Oneview Logo
FeaturesPricingFAQ
Sign InSign Up

Privacy & Data Statement

Effective Date: 4 September 2025

Our Relationship with You

Oneview provides intelligent insights and recommendations for your Asana environment.

When you use Oneview through your company or organisation (e.g., by logging in with a company email domain), your company is the controller of the data. Oneview acts as a processor/service provider, analysing workspace data on behalf of your company. Your company administrator may restrict, suspend, or manage your access, and may export or review insights generated by the Health Scan.

Where we act as a processor, processing is governed by a Data Processing Agreement (DPA) with your organisation in accordance with Article 28 GDPR.

Information We Process

Identifiers

• Your email address (to link recommendations, maintain scoreboard rankings, and provide follow-up).

Workspace Data

• Metadata from your Asana workspace required to generate AI-driven insights and recommendations.

• This may include workspace structure, project names, usage metrics, and organisational patterns.

Generated Recommendations

• AI-generated recommendations and insights are stored for service improvement, reporting, and follow-up advice.

Optional Information You Provide

• If you choose to interact with us (e.g., via feedback, support requests, or demo sessions), we may process additional professional or contact information.

We do not store raw task content, attachments, or other sensitive personal/company information. Workspace data is processed ephemerally in real time and discarded after analysis, except for the generated recommendations and your email address, which we retain as described below.

How We Use Your Information

We use your information to:

• Generate AI-powered insights and recommendations for your Asana workspace.
• Provide follow-up communication and improvements to our services.
• Maintain leaderboard/scoreboard rankings when applicable.
• Improve and monitor the performance of Oneview.
• Comply with applicable laws and legal obligations.

We never sell or share your data with third parties for advertising or unrelated purposes.

Legal Bases for Processing

We process your information under the following legal bases:

Contract performance – to provide Oneview, generate insights, and deliver related services you request.

Legitimate interests – to improve our services, maintain leaderboard rankings, ensure service security, and support product development. We balance these interests against your rights and freedoms.

Consent – where you voluntarily provide optional information (e.g., feedback, demo participation). If we expand into marketing communications, we will only send them with your prior opt-in consent, as required by applicable data protection laws.

Data Retention

• Your email address and generated recommendations may be retained to allow follow-up reporting and insights.
• We do not store raw Asana task data, attachments, or any other workspace content.
• Most workspace data is processed in real time and discarded immediately after analysis.
• Data is retained only as long as necessary to provide services, or as required by law.

Protection and Storage

We apply technical and organisational measures to secure your information against unauthorised access, alteration, or disclosure. While no system is 100% secure, we continuously update and improve our safeguards.

Your credentials are never shared with us; authentication is handled securely through Asana's OAuth system.

Where required, Oneview complies with applicable data protection laws, including GDPR.

Third-Party Service Providers and Subprocessors

We may use trusted third-party providers (such as cloud hosting or AI technology providers) to deliver Oneview. These providers act as subprocessors under data processing agreements that ensure compliance with applicable data protection laws.

A current list of our subprocessors is available on request.

International Data Transfers

Where information is transferred outside the European Economic Area (EEA) or the UK, such transfers are safeguarded by Standard Contractual Clauses (SCCs) approved by the European Commission, adequacy decisions, or equivalent legal mechanisms. All subprocessors outside the EEA are contractually bound by these safeguards.

Automated Insights

Insights and recommendations are generated by AI technology to support your organisation. These outputs are advisory in nature and are not intended to produce legal or similarly significant effects without human review.

Your Rights

Regardless of where you are located, you have the right to:

• Access, correct, or delete your personal information.
• Restrict or object to processing of your information.
• Request portability of your data.
• Withdraw consent where processing is based on consent.
• Lodge a complaint with your local data protection authority if you believe your data has been processed unlawfully.

If you use Oneview via your company's Asana account, please direct requests regarding your information to your company administrator first.

Contact

If you have any questions or concerns regarding this Privacy & Data Statement, please contact us at: info@onelink.nl

Changes to This Statement

We may update this Privacy & Data Statement to reflect service improvements, new features, or legal requirements. Significant changes will be communicated to you directly or via Oneview platform.