The processing of your personal data has changed as of 19 July 2022. 

The activities of Velofixer were taken over as of 19 July 2022 by Goodbikes SRL/Lucien, a subsidiary of D’Ieteren Automotive SA/NV. From this date, D’Ieteren Automotive becomes the data controller of your personal data in accordance with the law of 30 July 2018 on the protection of individuals. 
 

 

Information regarding Personal Data 

and how it is processed 

 

  1. Data Processing and Responsibility

 

By ‘processing’, we mean every operation we carry out on data, such as collecting, saving, storing, consulting, using, sending, deleting, archiving, and destroying data.  

 

Goodbikes SRL/Lucien, rue du Mail, 50, 1050 Brussels, is a subsidiary of D’Ieteren Automotive SA/NV, the latter being the entity responsible for the processing of your personal data. Any questions you may have on this matter can be sent to us by mail at the above address or by e-mail at the following address: privacy@lucien.bike. 

  1. What is D’Ieteren Automotive?
     

D’Ieteren Automotive SA/NV imports and distributes Volkswagen, Audi, SEAT, Cupra, ŠKODA, Bentley, Lamborghini, Bugatti and Porsche vehicles – as well as spare parts and accessories – across Belgium. The company manages a network of independent dealers throughout the country and owns sites located chiefly on the Brussels-Malines-Antwerp axis (Sopadis s.a., D’Ieteren Centers s.a., PC Antwerp s.a, PC Brussels s.a.).        
 

For D’Ieteren Automotive, your vehicle is not just a product: it is a suite of mobile and connected services supporting your lifestyle. D’Ieteren Automotive has pioneered the development of new mobility services, collaborating for example in the launch of shared and multi-mode mobility services such as Poppy (Lab Box s.a.).                  
D’Ieteren Automotive has various subsidiaries: 

  • D’Ieteren Centers
  • Sopadis (which in turn owns subsidiaries: Autonatie, Kronos, AC Bornem, Rietje, ACM, Porsche Centre Liège, Bruynseels, ACP, Porsche Centre Paal, Porsche Centre Mechelen, Don Bosco Garage, Thuy and Overijse Automotive)
  • PC Antwerp
  • PC Brussels
  • Wondercar 
  • Lab box (which also has subsidiaries: EDI, Poppy, MyMove, Husk, Ush & mbrella)
  • Lucien
  1. What personal data do we process?

 

By ‘personal data’, we mean any information regarding any identified or identifiable person. 

 

We process the personal data that you send us – such as user data (e.g. first and last name, language, address, telephone number, email address, age, bank account number and similar information, copies of ID cards, hobbies, the number and types of bikes you have), technical data regarding your bike (e.g. your frame number, bike numberplate, age of the bike) and the data we collect when you use our services (e.g. your bike’s mileage, how often you visit our shops, how often you visit our websites). 

 

We only use automatically processed data to make decisions when this is necessary to enter into or perform a contract (e.g. when issuing a loan) or if you have provided consent. 

 

We do not process ‘sensitive’ data relating, for example, to race or ethnicity, political opinions, religious or philosophical convictions, sexual activity and/or orientation, or your health. If it were necessary to process such data, we would only do so after having received your express permission, and only for specific purposes that we would explain to you in advance, or if it were necessary to process it for the purposes of labour law, social security, preventive medicine, or workplace medicine. 

  1. For what purposes and on what basis do we use the data that you send us?
     

We use the personal data that you provide for a variety of purposes, such as: 

 

  • Managing our contractual relationship and the associated services, e.g.
  • using your telephone details to notify you that requested work on your bike is complete 
  • using your personal data to prepare and issue invoices, purchase orders, etc.)

 

  • For purposes to which you have given us your consent, e.g. 
  • using your email address if you have opted to receive newsletters on our products via email 
  • to offer you personalised services, based on your habits only if you have given us specific permission to do so (e.g. suggesting you visit one of our workshops based on your bike’s behaviours, your mileage and the frequency of your visits to our workshops) (for more detail see section 5 below)
  • using your surname, first name and digital contact details in providing support to you via ‘chats’ on our websites  

 

  • To satisfy legal or regulatory obligations with which we are required to comply. E.g.:
  • providing the Authorities with your personal data when we are required to do so for a legal investigation
     
  • When we have a legitimate interest in doing so, while balancing this interest with protecting your privacy, e.g.
  • in the context of fighting and preventing fraud,
  • to improve our products and services, particularly in the context of feedback requests and satisfaction surveys  
  • to remind you of an appointment you made when your bike was serviced

 

  • Anonymously, or using pseudonyms, for commercial purposes with no link your personal data (e.g. for statistical analysis of visit frequency to our workshops/garages)
     
  • Jointly with other data controllers when agreements have been made to that effect 

 

Goodbikes SRL does not carry out processing that might be characterised as an automated decision process. Automated decision making is the ability to make decisions using technology and without human intervention.  

 

We may sometimes need to transfer your data to other companies within our corporate group (sister companies, subsidiaries like D’Ieteren Centers, Lab Box, Wondercar, D’Ieteren Lease or Volkswagen D’Ieteren Finance) for the above purposes. 

 

We will not transfer it to third parties, except: 

 

  • When we are legally required to do so (e.g. the Credit Register of the National Bank of Belgium, when issuing a loan);
  • When we are legally authorised to do so (e.g. if we transfer our rights and obligations to a loan, or if we transfer all or part of our business)
  • To subcontractors, when this is needed to provide our services (e.g. digitally archiving invoices)
  • To keep it up to date (providing it to BPost when mail is returned following a change of address)
  • When you provide prior consent

 

If processing the data via a subcontractor requires it to be transferred outside of the European Union, we will ensure that your data is protected in accordance with applicable European Union law.  

 

We ensure that any third party to whom we transfer your data processes it, as we do, with the highest standard of security, with every necessary safeguard in place to protect it. 

  

As noted in section 2 above, D’Ieteren Automotive has a number of subsidiaries: 

  • D’Ieteren Centers
  • Sopadis (which in turn has subsidiaries: Autonatie, Kronos, AC Bornem, Rietje, ACM, Porsche Centre Liège, Bruynseels, ACP, Porsche Centre Paal, Porsche Centre Mechelen, Don Bosco Garage, Thuy and Overijse Automotive) 
  • PC Antwerp
  • PC Brussels
  • Wondercar
  • Labbox (which in turn has subsidiaries: EDI, Poppy, MyMove, Husk, Ush & mbrella)
  • Lucien

 

In this context we transfer and may share your personal data with our subsidiaries.  

 

  1. More information about consent

 

D’Ieteren Automotive and its subsidiaries obtain consent for two different levels of processing: 

– A standard consent is obtained for our general business. By this we mean communication by newsletter, invitations to take part in events, information about new models of bike we are distributing, promotions, and so on. You will only receive communications on the basis of information we have obtained directly from you (and so not derived or calculated).  

For example, if you have requested a catalogue for a specific brand of e-bike and given your standard consent, you will receive information about that brand and other possible brands we offer. 

– If you give a standard consent, you will also have the option of giving a personalised consent. This personalised consent means that D’Ieteren Automotive and the other beneficiaries that you select may create a customer profile for you on the basis of all the information we hold, so as to be able to send you personalised communications.  

If we take the example above: if you have requested a catalogue for a specific brand of e-bikes and have given your standard consent but also a personalised consent, you will receive the e-bike newsletter. Based on your customer profile, we will, for example, be able to make a “best guess” as to when we should send you an e-mail about a new model. Personalised consent allows you to receive specific communications based on your profile. 

 

  1. How do we protect your data, and how long do we store it?

 

We implement all technical and organisational measures needed to protect your personal data. 

  

Your data is stored for the time needed for the processing associated with the purpose for which it was collected. For example:  

 

  • 30 days for your contact details when you take part in a live ‘chat’ on our websites;
  • 6 months when preparing an offer for the purchase of a bike or an online specification;
  • 1 year for your contact details when you test drive one of our bikes, in case there are any fines to be paid; 
  • 1 year for your contact details when you register at reception in one of our showrooms;
  • 7 years for accounting/tax documents;
  • 8 years after the end of the contractual relationship to retain evidence for disputes or claims;
  • 8 years after a sales interaction with no outcome.

 

 

This time period can sometimes be longer, to comply with legal requirements or in the event of a dispute. 

 

At the end of these storage periods, personal data is deleted or rendered anonymous or unusable. 

  1. What are your rights?

 

You have the following rights with regard to the personal data that we collect/that you provide: 

 

  • Right to access and transfer your data:

You have the right to access all personal data that concerns you. You have the right to receive confirmation as to whether your personal data is or is not being processed, and to be informed of the purposes for which we process it, the type of data that is processed, the persons and entities who receive the data, and how long your data is stored. You also have the right to receive a copy of the personal data that you have provided, and to send it (or ask us to send it) to another entity responsible for processing personal data. 

 

  • Right to correct/delete data right to be forgotten

You have the right to ask for data concerning you to be corrected if you realise that it is inaccurate or incomplete. You also have the right to ask for your personal data to be deleted if it is no longer needed for the purposes for which it was collected. If you gave us permission to process your personal data, you have the right to withdraw this permission at any time. 

 

  • Right to object to the processing of data for marketing purposes

You have the right to refuse permission for your data to be processed for direct marketing or prospecting purposes. No reason need be provided if you decide to refuse. 

 

  • Right to limit processing

You have the right to limit how your data is processed when you dispute its accuracy, when you are opposed to its deletion and instead require that its processing is limited, or when – while we no longer need to process it – you have a need for it in order to assert, exercise or defend a legal right.  

 

  • Right to file a complaint with the oversight authority

You may if you choose file a complaint concerning the processing of your data with the Data Protection Authority (formerly the Privacy Commission) at the following address: Autorité de la Protection des Données, Rue de la Presse, 35, 1000 Bruxelles –  contact@apd-gba.be . 

 

You can exercise the first four rights by contacting us at the addresses mentioned in the section ‘Data Processing and Responsibility’ 

 

  1. How to Contact Our Data Protection Officer

 

To ensure that the way in which we process personal data complies with applicable legislation, we have appointed a Data Protection Officer (D.P.O. –  email: DPO@dieteren.be – Address: rue du Mail, 50, 1050 Brussels). 

 

 

 

Embedded content from other websites

Articles on this site may include embedded content (e.g., videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

 

Where we send your data

We store your email address and name together with your order history in our inventory and client system.

 

WooCommerce

We collect information about you during the checkout process on our store.

 

What we collect and store

While you visit our site, we’ll track:

  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed Location,
  • IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!

We’ll also use cookies to keep track of cart contents while you’re browsing our site.

 

When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment. We’ll use this information for purposes, such as, to:

  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages if you choose to receive them

 

We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it

 

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:

Order information like what was purchased, when it was purchased and where it should be sent, and

Customer information like your name, email address, and billing and shipping information.

Our team members have access to this information to help fulfill orders, process refunds and support you.

 

What we share with others

We share information with third parties who help us provide our orders and store services to you; for example: Mollie, Paypal.

 

Payments

We accept payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the purchase total and billing information.

Please see the PayPal Privacy Policy for more details.

 

Mollie, within the meaning of the new regulations, is itself an independent responsible controller of data and ensures itself that it complies with the regulations. You can find all the necessary information at: https://www.mollie.com/en/privacy