Privacy Policy (oneclick.services)
of oneclick AG, CH-8008 Zurich (hereinafter called “oneclick”); Version 7
oneclick AG is Controller in terms of the EU General Data Protection Regulation (hereinafter “GDPR”), who determines the purpose and means of the processing of Personal Data.
oneclick AG
Feldeggstrasse 26
8008 Zurich
Switzerland
Phone: +41 44 578 88 93
E-Mail: info@oneclick-cloud.com
1. Handling of Data
The trust in correct handling of data is an important requirement for oneclick. Therefore, data protection has a great importance for oneclick. Customer data is only collected, processed and used whilst complying with the applicable data protection regulation and only for the purposes described as follows.
oneclick processes Personal Data collected as follows:
- Storage, modification, transmission, blocking and deletion.
With regard to your data, we are not the Controller: You retain all rights and obligations with regard to your data and content that you create, store, transfer or manage via the oneclick platform. Thus, you are also responsible for all contractual and legal obligations with regard to this data. oneclick will only access or process this data if this is necessary for the provision of the services or if you instruct us to do so (e. g. for support). In this regard, please refer to Art. 10 of our General Business and License Terms.
2. Personal Data
Personal Data means any information relating to a specific (identified) or identifiable natural person.
3. Collection and Use of Personal Data (without a business relationship)
When you contact oneclick or an associated organisation, you may be asked to provide Personal Data. By providing such data, this data will be exchanged in the course of the contract initiation in our company and used in accordance with this privacy policy. We can also combine such Personal Data with other information in order to optimize our contact with you and to offer or improve our products, services, content and advertisements. In case of your mere contact, you are free to decide whether you want to submit your Personal Data. However, in case you won’t submit your Personal Data we may not be able to inform you about our products or services or respond to or process your enquiries.
Request via the support chat
On our portal “https://oneclick.services/” we use Smallchat, a service of Nicer LCC (201 Rocky Slope Rd, Greenville, SC 29607, USA), to enable visitors to our site to have a conversation in the form of a real-time chat with our employees. The legal basis is the initiation of a contract (Art. 6 para. 1 lit. b GDPR).
For its part, Smallchat uses technologies and services from Slack Technologies Limited (One Park Place, Hatch Street Upper, Dublin 2, Ireland), with whom we have concluded corresponding data protection agreements.
As soon as you activate the support chat, third-party cookies can be set and personal data of the users can be transferred. Smallchat uses cookies and stores information about the user, the conversation held and the use of Smallchat. This information is usually transferred to a server in the USA and stored there. Smallchat uses this data to enable real-time chat with us.
The following personal data is collected and processed for the provision of adequate support:
- Email address
- Name
In addition, the following non-personal data is collected and processed in order to provide adequate support:
- Web browser used
- Language
- User status
- Referrer URL
- User Agent
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data transmitted via chat, this is the case when the respective conversation with the user has ended. The conversation is ended when the matter in question has been conclusively clarified.
Smallchat’s privacy policy is available at https://small.chat/terms/#gdpr. Slack Technologies is committed to complying with EU data protection requirements. You can view Slack’s privacy policy and GDPR commitment at https://slack.com/trust/privacy/privacy-policy and https://slack.com/intl/en-gb/trust/compliance/gdpr respectively.
4. What Personal Data ist Being Collected (with a business relationship)
When you create a user account, use a product or service, register on our website, get in contact with us or participate in an online survey, then the collection of Personal Data becomes necessary for the conclusion of a contract and the following data is being collected by us or is to be provided by you (whereas we only collect data to the necessary extent):
- Your name, address, telephone number, email address, information about your preferred contact channel, bank and credit card information.
In addition, we collect the following personal data for the contract execution (Art. 6 para. 1 lit. b GDPR):
- Session ID
- Window ID
- App instance ID
- App name
- User ID
- Division ID
- License ID
- User name
- Start and close time of an app
When you share content with business partners or friends and thereby use products of oneclick, invite others to participate in services of a forum of oneclick, then oneclick can collect the data that you have provided about these persons, such as name, address, email address and telephone number. oneclick uses this data to process your enquiries, provide products or services as well as tackling fraud.
We collect Personal Data only to the necessary extent and only for the duration as necessary for the purposes of processing such data or as long as a business relationship exists (data minimization). Longer data storage obligations might exist according to existing data protection legislation.
Request via the support chat
On our portal https://oneclick.services/, we use Smallchat, a service provided by Nicer LCC (201 Rocky Slope Rd, Greenville, SC 29607, USA), to enable visitors to our site to have a conversation in the form of a real-time chat with our employees. The legal basis is the contract execution (Art. 6 para. 1 lit. b GDPR).
For its part, Smallchat uses technologies and services from Slack Technologies Limited (One Park Place, Hatch Street Upper, Dublin 2, Ireland), with whom we have concluded corresponding data protection agreements.
As soon as you activate the support chat, third-party cookies can be set and personal data of the users can be transferred. Smallchat uses cookies and stores information about the user, the conversation held and the use of Smallchat. This information is usually transferred to a server in the USA and stored there. Smallchat uses this data to enable real-time chat with us.
The following personal data is collected and processed for the provision of adequate support:
- Email address
- IP address
- Name
- App instance ID
- Session ID
- Division ID
- User ID
- User License ID
In addition, the following non-personal data is collected and processed in order to provide adequate support:
- App type
- Web browser used
- Data center
- Language
- Operating system used
- Available screen resolution
- Resolution of the screen
- Location
- User status
- Referrer URL
- User Agent
- User license
- Screen zoom used
The data is deleted as soon as it is no longer required to achieve the purpose for which it was collected. For personal data transmitted via chat, this is the case when the respective conversation with the user has ended. The conversation is ended when the matter in question has been conclusively clarified.
Smallchat’s privacy policy is available at https://small.chat/terms/#gdpr. Slack Technologies is committed to complying with EU data protection requirements. You can view Slack’s privacy policy and GDPR commitment at https://slack.com/trust/privacy/privacy-policy and https://slack.com/intl/en-gb/trust/compliance/gdpr respectively.
Statistics in the admin app
The admin app of our oneclickTM platform displays statistical data for administrators. For this purpose, the user ID and the start and close time of an app are displayed. The legal basis is the contract execution (Art. 6 para. 1 lit. b GDPR). After 7 days, this information is no longer displayed in the admin app. However, as this data is relevant for invoicing in the course of contract execution, this data will continue to be stored internally.
5. How We Process Data
The processing of your Personal Data takes place on the basis of our contractual relationship and is necessary for its fulfilment.
Your data will be stored and used internally as follows:
- The collection of Personal Data is necessary for the provision and performance of our services, as well as for their billing and invoicing. Furthermore, Personal Data also supports us with the creation, development, provision, delivery and improvement of our products, services, content and advertising; and it also makes it easier to tackle fraud.
- The collated Personal Data enables us to inform you about the latest product announcements, software updates and future events. If you do not wish to be included in our distribution list, you can opt out any time by changing your settings.
- Sometimes we can use Personal Data to send important messages, for example about purchases or amendments of our business terms and regulations. As this information is important and necessary for the relationship with oneclick, customers cannot refuse the receipt of such information.
- We can also use Personal Data for internal purposes, such as accounting, data analysis and research to improve the products and services of oneclick and the communication with customers.
- If you participate in competitions or similar activities, then we can use the data made available to us for the administration of these activities.
oneclick may share certain personal information with partners who work with oneclick to provide products and services, or who assist oneclick with their marketing (e.g. to our distributors and sales partners). In this case, Personal Data will only be disclosed in order to provide or improve products, services or our advertising. Personal Data will not be passed on to third parties for their marketing purposes.
6. Collection and Use of Non-Peronally Identifiable Data
We also collect data in a form that, without more information, does not allow a direct association to a specific person. We can collect, use, transfer and disclose non-personally identifiable data for any purpose.
We collect data such as profession, language, postcode, area code, individual unique device identifier, forwarding URL as well as location and time zone, where the products of oneclick are used so that we can better understand the behaviour of our customers and improve our products, services and marketing activities.
We may also collect information regarding customer activities on our oneclick websites, in addition to our other products and services. This data is merged and serves as a tool to provide our customers with more useful information and to understand, which parts of our websites, products and services are most interesting for our customers. The merged data is considered non-personally identifiable data for the purpose of this Privacy Policy.
If necessary, we also collect and save more information about how you use our services, for example search requests. This information enables us to improve the significance of the results provided by our services. Such information is generally not associated with your IP address, except on a limited scale to ensure the quality of our services provided via the internet.
We collect data about how devices and applications are used, whereas this information may be used by the developers to help improve your software applications (“Apps”). In this case, only anonymized data will be used which cannot be assigned to Personal Data.
In the case that we link non-personally identifiable data with Personal Data, then this linked data will be treated as Personal Data.
7. Cookies and other Technologies
On our portal “https://oneclick.services/” we use session cookies and cookies to save device-specific settings. The processing of your personal data is necessary to identify you, to adapt the performance of the website to your settings and to provide you with the best possible user experience. The legal basis is Art. 6 para. 1 lit. f GDPR.
Usage data
When you visit our website, you transmit data to our web server via your internet browser (for technical reasons). The legal basis is Art. 6 para. 1 lit. f GDPR. The following data is recorded during an ongoing connection for communication between your internet browser and our web server:
- Date and time of the request
- Complete IP address of the requesting computer
- Web browser used
- Operating system used
To ensure technical security, it is necessary for us to store this data temporarily, in particular to defend against attempted attacks on our web server. It is not possible for us to draw conclusions about individual persons from this data. A comparison with other databases or a transfer to third parties, even in excerpts, expressly does not take place.
browser-update.org
Java-Script from the provider browser-update.org is loaded on our website. browser-update.org is a service of Thomas Hümmer Webentwicklung, Stillachweg 6e, 86163 Augsburg.
If you have activated Java Script in your browser and have not activated a Java Script blocker, you will be informed if you are using an outdated Internet browser. For this purpose, the website accessed, the Internet browser used and the browser version are transmitted to browser-update.org. No cookies are set and no personal data, such as your IP address, is transmitted. You can find more information about how the browser-update.org website processes your data at https://www.browser-update.org/de/contact.html
An outdated browser can lead to display errors and also harbor security vulnerabilities. In your own interest, you should therefore always keep your Internet browser up to date.
8. Processor
oneclick can transfer Personal Data to companies that provide services indirectly to you, such as:
- the processing of information, fulfilling customer orders and delivery of products to you;
- the administration and maintenance of customer data;
- the delivery of customer services, the appraisal of your interest on our products and services as well as conducting customer research or customer satisfaction surveys.
Any Processors we employ will process the Personal Data in accordance with this Privacy Policy (and according to the contractual obligations of oneclick) as well as according to the legal provisions, thereby guaranteeing the protection of your data and/or your rights. Upon your request we will inform you about Processors which process Personal Data on our behalf and which are given your Personal Data.
9. Disclosure of Personal Data to other Third Parties
Due to the following reasons it can sometimes become necessary for oneclick to disclose Personal Data to third parties:
- for the enforcement of our terms and conditions (e. g. when collecting outstanding debts and in the event of legal disputes);
- in case the processing is necessary for a legal obligation to which we are subject;
- in case the processing is necessary in order to protect the vital interests (of yours or another natural person);
- in case the processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in us;
- in case the processing is necessary for the purposes of our legitimate interests (or such interest of a third party), except where such interests are overridden by your interests or fundamental rights and freedoms.
In addition, if applicable, we will also transfer all collected Personal Data to the relevant third party in the case of a reorganisation, a merger or a sale of our company. In case of possible disclosure of Personal Data, oneclick will as far as possible inform you, whereas there is no legal entitlement for such information.
10. Protection of Personal Data
The security of your Personal Data is important to oneclick. Our online services protect your Personal Data during the transmission using encryption processes such as transport layer security (TLS). When your Personal Data is saved by oneclick, it is used by computer systems in facilities that limit access through physical security measures.
If you use certain products, services or applications of oneclick or enter Personal Data in a forum, chat room or social media network of oneclick, then this Personal Data and content is visible to other users and can be read, captured or used by them. You alone have responsibility for the Personal Data that you share or provide. For example, if you provide your name and email address in a forum, then this information is public. Use this function with caution.
11. Integrity and Storage of Personal Data
oneclick makes it easier for you to keep your Personal Data correct, complete and up to date. We store Personal Data as long as necessary to fulfil the purposes described in this Privacy Policy, as long as there is no longer a storage period demanded or permitted by law.
12. Your Rights with Regard to Your Personal Data
With regard to your Personal Data you have the following rights:
- Right to information and disclosure: You may at any time obtain information about the Personal Data we collected about you, as well as about their processing and processing purposes.
- Right of rectification: You can obtain from us without undue delay the rectification of inaccurate Personal Data. You can help us to ensure that your contact data and settings are correct, complete and up to date by logging into your account via https://oneclick.services/. We enable you to access for any purpose other Personal Data that we save about you.
- Right to erasure: You can obtain from us the erasure of your Personal Data without undue delay, unless oneclick is obliged to store such data by law or for legitimate business purposes (e. g. in case processing the Personal Data is necessary in order to end our business relations).
- Right to restriction of processing: You can obtain from us the restriction of processing your Personal Data in case the accuracy of such data is contested by you; the processing is unlawful (and we oppose the erasure of such data); we no longer need your Personal Data for the purposes of the processing; you have objected to the processing of your Personal Data.
- Right to data portability: You have the right to receive your Personal Data in a structured, commonly used and machine-readable format.
- Right to object: You have the right to object, on grounds relating to your particular situation, at any time to processing of Personal Data concerning to you.
- Right to lodge a complaint with a supervisory authority: You have the right to lodge a complaint with a supervisory authority, in particular at your habitual residence, your place of work or at the place of the alleged infringement of your rights.
We can reject requests if these are offensive or harassing, endanger the privacy rights of others, are extremely impractical, or if otherwise disclosure according to the respective legal system is not provided for.
You can assert your rights by contacting support@oneclick-cloud.com or via any other contact to our company (e. g. by post or telephone).
13. Location-based Services
In order to provide location based services, oneclick, their partners and licence holders can collect, use and share precise location data, including the geographic location of your computer or device in real time. As long as location based services are available, these can determine the approximate location of your devices. Apart from GPS, Bluetooth and your IP address, the data of public WLAN hotspots and mobile phone masts as well as other technologies are used. If you have not provided agreement for their use, these location based data are used in an anonymous way that means that you cannot personally be identified. The data is used by oneclick, their partners and licence holders to offer location based products and services to you and to improve those services. Your device can for example pass on its geographic location to programme or app providers, if you select their location services.
14. Website and Services of Third Party Providers
The website, products, applications and services of oneclick include links to websites, products and services of other organisations. Our products and services can also use or offer the products and services of third party providers – for example a software application (“App”) of a third party provider. The data protection methods of the third party provider regulate the collection of data that may include location based or contact data. We therefore recommend that you find out more about the data protection methods at these organisations.
15. International Users
Within the requirements of this Privacy Policy, all data provided by you can be subject to transmission or access by organisations in different locations in the world. oneclick adheres to the basic principles set up by the European Union according to the GDPR.
16. Obligation of the Employees
All our employees are made familiar with this Privacy Policy and security measures to protect privacy are strictly implemented within our organisation in order to ensure the safety of Personal Data.
17. Amendments to the Privacy Policy
oneclick reserves the right, at its own discretion, to amend this Privacy Policy at any time. We will inform you in time about such amendments and will announce the date from which these amendments will be effective. Amendments are deemed as accepted by you, when you continue to use the website after the amendments have come into force. In case of substantial amendments of this Privacy Policy you will be informed at least 30 days prior to enactment of such amendments. In case you don’t contradict to the new Terms of Use within 30 days, this will be considered your explicit approval to the amendments made. Relevant messages will be sent by oneclick to the email address provided in each account.
18. Questions Regarding Data Protection
If you have questions or concerns in relation to this Privacy Policy or our data processing, or if you would like to inform us about a possible violation of local data protection laws, we would ask you to contact us via telephone number + 49 861 8812812888 or via email support@oneclick-cloud.com.
Contact details of the data protection officer:
oneclick AG
– The Data Protection Officer –
Zollikerstr. 27
8008 Zurich
Switzerland
E-mail: datenschutz@oneclick-cloud.com
Our Order Processing Contract is available on request. Please contact our support team by email at support@oneclick-cloud.com.
Specific Information on the Software Used
Zoho Desk
Support is provided via Zoho Desk, a service of Zoho Corporation B.V., Beneluxlaan 4B, 3527 HT Utrecht, Netherlands. Name, email address and, if applicable, other personal data will be passed on to Zoho for the purpose of providing support in accordance with Art. 6 para. 1 lit. b GDPR. Your data will only be passed on if this is actually necessary for the provision of support. Zoho’s data is hosted on servers in Europe. We have concluded an order processing contract with Zoho Corporation B.V..
You can find more information on data protection at Zoho online at: https://www.zoho.eu/privacy.html.
Instatus
If you decide to register for live updates on our status page, data will be transferred to Instatus, a service of Instatus, Inc, 9450 SW Gemini Dr PMB, 30900 Beaverton, Oregon, USA. E-mail address and, if applicable, other personal data are passed on to Instatus in accordance with Art. 6 para. 1 lit. a GDPR for the purpose of proactive support provision. Instatus’ data is hosted on servers in the USA. We have concluded an order processing contract with Instatus, Inc.
You can find more information on data protection online at: https://instatus.com/policies/gdpr.
You can revoke your consent at any time in accordance with Art. 7 para. 3 GDPR by unsubscribing at the end of an email or on the page https://status.oneclick-cloud.com/.
Credit card / Stripe
If you choose a payment method offered by the payment service provider “Stripe”, the payment will be processed by Stripe Payments Europe Ltd, 1 Grand Canal Street Lower, Grand Canal Dock, Dublin, Ireland. In addition to the information about your order (name, address, email address, IP address, telephone number if applicable, account number, bank code, credit card number if applicable, invoice amount, currency and transaction number), the information you provide during the ordering process will be passed on in accordance with Art. 6 para. 1 lit. b GDPR. Your data will only be passed on for the purpose of payment processing with Stripe Payments Europe Ltd. and only to the extent that it is necessary for this purpose. You can find more information on data protection from “Stripe” at the following Internet address: https://stripe.com/privacy.