Risk Warning: Do not invest unless you are prepared to lose all the funds you invest. Digital assets and related services are considered high-risk. You should not expect to be protected if something goes wrong. Please take a few minutes to understand the risks before proceeding.

Last Updated: [17.10.2025]
Domain:https://www.onewallet.pro/de
Contact: support@onewallet.pro

I. INTRODUCTION

This OneWallet Privacy Policy (the “Privacy Policy”) governs the privacy relationship between you (“Client” or “you”) and OneWallet, including any parent company, subsidiary, or entity belonging to the OneWallet group of companies (“OneWallet,” “we,” or “us”), in relation to the collection, storage, processing, and protection of your personal data when accessing the services provided by OneWallet (the “Services”).

This Privacy Policy applies to all OneWallet communication and service channels, including but not limited to the OneWallet websitehttps://www.onewallet.pro/de (the “Website”), mobile applications, application programming interfaces (“APIs”), and any third-party applications that rely on the OneWallet API (collectively, the “Apps”).

This Privacy Policy constitutes a legally binding agreement (the “Agreement”) between you and OneWallet. By accessing and using the Services, you acknowledge that you have read, understood, and accepted this Policy.

OneWallet regularly reviews and updates this Privacy Policy to ensure compliance with applicable data protection frameworks (including the General Data Protection Regulation (EU) 2016/679 “GDPR” and the German Bundesdatenschutzgesetz “BDSG”), as well as to account for new services, regulatory guidance, or changes in our business practices. In the event of material changes, we will notify you via the Website, Apps, or by email. Continued use of the Services after such changes constitutes acceptance of the revised Privacy Policy.

Unless otherwise provided herein, terms defined in the OneWallet Terms of Service and Cookies Policy shall have the same meaning in this Privacy Policy.

II. DEFINITIONS

For the purposes of this Privacy Policy, the following definitions apply:

• Controller: OneWallet entity that determines the purposes and means of processing personal data.
  
  

• Processor: A natural or legal person, authority, or service provider that processes personal data on behalf of the Controller.
  
  

• Personal Data: Any information relating to an identified or identifiable natural person (“Data Subject”).
  
  

• Processing: Any operation performed on personal data, such as collection, storage, use, disclosure, or erasure.
  
  

• Privacy Laws: All applicable data protection regulations, including the GDPR, BDSG, UK Data Protection Act, and equivalent global legislation.
  
  

• OneWallet Platform: Collectively, the Website, Apps, APIs, communication channels, and all updates or upgrades thereof.
  
  

III. INFORMATION WE COLLECT1. User-provided data

• Identification data: full name, personal identification number, date/place/country of birth, nationality, country of residence, scans/copies of government-issued identification (passport, ID card, driver’s license), PEP (politically exposed person) status, sanctions status.
  
  

• Contact data: permanent and current addresses, telephone numbers, email address, social media handles, communication records.
  
  

• Employment/Professional data: occupation, employer, industry, employment status.
  
  

• Financial data: bank account numbers, wallet addresses, source of funds, source of crypto-assets, account balances, transaction history.
  
  

• Biometric data (where legally permissible): selfie verification photos, facial recognition templates, live video verification used for identity validation.
  
  

• Voluntary data: any information you provide to OneWallet at your discretion.
  
  

2. Automatically collected data

• Device and technical data (IP address, operating system, browser type and version, language settings, screen resolution, device ID, geolocation data).
  
  

• Website/App usage data (pages visited, timestamps, referral URLs, interaction logs, consent history, session recordings, clickstream data, error reports).
  
  

• Security and audit logs (login attempts, IP logs, session tokens, suspicious activity reports).
  
  

3. Data received from third parties

OneWallet may obtain personal data from verified third-party providers, including KYC/AML service providers, cloud hosting providers, payment processors, and fraud detection services, in compliance with Data Processing Agreements.

Failure to provide requested data may prevent OneWallet from offering certain Services or fulfilling contractual and regulatory obligations.

IV. PURPOSES OF PROCESSING

OneWallet processes Personal Data in compliance with applicable law for the following purposes:

• Identity verification and onboarding (including KYC/AML and biometric checks).
  
  

• Service provision: enabling account creation, wallet functionality, deposits, withdrawals, and transactions.
  
  

• Contract performance: delivering Services and managing contractual relationships.
  
  

• Security and fraud prevention: detecting unauthorized activity, monitoring suspicious behavior, and ensuring platform integrity.
  
  

• Legal compliance: fulfilling obligations under AMLD5/6, FATF Recommendations, GDPR, tax regulations, and other legal frameworks.
  
  

• Personalization and user experience: storing preferences, improving usability, tailoring recommendations.
  
  

• Analytics and platform optimization: improving system performance, error debugging, monitoring usage metrics.
  
  

• Marketing and communications: sending promotional emails, service updates, product offers (always subject to opt-out).
  
  

• Research and development: using anonymized/aggregated data for product improvement and trend analysis.
  
  

V. LEGAL BASIS FOR PROCESSING

Personal Data is processed lawfully on the following bases (Art. 6 GDPR):

1. Contractual necessity – processing required to perform or enter into a contract with you.
   
   

2. Legal obligation – processing required for compliance with AML, financial supervision, and tax regulations.
   
   

3. Legitimate interests – e.g., fraud prevention, network security, improving user experience, provided such interests are not overridden by your fundamental rights.
   
   

4. Consent – when explicitly required (e.g., biometric verification, marketing communications).
   
   

VI. AUTOMATED DECISION-MAKING & PROFILING

OneWallet may deploy automated decision-making technologies (including creditworthiness and risk assessments, fraud detection, or compliance checks). These processes are designed to ensure consistency, reduce human bias, and increase efficiency.

Where automated decisions have legal or significant effects on you, you have the right to request human review, contest the decision, and express your point of view.

VII. DISCLOSURE TO THIRD PARTIES

OneWallet may disclose your data to carefully selected third parties, including:

• Financial institutions and payment networks (for executing transactions).
  
  

• KYC/AML providers (identity verification and due diligence checks).
  
  

• Technology and cloud service providers (secure data hosting, infrastructure support).
  
  

• Professional advisers (auditors, compliance consultants, legal counsel).
  
  

• Regulatory and governmental authorities (where legally required).
  
  

• Advertising/analytics partners (subject to your consent, where applicable).
  
  

OneWallet does not sell or rent Personal Data to third parties.

VIII. INTERNATIONAL DATA TRANSFERS

Where data is transferred outside the European Union (EU), European Economic Area (EEA), or the United Kingdom (UK), OneWallet ensures compliance through:

• European Commission Standard Contractual Clauses (2021 version).
  
  

• UK International Data Transfer Addendum (where applicable).
  
  

• Adequacy decisions issued by the EU or UK authorities.
  
  

Data subjects may request a copy of the applicable safeguards via support@onewallet.pro.

IX. DIRECT MARKETING

OneWallet may send you marketing communications about its services, products, or promotions, provided that:

• You have opted in (where required by law), or
  
  

• You are an existing client (within the limits of applicable law).
  
  

You may unsubscribe at any time via the “unsubscribe” link in communications or by contacting support@onewallet.pro.

X. DATA SECURITY

OneWallet employs industry-standard and state-of-the-art technical and organizational security measures, including:

• AES-256 encryption at rest and TLS 1.3 in transit.
  
  

• Network firewalls, DDoS mitigation, and intrusion detection systems.
  
  

• ISO 27001-aligned data governance frameworks.
  
  

• Multi-factor authentication and session timeouts.
  
  

• Restricted role-based access to Personal Data on a need-to-know basis.
  
  

In the event of a personal data breach that is likely to result in high risk to your rights and freedoms, OneWallet will notify you and the competent supervisory authority without undue delay in accordance with GDPR Art. 33–34.

XI. DATA RETENTION

OneWallet retains Personal Data only for as long as strictly necessary:

• KYC/AML data: retained for five (5) years after termination of the client relationship, as required under EU AML legislation.
  
  

• Account data: retained for the duration of the contract plus statutory limitation periods.
  
  

• Marketing suppression lists: indefinitely, to ensure compliance with opt-out requests.
  
  

• Logs and technical records: typically between 6–24 months, depending on system requirements.
  
  

XII. DATA SUBJECT RIGHTS

You have the following rights under GDPR and applicable Privacy Laws:

• Right of access – to know what data we process about you.
  
  

• Right to rectification – to correct inaccurate or incomplete data.
  
  

• Right to erasure (“right to be forgotten”) – subject to legal limitations.
  
  

• Right to restrict processing – under certain circumstances.
  
  

• Right to data portability – receive your data in a structured, machine-readable format.
  
  

• Right to object – to marketing, profiling, or processing based on legitimate interests.
  
  

• Right not to be subject to automated decision-making – where such decisions significantly affect you.
  
  

• Right to withdraw consent – without affecting prior lawful processing.
  
  

To exercise these rights, please contact us at support@onewallet.pro. We will respond without undue delay and within the statutory timeframe (typically 30 days).

You also have the right to lodge a complaint with your local data protection authority (e.g., in Germany: BfDI – Bundesbeauftragte für den Datenschutz und die Informationsfreiheit).

XIII. CONTACT

For privacy-related inquiries, data access requests, or to exercise your rights, please contact:

Data Protection Contact
Email: support@onewallet.pro
Website:https://www.onewallet.pro/de

XIV. MISCELLANEOUS

• Children’s privacy: Our services are not directed to persons under 18 years of age. If we become aware that we have inadvertently collected Personal Data from a minor, we will delete such information immediately.
  
  

• Governing law: This Privacy Policy shall be governed by and construed in accordance with the laws of Germany, subject to applicable EU data protection legislation.
  
  

© 2018–2025 OneWallet. All rights reserved.