Privacy Policy

Onefend, based in Argentina.

Privacy contact: [email protected]

Contact forms:

• Demo: full name, email, company name, company size, primary challenge, optional message
• Pricing: full name, email, company name, company size, areas of interest
• Newsletter: email address only

Technical data:

• IP address: stored in memory for up to 60 seconds to prevent form abuse, then automatically deleted
• Cookie preference: stored in your browser's localStorage under the key onefend_cookie_consent

Analytics data:

• Google Analytics 4: anonymized browsing data (IP addresses are anonymized before storage)

Personal data is shared exclusively with the following trusted providers:

• SendGrid (Twilio Inc., USA): transactional email delivery and newsletter subscriber management
• Google Analytics (Google LLC, USA): website usage analytics with IP address anonymization
• Google reCAPTCHA v3 (Google LLC, USA): bot detection and form protection

Onefend does not sell, rent, or transfer personal data to any third party under any circumstances.

Under the current infrastructure, data is processed in the following territories:

• SendGrid (email): servers in the United States, governed by Standard Contractual Clauses (SCCs)
• Google Analytics: processing in the United States, with IP addresses anonymized prior to storage
• Google reCAPTCHA: Google LLC servers in the United States

EU Compliance: for clients or users in the European Union requiring strict data residency within EU territory, Onefend will implement the following alternatives:

• Email: Mailjet (Sinch France SAS, France) as the email provider with certified EU data residency
• Web analytics: processing and storage exclusively within the EU via the Google Analytics 4 data residency option

To request this configuration: [email protected]

Depending on your country of residence, you have the right to access, rectify, delete, object to, port, and withdraw consent for your personal data.

• Argentina residents: rights recognized under Ley 25.326 de Protección de Datos Personales. You may file complaints with the Dirección Nacional de Protección de Datos Personales (DNPDP).
• Brazil residents: rights recognized under the Lei Geral de Proteção de Dados — LGPD (Lei 13.709/2018). You may file complaints with the Autoridade Nacional de Proteção de Dados (ANPD).
• EU/EEA residents: rights recognized under the General Data Protection Regulation — GDPR (Regulation 2016/679). You may file complaints with your local supervisory authority.

To exercise any of your rights: [email protected]

We use the following storage mechanisms:

• localStorage (onefend_cookie_consent): to remember your consent preference. Not transmitted to any server.
• Google Analytics cookies: to measure site usage anonymously, only after your consent.

You can clear your browser's localStorage at any time to reset your preference.

We implement technical and organizational measures including:

• HTTPS encryption for all communications
• Bot protection via Google reCAPTCHA v3 with a score threshold of 0.7
• Rate limiting on form submissions by IP address
• HTTP security headers: CSP, HSTS, X-Frame-Options, Permissions-Policy
• Web Application Firewall (WAF) via Cloudflare

We may update this policy periodically. Significant changes will be communicated by updating the "Last updated" date at the top of this document. We recommend reviewing it periodically.

For any privacy inquiries or to exercise your rights:
[email protected]