Privacy Policy

LAST UPDATED: 14.06.2025

This Privacy Policy explains how OneMore Issuer Limited ("we", "us", or "our") collects, uses, stores and discloses information when you visit our website at www.oneasset.io ("Site"), register for updates or interact with us. We are committed to protecting your privacy.

1. Who we are

  • Controller: OneMore Issuer Limited, registered in the British Virgin Islands, is the data controller for information collected through the Site.
  • We may be contacted at: [email protected]. We process personal data in accordance with the General Data Protection Regulation (EU GDPR), the UK General Data Protection Regulation (UK GDPR), and other applicable privacy laws.

2. What information do we collect

We collect only the following categories of information from you on the Site:

2.1 Information you provide directly

  • Contact details: name, email address, company name
  • Login and signup credentials: email address, password (hashed)
  • Inquiry information: any text you submit via contact or inquiry forms

2.2 Information collected automatically

  • Device data: IP address, browser type, operating system, language settings
  • Usage data: pages viewed, time spent, clicks, referral source
  • Cookie data: see Section 9 and our Cookie Policy

3. Purposes and legal bases (GDPR, UK GDPR)

We process personal data only for the reasons listed in the table below and under valid legal bases:

Processing purposes and legal bases

  • Responding to inquiries - Legal basis: Consent or legitimate interest
  • Sending marketing updates - Legal basis: Consent
  • Operating and improving the Site - Legal basis: Legitimate interest
  • Security and fraud prevention - Legal basis: Legitimate interest
  • Complying with legal obligations - Legal basis: Legal obligation

4. How we share information

  • We do not sell your data.
  • We may share it with the following parties only as necessary to operate the Site:
  • Service providers: IT, hosting, analytics, and CRM providers who assist with Site operations under strict data processing agreements
  • Advisors & agents: lawyers, accountants, or consultants who need access for legitimate business purposes
  • Legal or regulatory: law enforcement, regulators, or courts if required by law or to protect our legal rights

5. International data transfers

Your information may be transferred to or processed in any country where we or our service providers operate. When transferring data outside the EEA or UK, we rely on appropriate safeguards such as Standard Contractual Clauses approved by the European Commission or other lawful transfer mechanisms.

6. Data retention

We retain personal information for as long as necessary for the purposes set out in this Policy, including to comply with legal, accounting, or reporting requirements. Specific retention periods may vary depending on the nature of the data and any ongoing legitimate business or legal needs.

7. Your privacy rights

Under GDPR and UK GDPR, you have certain rights regarding your personal data:

Your rights

  • Access: Request a copy of the personal data we hold about you
  • Rectify or erase: Request correction of inaccurate data or, in certain cases, deletion of your data
  • Restrict processing: Ask us to limit how we use your data in certain circumstances
  • Data portability: Request a machine-readable copy of data you provided to us
  • Object: Object to certain processing activities based on legitimate interests
  • Withdraw consent: Withdraw any consent you previously gave us

8. Security

We use commercially reasonable technical and organisational measures to protect your information, including encryption, access controls, and regular security assessments. However, no system is completely secure, and we cannot guarantee absolute security.

9. Cookies and similar technologies

We may use cookies to improve Site performance and personalise your experience. For details on the types of cookies we use and how to manage them, please see our Cookie Notice.

10. Third-party links

The Site may contain links to third-party websites or services. We are not responsible for their privacy practices.

11. Children's privacy

The Site is not intended for children under 18 years of age. We do not knowingly collect data from minors.

12. Changes to this Policy

We may update this Privacy Policy from time to time. The updated version will be indicated by an updated 'Last Updated' date.

13. How to contact us

If you have questions about this Policy or our practices, contact us at: [email protected]