Privacy Policy

1. Introduction & Controller Identity

This Privacy Policy explains how jaqvenric (“we”, “us”, “our”) collects, uses, and protects personal data when you visit our website, request course information, or communicate with us. Our training focuses on bicycle sales, customer consultation, product knowledge, and retail communication skills. The site is designed to be straightforward: we collect only what we need to answer questions, send requested information, and keep the website secure.

Data Controller: jaqvenric LLC, Brozánky 83, 276 01 Hořín, Czech Republic. Contact email: [email protected].

Effective Date: March 12, 2026. If we make material changes to this Privacy Policy, we will post an update on this page and refresh the “Last Updated” date.

2. Personal Data We Collect

We collect personal data in a few predictable situations, mainly when you contact us or when your browser interacts with the site. The categories below describe what we may collect, depending on how you use the website.

• Identity & contact data: your name and email address when you submit the registration form.
• Form content: details you choose to share in communications (for example, training goals, shop context, or questions about delivery).
• Technical data: IP address, browser type and version, device type, operating system, and language preferences.
• Usage data: pages visited, time spent, referring page, and click paths (only where analytics cookies are enabled with consent).
• Cookies & identifiers: identifiers stored in cookies and similar technologies as described in Section 4 and our Cookie Policy.
• Conversion events: signals that a form was submitted or a key action occurred (only where marketing or analytics tools are enabled with consent).

We do not intentionally collect special-category data (such as health data, religious or political beliefs), financial account details, or government ID numbers through this website. Please do not include sensitive information in free-text messages.

3. Why We Process Personal Data & Legal Basis

We process personal data for specific operational reasons. Where GDPR or UK GDPR applies, we rely on the legal bases listed below (GDPR Article 6).

• Contact and registration requests: to respond to your enquiry and provide requested information about the course. Legal basis: Article 6(1)(b) (steps prior to entering a contract) and, where applicable, Article 6(1)(a) (consent).
• Website analytics (optional): to understand how the website is used and to improve navigation and content quality. Legal basis: Article 6(1)(a) (consent).
• Marketing and remarketing (optional): to measure advertising performance, build audience segments, and show relevant ads. Legal basis: Article 6(1)(a) (consent).
• Security and fraud prevention: to protect the website, detect misuse, and reduce spam. Legal basis: Article 6(1)(f) (legitimate interests).
• Legal obligations: to comply with applicable laws and enforce our terms. Legal basis: Article 6(1)(c) (legal obligation).

Automated Decision-Making (GDPR Article 22): We do not engage in automated decision-making or profiling that produces legal or similarly significant effects.

4. Cookies & Tracking

Cookies are small text files stored on your device. Some are necessary for the website to function, while others help us understand performance or measure advertising. We use three categories, which align with our Cookie Policy:

Essential (always active)

These cookies are required for core site functions such as session continuity and storing your cookie choices. Examples include _site_session and cookie_consent. Retention ranges from session-only to up to 12 months, depending on the cookie.

Analytics (optional, consent required)

When enabled, analytics helps us see which pages are read, how visitors move through the site, and where content can be clearer. We may use Google Analytics 4 (GA4) with IP anonymization settings. Example cookies include _ga and _ga_XXXXXXXXXX. Data retention is typically set to 14 months for analytics reports.

Marketing (optional, consent required)

When enabled, marketing cookies support conversion measurement and remarketing, for example to understand whether an ad led to a registration request. Example cookies include _gcl_au (Google Ads) and _fbp/_fbc (Meta). These identifiers are used for remarketing audiences and attribution.

Beyond cookies, some measurement tools may also use pixel tags and server-side event forwarding. Where implemented, these are enabled only after you provide marketing and/or analytics consent through our cookie preferences panel.

5. Consent (EEA/UK)

Users in the EEA and UK receive a consent notice under GDPR/UK GDPR. Marketing and analytics cookies activate only after explicit, informed, freely given consent (Article 6(1)(a)). Your choice is recorded in the cookie_consent cookie, typically for 12 months.

You may withdraw consent at any time by using the “Manage cookie preferences” link in the footer or by clearing cookies in your browser. Withdrawal does not affect the lawfulness of processing carried out before withdrawal.

6. Sharing With Advertising & Service Partners

We may share limited data with trusted service providers that help us operate the website and measure performance. We do not sell personal data.

• Google LLC (Google Analytics 4, Google Ads, Google Tag Manager, remarketing): cookie IDs, usage data, and conversion events. policies.google.com/privacy
• Meta Platforms (Meta Pixel, Custom Audiences, Lookalike Audiences, Conversion API): page views, conversion events, audience membership signals, and hashed identifiers where applicable. facebook.com/privacy/policy
• Cloudflare (CDN and security): IP-based threat detection and performance optimization. cloudflare.com/privacypolicy

These providers may process data as our processors or as independent controllers depending on the service. Where required, we configure tools to limit data collection and to respect consent choices. We do not permit providers to use site data for their own independent commercial purposes beyond providing their services, subject to their applicable terms.

7. International Transfers

Some of our service providers may process data outside the EEA/UK, including in the United States. Where required, we rely on appropriate transfer mechanisms such as the EU–US Data Privacy Framework (including the UK Extension and Swiss–US DPF where applicable) and, where needed, Standard Contractual Clauses (EU 2021/914) or UK International Data Transfer Addendum/IDTA as a fallback.

8. Data Retention

We retain personal data only as long as necessary for the purposes described in this policy, unless a longer retention period is required by law.

• Contact submissions: typically up to 2 years from the last interaction.
• Email correspondence: for the duration of the relationship plus up to 1 year, unless legal retention requires longer.
• Server logs: typically up to 90 days for security and diagnostics.
• Analytics data: typically 14 months (if analytics cookies are enabled by consent).
• Marketing cookies: retained according to their cookie lifetime (for example, 90 days) when enabled by consent.
• Consent records: we may retain evidence of cookie consent settings for up to 3 years for audit and compliance.
• Legal/tax records: retained as required by applicable law (commonly 6–10 years for certain records).

9. Your Rights (GDPR & UK GDPR)

If GDPR or UK GDPR applies to you, you may have rights including: access (Article 15), rectification (16), erasure (17), restriction (18), portability (20), objection (21), and the right to withdraw consent at any time (7(3)).

To exercise a right, email [email protected]. We aim to respond within 30 days. This period may be extended by up to 60 additional days for complex requests, in which case we will explain the reason for the delay.

You also have the right to lodge a complaint with a supervisory authority. Useful starting points include: edpb.europa.eu (EU), ico.org.uk (UK), uoou.cz (Czech Republic).

10. Children

This website is not directed at individuals under 16. We do not knowingly collect personal data from minors. If you believe a child under 16 has provided personal data without verifiable parental consent, please contact us and we will delete it promptly where legally required.

11. Do Not Track

This website does not respond to “Do Not Track” (DNT) browser signals. Third-party providers may offer their own settings or opt-out mechanisms, which are described in their privacy documentation.

12. Data Deletion Requests

To request deletion of personal data, email [email protected] with the subject line “Data Deletion Request”. To protect your information, we may ask for reasonable verification before acting on a request. We generally complete deletion within 30 days, except where limited retention is required by law or to establish, exercise, or defend legal claims.

13. Business Transfers

If we are involved in a merger, acquisition, asset sale, financing, reorganization, or insolvency, personal data may be transferred to a successor entity as part of that transaction. If the transfer results in a material change to how your personal data is used, we will provide notice through the website.

14. California (CCPA / CPRA)

This section applies to California residents where the California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), applies.

In the past 12 months, we may have collected the following categories: identifiers (such as name, email, IP address, cookie IDs), internet or network activity information (such as page visits and interactions), and inferences (such as interest categories derived for advertising). We disclose these categories to service providers and advertising partners for analytics, security, and advertising measurement, where enabled.

We do not sell personal information as defined by CCPA. We may share information for cross-context behavioral advertising when marketing cookies are enabled. California residents may opt out of such sharing through our cookie preferences panel (use “Manage cookie preferences” in the footer).

Depending on the context, you may have rights to know, delete, correct, and opt out of sale/sharing, and to be free from discrimination for exercising your rights. Submit a request by emailing [email protected] with the subject “California Privacy Request”. We may verify your identity before completing a request. Authorized agents may submit requests with written permission.

15. Virginia (VCDPA)

If the Virginia Consumer Data Protection Act (VCDPA) applies, Virginia residents may have rights to access, correct, delete, and obtain a copy of personal data, and to opt out of targeted advertising. We do not sell personal data and we do not engage in profiling that produces legal or similarly significant effects.

Submit requests by emailing [email protected] with the subject “Virginia Privacy Request”. If a request is denied, you may appeal by emailing with the subject “Appeal of Refusal — Privacy Request”. We will respond to appeals within 60 days where required.

16. Nevada

Nevada residents may submit a verified opt-out request by emailing [email protected] with the subject “Nevada Do Not Sell Request”. We do not currently sell personal information under Nevada Revised Statutes Chapter 603A.

17. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. If changes are material, we will provide an on-site notice and, where appropriate, provide notice at least 14 days before the changes take effect. The “Last Updated” date at the top of this page indicates when this policy was last revised.

18. Contact

If you have questions about this Privacy Policy or want to exercise a privacy right, contact:

• jaqvenric LLC
• Brozánky 83, 276 01 Hořín, Czech Republic
• [email protected]