This Agreement sets out the privacy policy of the website www.onegini.me (the service Onegini) operated by Innovation District BV, Pompmolenlaan 9, 3447 GK, Woerden, the Netherlands. OneginiTM is a trademark of Innovation District BV.

 

1       Introduction

1.1        Purpose

The Mission of Onegini is to help users to do online business as easily as possible. To achieve our Mission, we make services available through our website, mobile applications and developer platform, to enable you to create a Digital Identity that can be used to register and log in to third party (“Companies”) websites and mobile applications.

1.2      Scope and intent

When registering with Onegini, either via our website or via our third party’s websites (“Connected companies”), you will have to supply us with personal information. This privacy policy describes how we take care of your data.

We reserve the right to modify this Privacy Policy at any time, so please review it frequently. If we make material changes to the Privacy Policy, we will notify you, by means of a notice on your dashboard or by email, so that you may access and review the changes to this document in advance of your continued use of Onegini. If you object to any changes, you are free to close your Onegini account at any time.

 

2       Overview of the service

Onegini is an independent free service for end users to create a Digital Identity. With your Onegini account you will be able to securely register and log in to your connected companies such as insurance companies, utilities, banks and web shops. After registration with Onegini, you control which data to share with your connected companies. You can create an Onegini account via the website www.onegini.me or via a companies supporting our service.

 

3       Personal information we collect

The mission of Onegini is to enable end users to do online business as easily as possible. To achieve this, we make functionality available through our websites, mobile apps and connected companies. By joining Onegini you voluntarily and willingly provide Onegini information, which we collect in order to provide the Services.

We collect the following information:

  • When you register an account via the Onegini website: your personal data such as name, email, mobile and address.
  • When you register an Onegini account via the website of connected company: your personal data such as name, email, mobile and address.
  • When you use Onegini to log in to your connected companies or you Onegini account: your IP address, browser type, and mobile carrier in order to protect your Onegini account against abuse.
  • When you use our websites, we collect user information through cookies and other technology, to optimise your user-experience.
  • When we link external credentials to your Onegini account we will only keep a reference to credential provider.
  • When you use a Third Party Service, we receive information when you use your Onegini account to log in or authenticate to the Service Provider in question.

 

4       Use of personal Information

We use the information you provide to:

  • Create a Digital Identity at Onegini.
  • Validate your data to increase the trust level of your Digital Identity.
  • Send your personal data to your connected companies you consented to when your registered your account at that company
  • Customise your user experience when using Onegini.
  • Send you notifications concerning your Onegini account via SMS, email or any other of our services.
  • Protect your digital account via an additional authentication mechanism such as a pincode or SMS.
  • Perform risk-based analyses to prevent Identity Theft.

We do not sell, rent or otherwise provide your personal information to third parties without your consent.

 

5       You manage your data

You have the right to access, modify and delete your personal data at any time by logging into Onegini. If you update any of your information we may keep a copy of the information that you originally provided to us in your profile in order to: (1) protect you profile against abuse, (2) give insight in the data you shared with your connected companies, (3) as input to validate your digital identity. When you make any change to your personal data, you will always receive a notification/confirmation by email or SMS.

You have the right to delete all data at any time, including closing your Onegini account.

 

6       Sharing information with Third Parties

Onegini takes the privacy of its end users very seriously. We do not sell, rent or otherwise provide your personal information to third parties without your consent.

After you have linked your Onegini account to a Company, this Company will receive your latest personal information any time you log in to their Service. We will only pass on personal data you gave permission for. You always have the right to revoke your permission to share these data, so the next time you log in, the Company will NOT receive these data.

Onegini is not responsible for data you provided to Companies by using Onegini.

 

7       Onegini communication

As described in the Terms of Use, we will communicate with you through email, SMS, the Onegini website, or other means available through our Services. You can change your email and other contact preferences at any time by logging into your Onegini account and changing your data. Be aware that you can not opt out of receiving service messages from Onegini.

 

8       Closing your Onegini account

You can close your account through the Onegini customer service. If you close your Onegini account, we have no obligation to retain your information, and may delete any or all of your account information without liability. However, we may retain certain data contributed by you within one year after closing your account if: (1) Onegini has a serious indication of fraud or future abuse, (2) Onegini wants to analyze aggregated data, restricted to non-personally identifiable data, (3) it is required by law.

 

9       Other important information

  • Onegini will never extract data from your external credentials unless you explicitly want to
  • Connected Companies do not have access to your external credentials.
  • Onegini will never expose you external credentials identifier to your Connected Companies

The Privacy Policy is an integral part of the Terms of Use and should therefore always be interpreted within the context of these terms.

9.1     Cookies and other tracking

We do not use cookies to track site usage and trends. Onegini only uses one “persistent” cookie to store your preferred credentials, to offer you a better user experience / to optimise your user experience.

 

10   Security

In order to secure your personal data at Onegini, access to your Onegini account is protected by your (external) credentials and additional methods such as pin code, cell phone challenge response (SMS code) or any other authentication mechanism we provide. In addition we monitor for abnormal behavior to prevent identity abuse/theft. In this case we will ask you to enter a pin code, send a verification code by SMS, or use an other challenge response mechanism.

All communication between the web browser, Onegini and Connected Companies is protected by SSL encryption.  All information that you provide will be protected with industry standard protocols and technology including advanced encryption algorithms. To protect our services, certified companies will audit our services. However, since the Internet is not 100% secure, we cannot ensure or warrant the security of any information you transmit to Onegini. There is also no guarantee that your information may not be accessed, disclosed, altered or destroyed by breach of any of our physical, technical, or managerial safeguards. It is your responsibility to protect the security of your login information,

 

11   How to contact us

You may contact us via email at info@onegini.me or via post at:

 

Onegini

ATTN: Legal Department

3447 GK  Woerden

The Netherlands