Last updated: 06.03.2025

KEY TERMINOLOGY

For this Privacy Policy, the following terms shall have the meanings set forth below:

• “Organization” or “Site Owner” – denotes CRP IT Solutions OÜ, with registered address: Narva mnt 4 Kesklinna linnaosa 10117, Tallinn;
• “Platform” – denotes the website: https://theonlyonestore.com/;
• “Client” or “You”, “Your” – denotes a person who is at least 18 years old and agrees to abide by this Privacy Policy;
• “Offerings” – denotes all offerings available on the Platform and provided to the Client by the Site Owner through the Platform;
• “Parties” – denotes the Organization and the Client;

OVERVIEW

By visiting and/or using any part of the website https://theonlyonestore.com/ (the “Platform”); or by establishing an account on the Platform, you agree to be bound by this Privacy Policy.

The Organization acts in its capacity as data controller pursuant to EU Regulation 2016/679, determining the objectives and means of processing your personal data. When using payment services, you will also be providing your information, including personal information to the Organization, registered at: Narva mnt 4 Kesklinna linnaosa 10117, Tallinn.

The Organization will process your information which is required to handle payments, and will serve as a data controller (the “Payments Data Controller”) for your information which is required in order to examine and report activity which raises suspicion of fraud, money laundering, terrorism funding, or any other illegal activity in compliance with applicable law, as better specified below.

DATA WE COLLECT

We gather your personal data that could be used to identify our clients and partners, including, but not limited to, first and last name, date of birth, bank account information, home, or other physical address, email address, phone number, shipping information, billing information, transaction history, website usage preferences, and feedback regarding the Platform or other contact information to be Personal Information (‘Personal Information’).

PERSONAL DATA YOU SUBMIT TO US

We may ask you to provide us with your Personal Information. In some cases, we may request information from you through surveys or contests. Participating in these surveys or contests is completely voluntary, and, in this regard, you are free to make a decision regarding the disclosure of such information. Information we are requesting could be related to contact information (such as name, correspondence address, and telephone number), and demographic information (such as zip or postal code or age).

PERSONAL DATA WE COLLECT ABOUT YOU

Additionally, while you are using the Platform, an activity log is maintained by our servers. This log collects administrative and traffic information including source IP address, time of access, date of access, web page(s) visited, language use, software crash reports, and type of browser used. This log is unique to you. This information is essential for the purpose of delivering our offerings as well as their adequacy and capability.

We would like to inform you that in certain cases we may conduct security research in order to validate your identity, age, as well as the other registration data provided by you and to verify your use of the Platform and your financial transactions in order to ensure that there is no potential breach of our Terms and Conditions and/or applicable law.

For this purpose, we are able to use your Personal Information and disclose your Personal Information to third parties in order to validate the information you provide in order to use the Platform, involving possibly but not necessarily, the international exchange of information. Summaries that will be composed on the basis of the received security check can consist of credit report request and/or otherwise validation of the information provided by your side against the databases of third-parties. Personal Information also can be received from customer lists that can be lawfully acquired from third-parties.

PURPOSE OF PERSONAL DATA PROCESSING

Through processing your Personal Information we are able to perform our routine functions. We would like to make you aware that we are using your Personal Information with the following aims:

Upon your consent (and before its withdrawal). As an example, you may have given your consent to receive marketing information messages;

In necessary volume and in order to perform contractual obligations which means the following actions:

• your online transactions processing;
• customer support provision.

Where it corresponds to our legitimate business interests, which means the following actions:

• Enhancement of quality and correspondence of a range of services of Organization as well as the advancement of our customer service;
• Actions that aimed to meet certain requirements of the business;
• Actions that are undertaken for operational purposes of the Platform;
• Performance of security and identification verifying action checks;
• The provision of information regarding our promotional actions as well as information that concerns Organization services;

Where our legitimate interests to process your Personal Information is mentioned, please feel free to contact us in order to clarify the information that relates to our assessment of the impact on you.

DATA RETENTION PERIOD

Upon closure of your account, Personal Information of your account will be stored by us no longer than 1 year after the date of its closure. As per financial information that compiles in the frame of our cooperation, like the payment of commission and so on, this information will be kept 5 years after the closure of the account in accordance with our legal obligations in fraud, anti-money laundering, and taxation matters. We assure you that the information is kept securely up to the end of the storage period after which the information will be deleted and/or destroyed accordingly.

YOUR LEGAL RIGHTS

• Right to be informed about how we use the information as well as about your rights in this regard. This information should be provided in a clear, transparent, and understandable manner. And in order to realize this right of you;
• Right to correct the information about you that we have at our disposal in case such information which is contrary to fact;
• Right to access and study your Personal Information that we have at our disposal;
• Right to delete, restrict, or “pause” your Personal Information usage (in outstanding cases);
• Right to request your Personal Information in a digital format including, but not limited to the purpose of transferring such information to the third party;
• Right to object allows you to stop or prevent us from processing your Personal Information in relation to all of the Personal Information we hold about you or only to certain information. It may also only relate to a particular purpose that we are processing the data for;

In case you are interested in execution of the above-mentioned right(s), please contact us using the following e-mail: [email protected]. Your request should include the following information:

• Your name;
• Contact details;
• Full details of your request.

If you are not satisfied with our response or you believe that our use of your information does not comply with data protection law, you can make a complaint to the relevant regulator within your jurisdiction in relation to data privacy.

CONSENT FOR DATA PROCESSING AND WITHDRAWAL

According to the GDPR, consent should be given in a positive and affirmative way by individuals who share their personal data with organizations. According to the European Data Protection Directive, the essence of the concept of “consent” is that: “any freely given specific and informed indication of his wishes by which the data subject signifies his agreement to personal data relating to him being processed.”

Upon the submission of your Personal Information on our website, you must accept the terms and condition agreement. As per marketing information and messages, you reserve the right to opt-in for such communications. Please note that you are free to refuse from marketing at any time if you are not interested in receiving our marketing information messages.

SECURITY MEASURES

Please note that our organization completely realizes the importance of information security and the techniques needed to secure information. We are keeping all of the Personal Information which was obtained from you in a protected database within our secured network and under active leading security software. We take steps to ensure our subsidiaries, agents, partners, and suppliers also employ adequate levels of security.

CONTACT INFORMATION AND COMPLAINTS

Please feel free to contact us in case you have any queries or complaints in respect to this Privacy Policy or about the way we process your Personal Information by using the following details:

• Email: [email protected]
• Address: Narva mnt 4 Kesklinna linnaosa 10117, Tallinn

POLICY MODIFICATIONS

Hereby we would like to inform you that we constantly review and update this Privacy Policy anytime there is a significant change to how we are using personal information as well as to keep our information processing in compliance with the current legislation.

In case of any changes to the Privacy Policy we may also contact you to notify you of any significant changes if we consider them as important and necessary.

APPLICABLE DATA PROTECTION LAWS

If you would like to learn more about the General Data Protection Regulation, please visit the link below: https://www.dataprotection.gov.cy/dataprotection/dataprotection.nsf/home_en/home_en?opendocument