Privacy Policy
Last updated: April 2026. This policy explains how AOK Bikes Ltd collects, uses, and protects your personal data.
1. Who We Are
AOK Bikes Ltd is the data controller for personal data collected through this website. Registered in England and Wales.
Contact: support@aokbikes.com
2. What Data We Collect
We collect personal data in the following ways:
- Account registration: name, email address, password (hashed)
- Orders: name, email, postal address, phone number, payment data (processed securely by our payment provider)
- Contact forms: name, email, message content
- Technical data: IP address, browser type, pages visited — collected automatically via server logs and cookies
- Newsletter: email address (only if you voluntarily subscribe)
We do not collect sensitive personal data (race, health, religion, etc.).
3. How We Use Your Data
| Purpose | Legal Basis (UK GDPR) |
|---|---|
| Processing your order | Contract performance (Art. 6(1)(b)) |
| Sending order confirmations & updates | Contract performance (Art. 6(1)(b)) |
| Responding to enquiries | Legitimate interests (Art. 6(1)(f)) |
| Website security & fraud prevention | Legitimate interests (Art. 6(1)(f)) |
| Newsletter (if subscribed) | Consent (Art. 6(1)(a)) |
| Legal compliance & record-keeping | Legal obligation (Art. 6(1)(c)) |
4. Cookies
We use cookies to maintain your shopping session, remember login state, and understand how visitors use our site. See our Cookie Policy for full details.
5. Sharing Your Data
We share your personal data only as necessary:
- Delivery carriers (DHL, DPD, UPS) — name and delivery address
- Payment processors — payment data processed securely under their own privacy policies
- Email service providers — for transactional emails and newsletters
- Legal authorities — if required by law
We never sell your personal data to third parties.
6. Data Retention
We retain personal data for as long as necessary to fulfil the purposes described above, or as required by law (e.g. HMRC requires financial records to be kept for 6 years). Account data is deleted within 30 days of account closure upon request.
7. Your Rights
Under UK GDPR, you have the following rights:
- Access — request a copy of the personal data we hold about you
- Rectification — request correction of inaccurate data
- Erasure — request deletion of your data ("right to be forgotten")
- Restriction — request we limit processing of your data
- Portability — receive your data in a machine-readable format
- Objection — object to processing based on legitimate interests
- Withdraw consent — withdraw consent for marketing at any time
To exercise any of these rights, email us at support@aokbikes.com. We will respond within 30 days.
8. Security
All data transmitted to and from this website is protected by TLS (HTTPS) encryption. Passwords are stored as one-way hashes. We do not store payment card details.
9. Complaints
If you believe we have not handled your personal data correctly, you have the right to lodge a complaint with the Information Commissioner's Office (ICO):
ico.org.uk — 0303 123 1113
10. Changes to This Policy
We may update this Privacy Policy from time to time. The latest version will always be available on this page. We will notify registered users of significant changes by email.