Policy

Privacy Policy

Effective Date: January 1, 2025 Last Updated: 2025 Applies to bimmerbits.shop
Plain English Summary
We collect only what we need to process your order and communicate with you. We do not sell your personal information. We do not share it with third parties except as required to fulfill your order (e.g. shipping carriers) or as required by law.
01

Overview

Bimmer Bits ("we," "us," or "our") operates the website bimmerbits.shop. This Privacy Policy explains what information we collect when you visit our site or make a purchase, how we use that information, and what rights you have regarding your data.

By using our website or placing an order, you agree to the collection and use of information as described in this policy. If you do not agree, please do not use our website.

02

Information We Collect

We collect information in two ways: information you provide directly, and information collected automatically when you visit our site.

Category What We Collect When
Order Information Name, email address, shipping address, billing address, phone number When you place an order
Payment Information Payment is processed by our payment provider. We do not store full card numbers or CVVs on our servers. At checkout
Contact Information Name, email address, message content, and any vehicle details you share When you contact us via form or email
Account Information Email and password (hashed) if you create an account If you register
Browsing Data IP address, browser type, pages visited, referring URL, time on site Automatically via cookies and analytics

We do not collect sensitive personal information such as government ID numbers, health data, or financial account credentials beyond what is needed to process payment through our secure checkout provider.

03

How We Use Your Information

We use the information we collect for the following purposes:

  • To process and fulfill your order, including sending confirmation and tracking emails
  • To respond to your questions, messages, or support requests
  • To send order-related notifications (shipping updates, delivery confirmation)
  • To send marketing emails if you have opted in — you can unsubscribe at any time
  • To improve our website, product listings, and customer experience
  • To detect and prevent fraud or unauthorized activity
  • To comply with legal obligations

We will never use your information for purposes materially different from those listed above without obtaining your consent first.

04

Sharing Your Information

We do not sell, rent, or trade your personal information to third parties. We share your information only in the following limited circumstances:

  • Shipping carriers (USPS, UPS, FedEx) — your name and address are shared to fulfill delivery
  • Payment processors — your payment details are handled by our checkout provider under their own privacy policy and PCI-compliant infrastructure
  • Email/marketing platforms — your email may be stored in our email service provider if you subscribe to updates
  • Analytics services — anonymized or aggregated browsing data may be shared with analytics tools (e.g. Google Analytics)
  • Legal requirements — we may disclose information if required by law, court order, or governmental authority
  • Business transfers — in the event of a merger, acquisition, or sale of assets, your data may transfer to the acquiring entity under the same privacy protections

Any third party that receives your data is required to handle it in a manner consistent with this policy and applicable law.

05

Cookies & Tracking

Our website uses cookies — small text files stored on your device — to improve functionality and analyze site usage. We use the following types of cookies:

  • Essential cookies — required for the site to function (e.g. shopping cart, session management)
  • Analytics cookies — help us understand how visitors use the site (e.g. Google Analytics)
  • Preference cookies — remember your settings and preferences across visits

You can control or disable cookies through your browser settings. Note that disabling essential cookies may affect your ability to browse the site or complete a purchase.

Do Not Track
Some browsers send a "Do Not Track" signal. Our site does not currently respond to DNT signals in a standardized way, but we aim to honor the spirit of that preference by minimizing non-essential tracking.
06

Security

We implement commercially reasonable technical and organizational measures to protect your personal information from unauthorized access, disclosure, alteration, or destruction. These include:

  • SSL/TLS encryption on all pages of our website (HTTPS)
  • PCI-compliant payment processing — we do not store raw card data
  • Limited internal access to customer data on a need-to-know basis

No method of transmission over the internet or electronic storage is 100% secure. While we strive to protect your information, we cannot guarantee absolute security. If you believe your data has been compromised, please contact us immediately.

07

Data Retention

We retain your personal information for as long as necessary to fulfill the purposes described in this policy, including:

  • Order records — retained for a minimum of 7 years for accounting and legal compliance
  • Contact/support records — retained for up to 3 years after your last interaction
  • Marketing list — retained until you unsubscribe or request deletion
  • Analytics data — typically anonymized or aggregated; raw logs deleted within 26 months

When data is no longer needed, it is securely deleted or anonymized.

08

Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access — request a copy of the personal information we hold about you
  • Correction — request that inaccurate or incomplete information be corrected
  • Deletion — request that we delete your personal data, subject to legal retention requirements
  • Opt-out of marketing — unsubscribe from marketing emails at any time via the link in any email, or by contacting us directly
  • Data portability — request your data in a structured, machine-readable format where applicable
  • Restriction — request that we limit how we process your data in certain circumstances

To exercise any of these rights, contact us at [email protected]. We will respond within 30 days. We may need to verify your identity before processing certain requests.

If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA). If you are located in the EU or UK, you may have rights under the General Data Protection Regulation (GDPR). Please contact us for jurisdiction-specific requests.

09

Children's Privacy

Our website is not directed at children under the age of 13, and we do not knowingly collect personal information from anyone under 13. If we become aware that we have inadvertently collected information from a child under 13, we will delete it promptly.

If you believe we have collected information from a minor, please contact us at [email protected].

10

Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or for other reasons. When we do, we will update the "Last Updated" date at the top of this page.

For material changes, we will make reasonable efforts to notify you — such as by posting a notice on our website or sending an email to customers. Your continued use of the site after any changes constitutes your acceptance of the revised policy.

We encourage you to review this policy periodically.

11

Contact Us

If you have any questions, concerns, or requests related to this Privacy Policy or your personal data, please reach out:

Email: [email protected]
Business Hours: Monday–Friday, 9am–5pm EST

We take privacy seriously and will respond to all inquiries within 30 days, and typically much sooner.