Privacy policy

BeastyBike and UNDERWY are committed to protecting the privacy of all users of the website. Please read the following privacy policy which explains how we use and protect your information. We will be the "controllers" of the information you provide to us.

This privacy policy applies to all registered and unregistered users of our website.


If you have any questions or requests regarding this privacy policy or how we process your data more generally, please contact us at: [email protected]


We collect your personal information when you interact with us or our services, such as when you place an order. We also observe how visitors use our site, in order to help us improve our services and optimize our customer experience.
We collect information:
  1. when you create an account or change the settings of that account;
  2. when you place an order or during its processing (payment and delivery);
  3. when you contact us directly by email, telephone, postal mail, messaging or via our chat, and
  4. when you browse and use our site (before and after creating an account).
We also collect information from third-party sites, such as advertising platforms and our fraud detection service provider.


  1. As part of our confidentiality commitments to our customers and more generally to visitors to our site, we make a commitment to transparency regarding the information you provide to us.
  2. When you visit our site or place orders on it, we ask you to provide information about yourself: your name, contact details, delivery address, order details and payment information (cards credit/debit).
  3. We also collect information about your use of our site and when you contact us or send us feedback, by email, post, phone or chat. If you contact us by telephone, we will take notes in relation to your call.
  4. We collect technical information from your mobile device or computer, such as its operating system, device and connection type and IP address from which you access our site.
  5. We also collect technical information about your use of our services through a mobile device, such as your carrier, location and performance data such as mobile payment methods, interactions with other distribution such as NFC tags, QR codes and/or the use of mobile restaurant tickets. Unless you have chosen to remain anonymous through your device and/or our Platform settings, we may automatically collect and use this information if you use our Service through your mobile device(s). s), your mobile phone browser or otherwise.


  1. We will only process the data we collect about you if we have a relevant legal basis: if we need to process your information in order to provide you with the service you have requested or for the conclusion of a contract, if we have your consent, if we have a justifiable reason to process your data, or if we are legally required to do so.
  2. When we need it to provide you with the requested service or to enter into a contract, we use your information:
    • to provide you with access to relevant parts of the Site;
    • to provide you with the services you have requested;
    • to enable us to collect your payments, and
    • to contact you, when necessary about our services, for example to resolve any difficulties with your orders.
  3. We also process your data if we have a justifiable reason to do so - for example to personalize our service (data processing which facilitates and speeds up the ordering process). We have listed these reasons below:
    • improve the efficiency and quality of service that our customers can expect from us in the future;
    • allow our customer support team to help you as efficiently as possible if you have any questions or complaints;
    • contact you for your opinions and comments on our services and to inform you in the event of important changes or developments to our site or our products;
    • analyze your activity on our site in order to administer, support, improve and develop our business and for statistical and analytical purposes as well as to help us prevent fraud;
    • if you submit comments regarding our site and our products, we may use them on our site and in any marketing or advertising materials. For this purpose, we will only identify you by your first name.


  1. You can set your browser to refuse all or some cookies, or to alert you when websites install or access cookies. If you disable or refuse our cookies, please note that some parts of the site may become inaccessible or not function properly. For more information about the cookies we use, please see the Cookies Policy .


If you have given your consent or if we have a justifiable reason (and if the law allows us to do so), we will use your information to present to you our products and services that may be of interest to you. We will contact you by email or phone. You can unsubscribe from mailings at any time by clicking on the unsubscribe link at the end of the email provided for this purpose.


  1. We carry out anti-fraud checks on all our customers. When we believe we detect fraudulent activity, we may prevent you from ordering and using our site.
  2. We carry out these anti-fraud checks on all our customers because it is essential for us to be able to fulfill orders, ensuring that they are duly paid, but also to protect anyone against fraudulent use of their card.
  3. Considering the volume of customers and orders that we process, we use automated systems, in particular a third party specialized in fraud detection named Radar, in order to make automated decisions as to whether or not to accept an order. We believe that this is the fairest, most precise and efficient way to carry out these anti-fraud checks since checks involving human intervention would be impossible given the timeframes and volume of customers we deal with.
  4. The checks and decisions that are made take into account various elements, such as known industry fraud indicators that our expert fraud detection contractor makes available to us, and which give the probability of a fraudulent transaction. If our systems indicate a high score for one of your transactions, we may refuse your order. Fraud indicators are dynamic and will change based on the types of fraud detected globally, nationally and on our site in real time.
  5. Our anti-fraud controls are in place to protect all of our customers as well as BeastyBike. You have the right to challenge any fraudulent transaction-related decision made about you and to obtain more information about why such a decision has been made by contacting us as set out in Section 1.


  1. The information we collect will be kept for as long as necessary to fulfill the purposes described in the "Use of my information" paragraph above, in accordance with our legitimate interest or for a period specifically required by applicable regulations or laws, such as the retention of information for regulatory reporting purposes.

  2. When determining relevant retention periods, we will consider factors such as:
    • our contractual obligations and rights in relation to the information under consideration;
    • legal obligation(s), under applicable law, to retain the data for a certain period of time;
    • limitation period under applicable law(s);
    • any disputes, and
    • guidelines published by competent data protection authorities.


  1. The information we collect about you will be transferred to and stored on our servers located in the EU. We are very careful and transparent about who your information is shared with.
  2. Sharing your information internally:

    • We only share your information with other BeastyBike group companies where necessary for the purposes set out in paragraph 4.
  3. Sharing your information with third parties:

    We share your information with third party service providers. The types of third party service providers with whom we share your information include:

    • payment service providers (online payment service providers and fraud detection service providers): so that they can provide their services to us, for example when they process information for us such as credit card payments credit, when they provide support services to you or carry out anti-fraud checks on our behalf;
    • IT service providers (file and database hosting providers): for data storage and analysis purposes;
    • marketing and advertising partners: for the purpose of sending newsletters and marketing emails.

    BeastyBike will take all steps reasonably necessary to ensure that your data is treated securely and in accordance with this Privacy Policy when provided to third parties.

  4. If our company enters into a “joint venture” agreement with another business entity, buys another business entity, or is sold or merged with it, your information may be disclosed or transferred to that target company, our new business partners or owners. or their advisers.

  5. We may also share your information:
    • with third parties whose involvement we believe is necessary in order to detect or prevent crime, for example with the police.


  1. We adopt robust technologies and policies to ensure that the personal information we hold about you is suitably protected.
  2. We take steps to protect your information against unauthorized access and against unlawful processing, accidental loss, destruction and damage.
  3. If you have chosen a password which enables you to access certain parts of the site, you are responsible for keeping this password confidential. We recommend that you do not share your password with anyone.
  4. Unfortunately, data transmission over the Internet is not completely secure. We will take steps to protect your information, however we cannot guarantee the security of any data you transmit to us, any transmission is at your own risk. Once we have received your information, we will use strict procedures and security features to try to prevent unauthorized access.


  1. Under data protection law you may have a number of rights in relation to the data we hold about you. If you wish to exercise any of these rights, please contact our Data Protection Officer using the contact details set out in Section 1. To find out more about your rights, please contact the data protection authority to which you are subject. .
  2. The right to be informed. You have the right to receive clear, transparent and easily understandable information about how we use your information and your rights. This is why we inform you about this in the context of this policy.
  3. The right of access. You have the right to obtain access to your information (if we process it). This will allow you, for example, to verify that we are using your information in accordance with data protection law. If you wish to access the information we hold about you in this way, please contact us.
  4. The right to rectification. You are entitled to obtain the correction of your information if it is inaccurate or incomplete. You can ask us to correct any errors in the information we hold by contacting us.
  5. The right of cancellation. It is also known as the 'right to be forgotten' and, in simple terms, allows you to request the deletion or removal of the information we hold about you by contacting us.
  6. The right to restrict processing. You have rights to "block" or "delete" any further use of your information. Where processing is restricted, we may still store your information, but we will not use it further.
  7. The right to data portability. You have the right to obtain your personal information in an accessible and transferable format so that you can reuse it for your own purposes with different service providers. It is not, however, a general right, and there are exceptions. To find out more, please contact us.
  8. The right to file a complaint. You have the right to lodge a complaint about the way we handle or process your data with the national data protection authority.
  9. The right to withdraw consent. If you have given your consent to any of our processing activities (i.e. we rely on consent as the legal basis for processing your information), you have the right to withdraw that consent at any time. moment. To do this, simply contact us. However, withdrawal of consent will not make it unlawful to use your personal information where consent was manifest.
  10. The right to object to processing. You have the right to object to certain types of processing, including processing for direct marketing purposes. You can object by changing your marketing preferences or disabling cookies (paragraphs 5 and 6 above).
  11. The right to determine instructions regarding the processing of your data after your death. You have the right to choose how BeastyBike may use, store or delete your information after your death.


Any changes to our privacy policy will be posted on the site and, where appropriate, we will notify you of these changes, for example by email or by means of a push notification.

Last update of this privacy policy: 05/25/2018


If you are not satisfied with our responses to your complaints, or if you consider that our processing of your information does not comply with data protection law, you can complain to:

The National Commission for Computing and Liberties (CNIL):

  1. Address: NATIONAL COMMISSION FOR COMPUTER AND FREEDOMS (CNIL), 3 Place de Fontenoy - TSA 80715 - 75334 PARIS CEDEX 07
  2. Telephone number: 01 53 73 22 22
  3. Website:

New Account Register

Already have an account?
Log in instead Or Reset password