Privacy Statement (EU)

This privacy statement was last updated on 11/04/2021 and applies to citizens of the European Economic Area.

In this privacy statement, we explain what we do with the data we obtain about you via https://www.stunningbikecotours.com. We recommend you carefully read this statement. In our processing we comply with the requirements of privacy legislation. That means, among other things, that:

  • we clearly state the purposes for which we process personal data. We do this by means of this privacy statement;
  • we aim to limit our collection of personal data to only the personal data required for legitimate purposes;
  • we first request your explicit consent to process your personal data in cases requiring your consent;
  • we take appropriate security measures to protect your personal data and also require this from parties that process personal data on our behalf;
  • we respect your right to access your personal data or have it corrected or deleted, at your request.

If you have any questions, or want to know exactly what data we keep of you, please contact us.

1. Purpose, data and retention period

2. Sharing with other parties

We only share or disclose this data to processors for the following purposes:

Processors

Name: Stripe, Inc.
Country: United States
Purpose: Payments

Name: TripWorks, Ltd.
Country: United States
Purpose: Bookings

Name: PayPal (Europe) S.à r.l. et Cie, S.C.A.
Country: Luxembourg
Purpose: Payments

Name: Tawk.to LLC
Country: USA
Purpose: Chat

Name: VHosting Solution S.r.l Unipersonale
Country: Italy
Purpose: Website Hosting

Name: Google Ltd
Country: Ireland
Purpose: Analytics

Name: Automattic Inc.
Country: USA
Purpose: CMS Backend

Name: Defiant Inc.
Country: USA
Purpose: Website Security

Name: Cloudflare Inc.
Country: USA
Purpose: Website DNS, Caching, Security & Analytics

3. Cookies

Our website uses cookies. For more information about cookies, please refer to our Cookie Policy. We have concluded a data Processing Agreement with Google.

4. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorized access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

The security measures we use consist of:

  • Username and Password
  • DNSSEC
  • TLS / SSL
  • Physical security measures of systems which contain personal data.
  • Security software
  • HTTP Strict Transport Security
  • X-Content-Type-Options
  • X-XSS-Protection
  • X-Frame-Options
  • No Referrer When Downgrade header
  • Content Security Policy

5. Third-party websites

This privacy statement does not apply to third-party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

6. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

7. Accessing and modifying your data

If you have any questions or want to know which personal data we have about you, please contact us. You can contact us by using the information below. You have the following rights:

  • You have the right to know why your personal data is needed, what will happen to it, and how long it will be retained for.
  • Right of access: You have the right to access your personal data that is known to us.
  • Right to rectification: you have the right to supplement, correct, have deleted or blocked your personal data whenever you wish.
  • If you give us your consent to process your data, you have the right to revoke that consent and to have your personal data deleted.
  • Right to transfer your data: you have the right to request all your personal data from the controller and transfer it in its entirety to another controller.
  • Right to object: you may object to the processing of your data. We comply with this, unless there are justified grounds for processing.

Please make sure to always clearly state who you are, so that we can be certain that we do not modify or delete any data of the wrong person.

8. Automated decision-making

We make decisions on the basis of automated processing with respect to matters that may have (significant) consequences for individuals. These are decisions taken by computer programs or systems without human intervention.

Our OTA partner "TripWorks" creates a predictions on booking behavior to allow a better data comprehension.

9. Submitting a complaint

If you are not satisfied with the way in which we handle (a complaint about) the processing of your personal data, you have the right to submit a complaint to the Data Protection Authority.

10. Contact details

Stunning Bike Co-Tours
Via Rezzonico, 32
22100 - Como (CO)
Italy
Italy
Website: https://www.stunningbikecotours.com
Email: privacy@stunningbikecotours.com
Phone number: (+39) 339.436.4906

Annex

Service: "FAST" Customer Support

What we collect and store

When you register on our support site we will store the following information.
  • Your first name
  • Your last name
  • Your email address
  • (if Oxygenna login) Envato username
When you create a ticket on our support site we will store the following information.
  • Ticket Subject
  • Ticket Type
  • Comment Content
  • Upload Attachment
  • Oxygenna Purchase Information
  • Extra Fields (here you should list any extra fields you have created)
When you reply to a ticket on our support site we will store the following information.
  • Comment Content
  • Upload Attachment

What we do with the information we gather

Members of our team have access to the information you provide us. For example, both Administrators and Ticket Agents can access:
  • Ticket Subject
  • Ticket Type
  • Comment Content
  • Oxygenna Purchase Information
  • Upload Attachment
Other customers will be able to view any tickets or comments you create unless you mark the ticket as private.

Who we share your data with

This service does not share any personal data with any 3rd parties.

-

Service: WooCommerce

We collect information about you during the checkout process on our store.

What we collect and store

While you visit our site, we’ll track:
  • Products you’ve viewed: we’ll use this to, for example, show you products you’ve recently viewed
  • Location, IP address and browser type: we’ll use this for purposes like estimating taxes and shipping
  • Shipping address: we’ll ask you to enter this so we can, for instance, estimate shipping before you place an order, and send you the order!
We’ll also use cookies to keep track of cart contents while you’re browsing our site.When you purchase from us, we’ll ask you to provide information including your name, billing address, shipping address, email address, phone number, credit card/payment details and optional account information like username and password. We’ll use this information for purposes, such as, to:
  • Send you information about your account and order
  • Respond to your requests, including refunds and complaints
  • Process payments and prevent fraud
  • Set up your account for our store
  • Comply with any legal obligations we have, such as calculating taxes
  • Improve our store offerings
  • Send you marketing messages, if you choose to receive them
If you create an account, we will store your name, address, email and phone number, which will be used to populate the checkout for future orders.We generally store information about you for as long as we need the information for the purposes for which we collect and use it, and we are not legally required to continue to keep it. For example, we will store order information for XXX years for tax and accounting purposes. This includes your name, email address and billing and shipping addresses.We will also store comments or reviews, if you choose to leave them.

Who on our team has access

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:
  • Order information like what was purchased, when it was purchased and where it should be sent, and
  • Customer information like your name, email address, and billing and shipping information.
Our team members have access to this information to help fulfill orders, process refunds and support you.

What we share with others

This section doesn't share any data with third-parties

Payments

We accept payments through Stripe. When processing payments, some of your data will be passed to Stripe, including information required to process or support the payment, such as the purchase total and billing information.Please see the Stripe Privacy Policy for more details.-

Service: iThemes Security

What personal data we collect and why we collect it

Cookies

Visiting the login page sets a temporary cookie that aids compatibility with some alternate login methods. This cookie contains no personal data and expires after 1 hour.

Security Logs

The IP address of visitors, user ID of logged in users, and username of login attempts are conditionally logged to check for malicious activity and to protect the site from specific kinds of attacks. Examples of conditions when logging occurs include login attempts, log out requests, requests for suspicious URLs, changes to site content, and password updates. This information is retained for 60 days.

Who we share your data with

When running Security Check, ithemes.com will be contacted as part of a process to determine if the site supports TLS/SSL requests. No personal data is sent to ithemes.com as part of this process. Requests to ithemes.com include the site's URL. For ithemes.com privacy policy details, please see the iThemes Privacy Policy.

This site is scanned for potential malware and vulnerabilities by the iThemes Site Scanner. We do not send personal information to the scanner; however, the scanner could find personal information posted publicly (such as in comments) during the scan.

How long we retain your data

Security logs are retained for 60 days.

Where we send your data

This site is part of a network of sites that protect against distributed brute force attacks. To enable this protection, the IP address of visitors attempting to log into the site is shared with a service provided by ithemes.com. For privacy policy details, please see the iThemes Privacy Policy.-

Service: Forminator

Which forms collect personal data?

The forms which collect your personal data are:

What personal data do we collect and why?

By default Forminator captures the IP Address for each submission to a Form. Other personal data such as your name and email address may also be captured, depending on the Form Fields.

When visitors or users submit a form, we capture the IP Address for spam protection. We also capture the email address and might capture other personal data included in the Form fields.We collect the following data for the contact forms, checkin, newsletter and user registration:
  • Name and Surname, to proceed with the online checkin and to give you a better personalised service
  • Address, Country  and Citizenship, to proceed with the online checkin
  • Birthdate, to proceed with the online checkin
  • User Name and Password, to register an user account
  • ID, Passport or Driver's Licences data, to proceed with the online checkin
  • Email address, to register an user account, proceed with the online checkin or contact you
  • Phone number, proceed with the online checkin or contact you

How long we retain your data

When visitors or users submit a form we retain the data as long as the services require it.

Where we send your data

All collected data might be sent to our workers or contractors to perform necessary actions based on the form submission.

Third Parties

Forminator Forms uses these third parties:

  • Google reCAPTCHA. Enabled when you added reCAPTCHA on your forms. We use Google reCAPTCHA for spam protection. Their privacy policy can be found here
-

Service: Stripe

Information shared with a payment provider to process payments includes:
  • Name
  • Email
  • Address
  • Phone
  • City/State/Zip
  • Unique payment identifier
  • Payment provider identifier
This plugin/extension sets the following cookies: -

Service: YITH

What we collect and store

YITH WooCommerce Affiliates

While you visit our site, we’ll track:
  • Visits to the store: we’ll use this to generate statistics for affiliates and administrators.
  • Location, IP address and browser type: we’ll use this just for statistics, and to let administrators supervise traffic generated by affiliates.
  • Affiliate’s name, username, email address: we’ll use this information to register and keep track of affiliates.
We’ll also use cookies to keep track of visit and sales generate by affiliates.

YITH Booking and Appointment for WooCommerce

While you visit our site, we’ll track information concerning users’ bookings: date, number of people, services added and all other information about the booking.

Who on our team has access

YITH WooCommerce Affiliates

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:
  • Affiliate’s personal details;
  • System-generated commissions;
  • Payments sent to the affiliates;
  • Visits and sales generated through referral links.
Our team members have access to this information to correctly manage the affiliation system, and perform required actions in order to prevent customers from any inappropriate usage of the affiliate program.

YITH Booking and Appointment for WooCommerce

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access to information about customer bookings.

What we share with others

YITH WooCommerce Affiliates

We send payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the commission total and payment information.Please see the PayPal Privacy Policy for more details.

YITH Booking and Appointment for WooCommerce

We share the availability calendars with external services, such as booking.com or Airbnb, as we sell our bookable products through these portals, to sync the availability information and prevent overbooking.-

YITH Plugins

This sample language includes the basics around what personal data your store may be collecting, storing and sharing, as well as who may have access to that data. Depending on what settings are enabled and which additional plugins are used, the specific information shared by your store will vary. We recommend consulting with a lawyer when deciding what information to disclose on your privacy policy.

What we collect and store

YITH WooCommerce Affiliates

While you visit our site, we’ll track:
  • Visits to the store: we’ll use this to generate statistics for affiliates and administrators.
  • Location, IP address and browser type: we’ll use this just for statistics, and to let administrators supervise traffic generated by affiliates.
  • Affiliate’s name, username, email address: we’ll use this information to register and keep track of affiliates.
We’ll also use cookies to keep track of visit and sales generate by affiliates.

YITH Booking and Appointment for WooCommerce

While you visit our site, we’ll track information concerning users’ bookings: date, number of people, services added and all other information about the booking.

Who on our team has access

YITH WooCommerce Affiliates

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access:
  • Affiliate’s personal details;
  • System-generated commissions;
  • Payments sent to the affiliates;
  • Visits and sales generated through referral links.
Our team members have access to this information to correctly manage the affiliation system, and perform required actions in order to prevent customers from any inappropriate usage of the affiliate program.

YITH Booking and Appointment for WooCommerce

Members of our team have access to the information you provide us. For example, both Administrators and Shop Managers can access to information about customer bookings.

What we share with others

YITH WooCommerce Affiliates

We send payments through PayPal. When processing payments, some of your data will be passed to PayPal, including information required to process or support the payment, such as the commission total and payment information.Please see the PayPal Privacy Policy for more details.

YITH Booking and Appointment for WooCommerce

We share the calendar with booking information through Google CalendarWe share the availability calendars with external services, such as booking.com or Airbnb, as we sell our bookable products through these portals, to sync the availability information and prevent overbooking.-

Service: Litespeed-cache

This site utilizes caching in order to facilitate a faster response time and better user experience. Caching potentially stores a duplicate copy of every web page that is on display on this site. All cache files are temporary, and are never accessed by any third party, except as necessary to obtain technical support from the cache plugin vendor. Cache files expire on a schedule set by the site administrator, but may easily be purged by the admin before their natural expiration, if necessary.-

Service: WordPress

Comments

When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.

Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

Cookies

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select "Remember Me", your login will persist for two weeks. If you log out of your account, the login cookies will be removed.If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website. These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

Who we share your data with

By default WordPress does not share any personal data with anyone. If you request a password reset, your IP address will be included in the reset email.

How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

Where we send your data

Visitor comments may be checked through an automated spam detection service.

Service: PayPal

PayPal Checkout

By using this extension, you may be storing personal data or sharing data with an external service. Learn more about how this works, including what you may want to include in your privacy policy.

Top Categories

0
YOUR CART
  • No products in the cart.