Onezee Privacy Policy

  1. General Provisions

    This Privacy Policy outlines the principles for processing and protecting personal data of users of the Onezee platform (hereinafter referred to as the 'Platform') operated by Onezee (hereinafter referred to as 'Onezee'). This Privacy Policy is addressed to all individuals who visit the Platform or use its services (hereinafter referred to as 'Users'). The purpose of this Privacy Policy is to explain how we process personal data in accordance with applicable legal regulations, including the General Data Protection Regulation (GDPR). All processing of personal data is strictly conducted in accordance with the Terms of Service, ensuring consistency between both documents.

  2. Data Controller

    The data controller of Users' personal data is Onezee. For any inquiries regarding data processing, you can contact us by email at dataprivacy[at]onezee.io or by traditional mail at Spheric Capital sp. z o.o., ul. Karola Dickensa 27 / 51, 00-382 Warszawa.

  3. For what purpose, on what legal basis, and what personal data do we process?
    PurposeLegal basisTypes of data
    Account creation and maintenanceNecessity to perform a contract with the User or to take actions at the User's request before entering into a contract (Article 6(1)(b) GDPR); for optional data, the legal basis is the User's consent (Article 6(1)(a) GDPR)Required data: username, email address; Optional data: name, surname, profile description, language
    Provision of Platform servicesNecessity to perform a contract with the User (Article 6(1)(b) GDPR)Data about how the User interacts with our services, including time and duration of streams, and error reports
    Logging in via Twitch accountUser’s consent (Article 6(1)(a) GDPR)Login data from the User’s Twitch account
    Analysis of User activityPerformance of a contract (Article 6(1)(b) GDPR); Legitimate interest of the Data Controller (Article 6(1)(f) GDPR)IP address, location data, device identifiers, browser type, time spent using the Platform, interaction data
    Payment of earningsNecessity to perform a contract (Article 6(1)(b) GDPR)User ID, transaction information, bank account number, full name, email address, billing address
    Compliance with legal obligationsLegal obligation (Article 6(1)(c) GDPR)User ID, transaction information, full name, bank account number, email address, billing address, IP address/location
    Direct marketing communicationUser’s consent (Article 6(1)(a) GDPR); Legitimate interest (Article 6(1)(f) GDPR)Email address
    Handling complaintsNecessity to perform a contract (Article 6(1)(b) GDPR)Contact details (full name, email address), subject and content of the complaint
    Handling User requestsLegal obligation (Article 6(1)(c) GDPR); Legitimate interest (Article 6(1)(f) GDPR)Contact details (full name, email address), subject and content of the request
    Improvement of electronic servicesLegitimate interest (Article 6(1)(f) GDPR)Data related to User activity, communication with support, and additional information provided
  4. Other Purposes and Legal Bases for Data Processing

    We process personal data for the following purposes:

    • Account creation and maintenance: We process data necessary for account creation and management, based on the necessity to perform the contract (Article 6(1)(b) GDPR). In cases where additional data is provided (such as name or profile description), we process it based on the User's consent (Article 6(1)(a) GDPR).
    • Provision of Platform services: Personal data is processed to provide access to the Platform’s services and ensure its functionality, in accordance with the contract with the User (Article 6(1)(b) GDPR).
    • User activity analysis for service optimization: We analyze User activity to improve services, based on our legitimate interest (Article 6(1)(f) GDPR).
    • Compliance with legal obligations: We process personal data in compliance with tax and accounting regulations (Article 6(1)(c) GDPR).
    • Direct marketing: With User consent (Article 6(1)(a) GDPR), we may send marketing communication. In some cases, this is also based on our legitimate interest (Article 6(1)(f) GDPR).
  5. Sharing Personal Data

    Personal data may be shared with external entities that support us in providing services, such as payment providers, IT service providers, cloud operators, and accounting services. We ensure that any third-party processor we work with meets the data protection standards set by GDPR.

  6. Data Retention Period

    Personal data is stored for the duration necessary to achieve the purposes for which it was collected or until consent is withdrawn. Campaign and transaction data may be retained for tax and accounting purposes, as required by law.

  7. User Rights
    • Access their personal data.
    • Rectify their data.
    • Erase their data ('right to be forgotten').
    • Restrict the processing of their data.
    • Transfer their data to another service provider.
    • Object to the processing of their data, particularly for marketing purposes.

    Requests regarding User rights can be submitted via email: dataprivacy[at]onezee.io.

  8. Cookies and Similar Technologies

    We use cookies and similar technologies to provide users with an optimal experience on the Platform. Cookies are small data files that are stored on your device when you visit the Platform, enabling us to recognize you and remember your preferences during future visits. For more detailed information on how we use cookies, please refer to our Cookie Policy.

  9. Data Security

    We implement appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or misuse. Access to data is restricted to authorized personnel only. We perform regular security audits and offer optional two-factor authentication (2FA) for additional security.

  10. Transfers of Personal Data

    If you reside within the European Union, your personal data may be transferred to countries outside the EU, such as the United States. In such cases, we take steps to ensure that your data is adequately protected, following GDPR rules.

  11. Children’s Privacy

    Our services are intended for users aged 13 and older. We do not knowingly collect additional information from minors without parental consent.

  12. Changes to the Privacy Policy

    This Privacy Policy may be periodically updated. Users will be informed of any significant changes, and changes will take effect from the date of publication. Changes to the Privacy Policy will be aligned with the Terms of Service to maintain consistency.

    This document was adopted on 19.12.2024 and is effective as of 19.12.2024.