Privacy Policy

Last Update: October 2023

We have created this Privacy Policy to explain and describe to you how and why we collect personal information from you when you access our services, for what purpose we do it and to inform you about your rights and the way you can exercise them.

Scope of this Policy

This Privacy Policy applies to your use of and access to the services provided, owned or operated by one.five GmbH or any of our affiliate companies (“one.five”, “we”, “us”, or “our”) consisting of https://www.one-five.com/, https://www.tea.one-five.com/ or any other of our websites, or any other products or services offered by one.five (collectively, the “Services”).

The collection and use of the personal information you provide to us when you submit a job application for a role with one.five; send us feedback; or provide details to us of any technology, invention or development of interest, for example, are also covered by this Privacy Policy.

By using or accessing the Services, you acknowledge that you have read this Privacy Policy and that you understand your rights in relation to our use of your personal information and how we will collect, use and share it. If you do not agree with this Privacy Policy in general or any part of it, you should not use our Services. Any changes we make to this Privacy Policy will be updated on this website. 

one.five is completely committed to respecting and protecting your privacy; for more information about how we use your personal information or to raise any questions you may have about this Privacy Policy, please contact us at info@one-five.com.

Personal information we collect about you

We collect and process personal information that you choose to share with us yourself, as well as personal information we process when you use and interact with our Services. 

The types of information you choose to share

When you submit an application for a job with us; send us feedback, provide us with information relating to technologies, inventions or developments you believe to be of interest to one.five; or when you create an account on the one.five Services, you share certain categories of personal information with us. This information may include:

- your name;

- your voice or images of you; 

- your mobile or other telephone number; 

- your address;

- your email address; 

- your date of birth; 

- your registration / login data (e.g., your username and password); 

- information you provide in public forums on our Services, such as your public posts; and any other personal information you choose to share with us. 

The types of information we collect while you use our Services 

We also collect and process certain types of information automatically, whenever you interact with us in order to allow you to use our Services or improve your experience. The usage data that we, as well as the analytics tools described in section 6 below, may collect when you use our Services include:  

- the internet protocol (“IP”) address used to connect your device to the internet;  

- the location of your device during the use of our Services; 

- the date, time and duration of your access to our Services; 

- information collected by cookies and other technologies (please see our Cookies Policy for more information on this); 

- information about your browser, network and device; 

- web pages you visited prior to coming to this website; and your behaviour while using our Services

Updating your personal information

We take steps to ensure that the personal information we collect is accurate and up-to-date. In the event that you believe your information is in any way incorrect or inaccurate, please let us know immediately, by writing an email to info@one-five.com. We will make sure we investigate the matter and correct any inaccuracies as quickly as possible where necessary or give you ways to update it quickly or to delete it - unless we have to keep that information for legitimate business or legal purposes. 

When updating your personal information, we will ask you to verify your identity before we can act on your request. 

How we share personal information that we will be process about you

one.five will only share your personal information where this is legally required or permitted and, in these cases, only with specified authorised recipients.

Google Analytics

To better understand how you might engage with our Services, in certain circumstances, such as when you access our Technical Economic Analysis application via https://www.tea.one-five.com/, we use Google Analytics which collects certain personal information such as, e.g., cookies, geolocation and IP address.

Google Analytics collects personal information from our Services only for the purposes of analysis by us. This personal information is not collected for Google’s own usage or exploitation. For further information about how Google processes personal information, read Google’s Privacy Policy. 

With our affiliates

one.five may share personal information it processes about you with entities within the one.five family of companies.

Where legally required or for security reasons

We may share information about you for legal, safety and security reasons. We may share information about you if we reasonably believe that disclosing the information is needed to:

comply with any valid legal process, governmental request, or applicable law, rule or regulation;

investigate, remedy, or enforce potential Terms of Service violations;

assist external auditors in the event of audits or investigations, if there is a legal requirement or legitimate business interest to do so;

protect the rights, property, or safety of us, our members or others; and

detect and resolve any fraud or security concerns.

Mergers and acquisitions

one.five may share information about you as part of a merger or acquisition. If we are involved in a merger, asset sale, financing, liquidation or bankruptcy, or acquisition of all or some portion of our business to another company, we may share your information with that company before and after the transaction closes.

The analytics tools that we use

When using one.five Services, personal information is collected to power our site analytics, including:

information about your browser, network, and device;

web pages you visited prior to coming to this website; and

your IP address.

This information may also include details about your use of our Services, including:

clicks;

internal links;

pages visited;

scrolling;

searches; and

timestamps.

We share this information with Squarespace, our website analytics provider, and in certain cases, Google Analytics, to learn about site traffic and activity.

Where we store your personal information

Some of the personal information you provide to us will be stored or processed on our behalf by third party suppliers and data processors and may be located in other jurisdictions whose laws may differ from the jurisdiction in which you live. Whether to third parties or internally, any transfers of personal information from the European Economic Area (“EEA”) to countries not deemed to provide an adequate level of data protection are governed by European Union (“EU”) standard contractual clauses, or in the case of the United States, the Trans-Atlantic Data Privacy Framework, and/or equivalent data transfer regulations to protect the security and confidentiality of personal information, as described below. We will take all steps reasonably necessary to ensure that your personal information is treated securely and in accordance with this Privacy Policy.


Squarespace stores your personal information (for analytics purposes) in multiple Tier III data centres across the USA. Squarespace serves images and other static assets via multiple geographically distributed content delivery networks (CDNs). This system ensures that the data in each page view is served from the data centre closest to your location. For further information about how Squarespace processes personal information, read Squarespace’s 
privacy policy - squarespace.com/privacy

Personal information contained on job applications you submit to us or when providing details to us of any technology, invention or development of interest will be stored on our servers within the EEA and will only be shared with external service providers in certain circumstances for the purposes of assessing your applications via specific contracts approved by the European Commission.

Transfers outside the European economic area

We may transfer your personal information outside of the EEA, including to the USA, in order to provide this information to some of our third party business partners; to allow for our analytics providers, Squarespace and Google Analytics, to provide analytics services; to comply with a legal obligation; or for our own legitimate business purposes. At all times when transferring your information outside of the EEA, we ensure a similar degree of protection is afforded to it by ensuring at least one of the following safeguards is implemented: 

Transfer of your personal information to countries that have been deemed to provide an adequate level of protection for personal data by the European Commission.

Where we use certain service providers or transfer data to other recipients, we may use specific contracts approved by the European Commission which give personal data the same protection it has in Europe (so-called standard data protection clauses).

Where we use providers based in the US, we may transfer data in compliance with the provisions of the Trans-Atlantic Data Privacy Framework.

Not withstanding the above, in the absence of an adequacy decision by the European Commission, or appropriate safeguards, a transfer or a set of occasional transfers of personal data to a third country located outside the EEA may take place pursuant to the Art. 49 GDPR derogations for specific situations.


Please contact us if you want further information on the specific steps we take when transferring your personal data out of the EEA, in particular if you wish to receive an overview of third country recipients and a copy of the appropriate or suitable safeguards in place.

How long do we keep your information?

We apply a general rule of keeping personal information only for as long as is required to fulfil the purpose for which it was collected. However, in some circumstances we may retain your personal information for longer periods of time.

We may retain your information for the following purposes:

as long as it is necessary and relevant for our operations, e.g., so that we have an accurate record of your dealings with us in the event of any complaints or challenge; and

to comply with applicable laws, prevent fraud, resolve disputes, troubleshoot problems, assist with any investigation, enforce our Terms of Service and take other actions as permitted by law.

The security measures we have in place to protect your personal information Item

We take great care in maintaining the security of our Services and your information and in preventing unauthorised access, loss, misuse, alteration, destruction or damage to it through industry standard technologies and internal procedures. Among other things, we contractually ensure that any third party processing your personal information equally provides for confidentiality and integrity of your data in a secure way. However, the transmission of data via the internet is never completely secure, and although we shall do our best to protect your personal information, we cannot guarantee the security of your data transmitted through our Services; any transmission is at your own risk. Once we have received your data, we will use strict procedures and security features to try to prevent unauthorised access.

Who is responsible for processing your personal information?

one.five GmbH, incorporated and existing under the laws of Germany, having its registered office at Reichskanzlerstraße 23a, 22609 Hamburg and registered with the commercial register of the local court of Hamburg under registration number HRB 164675 is the controller of your personal information.

Children under the age of 13

Our Services are not intended for children under 13 years of age. No one under age 13 should provide any personal information to or on any of our Services. In addition, we may limit how we collect, use and store some of the information of EU users between the ages of 13 and 16. We do not knowingly collect personal information from children under 13. Parents and legal guardians should at all times supervise their children's activities. If we learn we have collected or received personal information from a child under 13, we shall delete that personal information.

Rights regarding data for EEA residents

In accordance with the provisions of applicable law, those members located within the EEA have the following rights:

Access: you have the right to request a copy of the personal information that we are processing about you. If you require additional copies, we may need to charge a reasonable fee.

Rectification: you have the right to correct errors in the personal information held about you by us.

Deletion: you have the right to request that your personal information be deleted and no longer processed by us, which we will comply with, unless there is a legal obligation to retain your personal information and/or other legitimate reasons for their processing by us.

Restriction of Processing: in certain circumstances, you may request that the processing of your personal information be restricted. This means that we will be allowed to continue to store your personal information, but we will not be able to use it.

Portability: you have the right to obtain and reuse the personal information which you have provided to us, and to be able to transmit them directly to a third party in a structured, commonly used and mechanically readable format. In order to exercise this right, please ensure you provide us with a valid email address.

Objection: in certain circumstances, you may object to the processing of your personal information by us. Where we receive a valid objection from you, we will stop the processing activity, except where we must continue to process your data for legitimate reasons, or for the purpose of establishing, exercising or defending possible legal claims.

We guarantee the adoption of the necessary measures to ensure the exercise of your rights free of charge. In all circumstances, when exercising one of the above rights, please provide appropriate evidence which confirms your identity. You may exercise any of the above rights in any of the following manners, indicating which right you are exercising:

by writing to us at one.five GmbH, Reichskanzlerstr. 23a, 22609 Hamburg, Germany;

by writing an email to: info@one-five.com; or

through any other means that may be available to you according to availability.

You also have the right to lodge a complaint with any of the EU supervisory authorities.

Archive of previous versions

Why we’ll be collecting your personal information

We collect and process your personal information only when it is necessary for operating, providing or improving our Services for you; while assessing your application to join one.five, or where you wish to flag technologies, inventions or developments of interest to one.five. 

 

The table below shows all of the ways that we intend to use your personal information, as well as the legal bases we rely on to do so.

Purpose / Activity
Lawful basis for processing
To provide you access to any of our websites, as may be applicable
Legitimate interest
To register you as a user of our services and manage and terminate your subscription
Performance of a contract
To verify your identity
Performance of a contract
To assess your job application
Legitimate interest
To assess any technology, invention or development you bring to our attention
Legitimate interest (we have a legitimate interest in understanding how you use our Services)
To monitor and analyse trends and usage
Legitimate interest (we have a legitimate interest in understanding how you use our Services)
To perform our contractual obligations, in particular to make the Services available for use and manage their use
Performance of a contract
To provide customer support services and answer your questions and inquiries
Performance of a contract
To improve our Services and marketing measures and adapt them to your needs and to develop new services and perform internal quality checks
Legitimate interest (we have a legitimate interest in continuously improving and developing our services)
To enable you to recommend us via social media or share information about our Services with others
Legitimate interest (we have a legitimate interest in the processing of data if you activate a social plug-in and thus express that you would like us to transfer data to the respective social network)
To handle your requests about our Services
Performance of a contract
To respond to requests for information from our insurers for claims settlement and loss adjustment purposes
Legitimate interest (we have a legitimate interest in defending ourselves against damages claims and to cooperate with our insurers in relation to the settlement of claims and adjustment of losses)
To send newsletters and / or other marketing emails to inform you about our Services, to ask feedback about our Services or inform you of improvements of our Services
Legitimate interest (we have a legitimate interest in carrying out direct marketing activities provided that this complies with applicable marketing law)
To carry out marketing telephone calls to inform you about our Services, to ask feedback about our Services or inform you of improvements of our Services
Your consent
To manage our relationship with you, including notifying you about changes to our Services, Terms of Services, other applicable guidelines or terms, or this Privacy Policy
Performance of a contract
To enable you to participate in a competition or complete a survey
(a) Performance of a contract (if you have chosen to participate in the competition or to complete a survey)
(b) Legitimate interest (offering you to participate in a competition or to complete a survey; we have a legitimate interest in providing you with the opportunity to participate in a competition and to complete a survey so that we can constantly improve our Services in general in order to develop and further our business)
To contact you and provide you with information that you have requested and deal with any matters arising as a result of that contact
This processing is either based on the performance of a contract – if the information you have requested relates to a contract with you or is a pre-contractual issue – or on our legitimate interest – if the information you request relates to something else (we have a legitimate interest in communicating with you upon your request and to deal with any matters arising of that contact)
To verify that your usage of our Services does not infringe our terms and conditions or any laws or regulations
Performance of a contract
To act in an emergency to protect the personal safety of others
This processing is either based on the protection of vital interests – in emergencies or – in all other cases – on our legitimate interest (we have a legitimate interest in protecting the personal safety of our members and the public)
To respond to requests for information from the police and other public authorities to protect legitimate interests of third parties regarding personal health or property
Legitimate interest (we have a legitimate interest in assisting the police with the investigation of suspected crimes and responding to requests for information in connection with personal injury, theft or damage to property)
To determine disruptions and to ensure the security of our systems, including the detection and tracing of (the attempt of) unauthorised access to our servers or Services; to prevent, detect, process and investigate malfunctions, incidents, fraudulent or other illegal activities, or mitigate the risk of occurrence of the aforementioned events
Necessary to comply with the legal obligations regarding data security – if the measures are necessary to comply with these obligations – or legitimate interest – if the measures go beyond what we are strictly required to do (we have a legitimate interest in resolving disruptions, ensuring the security of our systems and the detection and tracing of (the attempt of) unauthorised access or fraudulent activity)
To comply with relevant legal obligations, such as keeping accounting records or with obligations to disclose data based on a court decision or official order
Necessary to comply with a legal obligation
Use information we’ve collected from cookies and other technology to enhance our Services and your experience with them
Legitimate interest (we have a legitimate interest in using the technology we employ to better understand your behaviour)
For accounting, risk management and record keeping purposes
Legitimate interest (we have a legitimate interest in accounting, risk management and record keeping in accordance with customary business practice)