One Prose Logo
Tangier
Schedule a Meet
Call us

Privacy Policy

Last Updated: September 15, 2025

1. Introduction

One Prose (“we,” “us,” or “our”) is committed to protecting your privacy and personal data. This Privacy Policy explains how we collect, use, store, and protect your information when you visit our website oneprose.com or use our digital marketing services.

We comply with all applicable data protection laws, including:

  • The General Data Protection Regulation (GDPR) for European Economic Area (EEA) residents
  • Morocco’s data protection regulations
  • Other applicable international privacy laws
Important: By using our website or services, you acknowledge that you have read and understood this Privacy Policy. If you do not agree with our practices, please do not use our website or services.

2. Who We Are

One Prose is a 360° digital marketing agency based in Tangier, Morocco, founded by Soulaimane Echemmali in 2022. We specialize in SEO optimization, custom web development, email marketing, and Google Ads management.

Data Controller Information

Company Name: One Prose
Founder & Data Protection Officer: Soulaimane Echemmali
Website: https://oneprose.com
Email: info@oneprose.com
Legal Inquiries: legal@oneprose.com
Phone: +212-660-348-108
Address: Perla Oficinas, 1er etage Nº4, Tangier, 90000, Morocco

3. What Personal Data We Collect

We collect personal data through various interactions with our website and services. The information we collect depends on how you interact with us:

A. Information You Provide Directly

Contact Forms & Service Inquiries:
  • Full name
  • Email address
  • Phone number
  • Company name
  • Project details and requirements
  • Budget information
  • Message content
Legal Basis: Consent (Article 6(1)(a) GDPR) and Legitimate Interest (Article 6(1)(f) GDPR)
Newsletter Subscriptions:
  • Email address
  • Name (optional)
  • Subscription preferences
Legal Basis: Consent (Article 6(1)(a) GDPR)
Client Account Information:
  • Business information
  • Website access credentials (when necessary)
  • Project history and communications
  • Payment information (processed by third-party providers)
Legal Basis: Contract Performance (Article 6(1)(b) GDPR)

B. Information Collected Automatically

Technical Data:
  • IP address
  • Browser type and version
  • Operating system
  • Device information
  • Referring website
  • Pages visited and time spent
  • Geographic location (country/city level)
Legal Basis: Legitimate Interest (Article 6(1)(f) GDPR) for website security and performance

C. Cookies and Tracking Technologies

We use cookies and similar tracking technologies as detailed in our Cookie Policy. These help us:

  • Ensure website functionality
  • Analyze website performance
  • Personalize your experience
  • Deliver targeted advertising (with your consent)

4. How We Use Your Personal Data

We process your personal data for the following purposes:

Purpose Data Used Legal Basis
Responding to inquiries and providing quotes Contact information, project details Consent & Legitimate Interest
Providing digital marketing services All client data as necessary Contract Performance
Sending newsletters and marketing communications Email address, preferences Consent
Website analytics and improvement Technical data, usage patterns Legitimate Interest
Security and fraud prevention IP address, technical data Legitimate Interest
Legal compliance and dispute resolution All relevant data Legal Obligation

5. Who We Share Your Data With

We do not sell your personal data to third parties. We only share your information in the following circumstances:

A. Service Providers

We work with trusted third-party service providers who help us operate our business:

  • Google LLC: Analytics, advertising, cloud services (USA)
  • Meta Platforms Inc.: Social media advertising (USA)
  • Microsoft Corporation: Website analytics (Clarity) (USA)
  • Email Service Providers: For newsletter delivery and client communications
  • Payment Processors: For secure payment processing
  • Cloud Hosting Providers: For website hosting and data storage
International Data Transfers: Some of our service providers are located outside Morocco/EEA. All international transfers are protected by appropriate safeguards including Standard Contractual Clauses, adequacy decisions, or other GDPR-approved mechanisms.

B. Legal Requirements

We may disclose your information if required by law, court order, or government regulation, or to protect our rights, property, or safety.

6. How Long We Retain Your Data

We retain your personal data only as long as necessary for the purposes outlined in this policy:

Data Type Retention Period Reason
Contact form submissions 2 years from last contact Business development and follow-up
Client project data 7 years after project completion Legal and tax requirements
Newsletter subscriptions Until unsubscription Ongoing marketing communications
Website analytics data 26 months (Google Analytics default) Website performance analysis
Cookies Varies (see Cookie Policy) Functionality and analytics
Payment records 10 years Legal and tax obligations

7. Your Rights Under GDPR

Under the General Data Protection Regulation, you have the following rights regarding your personal data:

Your Data Protection Rights:

  • Right of Access: Request a copy of the personal data we hold about you
  • Right to Rectification: Correct any inaccurate or incomplete personal data
  • Right to Erasure (“Right to be Forgotten”): Request deletion of your personal data
  • Right to Restrict Processing: Limit how we use your personal data
  • Right to Data Portability: Receive your data in a machine-readable format
  • Right to Object: Object to processing based on legitimate interests
  • Right to Withdraw Consent: Withdraw consent at any time where processing is based on consent
  • Right to Lodge a Complaint: File a complaint with your local data protection authority

How to Exercise Your Rights

To exercise any of these rights, please contact us using the information provided in Section 11. We will respond to your request within one month of receipt.

Right to Withdraw Consent: Where we process your data based on consent, you can withdraw this consent at any time. This will not affect the lawfulness of processing before your consent was withdrawn.

8. How We Protect Your Data

We implement appropriate technical and organizational security measures to protect your personal data:

Technical Measures:

  • SSL encryption for data transmission
  • Secure cloud hosting with reputable providers
  • Regular security updates and patches
  • Access controls and authentication systems
  • Data backup and recovery procedures

Organizational Measures:

  • Staff training on data protection
  • Access on a need-to-know basis
  • Regular privacy impact assessments
  • Incident response procedures
  • Third-party agreements with security requirements

9. Data Breach Procedures

In the unlikely event of a data breach that poses a risk to your rights and freedoms, we will:

  • Notify the relevant supervisory authority within 72 hours
  • Inform affected individuals without undue delay if high risk is involved
  • Document the breach and our response
  • Take immediate steps to contain and remedy the breach
  • Review and improve our security measures

10. Children’s Privacy

Our services are not directed to individuals under 16 years of age. We do not knowingly collect personal data from children under 16. If we become aware that we have collected personal data from a child under 16, we will take steps to delete such information promptly.

11. Contact Information

For any questions about this Privacy Policy, to exercise your data protection rights, or to report a concern, please contact us:

Data Protection Officer

Name: Soulaimane Echemmali
Email: admin@soulaimaneechemmali.dev
Phone: +212-660-348-108

General Contact

Email: contact@oneprose.com
Legal Inquiries: legal@oneprose.com
Address:
Perla Oficinas, 1er etage Nº4
Ave Mohammed V, Tanger 90000
Morocco

12. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors. When we make significant changes, we will:

  • Update the “Last Updated” date at the top of this policy
  • Notify you through our website or via email
  • Obtain your consent for material changes where required by law

13. Additional Information

Automated Decision Making

We do not use automated decision-making processes that would significantly affect you without human intervention.

Profiling

We may use profiling for marketing purposes (such as creating customer segments for email campaigns) but only with your explicit consent and in compliance with applicable laws.

Related Policies

For more information about our practices, please review:

Supervisory Authority

If you are not satisfied with our response to your privacy concerns, you have the right to lodge a complaint with your local data protection supervisory authority.

For Morocco residents: Commission Nationale de contrôle de la protection des Données à Caractère Personnel (CNDP)

For EU residents: Contact your national data protection authority

Thank you for trusting One Prose with your personal data. We are committed to protecting your privacy and providing transparent information about our data practices.