- Personal Data Processing Policy
Personal Data Processing Policy
1. General provisions
This Personal Data Processing Policy is drawn up in accordance with the requirements of Federal Law No. 152-FZ On Personal Data dated July 27, 2006 and defines the procedure to process personal data and measures to ensure the security of personal data of JSC RusLitMash (hereinafter – the “Operator”).
1.1. The Operator makes its most important aim and condition for implementation of its activities to respect the rights and liberties of an individual and a citizen in processing of his/her personal data, including the protection of rights to privacy, personal and family secrets.
1.2. This Personal Data Processing Policy of the Operator (hereinafter – the “Policy”) applies to all information that the Operator can acquire about visitors of the website https://ruslitmash.com/
2. Basic concepts used in the Policy
2.1. Automated processing of personal data – processing of personal data with the help of computing equipment;
2.2. Blocking of personal data – temporary cessation of personal data processing (except for the cases when the processing is required for the personal data specification);
2.3. Website – a set of graphic and information materials as well as computer programs and databases ensuring their availability on the Internet at the network address https://ruslitmash.com/;
2.4. Personal data information system – a set of personal data contained in databases and information technologies and technical means ensuring their processing;
2.5. Anonymisation of personal data – actions as a result of which it is impossible to determine without additional information whether the personal data belong to a specific User or another subject of personal data;
2.6. Personal data processing – any action (operation) or a set of actions (operations) performed with the use of automation tools or without the use of such tools with personal data, including collection, recording, systematisation, accumulation, storage, refinement (update, change), retrieval, use, transfer (distribution, provision, access), depersonalisation, blocking, deletion, and destruction of personal data;
2.7. Operator – a state body, municipal body, legal entity or an individual, independently or jointly with other persons organising and (or) processing personal data as well as determining the purposes of personal data processing, the composition of personal data to be processed, actions (operations) performed with personal data;
2.8. Personal data - any information relating directly or indirectly to a specific or definable User of the website https://ruslitmash.com/;
2.9. User – any visitor of the website https://ruslitmash.com/;
2.10. Provision of personal data – actions aimed at disclosing personal data to a specific person or a specific circle of persons;
2.11. Dissemination of personal data – any actions aimed at disclosure of personal data to an indefinite circle of persons (transfer of personal data) or familiarisation with personal data of an unlimited number of persons, including public disclosure of personal data in the media, placement in information and telecommunication networks or access to personal data in any other way;
2.12. Cross-border transfer of personal data – transfer of personal data to the territory of a foreign state to a foreign state authority, to a foreign individual or to a foreign legal entity;
2.13. Destruction of personal data – any actions that result in personal data being irretrievably destroyed with the impossibility of further restoring the content of personal data in the personal data information system and (or) actions that result in destruction of the personal data physical media.
3. The Operator can process the following personal data of the User:
3.1. Full name;
3.2. Email address;
3.3. Phone numbers
3.4. The website also collects and processes anonymised data about visitors (including cookies) using Internet statistics services (Yandex.Metrika, Google Analytics, etc.).
3.5. The above data hereinafter shall be referred to as the “Personal Data”.
4. Purpose of the personal data processing
4.1. The purpose of the User’s personal data processing is to inform the User by sending e-mails, to clarify order details.
4.2. The Operator also has the right to send notifications to the User about new products and services, special offers and various events. The User can always refuse to receive informational messages by sending an e-mail to the Operator (email@example.com) marked “Refusal to receive notifications about new products and services and special offers”.
4.3. Anonymised User data collected using Internet statistics services, are used to collect information about the actions of Users on the website, improve the quality of the website and its content.
5. Legal grounds for the personal data processing
5.1. The Operator processes the User’s personal data only in case when the User fills in and/or sends them independently through special forms provided on the website https://ruslitmash.com/. The User agrees with this Policy by filling in the relevant forms and/or sending its personal data to the Operator.
6. Procedure for collection, storage, transfer and other types of the personal data processing
6.1. Security of the personal data processed by the Operator is ensured through the implementation of legal, organisational and technical measures required to fully comply with the requirements of the current legislation in the field of personal data protection. The Operator ensures safety of personal data and takes all possible measures to prevent access to personal data of unauthorised persons.
6.2. Personal data of the User will never, under any circumstances, be passed on to the third parties, with the exception of cases related to the execution of current legislation.
6.3. In case of detection of inaccuracies in personal data, the User can update them independently by sending a notification to the Operator to the Operator’s email address firstname.lastname@example.org marked “Personal data updating”.
6.4. The term for the personal data processing is unlimited. The User may at any time withdraw its consent to the processing of personal data by sending a notification to the Operator via e-mail to the Operator’s email address email@example.com marked “Withdrawal of consent to the processing of personal data”.
7. Cross-border transfer of personal data
7.1. The Operator must make sure before starting the cross-border transfer of personal data the fact that the foreign state into whose territory it is supposed to transfer personal data provides reliable protection of the rights of the personal data subjects.
7.2. Cross-border transfer of personal data in the territory of foreign countries that do not meet the above requirements, can only be implemented if there is a written consent of the subject of personal data on the cross-border transfer of its personal data and/or in case of execution of an agreement to which the subject of personal data is a party.
8. Final provisions
8.1. The User can receive any explanations on issues of interest relating to the processing of its personal data by contacting the Operator via email firstname.lastname@example.org.
8.2. This document will reflect any changes in the Personal Data Processing Policy made by the Operator. The Policy is valid indefinitely until replaced with a new version.