Terms and conditions
Privacy Policy
Introduction
Who we are
Finnrate LLC (hereinafter referred to as “OneBank” or “we”) is a legal entity established in accordance with the legislation of Georgia, with identification code: 402281222, which acts as a data processor (person responsible for processing) when processing your data.
Legal address: Georgia, Tbilisi, Chugureti district, Andria Benashvili street, N 18
Contact information: Email - [email protected]; Phone number - +995 599 00 00 00
Purpose of the policy
Our goal is to inform you about how OneBank processes and uses your personal data. Accordingly, the purpose of this Privacy Policy is to provide you with information on the following issues:
About the principles according to which OneBank is guided in the process of processing your personal data;
What types of personal data OneBank collects about you when you apply to it or are its employee or in any other case when you contact OneBank in any form and with any request;
How your data is processed and how the security, confidentiality, availability and integrity of your data are ensured;
How OneBank ensures the protection of your rights under the legislation.
General Provisions
OneBank processes your data in accordance with the Law of Georgia “On Personal Data Protection”, for specific, clearly defined purposes and on the grounds specified in the same law.
When processing your data, all data processing principles specified in the Law of Georgia “On Personal Data Protection” are respected.
We protect your data to the maximum extent possible and for this purpose we have implemented appropriate organizational and technical security measures.
The terms used in the policy have the meaning defined by the Law of Georgia on Personal Data Protection.
Data we process
We process, including collecting and storing personal data that you provide to us in various processes. Namely:
Registration process on the OneBank website
We process, including collecting and storing personal data that you provide to us when registering on the website for the purpose of using our platform. Such data are:
Name;
Surname;
Phone number;
Email.
Authorization via social network [Facebook]
If you click on “Facebook Authorization” while visiting the OneBank website, both your profiles will be connected and you will be able to authorize via the social network Facebook. For this, it is necessary that your email addresses specified during registration on Facebook and OneBank websites match. If your email addresses do not match, you will be given the opportunity to enter your password to confirm that Facebook controls this account/profile. If you are registered on the company website, but are not a Facebook user and click on “Facebook Authorization”, you will be given the opportunity to register on Facebook.
In case you use “Facebook Authorization”, in this process you will make your data available to the OneBank website and on the other hand, by using the company website you agree to the Facebook Terms of Use.
* It is important to remember to log out of the system after completing your visit to the company's website so that your data does not become available to third parties. The website does not provide automatic logout and the user is responsible for the risk associated with this.
Authorization via Google
The OneBank website allows you to log in to your Google email in order to simplify the authorization process in order to improve the user experience. If you are registered on the company's website, have a Google email and use the "Google Authorization" button, both of your profiles will be connected, unless the email addresses specified during registration on Google and the company's website do not match. If your email addresses do not match, you will be given the opportunity to enter your password to confirm that Google controls this account. If you are registered on the company's website, but do not have a personal account on Google, you are given the opportunity to register a Google e-mail.
In the event that you use "Google authorization", in this process you will make your data available to the OneBank website and, on the other hand, by using the company's website you agree to the terms of use of Google.
* It is important to remember to log out of the system after completing your visit to the company's website so that your data does not become available to third parties. The website does not provide automatic logout and the user is responsible for the risk associated with this.
Filling out an application on the website
The table below presents the categories of personal data that we use and process when providing you with services, in particular in order to obtain the desired product from the desired financial institution, during the process of filling out an application.
|
personal data Categories |
Data |
|
Identifying data |
First name; Last name; Personal identification number; Date of birth; Gender; Information about your activity. |
|
Financial data |
Information about your income [indicating the amount and source]; Desired product; Loan term; Loan amount; Purpose of the loan; Co-payment information, if any. |
|
Property information |
Real estate related data; Motor transport related data; |
|
Communication data |
Phone number; Email. |
* The specified data may include data that the user provided to us in the process of communicating with him and is not specified in the list.
In addition to the personal data listed above, OneBank may process other personal data of yours that are defined by the legislation of Georgia and/or necessary in the process of implementing OneBank's activities.
Cookies
OneBank uses Cookie files. A cookie is a small text file, the so-called "cookies", which the website sends and is stored in the browser of your device when you visit our website - https://1bank.ge/. It contains information about a specific visitor, actions taken on the website and the website address. "Cookies" act as a kind of "memory" that remembers your behavior when visiting a website and allows the site to better adapt the service to your needs based on previous visits, which ultimately creates a more personalized and comfortable experience.
We collect information about your visit to the website using the following types of cookies:
Essential cookies: ensure the smooth operation of the site and store data, such as information about your visit, IP address, website address, the path taken within the website and other information that is necessary to use and improve the website's features.
Functional cookies: help the website personalize the user experience. These cookies are not necessary for the basic functionality of the site, but their use improves the website's performance and user experience (UX). Functional cookies store: information about your chosen language and/or regional settings so that you do not have to set them again each time you visit. Also, information about the visual, layout and/or mode you have chosen, your personal account data and settings, if any, so that you do not have to enter the settings repeatedly, and other similar data related to the actions you take on the website, help the website make your experience more intuitive and comfortable.
Analytical Cookies: Used to analyze the use of the website and improve its performance. Stores data about your behavior, for example, how much time you spend on the website, which buttons you press, which links you click on, how often you visit the website and how you are redirected (from a search engine, from other sites, from a direct link, etc.). Google Analytics Internal User Identifier - Google Analytics is a simple tool that helps the website owner obtain statistical data related to users. For this, certain "cookies" are stored on the computer. The internal user identifier is stored for 2 years and can be deleted from the web browser settings.
* This information is confidential and is processed by us for the purpose of improving the user experience (UX) of the website and for marketing purposes. The cookies we use do not store any personal data that would allow you to be directly identified. The data collected and stored by cookies is not transferred to third parties, except as specified in our Privacy Policy.
Managing Cookies: You can manage your cookies from your browser, using the links below:
https://shorturl.at/eJ2jP - (Firefox)
https://shorturl.at/IwzHS - (Chrome)
https://support.apple.com/en-us/105082 - (Safari web and IOS)
If you would like to learn more about cookies, please visit the following link:
https://allaboutcookies.org/
Data Processing
The table below sets out the purpose of processing your personal data in each specific case, with reference to the relevant legal basis:
|
personal data |
What we use your personal data for (purpose of processing)
|
About our legitimate interest |
Legal basis for processing |
|
Identifying data - first name; last name; personal identification number; date of birth; gender; Information about your activities. |
Providing services to the customer; Receiving a customer application; Fulfilling the obligations assumed by the transaction; |
Providing our services to our customers; Developing our services; Ensuring the fulfillment of our contractual obligations.
|
Upon application by the data subject, consideration of his application[1]. For the performance of an obligation under a transaction concluded with the data subject Consent of the data subject |
|
Financial data - information about your income [with reference to the amount and source]; desired product; loan term; loan amount; purpose of the loan; data related to co-financing, if any. |
Providing services to the customer; Receiving a customer application; Fulfilling the obligations assumed by the transaction;
|
Providing our services to our customers; Developing our services; Ensuring the fulfillment of our contractual obligations. |
Upon application by the data subject, consideration of his application[4]. For the performance of an obligation under a transaction concluded with the data subject Consent of the data subject
|
|
Property information - data related to real estate; data related to motor transport; |
Providing services to the customer; Receiving a customer application; Fulfilling the obligations assumed by the transaction;
|
Providing our services to our customers; Developing our services; Ensuring the fulfillment of our contractual obligations.
|
Upon application by the data subject, consideration of his application[7]. For the performance of an obligation under a transaction concluded with the data subject Consent of the data subject |
|
First name, last name, phone number, email. |
Registration on the user's website; Creation of a personal account for the user; Creation of a product tailored to the user; Providing the user with the desired information, including displaying a message in the personal account; Improving the experience of platform users. |
The smooth functioning of the platform; Delivering an improved product to customers.
|
To protect OneBank's important legitimate interest[10]. |
|
Name, email, phone number, and other information provided by you in the course of communicating with us. |
Reviewing messages received through the website; Improving the company's services and products; Providing timely and accurate information to the user.
|
Protecting consumer rights; Providing timely and accurate information to consumers; Responding to consumer messages.
|
OneBank's significant legitimate interest[11]. |
|
Ready-made cookies (necessary, analytical, functional) |
To fulfill your requests, identify products and services that may be of interest to you, and provide you with this information; To develop new ways of working with us and to develop our business; To study how users use our products and services; To adapt the website and its components to meet user needs;
|
Updating data, identifying products and services of interest to you and providing you with relevant information; Developing products and services; Improving the quality (UX) of the website (platform); |
Data subject consent |
-------------------------------------------------------------------------------------------------------------------------
[1] Article 5, paragraph 1, subparagraph “k” of the Law of Georgia “On Personal Data Protection”.
[2] Article 5, paragraph 1, subparagraph “b” of the Law of Georgia “On Personal Data Protection”.
[3] Article 5, paragraph 1, subparagraph “a” of the Law of Georgia “On Personal Data Protection”.
[4] Article 5, paragraph 1, subparagraph “k” of the Law of Georgia “On Personal Data Protection”.
[5] Article 5, paragraph 1, subparagraph “b” of the Law of Georgia “On Personal Data Protection”.
[6] Article 5, paragraph 1, subparagraph “a” of the Law of Georgia “On Personal Data Protection”.
[7] Article 5, paragraph 1, subparagraph “k” of the Law of Georgia “On Personal Data Protection”.
[8] Article 5, paragraph 1, subparagraph “b” of the Law of Georgia “On Personal Data Protection”.
[9] Article 5, paragraph 1, subparagraph “a” of the Law of Georgia “On Personal Data Protection”.
[10] Article 5, paragraph 1, subparagraph “i” of the Law of Georgia “On Personal Data Protection”.
[11] Article 5, paragraph 1, subparagraph “i” of the Law of Georgia “On Personal Data Protection”.
[12] Article 5, paragraph 1, subparagraph “a” of the Law of Georgia “On Personal Data Protection”.
Transfer of data to third parties
We may transfer your data to third parties for the following purposes:
To exercise our rights;
To provide you with a service/product;
To comply with a legal requirement;
In cases directly provided for by the applicable legislation of Georgia.
We may transfer your personal data to third parties in cases provided for by the legislation of Georgia or to organizations and institutions that must provide you with the product or service you have selected. For example, data may be transferred:
To financial institutions registered/licensed by the National Bank - for the purpose of providing you with a product/service;
To insurance organizations registered/licensed in accordance with the legislation of Georgia - for the purpose of providing you with the product/service you have requested;
To our contractors who assist us in the process of providing you with the service/product.
Your personal data may also be shared if the company structure changes in the future. For example:
If the company decides to sell or dispose of its shares or to carry out a merger.
In the event of any of the above processes, we may share your data with the relevant party, provided that the said party undertakes in advance to maintain the security and confidentiality of your data.
In any case, when your data is shared with a third party, we take all measures to ensure their security, confidentiality, integrity and availability.
We reserve the right to provide law enforcement or other types of bodies/organizations with access to your personal data/transfer data for the purpose of detecting, investigating, preventing a crime or for other legal purposes. We also reserve the right to disclose your information to protect the rights, property or safety of users or others.
Data storage and retention period
We store your personal data based on the process in which we process it, including receiving and collecting the data. OneBank stores the personal data collected about you securely. In the event that personal data is physically collected, your personal data is stored in a secure location designated by OneBank, and only employees with the appropriate authorizations specified by the organization have access to them.
In the event that data is processed electronically, including through the website, including receiving and collecting it, your data is stored on Google Cloud servers located in Helsinki, Finland. Accordingly, appropriate organizational, technical and legal measures have been taken to ensure data security.
The general period of data retention is set at 10 years, however, the time limits in relation to the process depend on the following circumstances:
For the content of the application and request and for responding to them;
For responding to questions and notifications;
For confirming fair treatment towards you;
For exercising your rights within the framework of the employment relationship and protecting the important legitimate interest of OneBank;
For carrying out the activities of OneBank and its effective functioning;
For fulfilling the obligations specified by law.
* Your data may be stored indefinitely if we are deprived of the possibility of deleting it due to the relevant legal grounds.
Your rights
In accordance with the Law of Georgia on Personal Data Protection, you have the right to:
Request confirmation of whether your personal data is being processed, indicating the basis, purpose and storage period for the processing;
Get information about the personal data collected about you;
Request correction, updating and/or completion of incorrect, inaccurate and/or incomplete data;
Receive copies of the personal data collected about you (if any);
Request blocking of the personal data we hold about you (if any);
Request withdrawal of the consent you have given;
Also, exercise other rights guaranteed by Chapter 3 of the Law of Georgia on Personal Data Protection.
We act in accordance with the legislation of Georgia, which may result in our failure to satisfy your request and to erase your personal data. Such obligations may arise from tax legislation, consumer protection and other relevant legislation.
It is important that the processing of your personal data by OneBank does not cause you any harm. OneBank takes care of the security and protection of your data, and is guided by internationally recognized standards.
If you believe that your rights are being violated or your rights are not being properly exercised by us in the process of processing your personal data, you can contact the Personal Data Protection Service at the following e-mail address - [email protected].
Restriction of rights
In accordance with the Law of Georgia "On Personal Data Protection", the rights of the data subject may be restricted if this is expressly provided for by the legislation of Georgia, this does not violate the fundamental rights and freedoms of a person, is a necessary and proportionate measure in a democratic society, and the exercise of these rights may pose a threat to:
State security, information security and cybersecurity and/or defense interests;
Public safety interests;
Crime prevention, crime investigation, criminal prosecution, administration of justice, execution of imprisonment and deprivation of liberty, execution of non-custodial sentences and probation, operational-detective activities;
Interests related to financial or economic (including monetary, budgetary and tax), public health and social security issues important to the country;
Detection of violations of professional, including regulated profession, ethical norms by the data subject and imposition of liability on him/her;
Rights and freedoms of the data subject and/or other persons, including freedom of expression;
Protection of state, commercial, professional and other secrets provided for by law;
Substantiation of a legal claim or response.
The measure envisaged for the restriction of your rights as a data subject may be applied only to the extent necessary to achieve the purpose of the restriction. If there are grounds for the restriction of the right, OneBank’s decision will be communicated to the data subject in a manner that does not prejudice the purpose of the restriction of the right.
Security measures
We ensure all organizational and technical measures to protect your personal data, which are required by the Law of Georgia “On Personal Data Protection” and regulatory legal acts.
We take necessary and sufficient organizational and technical measures to protect your data from unauthorized or accidental access, destruction, modification, blocking, copying, dissemination, as well as other illegal actions of third parties. Access to your data is limited and is allowed only to authorized employees based on official needs.
Since the website uses a server located in Finland, data protection is regulated and guaranteed by the European Union General Data Protection Regulation (GDPR).
We cannot be held responsible for the complete or partial loss of your personal data due to cybercriminals and other criminal activities.
Policy changes
OneBank is authorized to modify this Policy in accordance with changes in legislation and/or our personal data processing practices. Any changes made to the Privacy Policy will be immediately published on the OneBank website - https://1bank.ge/ and will be effective upon its publication.
Contact Us
If you have any questions about this Privacy Policy or our personal data protection practices, please contact us:
By email at: [email protected]
By phone: +995 599 00 00 00
Last updated: 25.11.2024