Last Updated:

Mar 26, 2026

Terms & Privacy

TERMS AND CONDITIONS

Last updated: March 2026

Welcome to OneCEO!

OneCEO is owned and operated by OneCEO LLC.

The following terms and conditions apply to your use of the OneCEO mobile application (Available on Google Play and App Store). By downloading, installing, and using the application, you agree to these terms and conditions and our privacy policy

In these terms and conditions, the words “platform” and “application” refers to the OneCEO mobile application and the OneCEO website together, "we", "us", "our", “the company” and "OneCEO", refers to OneCEO LLC, and "you", and "user", refers to you, the user of OneCEO.

PLEASE READ THESE CONDITIONS CAREFULLY BEFORE USING THE SERVICES AND FUNCTIONALITIES AVAILABLE ON THE PLATFORM.

1. ACCEPTANCE OF TERMS

By accessing and using the OneCEO platform, you agree to be fully bound by the terms and conditions set forth in this agreement. If you do not agree to any of the terms, you must refrain from using the platform or its services. We reserve the right to modify this agreement at any time. Any modifications will be effective upon posting on the platform. By continuing to use OneCEO following the posting of a modification, you expressly agree to be bound by the updated terms. For this reason, we recommend that you review this agreement periodically to stay informed of any changes.

By using the platform, you represent and warrant that you have full legal capacity, power and authority to enter into this agreement and to perform your obligations hereunder. You further confirm that you are not subject to any legal, contractual or other restriction that limits or prevents your ability to accept these terms and conditions. You warrant that you will use the platform in accordance with applicable laws and regulations and that your use will not infringe any third party rights or contravene any applicable regulations.

Your acceptance of this agreement constitutes a binding commitment by you and any entity you represent to adhere to the terms set forth herein and any additional policies posted on the platform. This commitment includes your obligation to ensure that all information provided during registration and use of the platform is truthful, accurate and up to date. OneCEO will not be liable for any breach of these terms by users, and any violation of these terms may result in the suspension or termination of your access to the platform.

2. NOTIFICATIONS AND COMMUNICATIONS

OneCEO may send notifications and communications related to the use of the application, account management, service updates, reminders, subscription information, and other relevant notices via the email address provided by the user, messages within the application, and push notifications on the device. By using the application, the user agrees to receive these types of communications, which are an essential part of the service. However, the user may manage their preferences and, in some cases, disable certain non-essential notifications through their device settings or the application itself.

3. REGISTRATION AND USER ACCOUNT

To access the main features of the OneCEO application, users must register and create a personal account. Registration can be done by providing a valid email address and password or by authenticating with third-party accounts such as Google or Apple. By registering, the user agrees to provide accurate, complete, and up-to-date information, as well as to maintain the confidentiality of their login credentials. Users are solely responsible for all activities carried out from their account and must immediately notify OneCEO of any unauthorized use or security breach. Each account is personal and non-transferable and may not be shared with other people. OneCEO reserves the right to suspend or delete accounts in the event of misuse, violation of these Terms and Conditions, or any activity that may affect the security or operation of the platform. The user may delete their account at any time from the application settings or by contacting technical support, which will result in the permanent deletion of their data and content, except for those that must be retained for legal, technical, or security reasons.

4. SUBSCRIPTIONS

OneCEO offers monthly and annual subscription plans that provide expanded access to certain features and benefits within the application. All subscriptions are managed through the official app stores (Google Play and App Store) using the RevenueCat payment processing service. By purchasing a subscription, the user authorizes automatic and recurring billing of the amount corresponding to the selected plan using the payment method associated with their app store account. Subscriptions are automatically renewed at the end of each billing period, unless the user cancels them before the renewal date. Cancellation can be done at any time from the account settings in the respective app store, and the subscription will remain active until the end of the prepaid period, with no refunds for unused partial periods. OneCEO does not have access to the user's financial data or payment methods used, as all processing is done directly through the integrated payment providers. Prices, benefits, and conditions of subscriptions may vary and will be clearly indicated in the app or app stores prior to purchase. OneCEO reserves the right to modify or update subscription plans, rates, or features, notifying such changes in a reasonable time in advance when they affect active subscribers. Continued use of the service after the changes take effect will constitute acceptance of the new subscription terms.

5. USER RESPONSIBILITIES

By registering and using the platform, the user acknowledges that they are solely responsible for their actions within the application and for the consequences arising from its use. In particular, the user agrees to:

Use the application in a lawful and ethical manner and in accordance with these Terms and Conditions.
Provide accurate, complete, and up-to-date information during registration and use of the platform.
Maintain the confidentiality of their login credentials and avoid sharing their account with third parties.
Assume full responsibility for all activity carried out from their account, even if performed by third parties with their authorization.
Not use the application for illegal, fraudulent, defamatory, offensive, abusive, or contrary to public order purposes.
Not publish or store content that infringes on copyright, privacy, intellectual property, or any third-party rights.
Not manipulate, alter, modify, or attempt to decompile the code, structure, or operation of the application.
Do not interfere with the security, stability, or performance of the platform or use it to distribute viruses, malware, or malicious software.
Keep your device, Internet connection, and necessary security measures up to date for the proper use of the application.
Respect the privacy and rights of other users, avoiding any abusive or invasive behavior.

OneCEO shall not be liable for any damage or loss caused by misuse of the application or failure to comply with these obligations. The company reserves the right to suspend or delete accounts that violate these Terms and Conditions or that pose a risk to the integrity of the service, without prior notice and without the right to compensation.

6. USER CONTENT

OneCEO allows users to generate and store content within the application, including diary entries, personal reflections, photographs, notes, and any other material related to the use of the platform. The user retains ownership of the content they create or upload, but grants OneCEO a limited, non-exclusive, revocable license necessary to store such content, display it within their account, and ensure the proper technical functioning of the service. All diary content is private and only accessible by the owner, except in exceptional circumstances that require review for legal or security reasons.

Users are solely responsible for the content they publish or store, ensuring that such content does not infringe on copyright, intellectual property, privacy, or any other applicable regulations. It is strictly prohibited to upload, publish, or store content that is illegal, offensive, defamatory, discriminatory, sexually explicit, or that may compromise the security or integrity of the application.

OneCEO reserves the right to remove any content it deems inappropriate, contrary to the law, or in violation of these Terms and Conditions, without prior notice or right to compensation. The company may also temporarily retain copies of deleted content for technical, backup, or regulatory compliance purposes. The deletion of a user's account will result in the deletion of associated content, except for data that must be retained for legal or technical reasons.

7. DISCLAIMER

The OneCEO platform is provided for the purpose of promoting personal development, habit organization, and goal achievement through digital self-management tools. However, OneCEO does not offer, nor should it be interpreted in any way as, a medical, psychological, therapeutic, nutritional, financial, or any other type of professional advice service. The application is not designed to diagnose, treat, cure, or prevent physical or mental illness, nor to replace consultation with qualified professionals. Any information, statistics, or suggestions available within the platform are for guidance and motivation purposes only and should not be used as a basis for medical, psychological, or professional decision-making.

Use of the application and its features is entirely at the user's own risk. If the user experiences physical or mental health problems, stress, anxiety, or any other medical condition, they should seek professional care and refrain from interpreting the information contained in OneCEO as a substitute for medical diagnosis or treatment. The company assumes no responsibility for the consequences of the interpretation, application, or misuse of the information or features available on the platform.

OneCEO does not guarantee specific results or the achievement of personal or professional goals through the use of the application. Gamified elements, such as “CEO coins,” virtual headquarters brightness, or progress statistics, are symbolic tools designed for motivation and do not represent actual achievements, financial rewards, or professional or health benefits.

The company does not guarantee that the application is free of errors, interruptions, or vulnerabilities, nor will it be liable for any direct, indirect, or consequential damages arising from the use or inability to use the service, including data loss, system interruptions, technical failures, or decisions made by the user based on the information displayed.

User-generated content, including journal entries, photographs, or other material, is the sole responsibility of the author. OneCEO does not review or validate user content and is not responsible for its accuracy, completeness, or suitability. The company reserves the right to modify, suspend, or remove features from the application at any time, without prior notice and without liability to users.

Continued use of OneCEO implies express acceptance of this disclaimer and acknowledgment that the application is a digital tool for personal support and reflection, but does not replace, nor is it intended to replace, medical or professional advice, diagnosis, or treatment in any field.

8. LICENSE TO USE THE PLATFORM

OneCEO grants the user a personal, worldwide, royalty-free, non-transferable, non-sublicensable, non-exclusive, non-sublicensable license to download and use the OneCEO mobile application, available through the App Store and Google Play Services. This license includes access to modified versions, updates, upgrades, enhancements, extensions, add-ons and copies of the app, if available. The exclusive purpose of this license is to allow the user to access and use the functionalities offered by the platform in accordance with the terms and conditions set forth in this agreement.

The user agrees to use the platform diligently, lawfully and in full compliance with applicable regulations, refraining from any activity that is negligent, fraudulent, harmful or in any way compromises the integrity of OneCEO, its services or the experience of other users. Use of the platform for actions that may damage the reputation, interests or rights of OneCEO, its affiliates or third parties is strictly prohibited, including but not limited to:

Attempting to access unauthorized systems or reverse engineer the platform.
Employ automated techniques to interact with the platform in an unauthorized manner.
Engage in activities that may disrupt, overload or compromise the technical operation of the platform.

OneCEO reserves the right, at its sole discretion, to suspend or terminate the user's access to the platform immediately and without liability to the user, in the event that any breach of the stated conditions is detected. This cancellation may be carried out with or without prior notice, depending on the nature and severity of the breach. In addition, OneCEO reserves the right to take legal action if the improper use of the platform generates economic, technical or reputational damage to the company or third parties.

The user acknowledges that the license granted is revocable and that its continuity depends on full compliance with these conditions. Any unauthorized or prohibited use of the platform may result in the immediate termination of this license and the adoption of the necessary legal measures to protect the rights and interests of OneCEO.

9. COPYRIGHT

All rights, titles, and interests related to the OneCEO application, including but not limited to its source code, design, interface, structure, logos, graphics, trade names, trademarks, audiovisual content, interactive elements, databases, texts, sounds, and any other component incorporated into the application or its website, are the exclusive property of their respective owners and are protected by applicable intellectual property and copyright laws. Any reproduction, distribution, modification, adaptation, translation, publication, display, stream, broadcast, or exploitation, in whole or in part, of the contents or elements of OneCEO without the prior express written consent of the owner is expressly prohibited. Use of the application does not grant the user any ownership rights, license, or authorization over the protected rights, except those strictly necessary for the legitimate use of the application in accordance with these terms and conditions. Any unauthorized use of the protected elements may result in civil or criminal legal action, as appropriate. OneCEO reserves all rights not expressly granted in this document.

10. PROHIBITED ACTIVITIES

The following activities are prohibited:

Access, monitor, reproduce, distribute, transmit, broadcast, display, sell, license, copy or otherwise exploit any content of the platform, including, but not limited to, using any robot, spider, scraper or other automated means or any manual process for any purpose not in accordance with these terms.
Take any action that imposes, or may impose, in our discretion, an unreasonable or disproportionately large load on our infrastructure.
Deep-link to any part of our platform for any purpose without our express written permission.
"Frame", "mirror" or otherwise incorporate any part of the platform into any other platform or service without our prior written permission.
Attempt to modify, translate, adapt, edit, decompile, disassemble or reverse engineer any software used by OneCEO.
Evade, disable or otherwise interfere with security-related features of the platform or features which prevent or restrict the use or copying of any content.

11. DISCLAIMER OF WARRANTIES

Due to the nature of the Internet, OneCEO provides and maintains the platform on an “as is”, “as available” basis and does not promise that use of the platform will be uninterrupted or error free. We shall not be liable to the user or any third party if we are unable to provide our platform and services for any reason beyond our control.

Our platform may from time to time contain links to other platforms which are not under the control of and are not maintained by us. These links are provided for your convenience only and we are not responsible for the content of those sites.

Except as provided above we can give no other warranties, conditions or other terms, express or implied, statutory or otherwise and all such terms are hereby excluded to the maximum extent permitted by law.

You will be responsible for any breach of these terms by you and if you use the platform in breach of these terms you will be liable to and will reimburse OneCEO for any loss or damage caused as a result.

OneCEO shall not be liable for any amount for any failure to perform any obligation hereunder if such failure is due to the occurrence of any unforeseen event beyond its reasonable control, including, without limitation, Internet outages, communications outages, fire, flood, war or force majeure.

These terms do not affect your statutory rights as a consumer which are available to you.

Subject as aforesaid, to the maximum extent permitted by law, OneCEO excludes liability for any loss or damage of any kind howsoever arising, including without limitation any direct, indirect or consequential loss whether or not such arises out of any problem you notify to OneCEO and OneCEO shall have no liability to pay any money by way of compensation, including without limitation all liability in relation to:

Any incorrect or inaccurate information on the platform.
The infringement by any person of any Intellectual Property Rights of any third party caused by their use of the platform or any product purchased through the platform.
Any loss or damage resulting from your use or the inability to use the platform or resulting from unauthorized access to, or alteration of your transmissions or data in circumstances which are beyond our control.
Any loss of profit, wasted expenditure, corruption or destruction of data or any other loss which does not directly result from something we have done wrong.
Any amount or kind of loss or damage due to viruses or other malicious software that may infect a user's computer equipment, software, data or other property caused by persons accessing or using content from the platform or from transmissions via emails or attachments received from OneCEO.
All representations, warranties, conditions and other terms which but for this notice would have effect.

12. INDEMNIFICATION

You agree to defend and indemnify OneCEO and any of their directors, employees and agents from and against any claims, causes of action, demands, recoveries, losses, damages, fines, penalties or other costs or expenses of any kind or nature including but not limited to reasonable legal and accounting fees, brought by third parties as a result of:

Your breach of this agreement or the documents referenced herein.
Your violation of any law or the rights of a third party.
Your use of the platform.

13. CHANGES

We may change the platform and these terms at any time, in our sole discretion and without notice to you. You are responsible for remaining knowledgeable about these terms. Your continued use of the platform constitutes your acceptance of any changes to these terms and any changes will supersede all previous versions of the terms. Unless otherwise specified herein, all changes to these terms apply to all users take effect.

14. PERSONAL DATA

Any personal information you submit in connection with your use of the platform as a user will be used in accordance with our privacy policy. See our privacy policy.

15. INTEGRATION CLAUSE

This agreement together with the privacy policy and any other legal notices published by OneCEO, shall constitute the entire agreement between you and OneCEO concerning and governs your use of the platform.

16. SEVERABILITY

If any section of these terms is held invalid, illegal or unenforceable, the validity, legality and enforceability of the remaining provisions shall not in any way be affected or impaired. Our failure to enforce or delay in enforcing any provision of these terms at any time does not waive our right to enforce the same or any other provision in the future.

17. FORCE MAJEURE

OneCEO shall not be liable for any failure to perform due to causes beyond its reasonable control, including, without limitation, fortuitous events, acts of civil authorities, acts of military authorities, riots, embargoes, acts of nature and natural disasters, and other acts that may be due to unforeseen circumstances.

18. TERMINATION

Both the user and OneCEO acknowledge that failure to comply with these terms and conditions may result in termination of the agreement between both parties.

In case of non-compliance by the user: If the user fails to comply with any of the terms set forth in these terms and conditions, OneCEO reserves the right to unilaterally terminate the user's access to and use of the platform. OneCEO may take this action without prior notice, and the User will automatically lose all rights to access and use the platform. Furthermore, OneCEO shall not be liable for any loss of data or information associated with the user's account.

In case of non-compliance by OneCEO: If OneCEO fails to comply with its obligations under the agreed terms and conditions, the User shall be entitled to terminate the agreement and stop using the platform. The user shall notify OneCEO in writing of the breach and allow a reasonable time for OneCEO to remedy the situation. If OneCEO does not remedy the breach within the set period, the user may proceed with the termination of the agreement.

Termination of the agreement shall not release either party from any obligations and liabilities that have arisen prior to the date of termination.

Continued use of the platform after termination of the agreement by either party shall imply acceptance of the conditions set forth in the terms and conditions in effect at that time.

19. DISPUTE RESOLUTION

Any dispute, claim or controversy arising between a user and OneCEO in connection with these terms and conditions, the use of the platform or the services provided, shall be resolved exclusively through alternative dispute resolution mechanisms, including mediation and arbitration, as detailed below.

First, both parties agree to use their best efforts to resolve any dispute informally. This includes direct communication between the parties involved to identify and address concerns or disagreements quickly and efficiently. Users may contact OneCEO through designated support channels to raise any disputes. The company commits to respond within a reasonable period of time, providing an opportunity to resolve the issue without resorting to formal procedures.

If the parties fail to resolve the dispute informally within thirty (30) days of initial notification of the dispute, the dispute will be submitted to mediation. The mediation shall be conducted before a neutral mediator selected by mutual agreement of the parties. If the parties are unable to agree on a mediator within an additional fifteen (15) days, a mediator shall be appointed through a recognized mediation agency. The costs of the mediation shall be shared equally between the parties, and the mediation shall be conducted in English and at a mutually agreed location or, if both parties agree, through a virtual platform.

If mediation does not result in a satisfactory resolution for both parties, the dispute shall be resolved by binding arbitration in accordance with the commercial arbitration rules of the International Chamber of Commerce (ICC) or another internationally recognized arbitration body. The arbitration shall be conducted by a single neutral arbitrator appointed in accordance with the rules of the relevant arbitration body. The place of arbitration shall be Germany, and the language of the proceedings shall be English.

The arbitrator shall have exclusive authority to resolve the dispute, including determining the applicability and validity of these dispute resolution terms. The arbitrator's decision shall be final and binding on both parties, and may be entered as a judgment in any court of competent jurisdiction. Unless prohibited by applicable law, the parties agree to waive any right to bring the dispute in court or to participate in a class action.

This dispute resolution clause does not preclude OneCEO from seeking injunctive or equitable relief in the event of intellectual property rights infringement, misuse of the platform, or any act that may cause irreparable harm, in which case it may go directly to a court of competent jurisdiction without exhausting alternative dispute resolution mechanisms.

By accepting these terms, users expressly waive any right to a jury trial and agree that all disputes will be resolved in accordance with the procedures set forth in this clause, with the objective of minimizing the costs and time associated with formal litigation. The parties assume their own costs associated with mediation and arbitration, unless otherwise agreed or specifically provided by the arbitrator.

20. APPLICABLE LAW AND JURISDICTION

Although the platform is available worldwide, these terms and conditions shall be governed by and construed in accordance with the laws of Germany and the European Union. Any dispute relating to these terms shall be subject to the exclusive jurisdiction of the German courts. This applies unless binding arbitration is agreed upon in the relevant section.

21. FINAL PROVISIONS

Your use of our platform and purchase of our products is conditioned upon your acceptance of and compliance with all of the terms and conditions set forth. This authorization to use our services does not extend to jurisdictions where these provisions are not respected or applied.

Our commitment to compliance with these terms is strictly governed by applicable laws and legal process. Importantly, these terms do not restrict our ability to comply with legal or governmental requirements, including but not limited to those relating to law enforcement and the use of our platform. Information provided or collected in connection with your use of the platform and purchase of our products will be subject to these requirements.

In the event that any provision of these terms and conditions shall be declared invalid, illegal or unenforceable by any court or competent authority, such decision shall not affect the validity or enforceability of the remaining provisions. The failure or delay in enforcing any of these terms and conditions by us at any time shall not constitute a waiver of our rights to enforce such provision, or any other provision, in the future.

We reserve all rights not expressly granted herein, while at all times maintaining the protection of and respect for our intellectual property rights and prerogatives.

22. CONTACT INFORMATION

If you have questions or concerns about these terms, please contact us through our contact information below:

OneCEO LLC.

Email: support@oneceo.app

PRVACY POLICY

Last updated: November 2025

OneCEO values your privacy and the protection of your personal data. This privacy policy describes what information we collect from you, how we collect it, how we use it, how we obtain your consent, how long we keep it in our databases and, if necessary, with whom we share it.

By downloading, installing, and using the OneCEO mobile application, you agree to the practices described in this privacy policy. Use of the platform is also subject to our terms and conditions. In this privacy policy, the words “platform” and “application” refers to the OneCEO mobile application and the OneCEO website together, "we", "us", "our", and "OneCEO", refers to OneCEO LLC, and "you", and "user", refers to you, the user of OneCEO.

This privacy policy may change from time to time. Your continued use of the platform after we make changes is deemed to be acceptance of those changes, so please check the policy periodically for updates. This privacy policy has been developed and is maintained in accordance with all applicable national and international privacy and data protection laws and regulations.

1. GENERAL INFORMATION

The personal data of the users that are collected and processed through the platform:

OneCEO mobile application (Available on Google Play and App Store).
OneCEO website (https://oneceo.app)

Will be under responsibility and in charge of:

OneCEO LLC.
Email: support@oneceo.app

2. HOW WE OBTAIN YOUR CONSENT

By using the OneCEO mobile application, the user gives their express and informed consent to the processing of their personal data in accordance with the provisions of the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG/DSGVO). This consent constitutes the legal basis for the processing of data in accordance with Article 6(1)(a) of the GDPR, without prejudice to other legal bases applicable to the fulfillment of contractual or legal obligations. Consent is given freely, specifically, informed, and unequivocally, and may be withdrawn at any time through the mechanisms provided in the application or by contacting us through the means indicated in this privacy policy.

The user grants their consent to the processing of their personal data when performing any of the following activities, among others:

Visiting, accessing, or browsing the OneCEO website or mobile application.
Downloading, installing, and using the mobile application on Android or iOS devices.
Registering or logging into the application, either by email or through third-party accounts such as Google or Apple.
Completing or modifying your user profile within the application.
Using the main features of the application, including habit tracking, goal setting, and virtual headquarters management.
Creating journal entries, writing texts, or uploading photos or any other multimedia content.
Purchasing a monthly or annual subscription, managed through the RevenueCat payment processor.
View and manage personal statistics in the administration panel (e.g., email address, number of habits completed, CEO coins accumulated, or number of journal entries).
Communicate with us through contact forms, email addresses, or other available means of communication.
Participate in surveys, beta tests, or any other activity related to improving the service.

The purpose of processing personal data derived from the above activities is to operate and improve the OneCEO application, provide the requested service, manage subscriptions, personalize the user experience, and comply with contractual and legal obligations. At any time, the user has the right to access, rectify, delete, and object to the processing of their data, as well as to withdraw their consent, in accordance with Articles 7 and 15 to 21 of the GDPR.

3. TYPES OF DATA COLLECTED

OneCEO collects and processes different types of personal data provided directly by the user or generated automatically during use of the mobile application or website. Data is collected when the user interacts with the main features of the application, including registration, habit management, journal entry creation, subscription to paid plans, and communication with the support team.

3.1. Personal data. This includes basic information necessary to identify the user or enable the provision of the offered services, such as name, email address, and, in some cases, phone number. This data is provided directly by the user when registering or communicating with us.

3.2. Registration and login data. This is collected when the user creates or accesses their account, either via email and password or through their Google or Apple account. This may include unique identifiers from the authentication provider, session tokens, metadata associated with the account, and any other information necessary to enable secure access to the app.

3.3. Payment and billing data. When you purchase a monthly or annual subscription, payment information is securely processed by third parties, such as RevenueCat and payment providers integrated into app stores (Google Play and App Store). OneCEO does not directly store credit card or payment method data, but may receive limited billing or transaction status information, such as subscription identifiers, purchase date, and renewal status.

3.4. Usage and activity data. During use of the application, data related to user behavior is collected, such as login frequency, habits created and completed, number of CEO coins earned, virtual headquarters progress level, session duration, activity statistics, and general usage metrics. This data allows us to improve the functionality and performance of the application.

3.5. User content. Users can create content within the application, including journal entries, texts, personal reflections, and photographs. This content is stored on Supabase servers and is linked exclusively to the user's account. OneCEO does not access the content of the journal or uploaded images, except in cases strictly necessary to ensure technical integrity or compliance with the law.

3.6. Contact and communication data. If the user communicates with OneCEO via contact forms, email, or any other channel, the data necessary to respond to the request is collected, such as name, email address, and message content.

3.7. Technical and device data. During use of the application or website, automatic technical information is collected, such as IP address, device type and version, operating system, system language, mobile advertising identifiers, time zone, server logs, and other technical data necessary for the operation, security, and optimization of the service.

3.8. Data derived from cookies or similar technologies. Cookies or equivalent technologies may be used on the website and within the application to store user preferences, maintain active sessions, and collect aggregate analytical data (see our cookie policy).

3.9. Statistical and aggregated data. OneCEO may collect and process aggregated or anonymized data for statistical, analytical, or service improvement purposes. This data does not allow the user to be personally identified.

4. HOW LONG WE KEEP YOUR DATA

OneCEO retains users' personal data only for as long as necessary to fulfill the purposes for which it was collected, as well as to meet contractual, legal, tax, or security obligations. Retention periods may vary depending on the nature of the data and the purpose of its processing, ensuring at all times the principle of minimization and limitation of storage.

4.1. Personal and account data. Data associated with user registration, such as name, email address, and login credentials, is retained for as long as the account remains active. If the user decides to delete their account, the data will be deleted or anonymized within a reasonable period of time, unless its retention is necessary for compliance with legal obligations or the resolution of disputes.

4.2. Registration and login data. Authentication information, access tokens, and metadata related to login are retained only for as long as necessary to keep the session active and ensure system security. Subsequently, they are deleted or replaced with anonymous identifiers.

4.3. Payment and billing data. Information related to transactions and subscriptions, managed by external processors such as RevenueCat, is retained for the time required for accounting, administrative, and tax compliance purposes. Billing data may be retained for the applicable legal periods for auditing or financial documentation purposes.

4.4. Usage and activity data. Usage metrics, habit statistics, and user progress are stored while the account is active to enable continuity of the personalized experience. Once the account is deleted, such data may be retained in aggregate or anonymized form for statistical or analytical purposes.

4.5. User content. Journal entries, photographs, and other personal content are retained for as long as the user maintains an active account or until they decide to delete them manually. When an account is deleted, the content stored in Supabase will be permanently deleted, unless temporary copies need to be retained in backup systems for technical or security reasons.

4.6. Contact and communication data. Messages and emails sent by users are retained for as long as necessary to handle inquiries or complaints, and then for a limited period for follow-up or documentary evidence purposes before being permanently deleted.

4.7. Technical and device data. Server logs, IP addresses, technical identifiers, and other data related to system performance are retained for a limited period for maintenance, error diagnosis, fraud prevention, and service improvement purposes.

4.8. Data derived from cookies or similar technologies. Cookies and equivalent technologies are retained for the period set in the user's preferences or according to the lifecycle defined in the technical configuration of the website or application.

4.9. Statistical and aggregated data. Anonymized or aggregated data may be retained indefinitely, as it does not allow the user to be identified and is used exclusively for analysis, research, or service improvement purposes.

Once personal data is no longer necessary for the purposes indicated, OneCEO will apply secure deletion or anonymization procedures to ensure that the information cannot be reconstructed or misused.

5. PURPOSES OF DATA COLLECTION

OneCEO collects and uses users' personal data for specific, explicit, and legitimate purposes related to the technical operation of the application, the provision of contracted services, and the continuous improvement of the user experience. Each category of data serves a specific purpose, as detailed below:

5.1. Personal data. This data is used to identify the user, manage their account, offer personalized support and communication, and ensure the proper provision of OneCEO services. This data also allows us to keep users informed about service updates, changes in functionality, or notifications related to their account or subscription.

5.2. Registration and login data. This data is necessary to authenticate user access, protect account security, and maintain system integrity. It is used to manage active sessions, detect unauthorized access, enable password recovery, and ensure interoperability with third-party services such as Google or Apple.

5.3. Payment and billing data. This data is processed for the purpose of managing user subscriptions and transactions, confirming payments, issuing receipts, resolving billing issues, and ensuring service continuity. Information received from payment processors is used solely for administrative, accounting, and support purposes.

5.4. Usage and activity data. This data is used to analyze how users interact with the application, optimize performance, improve existing features, and develop new tools. This data allows us to understand user progress (completed habits, CEO coins earned, frequency of use, etc.) and offer a more personalized, motivating experience that is consistent with the user's personal goals.

5.5. User content. User-generated content (diary entries, photographs, and other personal materials) is collected and stored for the sole purpose of allowing it to be viewed, organized, and managed within the user's personal account. Such content remains private and accessible only to the account holder, except in exceptional circumstances where it is necessary for security or compliance with legal obligations.

5.6. Contact and communication data. This data is used to respond to inquiries, requests for technical assistance, suggestions, or complaints, as well as to provide customer support and resolve incidents. In addition, it may be used to send notifications or operational communications directly related to OneCEO services.

5.7. Technical and device data. This is collected to ensure the proper functioning and security of the application, prevent fraud, perform technical maintenance, diagnose errors, optimize performance, and ensure compatibility with different devices and operating systems.

5.8. Data derived from cookies or similar technologies. This allows us to remember user preferences, maintain active sessions, offer personalized features, and analyze usage patterns for statistical and service improvement purposes.

5.9. Statistical and aggregate data. Used for analytical and research purposes to improve the quality, stability, and performance of the application. Once anonymized, this data can be used to identify general trends and develop growth strategies without compromising the privacy of individual users.

5.10. Deletion or anonymization of information. OneCEO retains personal data only for as long as necessary to fulfill the purposes of processing, after which it applies secure deletion or anonymization procedures. Deletion is performed by secure overwriting, logical truncation, or automated purging of databases and backup copies, ensuring that the information cannot be reconstructed or recovered. In the event that certain data is retained for statistical or service improvement purposes, anonymization techniques are applied that remove any personal identifiers, replacing them with random codes and eliminating any possibility of re-identification. These processes are executed under internal control, properly documented, and periodically audited to ensure the integrity and confidentiality of the information managed by OneCEO.

6. HOW WE SHARE INFORMATION

The personal information of our customers and users is an important and fundamental part of our platform. Under no circumstances will we sell or share information with third parties that has not been previously authorized by the user or owner of the personal data. We share user information only and exclusively as described below.

6.1. Third-Party Service Providers. OneCEO uses external providers to ensure the technical operation and delivery of its service. These third parties may have limited access to certain personal data solely to perform their duties under strict confidentiality and security obligations. The application is hosted on Supabase, where user data and content are stored; subscriptions and payments are managed through RevenueCat, integrated with Google Play and the App Store. Analytical tools may also be used to improve performance and detect errors, without accessing personal content. All selected providers comply with high data protection standards and only process information in accordance with OneCEO's instructions.

6.2. Newsletter and email marketing: By providing us with your email address, you consent and agree that we may send you marketing content and newsletters, notifications and information related to our platform. Therefore, your email address may be shared with third party bulk email services for the sole and exclusive purpose of sending you relevant communications. If you wish to stop receiving communications from OneCEO, you can unsubscribe at any time by using the "unsubscribe" option available in the same emails or by sending your request through our contact information.

6.3. Business Transfers. In the event that OneCEO creates, merges with, or is acquired by another entity, your information will most likely be transferred. OneCEO will email you or place a prominent notice on our platform before your information becomes subject to another privacy policy.

6.4. Protection of OneCEO and others. We release personal information when we believe release is appropriate to comply with the law, enforce or apply our Terms and conditions and other agreements, or protect the rights, property, or safety of OneCEO, our users or others. This includes exchanging information with other companies and organizations for fraud protection and credit risk reduction.

6.5. With Your Consent. Other than as set out above, you will receive notice when personally identifiable information about you might go to third parties, and you will have an opportunity to choose not to share the information.

7. PROTECTING YOUR INFORMATION

We grant access to your personal information only to those outside persons or services that have a legitimate need to know it and in accordance with our privacy policy. We adhere to industry-recognized security standards to protect your personal information, both during transmission and in storage. However, it is important to note that no method of transmission over the Internet or electronic storage is foolproof and 100% secure. Therefore, while we at OneCEO strive to implement commercially viable data protection methods, we cannot ensure absolute security of your personal information. We undertake not to sell, distribute or transfer your personal data to unauthorized third parties, unless we have your explicit consent or are required by law to do so.

8. DATA BREACH NOTIFICATIONS

In the event of a security breach that compromises the confidentiality of our users' personal data, OneCEO undertakes to notify those affected in a timely manner. This notification will be made through the means of contact that have been provided by the user on our platform. We will take all reasonable measures to protect the information and remedy any situation that jeopardizes the security of your data.

9. INTERNATIONAL DATA TRANSFER

OneCEO may transfer users' personal data outside their country of origin due to the use of hosting, storage, and processing services provided by third parties operating servers located in different countries. These transfers are necessary to ensure the continuous operation of the platform and to provide an efficient user experience. Although OneCEO is headquartered in Germany, the technological infrastructure used may involve the storage or processing of data in jurisdictions with data protection laws that differ from those of the European Union or your country of origin.

OneCEO is committed to ensuring that all international transfers of personal data comply with applicable data protection regulations, including appropriate security measures to safeguard user information. This includes, but is not limited to, implementing standard contractual clauses, assessing the adequacy of data protection in the receiving country, and complying with applicable privacy standards on third party services.

By using OneCEO, users consent to the transfer, storage and processing of their data on servers located outside their country of residence, acknowledging that such transfers are necessary for the operation of the platform. OneCEO undertakes to take all reasonable steps to protect the integrity and security of personal data during such international transfers.

10. PRIVACY RIGHTS

In accordance with the General Data Protection Regulation (GDPR) and the German Federal Data Protection Act (BDSG/DSGVO), OneCEO users have the right to exercise control over their personal data and to request actions related to its processing. The recognized rights include:

Right of access: the user may request confirmation as to whether their personal data is being processed and obtain a copy of it along with information about its origin, categories, purposes, and recipients.
Right of rectification: the user may request the correction or updating of inaccurate or incomplete personal data.
Right to erasure (“right to be forgotten”): users may request the deletion of their personal data when it is no longer necessary for the purposes of processing or when they withdraw their consent.
Right to restriction of processing: users may request that their data be temporarily blocked while its accuracy is verified, an objection is analyzed, or a complaint is reviewed.
Right to portability: users may request that their personal data be provided to them in a structured, commonly used, and machine-readable format, or that it be transferred directly to another data controller.
Right to object: users may object at any time to the processing of their personal data on grounds relating to their particular situation, in particular when the processing is based on legitimate interests.
Right to withdraw consent: The user may withdraw their consent to the processing of their data at any time, without affecting the lawfulness of the processing carried out previously.
Right to lodge a complaint: The user has the right to lodge a complaint with a competent data protection supervisory authority, in particular the data protection authority of the relevant German federal state or the supervisory authority of their habitual residence within the European Economic Area.

To exercise any of these rights, users may send a written request via the contact details indicated in this privacy policy, clearly specifying the right they wish to exercise and providing the information necessary to verify their identity. OneCEO will respond to all requests within a maximum period of 30 calendar days from receipt, which may be extended in complex cases for an additional period of up to two months, notifying the user of the reason for the delay. Requests will be handled at no cost to the user, except in cases of manifestly unfounded or excessive requests, in which OneCEO may charge a reasonable fee or refuse to comply with them as permitted by applicable regulations.

11. CHILDREN’S ONLINE PRIVACY PROTECTION

We comply with the requirements of national and international data protection regulations regarding the protection of personal data of minors. We do not collect any information from children under the age of 13 (minimum age allowed to collect and process information without parental or legal guardian consent). If we become aware that a child under the age of 13 has provided us with personal information, we will take steps to delete such information.

12. THIRD PARTIES

Except as otherwise expressly included in this privacy policy, this document addresses only the use and disclosure of information that OneCEO collects from you. If you disclose your information to third parties, whether other users or third parties, different rules may apply to their use or disclosure of the information you disclose to them. OneCEO does not control the privacy policies of third parties, and you are subject to the privacy policies of those third parties where applicable. OneCEO is not responsible for the privacy or security practices of other websites, platforms or services, including those linked from our platform. Please review the privacy policies of any third-party websites, platforms or services you access through the OneCEO platform.

13. CHANGES TO PRIVACY POLICY

We reserve the right to change our privacy policy at any time. Changes will be promptly notified to our users through any electronic means and posted on the platform. Your continued use of our platform following such changes will signify your acceptance of the changes.

14. CONTACT INFORMATION

If you have questions or concerns about this privacy policy and the handling and security of your data, please contact us through our contact information below:

OneCEO LLC

Email: support@oneceo.app