Privacy Policy Regarding the Processing of Personal Data1. General ProvisionsThis privacy policy for personal data processing is drawn up in accordance with the requirements of Federal Law No. 152-FZ of July 27, 2006 “On Personal Data” (hereinafter referred to as the Law on Personal Data) and defines the procedure for processing personal data and measures to ensure their security as implemented by individual entrepreneur Tatyana Anatolyevna Popova (hereinafter referred to as the Operator).
1.1. The Operator considers the observance of human and civil rights and freedoms when processing personal data, including the right to privacy, personal and family confidentiality, to be a key objective and condition of its activities.
1.2. This policy (hereinafter referred to as the Policy) applies to all information that the Operator may obtain about visitors of the website
https://rubranding.ru.
2. Basic Terms Used in the Policy2.1. Automated processing of personal data — processing using computer technology.
2.2. Blocking of personal data — temporary suspension of processing personal data (except where processing is necessary to clarify the data).
2.3. Website — a set of graphic and informational materials, as well as software and databases, accessible on the internet at
https://rubranding.ru.
2.4. Personal data information system — a set of personal data contained in databases and the information technologies and technical means that process them.
2.5. Anonymization of personal data — actions that make it impossible to determine the identity of the data subject without additional information.
2.6. Processing of personal data — any action (operation) or set of actions performed with or without automation tools on personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, provision, access), anonymization, blocking, deletion, and destruction.
2.7. Operator — a government or municipal body, legal or natural person, who organizes and/or processes personal data and determines the purposes of processing, the scope of data processed, and the actions performed.
2.8. Personal data — any information directly or indirectly related to an identified or identifiable user of the website
https://rubranding.ru.
2.9. Personal data allowed by the data subject for dissemination — personal data to which the subject has granted public access by consenting to its processing in accordance with the Law on Personal Data.
2.10. User — any visitor of the website
https://rubranding.ru.
2.11. Provision of personal data — actions aimed at disclosing data to a specific person or group of people.
2.12. Distribution of personal data — actions aimed at making personal data available to an undefined number of people, including publication in the media or internet.
2.13. Cross-border transfer of personal data — transfer of personal data to a foreign state or foreign individual/legal entity.
2.14. Destruction of personal data — actions resulting in the irreversible destruction of personal data, making its recovery impossible.
3. Main Rights and Obligations of the Operator3.1. The Operator has the right to:– Receive from the data subject accurate information and/or documents containing personal data;
– Continue processing personal data without the data subject’s consent in case of withdrawal, if there are legal grounds as stated in the Personal Data Law;
– Independently determine the scope and list of measures necessary and sufficient to ensure compliance with obligations under the Personal Data Law and related regulations, unless otherwise provided by law.
3.2. The Operator is obliged to:– Provide the data subject, upon request, with information about the processing of their personal data;
– Organize the processing of personal data in accordance with applicable Russian legislation;
– Respond to requests and inquiries from data subjects and their legal representatives;
– Submit necessary information to the authorized data protection body upon request within 10 days;
– Publish or otherwise provide unrestricted access to this privacy policy;
– Take legal, organizational, and technical measures to protect personal data from unauthorized access, destruction, modification, blocking, copying, provision, or distribution, and other unlawful actions;
– Cease transmission (distribution, provision, access) of personal data, stop processing, and destroy personal data in cases provided for by law;
– Fulfill other obligations established by the Personal Data Law.
4. Rights and Obligations of Personal Data Subjects4.1. Data subjects have the right to:– Obtain information about the processing of their personal data (except as provided by federal law);
– Request clarification, blocking, or destruction of their personal data if it is incomplete, outdated, inaccurate, unlawfully obtained, or unnecessary for the stated purpose of processing;
– Set a condition of prior consent for the processing of their personal data for marketing purposes;
– Withdraw their consent and demand the termination of data processing;
– Appeal unlawful actions or inaction of the Operator in court or to the authorized data protection body;
– Exercise other rights under Russian law.
4.2. Data subjects are obliged to:– Provide accurate data about themselves;
– Notify the Operator of any changes or updates to their personal data.
4.3. Individuals who provide false information or data about another person without consent bear liability as prescribed by Russian law.5. Principles of Personal Data Processing5.1. Personal data is processed lawfully and fairly.
5.2. The processing of personal data is limited to achieving specific, predefined, and legitimate purposes. Processing that is incompatible with the stated purposes of data collection is not permitted.
5.3. Combining databases containing personal data that are processed for incompatible purposes is not allowed.
5.4. Only personal data that meets the purpose of processing is subject to processing.
5.5. The content and volume of processed personal data must correspond to the declared purposes of processing. Excessive personal data in relation to the stated processing purposes is not allowed.
5.6. The accuracy, sufficiency, and, where necessary, relevance of personal data to the purpose of processing must be ensured. The Operator takes necessary steps, or ensures such steps are taken, to remove or clarify incomplete or inaccurate data.
5.7. Personal data is stored in a form that allows identification of the data subject for no longer than required for the purposes of processing, unless a longer period is established by federal law or contract. Upon achieving the purposes of processing or if they are no longer needed, the personal data is deleted or anonymized unless otherwise specified by law.
6. Purposes of Personal Data ProcessingPurpose:To inform the User via electronic messages.
Personal Data:Phone numbers, name.
Legal Basis:Federal Law No. 149-FZ of July 27, 2006.
Types of Processing:Sending messages to messengers using the phone number.
7. Conditions for Personal Data Processing7.1. Personal data is processed with the consent of the data subject.
7.2. Processing is required to achieve purposes defined by international treaties of the Russian Federation or federal law, or for the performance of functions, powers, and duties imposed on the Operator by legislation.
7.3. Processing is necessary for the administration of justice, enforcement of court decisions or legal acts of other authorities.
7.4. Processing is necessary for the performance of a contract to which the data subject is a party or beneficiary, or for the conclusion of such a contract at the request of the data subject.
7.5. Processing is necessary for the legitimate interests of the Operator or third parties, or for socially significant purposes, provided this does not violate the rights and freedoms of the data subject.
7.6. Processing is carried out for personal data made publicly available by the data subject or at their request (publicly available data).
7.7. Processing is carried out for data that must be disclosed or published as required by federal law.
8. Procedure for Collection, Storage, Transfer, and Other Processing of Personal DataThe security of personal data processed by the Operator is ensured through legal, organizational, and technical measures necessary to comply with current legislation on personal data protection.
8.1. The Operator ensures the confidentiality of personal data and takes all possible steps to prevent unauthorized access.
8.2. User data will never be transferred to third parties except where required by law or if the User has consented to such transfer to fulfill contractual obligations.
8.3. In case of data inaccuracies, the User can update the data by sending a notice to the Operator’s email: popovalip@gmail.com, with the subject line “Data Update.”
8.4. The duration of data processing is limited to the time required to fulfill the purposes for which the data was collected, unless otherwise specified by contract or law.
The User may withdraw consent at any time by emailing the Operator at popovalip@gmail.com with the subject “Withdrawal of Consent for Data Processing.”
8.5. All data collected by third-party services (e.g., payment systems, communication tools) is stored and processed according to their respective privacy policies. The Operator is not responsible for actions of such third parties.
8.6. Restrictions imposed by the data subject on distribution or access do not apply when data is processed for public, state, or socially significant purposes defined by Russian law.
8.7. The Operator guarantees the confidentiality of personal data during processing.
8.8. Personal data is stored only as long as necessary for the purposes of processing unless otherwise required by law or contract.
8.9. Processing is terminated when purposes are achieved, consent expires, the data subject withdraws consent, or unlawful processing is identified.
9. List of Actions Performed by the Operator with Received Personal Data9.1. The Operator performs collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, provision, access), anonymization, blocking, deletion, and destruction of personal data.
9.2. The Operator may perform automated processing of personal data, including the transfer and/or receipt of data through telecommunication networks or without such networks.
10. Cross-Border Transfer of Personal Data10.1. Before initiating cross-border data transfer, the Operator must notify the authorized data protection authority of its intention to transfer personal data across borders (this notification is separate from the one required for general data processing).
10.2. Before submitting the notification mentioned above, the Operator must obtain relevant information from the foreign authority, foreign individual, or foreign legal entity to which personal data is planned to be transferred.
11. Confidentiality of Personal DataThe Operator and any other individuals who gain access to personal data must not disclose or distribute such data to third parties without the consent of the data subject, unless otherwise required by federal law.
12. Final Provisions12.1. Users may request clarification on any questions regarding their personal data by contacting the Operator via email at popovalip@gmail.com.
12.2. Any changes to this Privacy Policy will be reflected in this document. The Policy is valid indefinitely until replaced by a new version.
12.3. The current version of the Policy is available publicly at:
https://rubranding.ru/privacy_eng