Privacy Policy

Effective Date: August 11, 2025

At OneTwo ("OneTwo," "we," "us," or "our"), we are committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information in compliance with applicable laws, including the General Data Protection Regulation (GDPR) in the European Union and the California Consumer Privacy Act (CCPA) in the United States, as well as other relevant regulations. By using our website https://onetwo.gg/ services, or interacting with us, you consent to the practices described in this policy.

1. Information We Collect

We collect information you voluntarily provide to us and, in some cases, automatically through your use of our website or services. The types of information we collect include:

a. Personal Information You Provide

Contact Information: Name, email address, phone number, or mailing address provided through forms, emails, phone calls, or other communications with our representatives.

Project-Related Information: Details related to your web design projects, services, or billing, including any third-party information you provide with consent to fulfill your requests.

Payment Information: Credit card details or other financial information provided for billing purposes, processed securely and deleted upon project completion or termination.

b. Automatically Collected Information

Usage Data: Information about your interactions with our website, such as IP address, browser type, device information, pages visited, and time spent on our site.

Cookies and Tracking Technologies: We use session cookies (temporary files that expire when you close your browser) to enhance navigation and site functionality. We do not use persistent cookies. Anonymous data may be collected for analytics purposes (see Section 4 for details).

c. Information from Third Parties

We may receive information about you from third parties (e.g., business partners or service providers) only when you have authorized such sharing for project-related purposes.

d. No Collection from Children

Our website and services are not directed to individuals under 18. We do not knowingly collect personal information from children under 13 (or 16 in the EU, per GDPR). If we learn that a minor has provided personal information, we will promptly delete it. Parents or guardians are encouraged to monitor their children's online activities.

2. How We Use Your Information

We use your information to provide and improve our services, including:

  • Delivering web design, development, and related digital services
  • Communicating with you about projects, updates, or customer support
  • Sending newsletters, promotional materials, or project-related emails (with your consent, where required)
  • Analyzing website usage to optimize user experience, content, and marketing efforts (using anonymized data)
  • Complying with legal obligations, such as responding to valid subpoenas or court orders

We process personal data under the following legal bases (per GDPR, where applicable):

  • Consent: For newsletters, marketing, or non-essential cookies.
  • Contractual Necessity: To fulfill services you've requested.
  • Legitimate Interests: For improving our website and services, provided your rights are not overridden.
  • Legal Obligation: To comply with applicable laws or regulations.

3. How We Share Your Information

We do not sell, trade, or share your personal information with third parties for marketing purposes. We may share your information in the following circumstances:

  • With Your Consent: To third parties (e.g., subcontractors or partners) necessary to complete your requested services.
  • Service Providers: With trusted vendors (e.g., payment processors, hosting providers) who assist in delivering our services, bound by strict confidentiality agreements.
  • Legal Requirements: When required by law, such as in response to a valid subpoena, court order, or regulatory request.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred, with notice provided where required.

No mobile data, including text messaging opt-in data or consent, will be shared with third parties for marketing or promotional purposes.

4. Cookies and Tracking Technologies

a. Cookies

We use session cookies to enhance your browsing experience (e.g., maintaining site functionality during your visit). These cookies expire when you close your browser. We do not use persistent cookies that remain on your device.

You can manage cookies via your browser settings. Disabling cookies may limit access to certain website features (e.g., forms or interactive tools). For instructions, refer to your browser's "Help" section.

b. Analytics

We use tools like Google Analytics to collect anonymized data about website usage (e.g., page views, referral sources) for the domain https://onetwo.agency. This data does not include personally identifiable information and is used to improve user experience, content, and marketing strategies.

c. Third-Party Cookies

Our partners or service providers may use their own session cookies, which are not covered by this policy. We do not have access to or control over these cookies.

d. Your Choices

Under GDPR and CCPA, you may opt out of non-essential cookies or analytics tracking. You can also manage cookie preferences through our website's cookie consent tool (if applicable).

5. Third-Party Websites

Our website may contain links to third-party websites. OneTwo is not responsible for the content, practices, or privacy policies of these sites. We do not endorse these websites or their products/services. Accessing these links is at your own risk, and we recommend reviewing their privacy policies.

6. Data Security

We implement industry-standard physical, technical, and administrative measures to protect your information, including:

  • Secure SSL encryption for online transactions and data transfers
  • Secure storage and deletion of payment information upon project completion
  • Regular monitoring to prevent unauthorized access or data breaches
  • Despite our efforts, no system is completely secure. In the event of a data breach, we will notify affected individuals as required by law (e.g., within 72 hours under GDPR).

7. Your Privacy Rights

a. EU Residents (GDPR)

If you are in the EU, you have the following rights:

  • Access: Request a copy of your personal data
  • Rectification: Correct inaccurate or incomplete data
  • Erasure: Request deletion of your data (subject to legal exceptions)
  • Restriction: Limit the processing of your data in certain cases.
  • Data Portability: Receive your data in a structured, machine-readable format
  • Objection: Object to processing based on legitimate interests
  • Withdraw Consent: Revoke consent at any time (without affecting prior processing)

To exercise these rights, contact us at privacy@onetwo.agency

b. California Residents (CCPA)

If you are a California resident, you have the right to:

  • Know the personal information we collect, use, or disclose about you
  • Request deletion of your personal information (subject to exceptions)
  • Opt out of the sale of your personal information (note: we do not sell personal information)
  • Non-discrimination for exercising your rights

Contact us to submit a CCPA request: privacy@onetwo.agency

c. General Rights

You may opt out of marketing communications at any time by clicking "unsubscribe" in emails or contacting us. You are not required to provide personal information to access most website features

8. International Data Transfers

For EU residents, your data may be transferred to the United States or other countries for processing. We ensure such transfers comply with GDPR requirements, using safeguards like Standard Contractual Clauses or adequacy decisions.

9. Data Retention

We retain personal information only as long as necessary to fulfill the purposes outlined in this policy or as required by law. For example:

  • Project-related data is deleted upon project completion, unless retention is required (e.g., for legal or tax purposes)
  • Marketing data is retained until you opt out
  • Analytics data is anonymized and retained indefinitely for statistical purposes

10. Changes to This Privacy Policy

We may update this policy to reflect legal or operational changes. Updates will be posted on this page, and significant changes will be communicated as required by law (e.g., via email for EU residents).

11. Contact Us

For questions, concerns, or to exercise your privacy rights, please contact:

  • Email: privacy@onetwo.agency
  • EU Data Protection Representative (per GDPR): privacy@onetwo.agency
  • California Privacy Requests: privacy@onetwo.agency

We aim to respond to all inquiries within 30 days (or sooner, as required by law).