Last update:
«27» July 2023

1. GENERAL PROVISIONS

1.1. The Privacy Policy (hereinafter – the Policy) is published to inform users about the privacy policy regarding the processing of personal data of visitors to the operator's website (hereinafter – the Users).

1.2. The Policy was developed and published by the operator in accordance with Article 18.1, paragraph 1 of the Federal Law No. 152-FZ “On Personal Data” dated July 27, 2006.
1.3. The Policy was developed to meet the legislative requirements regarding the processing and protection of personal data and to ensure the protection of the rights and freedoms of individuals during the processing of personal data, to ensure the protection of privacy, personal and family secrets.

1.4. The Policy contains information that must be made publicly available in accordance with Article 14, Paragraph 1 of the Federal Law "On Personal Data", is a public document and is available at: https://minkychic.com/.
1.5. The Operator may change this Policy at any time and publish the relevant changes in order to keep its policy on the processing of personal data up-to-date. This Policy may be changed only by publishing a changed document on the website.

2. BASIC CONCEPTS

2.1. Personal Data – any information relating to an identified or identifiable natural person.

2.2. Processing of personal data – any operation or set of operations performed on personal data, whether automatically or manually, including collection, recording, systematization, storage, updating (altering), extraction, use, anonymization, blocking, erasure and destruction.

2.3. Personal data operator – a natural or legal person who organizes and (or) carries out the processing of personal data, determining the purposes of the processing of personal data, the scope of the personal data to be processed and the operations performed on personal data.

2.4. Confidentiality of personal data – the obligation of the operator and other persons who have access to personal data not to disclose personal data to third parties, unless legally required to do so or without the consent of the data owner.

2.5. Website – is a set of software and information located at https://minkychic.com/, running on electronic devices and accessible via the Internet network. The website may contain links to other Internet resources. The operator is not responsible for the confidentiality of information published by the user on these resources.

3. USER RIGHTS

3.1. The user has the following rights:

3.1.1. The right to access personal data concerning the user and information on their processing;

3.1.2. The right to request the correction, blocking or deletion of personal data that are incomplete, out of date, incorrect, unlawfully obtained or not necessary for the stated purpose of processing;

3.1.3. The right to withdraw consent to the processing of personal data;

3.1.4. The right to protect his/her rights and legitimate interests in court, including by claiming compensation for non-pecuniary damages;

3.1.5. The right to complain to the competent authority or court about the acts or omissions of the operator, in the event that he/she considers that his/her rights have been violated.

4. BASIS FOR PROCESSING PERSONAL DATA

4.1. The Operator processes personal data on a legal and fair basis, to perform legally established functions, powers and duties, to protect the rights and legitimate interests of the Operator and the User.

4.2. The Operator receives personal data directly from the User and processes it only with the User's consent. The Operator collects personal data during the User's interaction with certain functions of the Website.

5. PROCESSING OF USERS' PERSONAL DATA

5.1. This Policy determines the operator's obligations to protect and ensure the confidentiality of personal data provided by the user regarding the use of the website.

5.2. The operator processes users' personal data in accordance with the laws of the Russian Federation for the following purposes:

5.2.1. Conclusion and performance of contracts;
5.2.2. Providing information about new products and services;
5.2.3. Creating personalized offers;
5.2.4. Conducting promotional activities.

5.3. The Operator processes Users' personal data with the consent given by ticking the box confirming that they accept the terms of this agreement.

5.4. Categories of personal data collected by the Operator to achieve the purposes specified in Article 5.2 of the Policy:

5.4.1. Surname, first name, father's name;

5.4.2. Contact telephone number;

5.4.3. E-mail address;

5.4.4. User identifier stored in cookies.

5.5. The Operator does not process special categories of Users' personal data.

5.6. The Operator does not process biometric personal data of Users.
5.7. This Policy applies only to information processed during the use of the website. The operator is not responsible for information processed by third-party websites and services that the user may access through the website.

5.8. The operator does not check the accuracy of the personal data provided by the user and cannot assess its ability to process them. However, the operator assumes that the user has provided correct and sufficient personal data and keeps them up to date.

6. PROCESSING OF USER PERSONAL DATA WITH COOKIES

6.1. Cookies transferred to users' technical devices may be used to provide personalized functions of the website, to display personalized advertisements, for statistical and research purposes, and to improve the website.

6.2. Users accept that the devices and software they use may block cookies (for all sites or for specific sites) and delete previously received cookies.

6.3. The operator may foresee that certain functions of the website will only be available if users accept and receive cookies.

6.4. The structure, content and technical parameters of cookies are determined by the operator and may be changed without informing users.

6.5. Counters placed on the website or in the website's application can be used to analyze user cookies, collect and process statistical information on the use of the website, and generally ensure the performance of the website or its specific functions. The technical parameters of the counters are determined by the operator and can be changed without informing users.

7. CONDITIONS FOR PROCESSING USERS' PERSONAL DATA

7.1. The processing of users' personal data is limited to the time required to achieve the processing purposes.

7.2. The Operator automatically processes users' personal data using computer technology.

7.3. The operations related to the processing of personal data include collection, recording, systematization, storage, updating (changing), extraction, use, transmission (dissemination, provision, access), anonymization, blocking, deletion and destruction.

7.4. The confidentiality of users' personal data is protected, otherwise, users may make information about themselves available to the public.

7.5. The Operator may disclose Users' personal data to third parties in the following cases:

7.5.1. Users have given their consent to such actions;

7.5.2. Data transfer is necessary for the Users to use certain functions of the website or to fulfill a certain contract or agreement;

7.5.3. Data transfer is mandatory in the manner prescribed by the laws of the Russian Federation or other applicable legislation;

7.5.4. Such transfer is carried out within the framework of the sale or transfer of an enterprise (all or part thereof), in which case the obligations for the protection of the received personal data are transferred to the recipient;

7.5.5. As a result of anonymization of Users' personal data, anonymous statistical data is obtained, which are transferred to third parties for the purpose of performing research, work or services on behalf of the Operator;

7.5.6. Users' personal data may be transferred to authorized state authorities in accordance with the current legislation of the Russian Federation.

7.6. When processing users' personal data, the operator relies on the following laws:

7.6.1. Federal Law No. 152-FZ "On Personal Data" dated July 27, 2006;
7.6.2. Decree of the Government of the Russian Federation dated November 1, 2012 No. 1119 "On approval of requirements for the protection of personal data during the processing of personal data in information systems";

7.6.3. Resolution of the Russian Federation FSTEC dated February 18, 2013 No. 21 “On approval of the content and scope of organizational and technical measures to be taken to ensure the security of personal data during processing in information systems”;

7.6.4. Resolution of the Russian Federation FSB dated July 10, 2014 No. 378 “On approval of the content and scope of organizational and technical measures necessary to meet the requirements established by the government for the protection of personal data using cryptographic means of information protection during processing in information systems”.

7.6.5. The operator shall take all necessary organizational and technical measures to protect the user's personal data from unauthorized access, destruction, modification, blocking, copying and dissemination.

7.6.6. In case of loss or disclosure of the user's personal data, the Operator shall take all necessary measures together with the User to prevent losses or other negative consequences.

8. DATA STORAGE OBLIGATION

8.1. User rights provided for in this Policy may be restricted in line with the requirements of the applicable legislation. These restrictions may include storing the information that the user has changed or deleted for a certain period of time and/or transmitting this information to the competent state authorities in accordance with legal procedures.

9. INFORMATION ON PERSONAL DATA SECURITY

9.1. The Operator appoints a person responsible for the organization of the processing of personal data in accordance with the Federal Law "On Personal Data" and the legal regulations based on it.

9.2. The Operator implements a system of legal, organizational and technical measures to ensure the security of personal data and to ensure the confidentiality of personal data and their protection against unlawful processing:

9.2.1. Establishes the rules for access to personal data processed in the Operator's information system and ensures the registration and monitoring of all related operations;

9.2.2. Assess the damage that may be caused to users in the event of a violation of the Federal Law.