that you visited is the company True Bike Experience d.o.o.

Definitions

According to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: General Data Protection Regulation), personal data is any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Data processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Information

As a data subject, you are provided with the following information in accordance with Article 13 of the General Data Protection Regulation:

  • identity and contact details of the data controller: True Bike Experience d.o.o., Ulica Stjepana Bencekovića 31, 10000 Zagreb, Croatia, info@truebikexp.com, tel: 00 385 91 6308 266
  • contact details of the data protection officer: info@truebikexp.com
  • the purposes of the processing for which the personal data are intended as well as the legal basis for the processing: execution of contract, protection of vital interests of the data subject, providing customer support, and marketing
  • recipients or categories of recipients of the personal data: intermediaries and/or collaborators who have a contractual relationship with True Bike Experience d.o.o.
  • True Bike Experience d.o.o. will not transfer personal data to a third country or international organization, except with your explicit consent.
  • the period for which the personal data will be stored/criteria used to determine that period: five years
  • the data subject has the right to request access to personal data and rectification or erasure of personal data or restriction of processing concerning the data subject or to object to processing as well as the right to data portability;
  • if the processing is based on the data subject’s consent, the data subject is authorized to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal;
  • the data subject has the right to lodge a complaint with a supervisory authority;
  • the provision of personal data is not a necessary condition for concluding a contract, and the data subject has no obligation to provide personal data and there are no consequences if such data are not provided, but failure to provide the necessary data may affect the possibility and/or quality of contract fulfillment;
  • automated decision-making does not exist.

Data Relating to Children

According to the General Data Protection Regulation, children deserve special protection in all aspects, including the protection of personal data.

In accordance with Article 19, Paragraph 1 of the Law on Implementation of the General Data Protection Regulation, children are considered to be all persons under the age of 16, and BIKE d.o.o. does not request or collect personal data of children or about them without the consent of the holder of parental responsibility.

Therefore, True Bike Experience d.o.o. will make all reasonable efforts to process data received from children only with the consent of the holder of parental responsibility.

If True Bike Experience d.o.o. learns that it has been sent personal data of children, but without valid consent of the holder of parental responsibility, True Bike Experience d.o.o. will reasonably try to do the following:

  • delete those personal data from its files as soon as possible; and

  • ensure, in case deletion is not possible, that those personal data are not further used for any purpose;

  • and in any case will not give them to any third party.

Method of Data Collection

Personal data are collected directly from the individual – data provided for the purpose of concluding or executing a contract, by creating a user account on the website directly, by telephone conversation with the individual.

True Bike Experience d.o.o. collects personal data of Customers only to the extent necessary to fulfill its obligations according to Customer requirements, or for which there is a legitimate interest and for which it has the Customer’s consent for the purpose of information, customer support, and marketing to the extent that it is important for the business of True Bike Experience d.o.o.

True Bike Experience d.o.o. undertakes to protect the personal data of Customers in accordance with the General Data Protection Regulation and undertakes not to disclose personal data to third parties without the Customer’s consent in any way or use them for undefined purposes. Processing of personal data that represents a contractual obligation is performed with the highest standards of security and business operations. The customer can at any time object to the processing of their personal data based on their specific situation. The customer has the right to request supplementation, correction, or modification of inaccurate personal data.

This excludes cases in which True Bike Experience d.o.o. is obliged, by a valid order of authorized state bodies, in accordance with the law, to provide or allow access to the personal data of customers.

Data Being Collected

The data collected by True Bike Experience d.o.o. are name, surname, address, phone number, and email address.

1. We collect data from you personally when concluding a rental agreement for the following purposes

  • Fulfillment of contractual obligations in which the data subject is a party or in order to take actions at the request of the data subject before concluding a contract
  • Creating your profile in our user database.
  • Contacting and identifying users of the rental item.
  • Recording data on purchases, invoice amount, and payment method.
  • Support for all your inquiries, comments, and suggestions.
  • Support in the complaint process.

2. True Bike Experience d.o.o. does not record your credit card number or store transaction data. True Bike Experience d.o.o. uses the services of a third party, the authorized credit card processor Wordline, which protects your data through encryption.

3. We also collect and process data

  • through a form on the website

  • directly by email

  • by phone call

  • by copying an identification document

The data collected in this way is used only for processing the requested information and user inquiries and for the purpose of ensuring a quality user experience. The data is available only to employees who need it to fulfill the contract. Customers and users of the website may be asked to give consent that, in accordance with the General Data Protection Regulation and in accordance with the requested inquiry, they agree to the processing of personal data, specifically when personal data is processed based on consent.

4. Newsletters

True Bike Experience d.o.o. collects email addresses of users which it uses to send newsletters or electronic messages containing promotional messages, offers, and news.

5. Collection for the purpose of providing customer support and marketing

True Bike Experience d.o.o., with the Customer’s consent, may use personal data to inform about new and promotional products and to deliver promotional materials, newsletters, and to improve relationships with Customers.

6. Controller of personal data

True Bike Experience d.o.o. is the controller of personal data in accordance with the law and regulations on personal data protection. True Bike Experience d.o.o., as the controller of personal data, determines the purpose and means of processing personal data and is responsible for storing and using personal data in paper and/or electronic form.

7. Data Protection Officer

Pursuant to Article 37 of the General Data Protection Regulation, True Bike Experience d.o.o., as the controller of personal data, has appointed a data protection officer whom you can contact via email at info@truebikexp.com

8. Personal Data Breach

In case of a personal data breach, True Bike Experience d.o.o., without undue delay and, where feasible, not later than 72 hours after having become aware of it, notifies the competent supervisory authority of the personal data breach, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons. Where the notification to the supervisory authority is not made within 72 hours, it shall be accompanied by reasons for the delay.

Who are the entities with whom True Bike Experience d.o.o. may share personal data?

  1. Social media service providers

When creating an account on the website, it is necessary to enter your data (email, first and last name).

  1. Email promotional message service providers

True Bike Experience d.o.o. works with third-party service providers to carry out activities related to sending emails, advertising, and analyzing the use of our websites and applications, and monitoring the effectiveness of campaigns.

We share personal data only to the extent necessary for the performance of the service on our behalf. Below you can check who the third-party service providers necessary for cooperation are:

  • Google – Google Analytics which is used to track web statistics and demographic data and behavior of web users. We use it to track the effectiveness of our marketing campaigns. Third-party information: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Google Analytics Terms of Service:

https://www.google.com/analytics/terms/gb.html, General overview of the principles of security and privacy of Google Analytics:

https://support.google.com/analytics/answer/6004245?hl=en, as well as Google’s Privacy Policy: https://policies.google.com/privacy?hl=en.

These websites use Google Analytics to analyze visitor traffic regardless of the type of device, which is based on the user identification number (ID). You can disable tracking of your use of multiple devices in your Google account under “My Information”, “Personal Information”.

Cookie Policy

A “cookie” is a piece of information stored on a user’s computer, mobile phone, or tablet (hereinafter: “device”), which may be delivered directly from the website you visit (first-party cookies) or in collaboration with and for the needs of the website from a third party (third-party cookies). Cookies typically store user settings, website settings, etc. After the user reopens the website, the user’s internet browser sends back cookies that belong to this website. This allows the site to display information tailored to the user’s needs. Cookies can have a wide range of information, including some personal information. Such information can only be stored if the user allows it. The website itself cannot gain access to information that the user does not allow and cannot access any other file on the user’s computer.

For websites to work properly, they must store a small amount of cookies on the user’s computer. According to the General Data Protection Regulation, the Law on Implementation of the General Data Protection Regulation, and the Electronic Communications Act, True Bike Experience d.o.o. must request the user’s consent (permission) before storing Cookies, except for necessary ones.

Necessary cookies are essential for the page to be fully functional and for you to successfully track your shopping cart for online shopping. You cannot disable this type of cookies on your own.

If the user does not consent to the use of cookies, except for necessary ones, there is a possibility that the site will not be able to use some of the functionalities offered by the online store.

  1. What is the task of cookies?

The task of a cookie that you have allowed to be stored on your computer is to save your settings, website settings, your preferred language, or address. When you visit the same site again after some time, the internet browser you use sends information tailored to your needs.

Depending on the defined task, cookies store a wide range of information that, among others, includes personal data. However, you exclusively decide what information cookies will store. In the settings of your internet browser, you can choose whether to approve or reject requests to save cookies.

By disabling cookies, you may not be able to use some of the functionalities on the sites you visit.

  1. Types of cookies

Persistent cookies remain on the computer after closing the internet browser program. Persistent cookies will remain on the computer or mobile device for days, months, even years, and are intended to store permanent data such as username and password so that you don’t have to log in each time.

Temporary cookies disappear from the computer after you close the internet browser. They help store temporary data such as information you provide when you are in online shopping.

First-party cookies can be persistent or temporary, and they store data that you will use again during your next visit to the pages from which they were stored on your computer.

Third-party cookies or so-called advertising cookies are stored on your computer if you use advertisements and ads on the page you are visiting and it redirects you to a third party. This method is used to track Internet usage for marketing purposes.

True Bike Experience d.o.o. uses cookies to improve user experience, for the functioning of the site in the context of security, and for actions that the site visitor chooses independently (web form for sending messages or requesting services). Temporary cookies are deleted when you leave the internet browser. Their only purpose is to improve the user experience during the visit to the site. Persistent cookies have no limitations and remain in your browser until you manually delete them. The collected data is used exclusively for statistical purposes.

These are examples of third parties that provide data analysis and marketing processing services

  • Google – Google Analytics which is used to track web statistics and demographic data and behavior of web users. We use it to track the effectiveness of our marketing campaigns. If you want to prevent this service from saving cookies, you can do so at the following link: https://tools.google.com/dlpage/gaoptout

  • Facebook – Facebook social network collects data for the purpose of tracking and measuring the success of marketing campaigns, behavior of web users, and creating customized ads.

For more information about the purpose and scope of data collection and processing by the plugin provider, please see the privacy statements of these providers listed below.

a) Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php for more information on data collection: http://www.facebook.com/help/186325668085084http://www.facebook.com/about/privacy/your-info-on-other#applications as well as http://www.facebook.com/about/privacy/your-info#everyoneinfo Facebook has registered for the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

b) Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; https://www.google.com/policies/privacy/partners/?hl=de. Google has registered itself for the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

Rights of Data Subjects

True Bike Experience d.o.o. – online store collects user data in accordance with the General Data Protection Regulation and the Law on Implementation of the General Data Protection Regulation.

Every user can at any time:

  • request access to their personal data and request updating of personal data and any inaccuracies.

  • ask us to provide you with additional information about how we use your data.

  • receive personal data about you that you have given us in a structured, commonly used, and machine-readable format and – where technically feasible – to transfer that data to another controller without hindrance if the processing of your data is based on your consent and is carried out by automated means.

  • request deletion of the user’s personal data and request deletion of data for which there is no longer a legal basis for use, provided that users can request deletion of only their personal data, and for the protection of users, we may ask you to verify your identity before processing the request.

  • in cases where processing is based on consent and related to any direct marketing, withdraw your consent with effect for the future so that we cease such specific processing.

  • object to any processing (including profiling) that is based on legitimate interest due to your specific situation, unless the reasons for carrying out such processing are stronger than the right to personal data protection.

  • ask us to restrict the way we use your data, e.g., while an objection is being processed.

True Bike Experience d.o.o. may refuse to carry out the request if it endangers the privacy of the user or other users, if the application of the request is contrary to the law, in exceptions for the protection of the public interest (e.g., prevention or detection of crime), legal obligations or rights and freedoms of others.

Requests for access, correction, or deletion of data can be sent to:

info@truebikexp.com or to the headquarters address of True Bike Experience d.o.o., Ulica Stjepana Bencekovića 31, 10000 Zagreb, Croatia.

Processing such a request can be technically and time-consuming, and in complex cases or in the case of a larger number of requests, a longer time is needed for data processing, of which we will notify you in a lawful and secure manner.

How do we ensure the security of your data?

In order to preserve the security, integrity, and availability of customers’ personal data, we secure the data with a series of security measures that include encryption, authentication, and strictly limited access to data.

Some of the measures we use include:

  • minimizing the processing of personal data

  • strictly limited access to personal data based on the “need to know” principle

  • using data only in accordance with legitimate interest, contractual obligation, or the Customer’s consent

  • secure data transfer

  • installation of antivirus programs and firewalls on IT systems to detect, prevent misuse of personal data, and unauthorized access to data

  • improving information security

  • physical protection measures

  • employee training on data protection

  • human security, etc.

The security measures implemented aim to:

  • Prevent unauthorized persons from gaining access to data processing systems in which personal data is processed;

  • Prevent persons who have the right to use the data processing system from accessing personal data beyond their needs and authorizations;

  • Ensure that personal data during electronic transmission or during transfer cannot be read, copied, modified, or removed without authorization;

  • Ensure the availability of system records for the purpose of determining by whom personal data was entered, modified, or removed from the data processing system;

  • Ensure that in the case where processing is performed by a processor, the data can only be processed in accordance with the instructions of BIKE d.o.o.;

  • Ensure that personal data is protected from unwanted destruction or loss;

  • Ensure that personal data collected for different purposes can be processed separately;

  • Ensure that personal data is not kept longer than necessary.

How long do we keep your personal data?

We store and keep personal data for five years from the realization of the event for which you purchased the ticket, unless applicable regulations provide for a longer retention period for a particular purpose.

In case of giving consent for marketing, we keep the data for five years from the delivery of personal data to True Bike Experience d.o.o. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. Withdrawal is submitted in writing. Personal data that is no longer needed is either irreversibly anonymized or securely destroyed.

Contacts

  • For all information, compliments, complaints, and any other notifications, Customers can contact True Bike Experience d.o.o. at the address Ulica Stjepana Bencekovića 31, Zagreb, 10000 Zagreb, Croatia.

  • Phone: 00 385 91 6308 266

  • E-mail: info@truebikexp.hr

Personal Data Protection and Privacy Policy

In our business operations, we pay great attention to the processing of personal data. We thank you for your trust, and in case you provide your personal data, we are aware of the responsibilities that arise from it. With the aim of defining the methods of personal data processing and protection, we have adopted this Privacy Policy of the Company in which you can learn about all the details of personal data processing, how they are protected, as well as all other relevant information.

We will gladly answer all your questions regarding the protection and processing of your personal data.

The owner of the website www.truebikexp.com that you visited is the company True Bike Experience d.o.o.

Definitions

According to Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (hereinafter: General Data Protection Regulation), personal data is any information relating to an identified or identifiable natural person (‘data subject’); an identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.

Data processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, such as collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction.

Information

As a data subject, you are provided with the following information in accordance with Article 13 of the General Data Protection Regulation:

  • identity and contact details of the data controller: True Bike Experience d.o.o., Ulica Stjepana Bencekovića 31, 10000 Zagreb, Croatia, info@truebikexp.com, tel: 00 385 91 6308 266
  • contact details of the data protection officer: info@truebikexp.com
  • the purposes of the processing for which the personal data are intended as well as the legal basis for the processing: execution of contract, protection of vital interests of the data subject, providing customer support, and marketing
  • recipients or categories of recipients of the personal data: intermediaries and/or collaborators who have a contractual relationship with True Bike Experience d.o.o.
  • True Bike Experience d.o.o. will not transfer personal data to a third country or international organization, except with your explicit consent.
  • the period for which the personal data will be stored/criteria used to determine that period: five years
  • the data subject has the right to request access to personal data and rectification or erasure of personal data or restriction of processing concerning the data subject or to object to processing as well as the right to data portability;
  • if the processing is based on the data subject’s consent, the data subject is authorized to withdraw consent at any time, without affecting the lawfulness of processing based on consent before its withdrawal;
  • the data subject has the right to lodge a complaint with a supervisory authority;
  • the provision of personal data is not a necessary condition for concluding a contract, and the data subject has no obligation to provide personal data and there are no consequences if such data are not provided, but failure to provide the necessary data may affect the possibility and/or quality of contract fulfillment;
  • automated decision-making does not exist.

Data Relating to Children

According to the General Data Protection Regulation, children deserve special protection in all aspects, including the protection of personal data.

In accordance with Article 19, Paragraph 1 of the Law on Implementation of the General Data Protection Regulation, children are considered to be all persons under the age of 16, and BIKE d.o.o. does not request or collect personal data of children or about them without the consent of the holder of parental responsibility.

Therefore, True Bike Experience d.o.o. will make all reasonable efforts to process data received from children only with the consent of the holder of parental responsibility.

If True Bike Experience d.o.o. learns that it has been sent personal data of children, but without valid consent of the holder of parental responsibility, True Bike Experience d.o.o. will reasonably try to do the following:

  • delete those personal data from its files as soon as possible; and

  • ensure, in case deletion is not possible, that those personal data are not further used for any purpose;

  • and in any case will not give them to any third party.

Method of Data Collection

Personal data are collected directly from the individual – data provided for the purpose of concluding or executing a contract, by creating a user account on the website directly, by telephone conversation with the individual.

True Bike Experience d.o.o. collects personal data of Customers only to the extent necessary to fulfill its obligations according to Customer requirements, or for which there is a legitimate interest and for which it has the Customer’s consent for the purpose of information, customer support, and marketing to the extent that it is important for the business of True Bike Experience d.o.o.

True Bike Experience d.o.o. undertakes to protect the personal data of Customers in accordance with the General Data Protection Regulation and undertakes not to disclose personal data to third parties without the Customer’s consent in any way or use them for undefined purposes. Processing of personal data that represents a contractual obligation is performed with the highest standards of security and business operations. The customer can at any time object to the processing of their personal data based on their specific situation. The customer has the right to request supplementation, correction, or modification of inaccurate personal data.

This excludes cases in which True Bike Experience d.o.o. is obliged, by a valid order of authorized state bodies, in accordance with the law, to provide or allow access to the personal data of customers.

Data Being Collected

The data collected by True Bike Experience d.o.o. are name, surname, address, phone number, and email address.

1. We collect data from you personally when concluding a rental agreement for the following purposes

  • Fulfillment of contractual obligations in which the data subject is a party or in order to take actions at the request of the data subject before concluding a contract
  • Creating your profile in our user database.
  • Contacting and identifying users of the rental item.
  • Recording data on purchases, invoice amount, and payment method.
  • Support for all your inquiries, comments, and suggestions.
  • Support in the complaint process.

2. True Bike Experience d.o.o. does not record your credit card number or store transaction data. True Bike Experience d.o.o. uses the services of a third party, the authorized credit card processor Wordline, which protects your data through encryption.

3. We also collect and process data

  • through a form on the website

  • directly by email

  • by phone call

  • by copying an identification document

The data collected in this way is used only for processing the requested information and user inquiries and for the purpose of ensuring a quality user experience. The data is available only to employees who need it to fulfill the contract. Customers and users of the website may be asked to give consent that, in accordance with the General Data Protection Regulation and in accordance with the requested inquiry, they agree to the processing of personal data, specifically when personal data is processed based on consent.

4. Newsletters

True Bike Experience d.o.o. collects email addresses of users which it uses to send newsletters or electronic messages containing promotional messages, offers, and news.

5. Collection for the purpose of providing customer support and marketing

True Bike Experience d.o.o., with the Customer’s consent, may use personal data to inform about new and promotional products and to deliver promotional materials, newsletters, and to improve relationships with Customers.

6. Controller of personal data

True Bike Experience d.o.o. is the controller of personal data in accordance with the law and regulations on personal data protection. True Bike Experience d.o.o., as the controller of personal data, determines the purpose and means of processing personal data and is responsible for storing and using personal data in paper and/or electronic form.

7. Data Protection Officer

Pursuant to Article 37 of the General Data Protection Regulation, True Bike Experience d.o.o., as the controller of personal data, has appointed a data protection officer whom you can contact via email at info@truebikexp.com

8. Personal Data Breach

In case of a personal data breach, True Bike Experience d.o.o., without undue delay and, where feasible, not later than 72 hours after having become aware of it, notifies the competent supervisory authority of the personal data breach, unless the personal data breach is unlikely to result in a risk to the rights and freedoms of natural persons. Where the notification to the supervisory authority is not made within 72 hours, it shall be accompanied by reasons for the delay.

Who are the entities with whom True Bike Experience d.o.o. may share personal data?

  1. Social media service providers

When creating an account on the website, it is necessary to enter your data (email, first and last name).

  1. Email promotional message service providers

True Bike Experience d.o.o. works with third-party service providers to carry out activities related to sending emails, advertising, and analyzing the use of our websites and applications, and monitoring the effectiveness of campaigns.

We share personal data only to the extent necessary for the performance of the service on our behalf. Below you can check who the third-party service providers necessary for cooperation are:

  • Google – Google Analytics which is used to track web statistics and demographic data and behavior of web users. We use it to track the effectiveness of our marketing campaigns. Third-party information: Google Dublin, Google Ireland Ltd, Gordon House, Barrow Street, Dublin 4, Ireland, Fax: +353 (1) 436 1001. Google Analytics Terms of Service:

https://www.google.com/analytics/terms/gb.html, General overview of the principles of security and privacy of Google Analytics:

https://support.google.com/analytics/answer/6004245?hl=en, as well as Google’s Privacy Policy: https://policies.google.com/privacy?hl=en.

These websites use Google Analytics to analyze visitor traffic regardless of the type of device, which is based on the user identification number (ID). You can disable tracking of your use of multiple devices in your Google account under “My Information”, “Personal Information”.

Cookie Policy

A “cookie” is a piece of information stored on a user’s computer, mobile phone, or tablet (hereinafter: “device”), which may be delivered directly from the website you visit (first-party cookies) or in collaboration with and for the needs of the website from a third party (third-party cookies). Cookies typically store user settings, website settings, etc. After the user reopens the website, the user’s internet browser sends back cookies that belong to this website. This allows the site to display information tailored to the user’s needs. Cookies can have a wide range of information, including some personal information. Such information can only be stored if the user allows it. The website itself cannot gain access to information that the user does not allow and cannot access any other file on the user’s computer.

For websites to work properly, they must store a small amount of cookies on the user’s computer. According to the General Data Protection Regulation, the Law on Implementation of the General Data Protection Regulation, and the Electronic Communications Act, True Bike Experience d.o.o. must request the user’s consent (permission) before storing Cookies, except for necessary ones.

Necessary cookies are essential for the page to be fully functional and for you to successfully track your shopping cart for online shopping. You cannot disable this type of cookies on your own.

If the user does not consent to the use of cookies, except for necessary ones, there is a possibility that the site will not be able to use some of the functionalities offered by the online store.

  1. What is the task of cookies?

The task of a cookie that you have allowed to be stored on your computer is to save your settings, website settings, your preferred language, or address. When you visit the same site again after some time, the internet browser you use sends information tailored to your needs.

Depending on the defined task, cookies store a wide range of information that, among others, includes personal data. However, you exclusively decide what information cookies will store. In the settings of your internet browser, you can choose whether to approve or reject requests to save cookies.

By disabling cookies, you may not be able to use some of the functionalities on the sites you visit.

  1. Types of cookies

Persistent cookies remain on the computer after closing the internet browser program. Persistent cookies will remain on the computer or mobile device for days, months, even years, and are intended to store permanent data such as username and password so that you don’t have to log in each time.

Temporary cookies disappear from the computer after you close the internet browser. They help store temporary data such as information you provide when you are in online shopping.

First-party cookies can be persistent or temporary, and they store data that you will use again during your next visit to the pages from which they were stored on your computer.

Third-party cookies or so-called advertising cookies are stored on your computer if you use advertisements and ads on the page you are visiting and it redirects you to a third party. This method is used to track Internet usage for marketing purposes.

True Bike Experience d.o.o. uses cookies to improve user experience, for the functioning of the site in the context of security, and for actions that the site visitor chooses independently (web form for sending messages or requesting services). Temporary cookies are deleted when you leave the internet browser. Their only purpose is to improve the user experience during the visit to the site. Persistent cookies have no limitations and remain in your browser until you manually delete them. The collected data is used exclusively for statistical purposes.

These are examples of third parties that provide data analysis and marketing processing services

  • Google – Google Analytics which is used to track web statistics and demographic data and behavior of web users. We use it to track the effectiveness of our marketing campaigns. If you want to prevent this service from saving cookies, you can do so at the following link: https://tools.google.com/dlpage/gaoptout

  • Facebook – Facebook social network collects data for the purpose of tracking and measuring the success of marketing campaigns, behavior of web users, and creating customized ads.

For more information about the purpose and scope of data collection and processing by the plugin provider, please see the privacy statements of these providers listed below.

a) Facebook Inc., 1601 S California Ave, Palo Alto, California 94304, USA; http://www.facebook.com/policy.php for more information on data collection: http://www.facebook.com/help/186325668085084http://www.facebook.com/about/privacy/your-info-on-other#applications as well as http://www.facebook.com/about/privacy/your-info#everyoneinfo Facebook has registered for the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

b) Google Inc., 1600 Amphitheater Parkway, Mountainview, California 94043, USA; https://www.google.com/policies/privacy/partners/?hl=de. Google has registered itself for the EU-US Privacy Shield, https://www.privacyshield.gov/EU-US-Framework.

Rights of Data Subjects

True Bike Experience d.o.o. – online store collects user data in accordance with the General Data Protection Regulation and the Law on Implementation of the General Data Protection Regulation.

Every user can at any time:

  • request access to their personal data and request updating of personal data and any inaccuracies.

  • ask us to provide you with additional information about how we use your data.

  • receive personal data about you that you have given us in a structured, commonly used, and machine-readable format and – where technically feasible – to transfer that data to another controller without hindrance if the processing of your data is based on your consent and is carried out by automated means.

  • request deletion of the user’s personal data and request deletion of data for which there is no longer a legal basis for use, provided that users can request deletion of only their personal data, and for the protection of users, we may ask you to verify your identity before processing the request.

  • in cases where processing is based on consent and related to any direct marketing, withdraw your consent with effect for the future so that we cease such specific processing.

  • object to any processing (including profiling) that is based on legitimate interest due to your specific situation, unless the reasons for carrying out such processing are stronger than the right to personal data protection.

  • ask us to restrict the way we use your data, e.g., while an objection is being processed.

True Bike Experience d.o.o. may refuse to carry out the request if it endangers the privacy of the user or other users, if the application of the request is contrary to the law, in exceptions for the protection of the public interest (e.g., prevention or detection of crime), legal obligations or rights and freedoms of others.

Requests for access, correction, or deletion of data can be sent to:

info@truebikexp.com or to the headquarters address of True Bike Experience d.o.o., Ulica Stjepana Bencekovića 31, 10000 Zagreb, Croatia.

Processing such a request can be technically and time-consuming, and in complex cases or in the case of a larger number of requests, a longer time is needed for data processing, of which we will notify you in a lawful and secure manner.

How do we ensure the security of your data?

In order to preserve the security, integrity, and availability of customers’ personal data, we secure the data with a series of security measures that include encryption, authentication, and strictly limited access to data.

Some of the measures we use include:

  • minimizing the processing of personal data

  • strictly limited access to personal data based on the “need to know” principle

  • using data only in accordance with legitimate interest, contractual obligation, or the Customer’s consent

  • secure data transfer

  • installation of antivirus programs and firewalls on IT systems to detect, prevent misuse of personal data, and unauthorized access to data

  • improving information security

  • physical protection measures

  • employee training on data protection

  • human security, etc.

The security measures implemented aim to:

  • Prevent unauthorized persons from gaining access to data processing systems in which personal data is processed;

  • Prevent persons who have the right to use the data processing system from accessing personal data beyond their needs and authorizations;

  • Ensure that personal data during electronic transmission or during transfer cannot be read, copied, modified, or removed without authorization;

  • Ensure the availability of system records for the purpose of determining by whom personal data was entered, modified, or removed from the data processing system;

  • Ensure that in the case where processing is performed by a processor, the data can only be processed in accordance with the instructions of BIKE d.o.o.;

  • Ensure that personal data is protected from unwanted destruction or loss;

  • Ensure that personal data collected for different purposes can be processed separately;

  • Ensure that personal data is not kept longer than necessary.

How long do we keep your personal data?

We store and keep personal data for five years from the realization of the event for which you purchased the ticket, unless applicable regulations provide for a longer retention period for a particular purpose.

In case of giving consent for marketing, we keep the data for five years from the delivery of personal data to True Bike Experience d.o.o. Withdrawal of consent does not affect the lawfulness of processing based on consent before its withdrawal. Withdrawal is submitted in writing. Personal data that is no longer needed is either irreversibly anonymized or securely destroyed.

Contacts

  • For all information, compliments, complaints, and any other notifications, Customers can contact True Bike Experience d.o.o. at the address Ulica Stjepana Bencekovića 31, Zagreb, 10000 Zagreb, Croatia.

  • Phone: 00 385 91 6308 266

  • E-mail: info@truebikexp.hr