1. Introduction

Welcome to One2OneMeet (“Platform”, “we”, “our”, “us”), a software-as-a-service (SaaS) platform that enables event networking, one-to-one meeting scheduling, attendee engagement, and virtual or hybrid event experiences. We also provide white-label solutions for event organizers, enterprises, and institutions (“Clients”).

These Terms of Service (“Terms”) govern your access to and use of our Platform, including web applications, mobile applications, APIs, and related services (collectively, the “Services”).

By accessing or using One2OneMeet, you agree to be legally bound by these Terms. If you do not agree, you must discontinue use immediately.

2. Definitions

For the purposes of these Terms:

• “Platform” refers to the One2OneMeet web and mobile applications and associated infrastructure.
• “User” means any individual accessing or using the Platform, including attendees, speakers, and participants.
• “Client” refers to any organization, company, or entity using the Platform to host or manage events.
• “Services” means all features, tools, and functionalities provided through the Platform.
• “Content” means any data, text, images, files, messages, or materials uploaded, shared, or transmitted through the Platform.

3. Eligibility and Registration

To use the Platform, you must:

• Be at least 18 years of age or the legal age in your jurisdiction
• Provide accurate, current, and complete information
• Have the legal capacity to enter into a binding agreement

You agree to keep your account information updated at all times. We reserve the right to suspend or terminate accounts that contain false or misleading information.

4. Use of the Platform

You agree to use the Platform only for lawful purposes and in accordance with these Terms.

You must not:

• Use the Platform for illegal, fraudulent, or unauthorized purposes
• Interfere with or disrupt the integrity or performance of the Platform
• Attempt to gain unauthorized access to systems, networks, or data
• Upload or distribute malicious software, viruses, or harmful code
• Use automated systems (bots, scrapers) without authorization
• Harass, abuse, or harm other users

We reserve the right to monitor usage and take appropriate action, including suspension or termination.

5. Account Responsibility and Security

You are responsible for:

• Maintaining the confidentiality of your login credentials
• All activities that occur under your account
• Immediately notifying us of any unauthorized access or security breach

We are not liable for losses resulting from unauthorized use of your account.

6. Services Provided

One2OneMeet provides, but is not limited to:

• Event creation, registration, and management tools
• One-to-one meeting scheduling and matchmaking features
• Networking and attendee engagement tools
• Communication and notification systems
• Analytics, reporting, and insights
• White-label event platform infrastructure

We reserve the right to:

• Modify, enhance, or discontinue any feature
• Introduce new features or limitations
• Restrict access to certain functionalities

7. Client (Event Organizer) Responsibilities

Clients using the Platform agree to:

7.1 Legal Compliance

• Comply with all applicable laws, including data protection and privacy regulations
• Obtain necessary user consents before collecting or processing data

7.2 Event Management

• Provide accurate and complete event information
• Ensure proper communication with participants
• Manage attendee data responsibly

7.3 Content and Data Responsibility

Clients are solely responsible for:

• All Content they upload or distribute
• Use, storage, and sharing of attendee data
• Compliance with legal and regulatory obligations

8. User Content and License

Users retain ownership of their Content.

By submitting Content to the Platform, you grant One2OneMeet a limited, worldwide, non-exclusive, royalty-free license to:

• Use, host, store, reproduce, and display Content
• Operate and improve the Platform
• Provide Services to Users and Clients

You represent and warrant that:

• You have the necessary rights to upload the Content
• The Content does not violate any laws or third-party rights

We reserve the right to remove Content that violates these Terms.

9. Payments, Fees, and Billing

Where applicable:

• Clients agree to pay all fees associated with the Services
• Fees may be subscription-based, usage-based, or contract-based
• Payments must be made according to agreed billing terms

Additional terms:

• Fees are non-refundable unless otherwise specified in writing
• Late payments may result in suspension of Services
• We reserve the right to revise pricing with prior notice

10. Intellectual Property Rights

All rights, title, and interest in the Platform, including:

• Software and codebase
• Design, UI/UX, and branding
• Algorithms and technology

are owned exclusively by One2OneMeet or its licensors.

You may not:

• Copy, reproduce, or distribute any part of the Platform
• Modify or create derivative works
• Reverse engineer or attempt to extract source code

11. Data Protection and Privacy

Your use of the Platform is governed by our Privacy Policy.

For white-label and enterprise Clients:

• Clients act as Data Controllers
• One2OneMeet acts as a Data Processor

We process data in accordance with Client instructions and applicable agreements.

12. Third-Party Services and Integrations

The Platform may include integrations with third-party services (e.g., payment gateways, analytics tools).

We are not responsible for:

• Availability or functionality of third-party services
• Accuracy or reliability of third-party data
• Privacy practices of external providers

Use of third-party services is subject to their respective terms.

13. Service Availability and Maintenance

We aim to provide a reliable and secure Platform; however, we do not guarantee:

• Continuous, uninterrupted access
• Error-free or bug-free performance

We may:

• Perform scheduled or emergency maintenance
• Upgrade systems and infrastructure
• Temporarily suspend access when necessary

14. Limitation of Liability

To the maximum extent permitted by law:

• We shall not be liable for indirect, incidental, or consequential damages
• We are not responsible for:
• Loss of data
• Business interruptions
• Event disruptions or cancellations

Our total liability shall not exceed the amount paid by you (if any) for the Services during the preceding 12 months.

15. Indemnification

You agree to indemnify, defend, and hold harmless One2OneMeet, its affiliates, and employees from any claims, damages, or losses arising from:

• Your use of the Platform
• Violation of these Terms
• Infringement of third-party rights
• Misuse of data or Content

16. Termination and Suspension

We may suspend or terminate access to the Platform:

• For violation of these Terms
• For legal or regulatory reasons
• To protect security or system integrity

Upon termination:

• Your access to the Platform will cease
• Data may be deleted in accordance with our policies

Users may stop using the Platform at any time.

17. White-Label and Enterprise Use

For Clients using white-label or enterprise solutions:

• Clients are solely responsible for their event content and user data
• One2OneMeet provides infrastructure and technical services only
• Clients must ensure compliance with all applicable laws
• Custom agreements (e.g., SLA, DPA) may apply

18. Confidentiality

Users and Clients agree to:

• Protect confidential and proprietary information
• Not disclose sensitive business, technical, or user data without authorization

This obligation survives termination of the agreement.

19. Governing Law

These Terms shall be governed by and construed in accordance with the laws of: Nepal

20. Dispute Resolution

In the event of a dispute:

1. Parties agree to attempt resolution through good faith negotiation
2. If unresolved, disputes may be referred to:
• Arbitration, or
• Competent courts within the governing jurisdiction

21. Changes to Terms

We may update these Terms from time to time. Updates will be communicated through:

• Platform notifications
• Website updates
• Email (where applicable)

Continued use of the Platform after changes constitutes acceptance of the updated Terms.

22. Contact Information

For questions regarding these Terms:

• Email: one2onemeet@gmail.com
• Website: https://www.one2onemeet.com

This Data Processing Agreement (“Agreement”)

This Data Processing Agreement (“DPA”) forms part of the Terms of Service (“Terms”) between:

• Client (“Data Controller”)
  and
• One2OneMeet (“Data Processor”)

(each a “Party” and collectively the “Parties”).

This Agreement governs the processing of Personal Data by One2OneMeet on behalf of the Client in connection with the provision of the One2OneMeet platform and services.

1. Definitions

For the purposes of this Agreement:

• “Personal Data” means any information relating to an identified or identifiable natural person.
• “Processing” means any operation performed on Personal Data, including collection, storage, use, disclosure, or deletion.
• “Data Controller” means the entity that determines the purposes and means of processing Personal Data.
• “Data Processor” means the entity that processes Personal Data on behalf of the Controller.
• “Data Subject” means the individual to whom Personal Data relates.
• “Sub-processor” means any third party engaged by the Processor to process Personal Data.
• “Applicable Data Protection Laws” means all relevant laws governing the processing of Personal Data, including but not limited to GDPR (where applicable), and other regional regulations.

2. Scope and Purpose of Processing

One2OneMeet shall process Personal Data only for the purposes of:

• Providing event networking and meeting services
• Enabling scheduling, communication, and attendee engagement
• Supporting platform functionality and operations
• Providing analytics, reporting, and insights
• Delivering white-label and SaaS services

Processing shall be carried out strictly in accordance with:

• Documented instructions from the Client
• This Agreement
• Applicable laws and regulations

3. Nature and Categories of Data

3.1 Types of Personal Data Processed

Personal Data may include, but is not limited to:

• Identification data (name, email address, phone number)
• Professional data (company, job title, designation)
• Profile data (bio, interests, preferences)
• Event-related data (registrations, attendance, meeting schedules)
• Communication data (messages, notes, interactions)
• Technical data (IP address, device information, logs, usage data)

3.2 Categories of Data Subjects

Personal Data may relate to:

• Event attendees and participants
• Platform users
• Client employees and representatives
• Sponsors, partners, and vendors

4. Obligations of the Data Processor (One2OneMeet)

One2OneMeet shall:

4.1 Processing Instructions

• Process Personal Data only on documented instructions from the Client
• Not process data for its own purposes unless permitted by law

4.2 Confidentiality

• Ensure that personnel authorized to process Personal Data are bound by confidentiality obligations
• Limit access to data strictly on a need-to-know basis

4.3 Security Measures

• Implement appropriate technical and organizational measures to ensure data security (see Section 6)

4.4 Assistance to Controller

Assist the Client in fulfilling obligations related to:

• Data Subject rights requests
• Data protection impact assessments (DPIA), where applicable
• Regulatory compliance

4.5 Data Breach Notification

• Notify the Client without undue delay upon becoming aware of a Personal Data breach
• Provide relevant details to assist in investigation and compliance

4.6 Data Deletion or Return

• Upon termination, delete or return Personal Data as instructed by the Client
• Retain data only where required by law

5. Obligations of the Data Controller (Client)

The Client shall:

5.1 Lawful Processing

• Ensure that Personal Data is collected and processed lawfully
• Establish a valid legal basis (e.g., consent, contract)

5.2 Transparency and Notice

• Provide appropriate privacy notices to Data Subjects
• Inform users of data processing activities

5.3 Data Subject Rights

• Respond to requests from Data Subjects
• Ensure timely handling of access, correction, or deletion requests

5.4 Instructions to Processor

• Provide clear and lawful instructions to One2OneMeet
• Ensure that such instructions comply with Applicable Data Protection Laws

6. Security Measures

One2OneMeet shall implement industry-standard security measures, including:

• Encryption of data in transit (HTTPS/SSL)
• Encryption of data at rest where applicable
• Secure authentication and role-based access controls
• Network and infrastructure security controls
• Regular vulnerability assessments and monitoring
• Incident detection and response mechanisms

These measures are designed to ensure the confidentiality, integrity, and availability of Personal Data.

7. Sub-processors

7.1 Engagement of Sub-processors

One2OneMeet may engage Sub-processors to support service delivery, including: Cloud infrastructure providers, Analytics services, and Communication/messaging services.

7.2 Sub-processor Obligations

• Enter into written agreements with Sub-processors
• Ensure Sub-processors provide equivalent data protection obligations
• Remain fully responsible for Sub-processor performance

7.3 Transparency

• Clients may request a list of current Sub-processors
• Clients will be informed of significant changes where applicable

8. International Data Transfers

Personal Data may be transferred to and processed in countries outside the Client’s jurisdiction. One2OneMeet shall ensure appropriate safeguards are implemented, transfers comply with Applicable Data Protection Laws, and mechanisms such as Standard Contractual Clauses (SCCs) are used where required.

9. Data Subject Rights

One2OneMeet shall assist the Client, where reasonably possible, in fulfilling Data Subject rights (Access, Rectification, Erasure, Restriction, and Portability). The Client remains responsible for responding to such requests.

10. Data Breach Notification

In the event of a Personal Data breach, One2OneMeet shall notify the Client without undue delay, providing details regarding the nature of the breach, affected data categories, likely consequences, and measures taken. We will take appropriate steps to mitigate and remediate the breach.

11. Data Retention and Deletion

• Personal Data shall be retained only as long as necessary for service delivery.
• Upon termination: Data will be deleted or returned as instructed; backup retention may apply for a limited period; data may be retained if required by law.

12. Audit and Compliance

The Client may request reasonable evidence of compliance. One2OneMeet may provide documentation or allow audits subject to reasonable prior notice, confidentiality obligations, and operational feasibility.

13. Confidentiality

Both Parties agree to maintain confidentiality of Personal Data, prevent unauthorized disclosure, and ensure employees adhere to these obligations. These obligations survive termination.

14. Liability

Each Party shall be responsible for its own compliance with Applicable Data Protection Laws and any damages resulting from its breach of this Agreement. Liability is subject to the limitations set forth in the Terms of Service.

15. Term and Termination

This Agreement remains in effect for the duration of the Services. Termination occurs upon termination of the underlying Services agreement or written notice by either Party.

16. Governing Law

This Agreement shall be governed by and construed in accordance with the laws of: Nepal

17. Contact Information

• Email: one2onemeet@gmail.com
• Website: https://www.one2onemeet.com

1. Introduction

This Service Level Agreement (“SLA”) defines the service availability, performance standards, support commitments, and operational responsibilities provided by One2OneMeet (“Service Provider”, “we”, “our”, “us”) to its Clients (“Client”, “you”).

This SLA forms an integral part of the agreement between One2OneMeet and its Clients and applies to all Services unless otherwise specified in a separate agreement.

2. Service Overview

One2OneMeet provides a cloud-based platform that includes, but is not limited to:

• Event networking and attendee engagement platform
• One-to-one meeting scheduling and matchmaking system
• Real-time attendance tracking and session management
• Communication and notification tools
• Analytics, reporting, and insights dashboards
• White-label and enterprise event platform solutions
• Web and mobile application access

3. Service Availability (Uptime Commitment)

3.1 Uptime Guarantee

One2OneMeet commits to maintaining a minimum of: 99.5% monthly uptime, excluding Scheduled Maintenance and defined Exclusions.

Uptime is calculated as: Uptime (%) = [(Total Minutes – Downtime) / Total Minutes] × 100

3.2 Definition of Downtime

“Downtime” is defined as any period during which:

• The Platform is inaccessible to users
• Core services (login, scheduling, event access) are unavailable
• Critical functionality is not operational across the system

Downtime begins when the issue is confirmed by monitoring systems and ends when service is restored.

3.3 Exclusions from Downtime

• Scheduled maintenance (with prior notice)
• Emergency maintenance required for system protection
• Force majeure events (natural disasters, war, etc.)
• Failures caused by third-party services (e.g., cloud providers, APIs)
• Client-side issues (internet connectivity, devices, misconfigurations)
• Misuse or unauthorized use of the Platform

4. Maintenance and Updates

4.1 Scheduled Maintenance

• Conducted during low-usage hours where possible
• Advance notice will be provided (typically 24–72 hours)
• Efforts will be made to minimize disruption

4.2 Emergency Maintenance

• Performed when necessary to ensure security, stability, or integrity
• May occur without prior notice
• We will communicate as soon as reasonably possible

5. Support Services

5.1 Support Channels

• Email: one2onemeet@gmail.com
• Optional: Live chat / phone support (if included in plan)

5.2 Support Plans and Availability

Business hours refer to standard working hours in the Service Provider’s primary operating region unless otherwise agreed.

6. Incident Management

6.1 Incident Severity Levels

6.2 Response and Resolution Targets

Response time refers to acknowledgment of the issue, not resolution.

7. Performance Standards

We aim to maintain high performance standards, including fast page loads, reliable scheduling, real-time updates, and scalable infrastructure. Performance may vary based on network conditions, device capabilities, geographic location, and user volume.

8. Data Backup and Disaster Recovery

• Regular automated backups
• Redundant infrastructure (where applicable)
• Disaster recovery planning and testing

Recovery Objectives:

• Recovery Time Objective (RTO): Up to 24 hours
• Recovery Point Objective (RPO): Up to 24 hours

9. Security Commitments

One2OneMeet maintains a security-first approach, including secure cloud infrastructure, encryption in transit (HTTPS/SSL), access controls, and continuous monitoring for threats.

10. Service Credits (If Applicable)

Conditions: Credits apply to future billing cycles only; requests must be submitted within 30 days; credits are the sole remedy for SLA breaches.

11. Client Responsibilities

• Using the Platform in accordance with Terms of Service
• Maintaining secure account credentials
• Ensuring reliable internet connectivity
• Configuring systems correctly
• Not overloading or misusing the Platform

12. Monitoring and Reporting

One2OneMeet continuously monitors system uptime, performance metrics, and security events. Clients may request uptime reports, incident reports, and performance summaries.

13. Limitations and Disclaimers

While we strive for high reliability, we do not guarantee continuous, uninterrupted, or error-free service at all times. This SLA does not apply to issues outside our reasonable control.

14. Changes to SLA

We may update this SLA from time to time. Continued use of the Services constitutes acceptance of the updated SLA.

15. Governing Law

This SLA shall be governed by and construed in accordance with the laws of: Nepal

16. Contact Information

• Email: one2onemeet@gmail.com
• Website: https://www.one2onemeet.com

1. Introduction

This End User License Agreement (“Agreement”) is a legally binding agreement between you (“User”, “you”) and One2OneMeet (“Company”, “we”, “our”, “us”) governing your access to and use of the One2OneMeet software, including web applications, mobile applications, APIs, and related services (collectively, the “Software”).

By downloading, installing, accessing, or using the Software, you acknowledge that you have read, understood, and agree to be bound by this Agreement. If you do not agree, you must not use the Software.

2. License Grant

Subject to your compliance with this Agreement, One2OneMeet grants you a:

• Limited
• Non-exclusive
• Non-transferable
• Non-sublicensable
• Revocable

license to:

• Access and use the Software
• Utilize features related to event networking, meeting scheduling, and engagement
• Use the Software for personal or internal business purposes only

This license does not grant any ownership rights in the Software.

3. License Restrictions

You agree that you will NOT:

• Copy, reproduce, modify, or create derivative works of the Software
• Reverse engineer, decompile, disassemble, or attempt to extract source code
• Sell, lease, sublicense, distribute, or commercially exploit the Software
• Use the Software for unlawful, harmful, or fraudulent purposes
• Interfere with, disrupt, or compromise system integrity or security
• Use automated tools (bots, scrapers) without authorization
• Circumvent access controls or licensing mechanisms

Any unauthorized use will result in immediate termination of this license.

4. Ownership and Intellectual Property

The Software, including all components such as:

• Source code and architecture
• User interface and design
• Features, functionalities, and algorithms
• Trademarks, branding, and documentation

are the exclusive property of One2OneMeet and its licensors and are protected by applicable intellectual property laws. No rights, title, or interest in the Software are transferred to you except for the limited license granted under this Agreement.

5. User Accounts and Responsibilities

To access certain features, you may be required to create an account. You are responsible for:

• Maintaining the confidentiality of your login credentials
• Ensuring all information provided is accurate and up to date
• All activities conducted under your account

You agree to notify us immediately of any unauthorized access or security breach.

6. Updates, Upgrades, and Modifications

One2OneMeet may release updates, patches, or new versions; modify or discontinue features; and implement security enhancements. Updates may be automatically installed without prior notice or provided for manual installation. Continued use of the Software after updates constitutes acceptance of such changes.

7. Third-Party Services and Integrations

The Software may integrate with third-party services (Payment gateways, Analytics tools, Communication platforms). One2OneMeet is not responsible for the availability, performance, or data handled by such services. Your use is subject to their respective terms.

8. Data Protection and Privacy

Your use of the Software is subject to our Privacy Policy. For white-label or Client-hosted events, event organizers (Clients) may act as Data Controllers while One2OneMeet acts as a Data Processor. Data handling is governed by applicable agreements and DPAs.

9. Term and Termination

9.1 Term: This Agreement remains in effect until terminated by either party.

9.2 Termination by Company: We may suspend access if you violate this Agreement, for legal reasons, or to protect system security.

9.3 Termination by User: You may terminate by discontinuing use or deleting your account.

9.4 Effect: Upon termination, your license ceases, and you must uninstall the Software.

10. Disclaimer of Warranties

The Software is provided on an “AS IS” and “AS AVAILABLE” basis. One2OneMeet disclaims all warranties, including implied warranties of merchantability, fitness for a particular purpose, and non-infringement.

11. Limitation of Liability

One2OneMeet shall not be liable for indirect, incidental, or consequential damages, including loss of data or profits. Our total liability shall not exceed the amount paid by you in the preceding 12 months.

12. Indemnification

You agree to indemnify One2OneMeet from claims arising from your misuse of the Software, violation of this Agreement, or infringement of third-party rights.

13. Compliance with Laws

You agree to comply with all applicable local, national, and international laws and regulations when using the Software.

14. Export Restrictions

You agree not to export the Software in violation of export control laws or use it in restricted/sanctioned jurisdictions.

15. App Store and Google Play Compliance

15.1 Apple App Store: Apple is not responsible for the Software or support and is a third-party beneficiary of this Agreement.

15.2 Google Play Store: Your use is subject to Google Play Terms; Google is not responsible for Software support.

16. Governing Law

This Agreement shall be governed by and construed in accordance with the laws of: Nepal

17. Dispute Resolution

Parties agree to attempt resolution through good faith negotiation. Unresolved disputes may be referred to arbitration or competent courts in the governing jurisdiction.

18. Changes to This Agreement

We may modify this Agreement. Changes will be communicated via the Platform or website. Continued use constitutes acceptance.

19. Contact Information

• Email: one2onemeet@gmail.com
• Website: https://www.one2onemeet.com

1. Overview

One2OneMeet is a cloud-based SaaS platform designed to facilitate event networking, one-to-one meetings, attendee engagement, and virtual or hybrid event experiences. The platform also supports white-label deployments for enterprises, event organizers, and institutions.

Security, privacy, and compliance are fundamental to our platform design and operations. We implement industry best practices to ensure that user data is protected, systems are resilient, and services are reliable.

Our approach aligns with globally recognized standards and principles, including:

• ISO 27001 (Information Security Management) – aligned practices
• GDPR (General Data Protection Regulation) principles
• Secure SaaS architecture and cloud security best practices
• OWASP Top 10 application security standards

2. Security Architecture

Our security architecture is designed using a defense-in-depth approach, incorporating multiple layers of protection across infrastructure, applications, and data.

2.1 Infrastructure Security

• Cloud-based infrastructure leveraging secure and scalable environments
• Logical network isolation using virtual private networks (VPCs)
• Firewall protection and traffic filtering mechanisms
• Distributed system architecture for resilience and scalability
• Continuous infrastructure monitoring and centralized logging
• Automated alerting for suspicious or anomalous activity

2.2 Application Security

• Secure software development lifecycle (SSDLC) practices
• Code reviews and peer validation processes
• Regular vulnerability scanning and risk assessments
• Protection against OWASP Top 10 vulnerabilities, including:
  • Injection attacks
  • Cross-site scripting (XSS)
  • Cross-site request forgery (CSRF)
  • Broken authentication and session management
• Input validation, output encoding, and API security controls

3. Data Security

Protecting data confidentiality, integrity, and availability is a core priority.

3.1 Encryption

Data in Transit:

• Secured using HTTPS with TLS 1.2 or higher
• Encryption ensures protection against interception and man-in-the-middle attacks

Data at Rest:

• Encrypted storage mechanisms applied where applicable
• Managed encryption keys through secure cloud services

3.2 Access Control

• Role-Based Access Control (RBAC) to restrict system access
• Principle of Least Privilege (PoLP) enforced across systems
• Secure authentication mechanisms (session tokens, access controls)
• Account-level protections, including password policies and session management

3.3 Data Segregation

• Logical separation of Client data in multi-tenant environments
• Isolation mechanisms to prevent unauthorized cross-tenant access

4. Data Privacy and Compliance

One2OneMeet is designed with privacy-by-design and privacy-by-default principles.

4.1 Data Protection Principles

• Data minimization (collect only necessary data)
• Purpose limitation (process data only for defined purposes)
• Transparency and accountability
• Storage limitation and retention controls

4.2 Regulatory Alignment

We align our practices with GDPR principles (where applicable), regional data protection requirements, and industry best practices for SaaS platforms.

4.3 Roles and Responsibilities

• Clients (event organizers) act as Data Controllers
• One2OneMeet acts as a Data Processor
• Processing is performed only based on Client instructions

4.4 Data Processing Agreements (DPA)

We provide Data Processing Agreements to Clients, outlining data handling responsibilities, security commitments, and compliance obligations.

5. Operational Security

• Real-time monitoring of infrastructure and applications
• Centralized logging and audit trails
• Automated alerting systems for anomalies
• Controlled access to production systems
• Regular internal reviews and risk assessments

6. Backup and Disaster Recovery

6.1 Backup Strategy

• Regular automated backups of critical data
• Secure storage of backup data
• Periodic validation of backup integrity

6.2 Disaster Recovery

• Documented recovery procedures
• Infrastructure redundancy where applicable

6.3 Recovery Objectives

• Recovery Time Objective (RTO): Up to 24 hours
• Recovery Point Objective (RPO): Up to 24 hours

7. Incident Response and Management

7.1 Incident Response Process

1. Detection and identification
2. Immediate containment and mitigation
3. Investigation and root cause analysis
4. Remediation and recovery
5. Post-incident review and improvements

7.2 Communication

Clients are notified of incidents where required by law or contract. We ensure transparent communication during critical incidents.

8. Compliance Approach

• Internal security policies and procedures
• Access control reviews and audits
• Periodic system and risk assessments
• Documentation of security practices
• Alignment with recognized standards and frameworks

9. Client Data Protection

• Clients retain full ownership of their data
• One2OneMeet processes data only as instructed
• Data is not used for unauthorized purposes
• Strong safeguards are implemented to protect Client data

10. Continuous Improvement

Security is an ongoing process. We continuously enhance infrastructure, update practices based on emerging threats, apply timely patches, and invest in secure technologies.

11. Shared Responsibility Model

Security is a shared responsibility between One2OneMeet and its Clients.

11.1 One2OneMeet Responsibilities

• Platform security and infrastructure protection
• Data processing in accordance with agreements
• Monitoring, incident response, and system integrity

11.2 Client Responsibilities

• Managing user access and credentials
• Ensuring lawful data collection and consent
• Configuring platform settings appropriately
• Securing endpoint devices and networks

12. Limitations

While we implement strong security measures, no system can guarantee absolute security. Risks such as sophisticated cyberattacks, user-side vulnerabilities, and third-party service failures may impact overall security posture.

13. Contact Information

• Email: one2onemeet@gmail.com
• Website: https://www.one2onemeet.com