Privacy Policy

BikeBug Privacy Policy
Adventure Online Pty Ltd (ABN 38 650 576 195) trading as BikeBug
Effective Date: 24 June 2026
Last Updated: 24 June 2026

 

1. Introduction
Adventure Online Pty Ltd (ABN 38 650 576 195), trading as BikeBug (“BikeBug”, “we”, “our”, or “us”), is committed to protecting your privacy and handling your personal information responsibly.

We recognise that your privacy is important and are committed to managing personal information in accordance with the Privacy Act 1988 (Cth), including the Australian Privacy Principles (APPs) and any other applicable privacy laws.

This Privacy Policy explains:
• what personal information we collect;
• how we collect, use and disclose that information;
• how we protect and store your information;
• when information may be disclosed overseas;
• how long we retain your information;
• your rights to access and correct your personal information; and
• how to contact us or make a privacy complaint.

 

By interacting with BikeBug, visiting our website, purchasing products, creating an account or otherwise providing us with personal information, you acknowledge that your information will be handled in accordance with this Privacy Policy.

 

This Policy applies to all personal information collected through:
• the BikeBug website;
• customer accounts;
• online purchases;
• telephone enquiries;
• email correspondence;
• social media interactions;
• warranty and service requests;
• promotional activities;
• competitions and surveys; and
• any other dealings you have with BikeBug.

 

This Privacy Policy does not apply to third-party websites, applications or services that may be linked from our website. Those providers have their own privacy policies and we encourage you to review them before providing personal information.

 

2. Purpose of this Policy
The purpose of this Privacy Policy is to explain how BikeBug manages personal information throughout its lifecycle.

 

Specifically, this Policy explains:
• what information we collect;
• why we collect it;
• how we use it;
• who we disclose it to;
• how we protect it;
• how long we retain it;
• how you can access or correct your information; and
• how you may make a complaint if you believe we have breached your privacy.

 

Where we collect personal information for a specific purpose that is subject to additional privacy terms or notices, those terms will apply in conjunction with this Privacy Policy.

 

3. Definitions
For the purposes of this Privacy Policy:

 

Personal Information has the meaning given in the Privacy Act 1988 (Cth), being information or an opinion about an identified individual, or an individual who is reasonably identifiable.

Sensitive Information includes information such as health information, biometric information and other categories defined under the Privacy Act.
Credit Information has the meaning given under Part IIIA of the Privacy Act.
Website means www.bikebug.com.
You means any individual who interacts with BikeBug including customers, prospective customers, account holders, suppliers, contractors, website visitors and individuals who communicate with us.

4. What Personal Information We Collect
The personal information we collect depends on how you interact with BikeBug.

The types of information we may collect include:

Identity Information
• name;
• title;
• date of birth (where required);
• username;
• account credentials.
Contact Information
• residential address;
• delivery address;
• billing address;
• telephone number;
• mobile number;
• email address.

Transaction Information
• products purchased;
• purchase history;
• invoices;
• returns;
• warranty claims;
• payment method;
• gift card transactions;
• loyalty program information (where applicable);
• order preferences.

Account Information
•    customer account details;
•    saved wish lists;
•    product reviews;
•    communication preferences;
•    support requests.

Technical Information
When you visit our website we may automatically collect:
• IP address;
• browser type;
• operating system;
• device identifiers;
• language preferences;
• referring website;
• pages viewed;
• search terms;
• session duration;
• approximate geographic location;
• cookie identifiers;
• website interactions.

Marketing Information
Where you have consented, we may collect information about:
• products viewed;
• abandoned shopping carts;
• email engagement;
• promotional preferences;
• survey responses;
• competition entries.

Communications
We may retain records of:
• telephone calls;
• emails;
• live chat conversations;
• social media messages;
• online enquiries;
• customer feedback.

Information from Third Parties
We may receive personal information from:
• payment providers;
• delivery partners;
• identity verification providers;
• fraud prevention providers;
• marketing partners;
• publicly available sources;
• business partners where permitted by law.

We generally do not collect sensitive information unless it is reasonably necessary for our functions or activities, or where required or authorised by law.

5. How We Collect Personal Information
We collect personal information in a number of ways.

Directly from you
This includes when you:
• create a customer account;
• purchase products;
• request a quotation;
• subscribe to marketing communications;
• enter competitions;
• participate in surveys;
• contact customer service;
• submit warranty claims;
• leave product reviews;
• interact with us through social media.

Automatically
We may automatically collect information through:
• cookies;
• analytics tools;
• advertising technologies;
• website logs;
• server records;
• mobile device information.

From Third Parties
Where permitted by law, we may receive information from:
• payment processors;
• logistics providers;
• fraud prevention services;
• identity verification services;
• marketing platforms;
• publicly available registers;
• business partners.

Where reasonable and practicable, when we collect your personal information directly from you, we will take reasonable steps to notify you, or otherwise ensure you are aware of:
• the purpose for which the information is being collected;
• whether the collection is required or authorised by law;
• the consequences (if any) of not providing the requested information;
• the types of organisations to which we would usually disclose the information;
• whether we are likely to disclose the information to overseas recipients and, where practicable, the countries in which those recipients are located; and
• how you may access this Privacy Policy and make a privacy complaint.

This notification may be provided through this Privacy Policy, a collection notice, website forms or other communications at or before the time your personal information is collected.

6. How We Use Personal Information
We use personal information only where reasonably necessary for our business activities or otherwise permitted by law. 

 

Where we are required or authorised by law to collect, use or disclose personal information, we will do so in accordance with applicable legislation.

Examples include:
• supplying products;
• processing payments;
• arranging deliveries;
• managing customer accounts;
• providing customer support;
• administering warranties;
• responding to enquiries;
• preventing fraud;
• managing product recalls;
• complying with legal obligations;
• improving our website;
• analysing customer behaviour;
• undertaking business planning;
• maintaining records;
• administering promotions;
• conducting market research.

Where you have consented, or where otherwise permitted under the Privacy Act, we may also use your personal information to send:
• promotional emails;
• product recommendations;
• special offers;
• newsletters;
• reminders regarding abandoned shopping carts;
• customer satisfaction surveys.

You may opt out of receiving marketing communications at any time by:
• clicking the unsubscribe link;
• updating your account preferences; or
• contacting us using the details in this Policy.

We do not sell personal information to third parties.

7. Disclosure of Personal Information
We may disclose personal information where reasonably necessary to operate our business.

Recipients may include:
• payment providers;
• freight and courier companies;
• technology providers;
• website hosting providers;
• cloud storage providers;
• customer support providers;
• marketing service providers;
• fraud prevention services;
• professional advisers;
• auditors;
• insurers;
• regulators;
• law enforcement agencies;
• courts and tribunals where required by law.

Where third-party service providers process personal information on our behalf, we take reasonable steps to ensure they are subject to appropriate contractual privacy and confidentiality obligations.

 

We may also disclose personal information where required or authorised by law, including to comply with court orders, regulatory investigations or statutory reporting obligations.

8. Data Security
We maintain administrative, technical and physical safeguards designed to protect personal information against misuse, interference, loss, unauthorised access, modification and disclosure.

These safeguards include, where appropriate:
• Transport Layer Security (TLS) encryption;
• secure hosting environments;
• firewalls;
• multi-factor authentication for administrative systems;
• role-based access controls;
• password management controls;
• vulnerability management and timely security patching;
• periodic penetration testing and security assessments;
• security monitoring;
• audit logging;
• security incident response and business continuity procedures;
• staff confidentiality obligations;
• privacy awareness training; and
• regular review of security practices.

While we take reasonable steps to protect personal information, no internet transmission or electronic storage method can be guaranteed to be completely secure.

9. Data Retention
We retain personal information only for as long as reasonably necessary to fulfil the purposes for which it was collected, to comply with our legal obligations, resolve disputes, enforce our contractual rights and meet legitimate business requirements.

 

Retention periods are determined having regard to legal obligations, contractual requirements, the sensitivity of the information, operational needs, and the purposes for which the information was collected.

 

Retention periods may vary depending on the type of information and applicable legal or regulatory requirements, including taxation, accounting and consumer protection obligations.

 

When personal information is no longer required, we take reasonable steps to securely destroy or permanently de-identify the information in accordance with the Privacy Act and our internal information governance procedures.

 

Where information forms part of backup systems or archived records, we will continue to protect that information until it can be securely deleted or de-identified in accordance with our retention schedule.

 

10. Overseas Disclosure of Personal Information
BikeBug may disclose or store personal information with service providers located outside Australia where this is reasonably necessary to provide our products and services or to operate our business.

 

Our service providers may include providers of:
• website hosting;
• cloud storage;
• payment processing;
• fraud prevention;
• customer relationship management;
• email marketing;
• analytics;
• software support;
• cybersecurity services.

Some of these providers may process or store personal information in Australia, New Zealand, the United States, the European Union and other jurisdictions in which they or their affiliates operate.

Examples of providers we currently use include:
• Adyen
• PayPal
• Zip
• BigCommerce
• Dotdigital
• Google
• Microsoft

The countries in which these providers process information may change from time to time as their infrastructure evolves.

Before disclosing personal information overseas, we take reasonable steps to ensure that recipients handle personal information in a manner consistent with the Australian Privacy Principles. This may include contractual privacy obligations, security requirements and due diligence assessments.

By providing personal information to us, you acknowledge that your information may be transferred to and processed in countries outside Australia.

11. Cookies, Analytics and Tracking Technologies
Our website uses cookies and similar technologies to improve functionality, personalise your experience, understand customer behaviour and improve our products and services.

Cookies may collect information including:
• IP address;
• browser type;
• operating system;
• device identifiers;
• pages visited;
• products viewed;
• referring websites;
• shopping cart activity;
• approximate location;
• session information.

We may use both session cookies and persistent cookies.

Our website may use analytics, advertising, personalisation and performance technologies including, where applicable, Google Analytics, Google Tag Manager, advertising pixels, first-party cookies, website performance tools, fraud prevention technologies and similar technologies. These technologies help us understand how our website is used, improve its functionality, personalise content, measure the effectiveness of our advertising and enhance the overall customer experience.

Where enabled, these technologies help us:
• understand website performance;
• improve navigation;
• measure advertising effectiveness;
• personalise website content;
• recommend products;
• recover abandoned shopping carts;
• better understand customer preferences.

You may disable cookies through your browser settings. However, some website functionality may no longer operate correctly.
Where required by law, we will seek your consent before placing non-essential cookies on your device.

12. Personalised Marketing and Automated Profiling
We may analyse information about your interactions with BikeBug to better understand your interests and provide more relevant communications.

This may include:
• products viewed;
• previous purchases;
• browsing activity;
• shopping cart activity;
• marketing preferences;
• email engagement.

This information may be used to:
• recommend products;
• send personalised offers;
• improve our website;
• better tailor promotions;
• measure campaign effectiveness.

We do not make decisions based solely on automated processing that produce legal or similarly significant effects on individuals.

You may opt out of receiving personalised marketing communications at any time.

13. Children's Privacy
Some of our products, including children's bicycles and toys, are designed for use by children. However, our Website, purchasing process and customer accounts are intended to be used by adults. We do not knowingly collect personal information directly from children under the age of 18 without the involvement or consent of a parent or legal guardian.

Where products require information about a child for purposes such as sizing, fitting, gift personalisation or warranty registration, this information is provided to us by, and collected from, the purchasing parent or guardian, and is used solely for that purpose.

Parents and guardians purchasing or registering products on behalf of a child are responsible for the personal information they choose to provide to us about that child.

If we become aware that personal information has been collected directly from a child without appropriate parental or guardian involvement, we will take reasonable steps to delete that information as soon as practicable. We do not knowingly collect personal information from children under the age of 18 without the consent of a parent or legal guardian.
14. Eligible Data Breaches
We take data security seriously and maintain procedures designed to identify, investigate and respond to actual or suspected data breaches.

If we experience an eligible data breach under the Privacy Act, we will comply with our obligations under the Notifiable Data Breaches Scheme.

Where required, we will:
• investigate the incident promptly;
• assess the risk of serious harm;
• notify affected individuals;
• notify the Office of the Australian Information Commissioner (OAIC);
• take reasonable steps to minimise any harm;
• review our systems and procedures to reduce the likelihood of recurrence.

15. Access to and Correction of Personal Information
You may request access to the personal information we hold about you.

You may also request that we correct personal information that is inaccurate, incomplete, misleading or out of date.

Requests should be directed to our Privacy Officer.

Before providing access, we may take reasonable steps to verify your identity.

In limited circumstances permitted by law, we may refuse access. If this occurs, we will provide written reasons where required.

Where practical, requests will be responded to within a reasonable period.

16. Deletion of Personal Information
You may request that we delete personal information we hold about you where it is no longer required.

 

In some circumstances we may be unable to delete information, including where we are legally required to retain records for taxation, accounting, warranty, fraud prevention or other regulatory purposes.

 

Where deletion is not possible, we will explain why.

 

Where appropriate, information may instead be de-identified.

 

17. Direct Marketing
We may send marketing communications where permitted by law.

 

Electronic marketing communications are sent in accordance with the Spam Act 2003 (Cth). Where required, we will obtain your consent before sending commercial electronic messages, and all marketing communications will include a functional unsubscribe facility.

 

These communications may include:
• promotional offers;
• newsletters;
• new product announcements;
• competitions;
• surveys;
• product recommendations.

You may opt out at any time by:
• clicking the unsubscribe link;
• updating your account settings; or
• contacting our Privacy Officer.

Opting out of marketing will not affect transactional communications relating to your purchases or account.

18. Privacy Complaints
If you believe we have breached your privacy or the Australian Privacy Principles, you may submit a complaint to our Privacy Officer.

Please provide sufficient information to enable us to investigate your complaint.

We aim to acknowledge receipt of your complaint promptly and respond within 30 days of receiving it. Where additional time is required due to the complexity of the matter, we will keep you informed of the progress of our investigation.

We will:
• acknowledge receipt of your complaint;
• investigate the matter;
• respond within a reasonable period; and
• advise you of the outcome.

If you are dissatisfied with our response, you may lodge a complaint with the OAIC.

Office of the Australian Information Commissioner
Website: https://www.oaic.gov.au
Telephone: 1300 363 992

19. Changes to this Privacy Policy
We may update this Privacy Policy from time to time to reflect changes in our business practices, legal obligations or technology.
The most current version will always be published on our website.
Any changes take effect from the date they are published unless otherwise stated.

20. Contact Us
If you have any questions about this Privacy Policy or wish to exercise your privacy rights, please contact:
Privacy Officer
Adventure Online Pty Ltd (ABN 38 650 576 195)
trading as BikeBug
Email: [email protected]
Post:
PO Box 3221
Darra QLD 4076
Australia
Telephone: (07) 3184 8398

21. Price Match, Gift Cards and Related Policies
BikeBug offers a Price Match service on identical, currently stocked items where a competitor advertises a lower price. To request a price match, contact our Customer Service Team with proof of the competitor's advertised price in accordance with the BikeBug Price Match Policy. Personal and order information you provide as part of a price match request will be handled in accordance with this Privacy Policy. Full details of the BikeBug Price Match Policy are available on the BikeBug website.
BikeBug offers Gift Cards that may be purchased and redeemed through the BikeBug website. When you purchase or redeem a Gift Card, we collect the personal information necessary to process the transaction, deliver the Gift Card to the intended recipient (where applicable), administer the Gift Card and comply with our legal obligations. Any personal information collected as part of a Gift Card transaction will be handled in accordance with this Privacy Policy. Full details of the BikeBug Gift Card Terms and Conditions are available on the BikeBug website.

This Privacy Policy should be read together with any applicable:
• Website Terms of Use;
• Terms and Conditions of Sale;
• Cookie Notice;
• Price Match Policy;
• Gift Card Terms and Conditions;
• Trade Account Terms (where applicable); and
• Collection Notices published by BikeBug.

This Privacy Policy applies to www.bikebug.com and supersedes all previous versions published by BikeBug. Nothing in this Privacy Policy limits any rights or obligations that apply under the Privacy Act 1988 (Cth) or any other applicable laws.