Privacy Policy

Last update: October 21, 2025

1. General Information and Scope

1.1 Purpose of the Privacy Policy

This Privacy Policy explains how LEADPACK REVPACK ONETYPE Sp. z o.o. (“OneType”, “we”, “us”, or “our”) collects, uses, processes, and protects personal data of users (“User” or “you”) who access or use the Service available at https://www.onetype.me and related web applications.

1.2 Compliance with Law

OneType processes personal data in accordance with the General Data Protection Regulation (EU) 2016/679 (“GDPR”), the Polish Act on the Protection of Personal Data, and other applicable privacy laws and regulations.

1.3 Data Controller

The controller of your personal data is:

LEADPACK REVPACK ONETYPE Sp. z o.o.
Aleja Jana Pawła II 68/19, 00-170 Warszawa, Poland
NIP: 5253057754, REGON: 54249378000000, KRS: 0001189582
Email: privacy@onetype.me

1.4 Contact for Data Protection

For any questions regarding data protection, Users may contact the Data Protection Officer (or designated privacy contact) by email at privacy@onetype.me.

1.5 Scope of Application

This Privacy Policy applies to:
a) visitors of the OneType website,
b) registered Users of the OneType platform,
c) individuals whose data is processed in connection with the provision of OneType’s services, including communication, billing, and support.

1.6 Relationship with Terms and Conditions

This Privacy Policy forms an integral part of OneType’s Terms and Conditions. By using the Service, you acknowledge that you have read and understood both documents.

1.7 Updates to the Privacy Policy

This Privacy Policy may be updated from time to time. The latest version will always be available at https://www.onetype.me/legal/privacy-policy. Users will be informed of significant updates via email or in-app notification before they take effect.

2. Categories of Data Collected

2.1 Data Provided by the User

When creating an account or communicating with OneType, the User may provide the following data:
a) identification and contact information such as name, surname, email address, and company name,
b) billing and payment information (processed through Stripe or another payment provider),
c) Input Materials such as audio recordings, text notes, video files, or other content uploaded to the platform,
d) correspondence and communication history with OneType, including support requests, chat messages, and feedback.

2.2 Data Collected Automatically

When the User visits the website or uses the Service, certain information may be collected automatically, including:
a) IP address, browser type, operating system, and device identifiers,
b) date, time, and duration of visits,
c) referring pages, pages viewed, and interaction data,
d) cookies and similar tracking technologies used to improve performance and analyze website usage.

2.3 Data from Integrated Services

When connecting external accounts or integrations (for example, LinkedIn OAuth), OneType may receive limited account information necessary to provide the Service, such as name, profile picture, and authorization tokens. OneType does not store or have access to passwords from third-party platforms.

2.4 Analytics and Tracking Tools

OneType uses cookies and tracking technologies for analytics, performance measurement, and marketing. The following third-party tools are used:
a) Google Analytics – for website traffic analysis and performance monitoring,
b) Meta Pixel (Facebook) – for conversion tracking and advertising performance,
c) Webflow Analytics – for technical performance monitoring and traffic data of the landing page.

Users can manage or disable cookies through their browser settings or by using cookie consent tools available on the website.

2.5 Data Collected for AI Processing

When using the OneType platform, Input Materials may be analyzed by third-party AI systems (for example, OpenAI, Anthropic, Perplexity, Gemini, or ElevenLabs) for the purpose of generating AI Output. Such processing is limited to the scope necessary for the requested functionality and is performed in accordance with GDPR and contractual safeguards.

2.6 Data from Communication Channels

If the User contacts OneType through email, chat, or other communication channels, OneType may retain the content of such communications and related metadata for record-keeping and support purposes.

2.7 Optional Marketing Data

Users may voluntarily provide data (such as name and email) to subscribe to newsletters or updates. Marketing communication is sent only with the User’s consent and can be withdrawn at any time.

3. Purpose and Legal Basis of Processing

3.1 Provision of the Service

Personal data is processed to register and maintain User accounts, authenticate access, and provide the functionalities of the OneType platform.
Legal basis: Article 6(1)(b) GDPR – processing is necessary for the performance of a contract to which the User is a party.

3.2 Payment and Invoicing

Data such as billing details, VAT numbers, and transaction information are processed to issue invoices and manage payments.
Legal basis: Article 6(1)(b) GDPR – contract performance;
Article 6(1)(c) GDPR – compliance with legal obligations under tax and accounting laws.

3.3 AI Content Generation

Input Materials provided by the User are processed using OneType’s AI systems and trusted third-party AI providers to generate AI Output. Processing is limited to what is necessary for the requested functionality and is not used for unrelated purposes.
Legal basis: Article 6(1)(b) GDPR – contract performance.

3.4 Service Improvement and Product Development

Aggregated and anonymized data may be used to improve the accuracy, efficiency, and usability of the Service, including refining AI models and user experience.
Legal basis: Article 6(1)(f) GDPR – legitimate interest in improving and developing the Service.
If personal data is required for this purpose, separate consent will be obtained from the User.

3.5 Customer Support and Communication

Data such as contact details and message history are processed to respond to inquiries, provide assistance, and manage customer relationships.
Legal basis: Article 6(1)(b) GDPR – contract performance;
Article 6(1)(f) GDPR – legitimate interest in providing effective support.

3.6 Marketing and Newsletters

With the User’s explicit consent, OneType may use contact data to send marketing communications, updates, and newsletters. Users can withdraw consent at any time.
Legal basis: Article 6(1)(a) GDPR – consent of the data subject.

3.7 Analytics and Website Optimization

Cookies and analytics tools (including Google Analytics, Meta Pixel, and Webflow Analytics) are used to understand website traffic, performance, and effectiveness of marketing campaigns.
Legal basis: Article 6(1)(a) GDPR – consent through cookie banner or preferences;
Article 6(1)(f) GDPR – legitimate interest in maintaining secure and efficient website performance (for essential cookies only).

3.8 Compliance with Legal Obligations

Personal data may be processed to comply with legal obligations, including bookkeeping, fraud prevention, or responding to lawful requests by public authorities.
Legal basis: Article 6(1)(c) GDPR – compliance with legal obligations.

3.9 Protection of Rights and Interests

Personal data may be processed when necessary to establish, exercise, or defend legal claims, or to prevent abuse, fraud, or misuse of the Service.
Legal basis: Article 6(1)(f) GDPR – legitimate interest in protecting the company’s rights and ensuring service integrity.

3.10 Recruitment and Collaboration

If individuals apply for employment or partnership opportunities with OneType, their personal data (such as CVs, portfolios, or correspondence) will be processed for recruitment or evaluation purposes.
Legal basis: Article 6(1)(b) GDPR – pre-contractual measures;
Article 6(1)(a) GDPR – consent, where applicable.

4. Data Sharing and Subprocessors

4.1 General Rules

OneType does not sell or rent personal data. Data may be shared only with trusted partners and subprocessors where necessary to operate the Service, fulfill contractual obligations, or comply with legal requirements. Each subprocessor is bound by a written data processing agreement ensuring confidentiality, security, and GDPR compliance.

4.2 Categories of Recipients

Personal data may be shared with the following categories of recipients:
a) technical service providers supporting hosting, infrastructure, or storage,
b) payment processors and financial institutions,
c) analytics and advertising partners,
d) communication and support platforms,
e) AI technology providers used for content generation, transcription, or analysis,
f) public authorities when required by law.

4.3 Core Subprocessors and Providers

To deliver the Service, OneType currently engages the following subprocessors and technology partners:

Hosting and Infrastructure

• Webflow, Inc. – website hosting and analytics for the landing page.
• Google Cloud Platform and Contabo – infrastructure, file storage, and application hosting.
  

Payments and Billing

• Stripe, Inc. – payment processing and billing management.
  

Analytics and Advertising

• Google LLC (Google Analytics) – analytics and performance tracking.
• Meta Platforms Ireland Ltd. (Meta Pixel) – conversion tracking and campaign optimization.
  

Artificial Intelligence and Content Generation

• OpenAI, L.L.C. – text generation and analysis.
• Anthropic PBC – Claude AI, reasoning and text generation.
• Perplexity AI, Inc. – research and contextual data sourcing.
• Google LLC (Gemini AI) – natural language processing and model enhancement.
• ElevenLabs, Inc. – audio generation and voice synthesis.
  

Communication and Support

• Google Workspace – email communication and file management.
• Slack Technologies, LLC – internal organization and support documentation.
  
  

All subprocessors are contractually obliged to handle data securely, process it only on documented instructions, and comply with the GDPR or equivalent safeguards.

4.4 International Transfers

Some subprocessors may process data outside the European Economic Area (EEA), particularly in the United States. In such cases, OneType ensures adequate protection by relying on:
a) Standard Contractual Clauses (SCCs) approved by the European Commission, or
b) other lawful transfer mechanisms recognized under the GDPR.

4.5 Access Control

Access to personal data within OneType is strictly limited to authorized employees and contractors who require access for the performance of their duties. All individuals with access are bound by confidentiality agreements and receive training in data protection principles.

4.6 Updates to the List of Subprocessors

The list of subprocessors may change from time to time to reflect operational needs. An updated list will be maintained by OneType and made available to Users upon request. In the event of a material change affecting personal data, Users will be notified prior to the new subprocessor’s engagement.

5. International Transfers and Data Storage

5.1 Data Storage Locations

Personal data collected and processed by OneType is primarily stored on secure servers located within the European Economic Area (EEA). However, some data may be transferred or temporarily processed outside the EEA by subprocessors located in countries that do not provide an equivalent level of data protection.

5.2 Legal Safeguards for Transfers

When personal data is transferred outside the EEA, OneType ensures that such transfers are protected by appropriate legal safeguards, including:
a) Standard Contractual Clauses (SCCs) adopted by the European Commission,
b) adequacy decisions issued by the European Commission for certain jurisdictions, or
c) other mechanisms permitted under Articles 45–49 of the GDPR.

5.3 Countries of Transfer

Certain subprocessors, such as OpenAI, Anthropic, Perplexity, ElevenLabs, and Stripe, may process data in the United States or other non-EEA jurisdictions. In all such cases, OneType requires that these entities apply GDPR-equivalent security and privacy measures and sign binding data processing agreements that include SCCs.

5.4 Data Retention

Personal data is retained only for as long as necessary to fulfill the purposes for which it was collected, including to meet legal, accounting, or reporting obligations. After the retention period expires, data will be securely deleted or anonymized.

Retention periods are determined as follows:
a) Account data – retained for the duration of the account and up to 90 days after deletion, unless otherwise required by law.
b) Input Materials – retained for the duration of the active project or until the User deletes them.
c) AI Output – stored only as long as needed for delivery or history tracking.
d) Payment and invoicing data – retained for at least five (5) years as required by Polish tax law.
e) Communication records – retained for up to two (2) years for support and administrative purposes.

5.5 Backups and Recovery

Regular data backups are performed to ensure continuity and resilience. Backup data is stored securely and subject to the same protection measures as production data.

5.6 Data Deletion Requests

Upon User request, OneType will delete or anonymize all personal data associated with their Account, unless retention is required by law. Requests can be submitted to privacy@onetype.me.

5.7 Security of Transfers

All international data transfers and remote accesses are protected by encryption and secure communication protocols (TLS/HTTPS). Access to data by subprocessors is limited to specific, documented processing tasks and is monitored through contractual and technical controls.

6. Data Security Measures

6.1 General Commitment

OneType applies appropriate technical and organizational measures to ensure a level of security appropriate to the risk associated with the processing of personal data. These measures are designed to prevent unauthorized access, alteration, disclosure, or destruction of information.

6.2 Technical Measures

The following technical safeguards are implemented:
a) encryption of data in transit (TLS/HTTPS) and at rest,
b) secure server configuration and firewalls to prevent unauthorized access,
c) multi-factor authentication (MFA) for administrative accounts,
d) regular software updates and patch management,
e) anonymization or pseudonymization of data where appropriate,
f) secure deletion and overwriting of data when no longer needed,
g) continuous monitoring of infrastructure and detection of potential threats.

6.3 Organizational Measures

Organizational controls applied by OneType include:
a) restricted access to data based on role and necessity,
b) confidentiality agreements for employees and contractors,
c) mandatory data protection and cybersecurity training,
d) clear internal procedures for handling data breaches,
e) regular security audits and compliance reviews.

6.4 Incident Management and Data Breach Response

In the event of a personal data breach, OneType will:
a) assess the scope and impact of the incident,
b) take immediate steps to mitigate harm,
c) notify the competent supervisory authority (President of the Personal Data Protection Office in Poland) within 72 hours if required under Article 33 of the GDPR, and
d) inform affected Users when the breach is likely to result in a high risk to their rights and freedoms.

6.5 Subprocessor Security

All subprocessors used by OneType are required to implement comparable security measures and to comply with GDPR standards. Their compliance is verified through contractual guarantees and, where possible, security documentation or audits.

6.6 Data Integrity and Confidentiality

OneType ensures that personal data remains accurate, complete, and confidential throughout its lifecycle. Regular reviews are carried out to maintain the integrity of stored information.

6.7 Physical Security

Data centers hosting the Service are maintained by professional providers that ensure physical security, including restricted access, 24/7 monitoring, and environmental controls.

7. User Rights under GDPR

7.1 General Information

Users whose personal data is processed by OneType have the rights described in this section. OneType respects and facilitates the exercise of these rights in accordance with Articles 12–23 of the General Data Protection Regulation (GDPR).

7.2 Right of Access

Users have the right to obtain confirmation as to whether or not their personal data is being processed, and, where that is the case, to access such data and receive information about its source, purpose, and recipients.

7.3 Right to Rectification

Users have the right to request correction of any inaccurate or incomplete personal data concerning them.

7.4 Right to Erasure (“Right to be Forgotten”)

Users have the right to request the deletion of their personal data when:
a) the data is no longer necessary for the purposes for which it was collected,
b) the User withdraws consent (where consent was the legal basis),
c) the User objects to processing and there are no overriding legitimate grounds,
d) the processing is unlawful, or
e) deletion is required by law.

This right may not apply where data retention is required for compliance with legal obligations or for the establishment, exercise, or defense of legal claims.

7.5 Right to Restriction of Processing

Users may request restriction of processing where:
a) the accuracy of personal data is contested,
b) the processing is unlawful but the User opposes deletion,
c) OneType no longer needs the data but the User requires it for legal claims, or
d) the User has objected to processing pending verification of legitimate grounds.

7.6 Right to Data Portability

Users have the right to receive their personal data in a structured, commonly used, and machine-readable format, and to transmit that data to another controller where technically feasible.

7.7 Right to Object

Users have the right to object at any time to the processing of their personal data based on legitimate interests or for direct marketing purposes. In such cases, OneType will stop processing the data unless it demonstrates compelling legitimate grounds or the processing is required for legal claims.

7.8 Right to Withdraw Consent

Where processing is based on consent, the User may withdraw that consent at any time without affecting the lawfulness of processing carried out prior to withdrawal.

7.9 Right to Lodge a Complaint

Users have the right to lodge a complaint with the competent supervisory authority if they believe that the processing of their personal data infringes applicable data protection laws. In Poland, the supervisory authority is:

Personal Data Protection Office (UODO)
ul. Stanisława Moniuszki 1A, 00-014 Warszawa, Poland
Website: https://uodo.gov.pl

7.10 Exercising Rights

Requests regarding any of the above rights can be submitted by email to privacy@onetype.me. OneType will respond to verified requests within one month of receipt, or within three months in complex cases, in accordance with Article 12(3) of the GDPR.

8. Cookies and Tracking Technologies

8.1 Use of Cookies

OneType’s website and web applications use cookies and similar tracking technologies to ensure proper functionality, analyze performance, and improve the User experience. Cookies are small text files stored on the User’s device by their browser.

8.2 Types of Cookies Used

The following types of cookies may be used:
a) Essential cookies – required for the basic operation of the website, including login, navigation, and session management.
b) Functional cookies – enable enhanced functionality, such as remembering preferences and improving usability.
c) Analytics cookies – collect information on how Users interact with the website to help improve performance and content (for example, Google Analytics and Webflow Analytics).
d) Marketing cookies – track User interactions for advertising and remarketing purposes (for example, Meta Pixel).

8.3 Cookie Consent

On the first visit to the OneType website, Users are presented with a cookie banner allowing them to accept or reject non-essential cookies. Consent is recorded and can be modified or withdrawn at any time through the cookie settings interface or browser preferences.

8.4 Third-Party Cookies

Some cookies may be placed by third-party service providers integrated with the website. These providers include:
a) Google LLC – for analytics (Google Analytics) and marketing (Google Ads, YouTube).
b) Meta Platforms Ireland Ltd. – for marketing and conversion tracking (Meta Pixel).
c) Webflow, Inc. – for website analytics and optimization.
d) GetEmails, LLC d/b/a R! B2B
f) Dealfront Finland Oy and its affiliates

Each third party is responsible for its own privacy practices. Users are encouraged to review their privacy policies:

• Google: https://policies.google.com/privacy
• Meta: https://www.facebook.com/privacy/policy
• Webflow: https://webflow.com/legal/privacy
  

8.5 Managing Cookies

Most browsers allow Users to control cookies through settings that block, delete, or alert them about cookie use. However, disabling certain cookies may affect the functionality or performance of the website.

8.6 Retention of Cookie Data

Cookies are stored for varying durations depending on their type:
a) session cookies are deleted automatically when the browser is closed,
b) persistent cookies remain stored for a defined period or until manually deleted.

8.7 Analytics and Anonymization

Data collected through analytics tools is processed in an aggregated and anonymized form whenever possible. IP anonymization is enabled for Google Analytics to comply with GDPR requirements.

8.8 Withdrawal of Consent

Users can withdraw consent to non-essential cookies at any time by updating their cookie preferences on the website or through their browser settings.

9. Marketing Communication and Newsletters

9.1 Voluntary Subscription

Users may voluntarily subscribe to receive newsletters, updates, or promotional materials related to OneType’s services, features, or events. Subscription requires the provision of an email address and may include additional optional information, such as name or company name.

9.2 Legal Basis

Marketing communication is sent only based on the User’s explicit consent in accordance with Article 6(1)(a) of the GDPR and Article 10 of the Polish Act on Providing Services by Electronic Means.

9.3 Double Opt-In

To ensure valid consent, OneType may use a double opt-in procedure for newsletter subscriptions. After subscribing, the User will receive an email asking them to confirm their address by clicking a verification link. The subscription becomes active only after confirmation.

9.4 Content of Communication

Marketing communication may include:
a) information about new features, updates, or product releases,
b) educational content related to AI, LinkedIn, and content creation,
c) invitations to events, beta programs, or surveys,
d) limited promotional offers or discounts.

9.5 Third-Party Platforms

Email communication may be managed using trusted third-party providers such as:
a) MailerLite – for newsletter distribution and analytics,
b) Google Workspace – for email correspondence,
c) Meta or LinkedIn Ads – for remarketing campaigns (only in aggregated or anonymized form).

Each provider is bound by GDPR-compliant data processing agreements.

9.6 Unsubscribing

Users may unsubscribe from marketing communication at any time by clicking the “unsubscribe” link included in each email or by contacting privacy@onetype.me. Unsubscribing will not affect transactional or essential service-related messages (for example, billing or system notifications).

9.7 Frequency of Messages

OneType limits the frequency of marketing messages to a reasonable level to prevent spam and ensure relevance.

9.8 Data Retention

Personal data collected for marketing purposes will be retained until the User withdraws consent or unsubscribes, after which it will be deleted or anonymized within thirty (30) days.

9.9 Analytics of Engagement

OneType may analyze anonymized engagement metrics such as open rates, click rates, and unsubscribe statistics to improve the relevance and quality of its communication. This data is never used for profiling or automated decision-making that produces legal effects.

10. Automated Decision-Making and Profiling

10.1 No Automated Decisions with Legal Effects

OneType does not engage in automated decision-making that produces legal effects or similarly significant consequences for Users within the meaning of Article 22 of the GDPR.

10.2 AI-Driven Processing

The OneType platform uses artificial intelligence technologies to assist Users in generating and repurposing content. This includes text generation, transcription, tone analysis, and contextual research.
Such processing is always initiated by the User and serves only to deliver requested functionality. AI systems do not make autonomous decisions about Users, nor do they evaluate or score individuals.

10.3 Limited Personalization

Some personalization may occur within the Service to improve User experience, such as recommending content formats, topics, or posting schedules based on previous usage. This personalization is rule-based and does not involve behavioral profiling or automated evaluation of personality, preferences, or performance.

10.4 Human Oversight

All AI-based operations performed within the Service are subject to human oversight. Users maintain full control over their AI Output and must review and approve all generated content before publishing or sharing it externally.

10.5 Transparency of AI Providers

AI processing is performed using trusted third-party providers (such as OpenAI, Anthropic, Perplexity, Gemini, and ElevenLabs). Each provider operates under contractual terms that ensure GDPR compliance, confidentiality, and limited data use. Input Materials are not used to train or improve external AI models unless explicitly authorized by the User.

10.6 User Control

Users can disable AI-assisted features or limit processing of their Input Materials through the account settings or by contacting privacy@onetype.me.

10.7 No Profiling for Marketing

OneType does not use profiling to serve targeted advertising or to create marketing segments based on User behavior. Marketing communication is based solely on explicit consent and general subscription preferences.

11. Data Retention and Deletion

11.1 General Principle

Personal data is retained only for as long as necessary to achieve the purposes for which it was collected or to comply with legal, accounting, or reporting obligations. After this period, data is securely deleted or anonymized.

11.2 Retention Periods by Category

The following retention rules apply unless a longer period is required by law:
a) Account data – retained for the duration of the User’s account and up to 90 days after termination, unless otherwise requested.
b) Input Materials and AI Output – retained for the duration of the User’s subscription and deleted upon account closure or earlier at the User’s request.
c) Payment and billing information – retained for five (5) years as required by Polish tax and accounting regulations.
d) Customer support communications – retained for up to two (2) years to ensure service quality and resolve potential disputes.
e) Newsletter and marketing data – retained until the User withdraws consent or unsubscribes, after which data is deleted or anonymized within thirty (30) days.
f) Backups – retained for a limited period (up to ninety (90) days) for system recovery and continuity purposes.

11.3 Criteria for Retention

Retention periods are determined based on:
a) the duration of the contractual relationship,
b) applicable legal requirements,
c) the nature and sensitivity of the data,
d) the potential risk of unauthorized use or disclosure.

11.4 Secure Deletion

Once data reaches the end of its retention period, it is securely deleted or irreversibly anonymized using appropriate technical measures to prevent recovery.

11.5 User-Initiated Deletion

Users may request deletion of their account and associated data at any time by contacting privacy@onetype.me. Deletion requests will be processed within thirty (30) days unless retention is required by law or legitimate business necessity (for example, unresolved payment obligations).

11.6 Exceptions

Certain data may be retained for a longer period if necessary for:
a) compliance with legal or regulatory requirements,
b) establishment, exercise, or defense of legal claims, or
c) prevention of fraud, abuse, or misuse of the Service.

11.7 Anonymization for Statistical Use

OneType may retain anonymized and aggregated data after account deletion for statistical analysis, service improvement, or research purposes. Such data cannot be linked to any identifiable User.

12. Children’s Data

12.1 Age Restriction

The OneType Service is intended exclusively for individuals who are at least eighteen (18) years old. OneType does not knowingly collect or process personal data from children under this age.

12.2 Parental Consent

If it becomes apparent that personal data has been collected from a minor without verifiable parental consent, OneType will take immediate steps to delete such data and, where applicable, to disable the associated account.

12.3 Responsibility of Users

Users creating an account on behalf of an organization are responsible for ensuring that all individuals who access the Service under their authorization meet the minimum age requirement.

12.4 Reporting

Parents or guardians who believe that their child has provided personal data to OneType without consent are encouraged to contact privacy@onetype.me. OneType will investigate and act promptly to remove the data in accordance with applicable law.

13. Changes to the Privacy Policy

13.1 Right to Update

OneType reserves the right to modify or update this Privacy Policy at any time to reflect changes in legal requirements, technology, or the operation of the Service.

13.2 Notification of Changes

In the event of material changes affecting the way personal data is processed, OneType will notify Users by email or by displaying a notice within the Service prior to the effective date of the updated Privacy Policy.

13.3 Acceptance of Changes

Continued use of the Service after the effective date of the revised Privacy Policy constitutes acceptance of the updated version. Users who do not agree to the modifications may discontinue use of the Service and request deletion of their data.

13.4 Historical Versions

Previous versions of this Privacy Policy will be archived and made available upon request.

13.5 Effective Date

This Privacy Policy enters into force on the date of publication on the OneType website and remains valid until replaced by a new version.

14. Contact Information and Supervisory Authority

14.1 Data Controller Contact

For any questions, requests, or concerns related to this Privacy Policy or the processing of personal data, Users may contact OneType at:

LEADPACK REVPACK ONETYPE Sp. z o.o.
Aleja Jana Pawła II 68/19
00-170 Warszawa, Poland
Email: privacy@onetype.me
Website: https://www.onetype.me

14.2 Data Protection Officer

If OneType designates a Data Protection Officer (DPO), the contact details of the DPO will be published on the OneType website. Until such designation, all data protection inquiries should be directed to privacy@onetype.me.

14.3 Supervisory Authority

Users have the right to lodge a complaint with the competent supervisory authority if they believe that their personal data is being processed in violation of applicable law. The competent authority in Poland is:

Personal Data Protection Office (UODO)

ul. Stanisława Moniuszki 1A, 00-014 Warszawa, Poland

Website: https://uodo.gov.pl

14.4 Language of Communication

Communication regarding privacy and data protection matters may be conducted in English or Polish.

14.5 Final Provision

This Privacy Policy applies to all services provided by OneType under the domain https://www.onetype.me and its subdomains.