Privacy Policy

This Privacy Statement CERVÉLO CYCLES governs the collection, use and other forms of processing of personal data by CERVÉLO CYCLES INC. (“CERVÉLO”) related to our services, our CERVÉLO CYCLES products and this website.

Who is responsible for collecting and processing of your personal data?

CERVÉLO (11 Columbia Aliso Viejo, 92656, California, and United States) is the legal entity responsible for all collection and all processing of your personal data in connection with the products, services and websites of CERVÉLO CYCLES.

CERVÉLO is part of Pon Holdings B.V. its affiliates and its subsidiaries (“Pon”). CERVÉLO and Pon are committed to respecting and safeguarding your privacy and the security of your personal data you share with us.

Why do we collect your personal data?

When you choose to register your personal data, contact us, or visit our websites, we will collect some personal data about you. We may process these personal data for the following purposes:

  1. communicate with you in a personal way or to inform you about CERVÉLO CYCLES products or services;
  2. provide customer service, including service around the purchase of services and products, fulfil warranty obligations and product recalls for our own services and those of related companies, and to deal with any enquiries or complaints;
  3. administer and fulfil your purchases of CERVÉLO CYCLES products including the financial and logistic handling;
  4. administer your account;
  5. administer your participation in any contests, promotions, surveys or website features;
  6. perform market research and improve our business, services and CERVÉLO CYCLES products;
  7. perform statistical analyses and reporting;
  8. providing services on the Internet;
  9. communicating with participants and offering a loyalty program;
  10. provide app functionality, including providing relevant commercial messages;
  11. to communicate future promotional and marketing information including direct marketing purposes and retargeting;
  12. to comply with our legal obligations, resolve disputes, or enforce our agreements;
  13. as otherwise stated at or about the time information is collected.
  14. to protect the safety and health of individuals
  15.  (to support) the security of (access to) CERVÉLO CYCLES buildings and premises;
  16. to prevent break-ins, theft, and vandalism;
  17. to surveil the property and information located in CERVÉLO CYCLES buildings or premises;
  18. to record incidents;
  19. as otherwise stated at or about the time information is collected)

Which personal data do we collect?

Which personal data we exactly collect, depends on which websites, products or services you use. In general, there are three categories of personal data we collect or use:

Personal data you provide:

This is the personal data that you enter when you use our websites, products or services. This data includes e.g. your name, address, gender, email address, phone number, age, birth date, CERVÉLO CYCLES products you bought, the account name and password that you create, bank details for buying CERVÉLO CYCLES products etc.

Data collected via sensors:

Many products are equipped with one or more sensors or use the sensors of the devices on which the products are provides. Examples of sensors are GPS receivers, Wi-Fi or Bluetooth receivers, a camera and touch screens.

In accordance with the purposes for processing the via the sensors collected data about you and the used devices will be sent to CERVÉLO and other third parties that need the data for providing the agreed services to CERVÉLO.

Metadata:

This is data that is collected or generated automatically when you use the websites, products or services of CERVÉLO CYCLES. Metadata is often collected or generated when using a computer or device when you send data via a computer network, such as the Internet. This data contains data that may be used by the user interface or device activities, as well as IP addresses, unique device identifiers, MAC addresses of Wi-Fi and Bluetooth devices, cookies and data from computer activities itself.

How do we process your personal data?

In the table below we describe the purposes for which we process data that we collect as well as the legal basis for the processing:

WAYS OF COLLECTING DATAPERSONAL DATA PROCESSEDPURPOSES FOR PROCESSING THE PERSONAL DATALEGAL BASIS FOR PROCESSING
Registration for CERVÉLO eNewsletterPersonal Data You ProvideThe above described purposes: 1, 2, 6, 7, 8, 10, 11, 12, and 13Consent or legitimate interest
Join the CERVÉLO online forumPersonal Data You ProvideThe above described purposes: 1, 2, 6, 7, 8, 10, 11, 12, and 13Performance of a contract or legitimate interest
CERVÉLO account creationPersonal Data You ProvideThe above described purposes: 1, 2, 4, 6, 7,8, 9, 10, 11, 12, and 13Consent, legitimate interest or performance of a contract
CERVÉLO Product registrationPersonal Data You ProvideThe above described purposes: 1, 2, 3, 6, 7, 8, 9, 10, 11, 12, and 13Performance of a contract or legitimate interest
Attend a product promotion, event or online forumPersonal Data You ProvideThe above described purposes: 1, 5, 6, 8, 10, 11, 12, and 13Consent or legitimate interest
Visit our websites (cookies)MetadataThe above described purposes: 6, 7, 8, 10, 11, 12, and 13Consent or legitimate interest
Log on our websites via social mediaPersonal Data You Provide (please note: we never obtain access to your social media account)The above described purposes: 1, 6, 7, 8, 11, 12, and 13Consent or legitimate interest

Our legitimate interests include: marketing, commerce, advertising, security, (crime) prevention, IT management, research and analysis of our products or services, business management, legal affairs, internal management.

If you chose to provide your personal data in one of the above listed ways and provide explicit consent or visit our website and accept cookies, you authorize CERVÉLO and its service providers to collect, store, use, disclose, and otherwise process your personal data in connection with the purposes as described above.

You have the right to withdraw your consent which you may have given to the processing of your personal data at any time by sending your withdrawal request via email to privacy@pon.com. Because email communications are not always secure, please do not include sensitive information in your emails to us.

HOW DO WE SHARE OR TRANSFER YOUR PERSONAL DATA?

CERVÉLO is part of a business group within Pon (www.pon.com) and therefore departments (like IT, marketing) can be located in other Pon companies. As a consequence, your personal data may be shared within and/or transferred to other Pon companies when there is a legal basis for this, such as your consent or a legitimate interest. 

CERVÉLO may share your personal data also with third parties to perform certain processing activities on behalf of CERVÉLO and to facilitate services they provide to us. These can include providers of services such as website hosting, data analysis, payment processing, order fulfilment, information technology and related infrastructure provision, customer service, email delivery, auditing, and other services. CERVÉLO may also share your personal data to third parties, to permit them to send you marketing communications, consistent with your choices. CERVÉLO requires these third parties to process and protect your personal data diligently. CERVÉLO will not sell your personal data to third parties

CERVÉLO may share your personal information in the course of any reorganization process including, but not limited to, mergers, acquisitions, and sales of all or substantially all of our assets.

CERVÉLO may disclose your personal information to law enforcement, government agencies, and other related third parties, in order to comply with the law, enforce our policies, or protect our or others’ rights, property or safety.

CERVÉLO requires the third parties with whom we share or disclose information to diligently process and protect your personal data.

HOW DO WE PROTECT YOUR PERSONAL DATA?

CERVÉLO takes reasonable and appropriate technical and organizational security measures to protect against loss or unlawful processing of personal data and to ensure the security of your personal information. This may include using secure registration forms, encryption of data and restricting access to your personal data. Please understand, however, that no data transmission over the Internet can be guaranteed to be 100% secure. Consequently, CERVÉLO cannot ensure or warrant the security of any information you transmit to us and you understand that any information that you transfer to us is done at your own risk.

If we learn of a security system breach, we may attempt to notify you electronically so that you can take appropriate protective steps. By using the Services or providing personal information to us, you agree that we can communicate with you electronically regarding security, privacy and administrative issues relating to your use of the Services. We may post a notice via our website if a security breach occurs. We may also send an email to you at the email address you have provided to us in these circumstances. Depending on where you live, you may have a legal right to receive notice of a security breach in writing.

CERVÉLO strives to ensure that your personal data is stored on servers within the EEA. In all cases, you can trust that CERVÉLO will implement appropriate security measures to ensure the confidentiality and protection of your data. For transfers from the CERVÉLO to countries not deemed adequate by the European Commission, we have implemented measures such as contractual agreements, approved by the European Commission, with third parties.

INTERNATIONAL DATA TRANSFER

CERVÉLO is based in the United States. If you choose to provide us with information, please understand that your personal information may be transferred outside of the United States and that we may transfer that information to our affiliates and subsidiaries or to third parties, across borders, and from your country or jurisdiction to other countries or jurisdictions around the world. If you are visiting from the EU or other regions with laws governing data collection and use that may differ from United States law, please note that you are transferring your personal information to other jurisdictions which may not have the same data protection laws as the EU. We put in place appropriate operational, procedural and technical measures in order to ensure the protection of your personal information.

HOW LONG DO WE RETAIN YOUR PERSONAL DATA?

We retain personal data for as long as needed or permitted in light of the purpose(s) for which it was obtained and consistent with applicable law.

The criteria used to determine our retention periods include:

The length of time we have an ongoing relationship with you and provide our services to you (for example, for as long as you have an account with us or continue using our services);

Whether there is a legal obligation to which we are subject (for example, certain laws require us to keep records of your transactions for a certain period of time before we can delete them); or

Whether retention is advisable in light of our legal position (such as in regard to applicable statutes of limitations, litigation or regulatory investigations).

COOKIES, WEB BEACONS AND SIMILAR TECHNOLOGIES

If you are using our websites, services, applications, communications (including email) and accessing or using tools, we, and third parties we allow, use cookies, web beacons and other similar technologies for storing information to provide you with a better, faster and safer browser experience.

A "cookie" is a small text file that a website can place on your computer’s hard drive or on your mobile device’s memory in order to collect information about your activities on our website. An "image tag," also known as a clear GIF or web beacon, works together with cookies and is a small image file that may be located in various areas of our website. Most browsers automatically accept cookies, but you have the option to change your browser setting to decline them.

We may use session cookies or persistent cookies. Session cookies only last for the specific duration of your visit and are deleted when you close your browser. Persistent cookies remain on your device’s hard drive until you delete them or they expire. Different cookies are used to perform different functions, as explained below:

Essential: Some cookies are essential in order to enable you to move around our website and use its features, such as accessing secure areas of our website. Without these cookies, we cannot enable appropriate content based on the type of device you are using.

Analytics: We use Google Analytics and Hot Jar to measure how you interact with our website and to improve your user experience.

Customer Relationship Management (CRM): We use Hubspot CRM to measure how you interact with our website, to collect data from online forms such as our Contact Us form, and communicate with you through email.

To learn more about Google Analytics privacy practices and opt-out mechanisms, please visit https://support.google.com/analytics/answer/6004245?hl=en.

Targeted Advertising: We use cookies to compile information on our user’s interaction with our website. We use this information to serve ads to you based on your past visits to our website and to show our ads on sites across the Internet.

There are several ways to manage cookies. You can control the use of cookies at the browser level by instructing your browser to accept cookies, disable cookies or notify you when receiving a new cookie. Please note that if you reject cookies, you may still use our website, but your ability to use some features or areas of our website may be limited. The Network Advertising Initiative also offers a means to opt-out of a number of advertising cookies. Please visit www.networkadvertising.org to learn more. Note that opting-out does not mean you will no longer receive online advertising. It does mean that the company (or companies) from which you opted-out will no longer deliver ads tailored to your preferences and usage patterns.

COOKIE DECLARATION

Loading cookie declaration...

 

HOW WE RESPOND TO DO-NOT-TRACK SIGNALS

Some browsers have a "do not track" feature that lets you tell websites that you do not want to have your online activities tracked. These features are not yet uniform, so we are not currently set up to respond to those signals.

YOUR RIGHTS

If you would like to request to review, correct, update, suppress, restrict or delete personal data, object to the processing of personal data, or if you would like to request to receive an electronic copy of your personal data for purposes of transmitting it to another company (to the extent these rights are provided to you by applicable law), you may contact us via privacy@pon.com. We will respond to your request consistent with applicable law.

In your request, please make as clear as possible what personal data your request relates to. For your protection, we may only implement requests with respect to the personal data associated with the particular email address that you use to send us your request, and we may need to verify your identity before implementing your request. We will try to comply with your request as soon as reasonably practicable and in any event within any applicable legally required timeframes.

COLLECTION AND USE OF INFORMATION FROM CHILDREN

Our Services are not intended for children. We do not knowingly collect personal information from children, and none of our Services are designed to attract children. In the event that we learn that a person under the age of 13 has provided personal information to us, we will delete such personal information as soon as possible.

OPT-OUT

We provide you the opportunity to opt-out of marketing communications by clicking the “unsubscribe” link in email communications or by contacting us using the contact information provided below. We will endeavour to process your request as soon as possible in accordance with applicable law, but please be aware that in some circumstances you may receive a few more messages until the unsubscribe is processed. Additionally, we may send you information regarding our Services, such as information about changes to our policies and other notices and disclosures required by law. Generally, users cannot opt-out of these communications, but they will be primarily informative in nature, rather than promotional.

THIRD-PARTY LINKS

Our website contains links to other sites such as third-party online retailers, advertisers, or unrelated sites that we may link to or web sites that link to our website. These sites may collect personal information directly from you. The information policies and practices of these unrelated parties are not covered by this privacy policy. We do not control the privacy policies of third parties even if we may provide hyperlinks or other access to their web sites. We are not responsible or liable for their independent policies and practices. Please review their privacy policies and practices. It is your responsibility to review them and decide if you are satisfied with their protections.

CONTACT, QUESTIONS, FEEDBACK AND DATA PROTECTION OFFICER

If you have any questions about this Privacy Statement, please contact us at privacy@pon.com.

You may also contact our Data Protection Officer (DPO) via privacy@pon.com. You have the right to lodge a complaint with a data protection authority for your country or region or where an alleged infringement of applicable data protection law occurs.

POLICY CHANGES

We may change this Privacy Statement from time to time. Any changes will become effective when we post the revised Privacy Statement. If necessary, we will inform you when a change occurs. This statement was last revised on January 1, 2021.

PRIVACY NOTICE ADDENDUM FOR CALIFORNIA RESIDENTS

Pursuant to the California Consumer Privacy Act of 2018 (“CCPA”), we hereby provide additional details regarding the categories of Personal Information* about California residents that we have collected or disclosed within the preceding 12 months.

*“Personal Information” as defined in Section 1798.140 ofthe CCPA means information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.

WE COLLECTED THE FOLLOWING CATEGORIES OF PERSONAL INFORMATION:

Identifiers, such as name, contact information, online identifiers, and government-issued ID numbers;

Personal information, as defined in the California customer records law, such as name, contact information, signature, payment card number, insurance information, education information, employment information, and government-issued ID numbers;

Commercial information, such as transaction information and purchase history;

Internet or network activity information, such as browsing history and interactions with our website;

Geolocation data, such as device location and IP location;

Audio, electronic, visual, and similar information, such as call and video recordings;

Professional or employment-related information, such as work history and prior employer; and

Inferences drawn from any of the Personal Information listed above to create a profile/summary about, for example, an individual’s preferences and characteristics.

As described above, we collect this Personal Information from you and from other categories of sources: publicly available databases, joint marketing partners and OEMs when they share the information with us. Also as described above, we may use this Personal Information to operate, manage, and maintain our business, to provide our products and services, and to accomplish our business purposes and objectives, including, for example, using Personal Information to: develop, improve, repair, and maintain our products and services; personalize, advertise, and market our products and services; conduct research, analytics, and data analysis; maintain our facilities and infrastructure; undertake quality and safety assurance measures; conduct risk and security control and monitoring; detect and prevent fraud; perform identity verification; perform accounting, audit, and other internal functions, such as internal investigations; comply with law, legal process, and internal policies; maintain records; and exercise and defend legal claims.

WE DISCLOSED THE FOLLOWING PERSONAL INFORMATION TO THIRD PARTIES FOR OUR OPERATIONAL BUSINESS PURPOSES:

Identifiers, such as name, contact information, online identifiers, and government-issued ID numbers;

Personal information, as defined in the California customer records law, such as name, contact information, signature, payment card number, medical information, insurance information, education information, employment information, and government-issued ID numbers;

Commercial information, such as transaction information and purchase history;

Internet or network activity information, such as browsing history and interactions with our website;

Geolocation data, such as device location and IP location;

Audio, electronic, visual, similar information, such as call and video recordings;

Professional or employment-related information, such as work history and prior employer; and

Inferences drawn from any of the Personal Information listed above to create a profile/summary about, for example, an individual’s preferences and characteristics.

We share Personal Information with our affiliates, service providers, third-party sponsors of sweepstakes, contests, and similar promotions, and our business partners.

For purposes of this Privacy Policy, “sold” or “sale” means the disclosure of Personal Information for monetary or other valuable consideration but does not include, for example, the transfer of Personal Information as an asset that is part of a merger, bankruptcy, or other disposition of all or any portion of our business.

WE HAVE NOT “SOLD” PERSONAL INFORMATION FOR PURPOSES OF THE CCPA.

CALIFORNIA RESIDENTS MAY REQUEST THAT WE:

Disclose the following information covering the 12 months preceding their request:

The categories of Personal Information we collected about you and the categories of sources from which we collected such Personal Information;

The specific pieces of Personal Information we collected about you;

The business or commercial purpose for collecting Personal Information about you; and

The categories of Personal Information about you that we otherwise shared or disclosed, and the categories of third parties with whom we shared or to whom we disclosed such Personal Information (if applicable).

Delete Personal Information we collected from you.

To make a request for the disclosures or deletion described above, please contact us in accordance with the “Contact Us” section below. We will respond to your request consistent with applicable law.

You have the right to be free from unlawful discrimination for exercising your rights under the CCPA.

CONTACT US - INFORMATION FOR CALIFORNIA RESIDENTS

If You Have Any Questions, Comments or Concerns About Our Privacy Practices or This Policy, Please Contact Us Via Toll Free Number or Email.

PHONE (Toll Free): 1-866-237-8356

EMAIL: privacy@pon.com

Privacy Policy Reviewed as of Friday, October 25, 2024