Privacy policy

Privacy policy

Privacy Policy & Data Protection

1. General Philosophy

One4All Global FZCO ('we', 'us') is committed to protecting the privacy of our users worldwide. Our services are offered from our headquarters in the United Arab Emirates (UAE). This policy outlines how we collect, use, and protect your data in compliance with the major data protection regulations in our key markets: the UAE's Personal Data Protection Law (PDPL), the European Union's General Data Protection Regulation (GDPR), and key privacy laws in the United States.

2. Data Processing Outside the EU

Our company is based in the UAE. To provide a secure and lawful service to our users in the European Union, we implement the following safeguards:

  • Adequate Level of Protection: The UAE is considered a 'third country' by the EU. To ensure a level of data protection equivalent to the GDPR, all data transfers are governed by the EU Commission's approved Standard Contractual Clauses (SCCs). This is the legal instrument we use for our partnership with our EU representative and any other EU-based service providers.
  • Specialized Zones: Our operations are based in a UAE free zone with data protection laws that are conceptually aligned with international standards.

3. Your Rights by Region

You have specific rights depending on your location. To exercise any of these rights, please contact us at OP (for Europe) or EVD (for the Rest of the World).

  • A. For Users in the European Union (GDPR Rights): We guarantee your full rights under the GDPR, including the rights to be informed, access, rectification, erasure, restrict processing, data portability, and to object. Our designated EU Representative, Dr. Ortwin Paetzold, can also be contacted for any GDPR-related inquiries.
  • B. For Users in the UAE and Rest of the World (PDPL Rights): In accordance with the UAE PDPL, you have the right to access, correct, erase, or restrict the processing of your data, as well as the right to data portability and to lodge a complaint with the UAE Data Office.
  • C. For Users in the United States (e.g., CCPA/CPRA): We adhere to the principles of major state laws like the CCPA. You have the right to know, delete, and opt out of the "sale" or "sharing" of your personal information. We do not sell your data in the traditional sense and extend these rights to all our US-based users.

4. Data Processing for Service Provision

We process data that is necessary to provide our chess services. This includes account information, game history, and payment information. For financial transactions, we use specialized third-party providers as detailed below.

5. Payment Service Providers

We integrate payment services from third-party companies to ensure secure and efficient processing of your purchases. The legal basis for this processing is the necessity to perform our contract with you. This aligns with the principles of lawful processing under both the UAE's Personal Data Protection Law (PDPL) and Article 6(1)(b) of the EU's General Data Protection Regulation (GDPR).

  • PayPal: The provider of this service is PayPal Middle East FZ-LLC (Dubai Internet City, Dubai, UAE). Since data processing occurs outside the European Economic Area (EEA), we rely on Standard Contractual Clauses (SCCs) to ensure a compliant level of data protection. You can find more information in PayPal's privacy policy: PayPal Privacy
  • Stripe: Depending on your location and currency, processing is handled by different Stripe entities
    • For SEPA Area Payments (EUR): The responsible entity is Stripe Payments Europe, Ltd. (Dublin, Ireland).
    • For non-SEPA Payments (USD): For customers outside the SEPA area paying in USD, we use Stripe Payments Middle East Limited (DIFC, Dubai, UAE). This option is not offered to persons within the SEPA area.
    • International Data Transfer: For any data transfer to the UAE, we have entered into Standard Contractual Clauses (SCCs) with Stripe to ensure an adequate level of data protection. Further information is available at: Stripe Privacy

6. Social plugins, tracking tools, advertising tools etc

No social plugins are used. Furthermore, no tracking tools or advertising functionalities of other providers are used. Therefore no cookies can be set by these services via the Lechenicher SchachServer.

7. Cookies

The Internet pages use so-called cookies. Cookies do not damage your computer and do not contain any viruses. Cookies serve to make our offer more user-friendly, more effective and safer. Cookies are small text files that are stored on your computer by your browser.

We are using mainly so-called "session cookies". They are automatically deleted at the end of your visit. Other cookies remain stored on your end device until you delete them. These cookies enable us to recognize your browser on your next visit. For example, the previously selected language is recognized and used. No third party cookies are stored through the Lechenicher SchachServer.

You can set your browser so that you are informed about the setting of cookies and allow cookies only in individual cases, exclude the acceptance of cookies for certain cases or in general and activate the automatic deletion of cookies when closing the browser. If you deactivate cookies, the functionality of this website will be limited.

8. Server-Log-Files

The provider of the pages automatically collects and stores information in so-called server log files, which your browser automatically transmits to us. These are:

  • Browsername and -version
  • the Operating System
  • Referring Site (only inside Lechenicher SchachServer)
  • Hostname and IP Address
  • Time of the Server Request

These data cannot be assigned to specific persons. A consolidation of this data with other data sources is not made. We reserve the right to subsequently check this data if we have concrete indications of illegal or abusive use (e.g. use of multiple player accounts).