Privacy Policy & Data Protection
1. General Philosophy
One4All Global FZCO ('we', 'us') is committed to protecting the privacy of our users worldwide. Our services are offered from our headquarters in the United Arab Emirates (UAE). This policy outlines how we collect, use, and protect your data in compliance with the major data protection regulations in our key markets: the UAE's Personal Data Protection Law (PDPL), the European Union's General Data Protection Regulation (GDPR), and key privacy laws in the United States.
2. Data Processing Outside the EU
Our company is based in the UAE. To provide a secure and lawful service to our users in the European Union, we implement the following safeguards:
- Adequate Level of Protection: The UAE is considered a 'third country' by the EU. To ensure a level of data protection equivalent to the GDPR, all data transfers are governed by the EU Commission's approved Standard Contractual Clauses (SCCs). This is the legal instrument we use for our partnership with our EU representative and any other EU-based service providers.
- Specialized Zones: Our operations are based in a UAE free zone with data protection laws that are conceptually aligned with international standards.
3. Your Rights by Region
You have specific rights depending on your location. To exercise any of these rights, please contact us at OP (for Europe) or EVD (for the Rest of the World).
- A. For Users in the European Union (GDPR Rights): We guarantee your full rights under the GDPR, including the rights to be informed, access, rectification, erasure, restrict processing, data portability, and to object. Our designated EU Representative, Dr. Ortwin Paetzold, can also be contacted for any GDPR-related inquiries.
- B. For Users in the UAE and Rest of the World (PDPL Rights): In accordance with the UAE PDPL, you have the right to access, correct, erase, or restrict the processing of your data, as well as the right to data portability and to lodge a complaint with the UAE Data Office.
- C. For Users in the United States (e.g., CCPA/CPRA): We adhere to the principles of major state laws like the CCPA. You have the right to know, delete, and opt out of the "sale" or "sharing" of your personal information. We do not sell your data in the traditional sense and extend these rights to all our US-based users.
4. Data Processing for Service Provision
We process data that is necessary to provide our chess services. This includes account information, game history, and payment information. For financial transactions, we use specialized third-party providers as detailed below.
5. Payment Service Providers
We integrate payment services from third-party companies to ensure secure and efficient processing of your purchases. The legal basis for this processing is the necessity to perform our contract with you. This aligns with the principles of lawful processing under both the UAE's Personal Data Protection Law (PDPL) and Article 6(1)(b) of the EU's General Data Protection Regulation (GDPR).
- PayPal: The provider of this service is PayPal Middle East FZ-LLC (Dubai Internet City, Dubai, UAE). Since data processing occurs outside the European Economic Area (EEA), we rely on Standard Contractual Clauses (SCCs) to ensure a compliant level of data protection. You can find more information in PayPal's privacy policy: PayPal Privacy
- Stripe: Depending on your location and currency, processing is handled by different Stripe entities
- For SEPA Area Payments (EUR): The responsible entity is Stripe Payments Europe, Ltd. (Dublin, Ireland).
- For non-SEPA Payments (USD): For customers outside the SEPA area paying in USD, we use Stripe Payments Middle East Limited (DIFC, Dubai, UAE). This option is not offered to persons within the SEPA area.
- International Data Transfer: For any data transfer to the UAE, we have entered into Standard Contractual Clauses (SCCs) with Stripe to ensure an adequate level of data protection. Further information is available at:
Stripe Privacy
6. 社会插件、跟踪工具、广告工具等
没有使用社交插件。此外,没有使用其他供应商的跟踪工具或广告功能。因此,这些服务不能通过Lechenicher SchachServer设置cookies。
7. 饼干
互联网页面使用所谓的cookies。Cookies不会损害您的计算机,也不包含任何病毒。Cookies的作用是使我们的服务更方便用户,更有效和更安全。Cookies是小的文本文件,由您的浏览器存储在您的电脑上。
我们主要使用所谓的 "会话cookies"。它们会在您的访问结束后自动删除。其他的cookies会一直保存在您的终端设备上,直到您删除它们。这些cookies使我们能够在您下次访问时识别您的浏览器。例如,以前选择的语言会被识别和使用。没有第三方的cookies是通过Lechenicher SchachServer存储的。
您可以对您的浏览器进行设置,使您了解cookies的设置,并仅在个别情况下允许cookies,在某些情况下或在一般情况下排除对cookies的接受,并在关闭浏览器时激活自动删除cookies的功能。如果您停用cookies,本网站的功能将受到限制。
8. 服务器-日志-文件
网页的提供者会自动收集并存储在所谓的服务器日志文件中,您的浏览器会自动将这些信息传输给我们。这些文件是:
- 浏览器名称和-版本
- 操作系统
- 引荐网站(仅在Lechenicher SchachServer内)。
- 主机名和IP地址
- 服务器请求的时间
这些数据不能分配给特定的人。我们不会将这些数据与其他数据源进行合并。如果我们有具体迹象表明存在非法或滥用的情况(例如使用多个玩家账户),我们保留随后检查这些数据的权利。