Privacy Policy

1. Introduction

Bikeep OÜ ("Bikeep", "we", "us", or "our"), registered in Estonia (registry code 12351012, VAT EE101573960), is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website bikeep.com or interact with our smart parking infrastructure.

Our North American operations are handled by Bikeep Inc, registered in California (corp 3984664), at 447 Sutter St Ste 405, PMB1052, San Francisco, CA 94108.

By using our services, you agree to the collection and use of information in accordance with this policy. If you do not agree, please discontinue use of our services.

2. Information We Collect

2.1 Information you provide directly

• Contact form: Name, work email, company, phone number, product interest, and message content.
• Newsletter subscription: Name and email address.
• Resource downloads: Name, email, and company (required to access gated case studies and brochures).

2.2 Information collected automatically

• Analytics data: Page views, session duration, click patterns, and feature usage via PostHog (see Section 8).
• Device information: Browser type, operating system, screen size, and IP address.
• Approximate location: Country-level geolocation derived from your IP address by our hosting provider (Vercel).
• Web performance data: Page load times and Core Web Vitals via Vercel Analytics.

2.3 Cookies and local storage

• phc_* cookie (PostHog): A randomly generated identifier used to recognise returning visits. Not linked to any personal information for anonymous visitors.
• bikeep_resource_email (localStorage): Your email address, stored locally in your browser after you submit the resource download form. Used only to remember that you have already provided your email so you are not asked again. This data never leaves your browser.

3. How We Use Your Information

• Respond to your inquiries and provide customer support
• Process contact form submissions and route them to the appropriate team
• Send newsletter updates (only if you subscribed)
• Analyze website usage patterns to improve our content and user experience
• Diagnose usability issues via session recordings (all text inputs are masked)
• Track errors and exceptions to maintain website reliability
• Comply with legal obligations

4. Third-Party Services

We use the following third-party services to operate our website. We do not sell your personal data to any of these providers.

5. Data Sharing and Disclosure

We do not sell your personal data. We may share information with:

• Service providers: The third-party services listed in Section 4, strictly for the purposes described.
• Business partners and resellers: When your inquiry relates to a local project, quote, or installation, we may share your contact information with our local partners or authorized resellers in your region so they can assist you directly.
• Legal requirements: When required by law, court order, or governmental regulation.

6. Data Security

We implement industry-standard security measures including HTTPS encryption, input sanitization, rate limiting (5 requests per 60 seconds on form endpoints), honeypot spam protection, and origin validation. However, no method of transmission over the Internet is 100% secure.

7. Data Retention

• Analytics data (PostHog): Anonymous session data is retained according to PostHog's EU data retention policies. Identified profiles are retained while relevant for our sales pipeline.
• CRM data (Pipedrive): Contact information is retained while your inquiry is being processed and for a reasonable period thereafter.
• Contact submissions (Strapi): Stored as long as needed for record-keeping and legal compliance.
• Local storage: The bikeep_resource_email value persists in your browser until you clear your browsing data.

8. Website Analytics & Cookies

We use PostHog to understand how visitors use our website. PostHog is EU-hosted and all data remains within the European Union.

What is stored: A randomly generated identifier (a phc_* cookie) is placed in your browser. This identifier is not linked to any personal information — it is a random string that lets us recognise returning visits.

What we track: Page views, session duration, clicks, form interactions, product page views, CTA clicks, video plays, gallery usage, and client-side errors. When you submit a form, your anonymous session is linked to your email address to help us understand the customer journey.

Person profiles: We use person_profiles: 'identified_only'. This means no personal profiles are created for anonymous visitors. A profile is only created when you voluntarily identify yourself by submitting a form.

Session recordings: We capture interaction recordings to diagnose usability issues. All text inputs are masked by default — no personal data appears in recordings. The recording library loads with a 5-second delay to avoid impacting page performance.

Legal basis: Legitimate interest under GDPR Article 6(1)(f). We have assessed that this minimal, pseudonymous data collection is proportionate to the purpose and does not override visitor interests or fundamental rights.

What does NOT happen: No data is shared with advertising networks. No cross-site tracking is performed. No personal profiles are built for anonymous visitors.

Opt-out: You can delete or block the phc_* cookie at any time via your browser's cookie settings, or email us at info@bikeep.com to request data deletion.

9. Vercel Web Analytics

We use Vercel Analytics, a privacy-friendly, first-party analytics service provided by our hosting platform. It collects aggregated web performance metrics (page load times, Core Web Vitals) without using cookies or collecting personal data. No individual visitor profiles are created.

10. Your Rights

Under the General Data Protection Regulation (GDPR) and applicable data protection laws, you have the right to:

• Access the personal data we hold about you
• Request correction of inaccurate data
• Request deletion of your data (including from PostHog and Pipedrive)
• Object to or restrict processing of your data
• Data portability
• Withdraw consent at any time

To exercise any of these rights, please contact us at info@bikeep.com. We will respond within 30 days.

11. Children's Privacy

Our services are directed to business professionals and are not intended for individuals under the age of 16. We do not knowingly collect personal data from children. If we become aware that we have collected data from a child, we will delete it promptly.

12. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of significant changes by posting the updated policy on this page with a revised "Last updated" date.

13. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us: