POLICY regarding the processing of personal data
1. General provisions.
1.1. This Policy regarding the processing of personal data (hereinafter referred to as the `` Policy '') has been prepared in accordance with clause 2, part 1 of Art. 18.1 of the Federal Law of the Russian Federation 'On Personal Data' 152-ФЗ dated July 27, 2006 (hereinafter referred to as the `` Law '') and determines the position of the Administration of the website http://travertawood.ru (LLC ; TRAVERTA '', legal address: 197375, the city of St. Petersburg, 1st Utinaya st., 28 letter a, pom 35-n, office 13, INN: 7802737828, KPP: 781401001, OGRN: 1117847013921) and / or its affiliates, (hereinafter the `` Company '') in the field of processing and protection of personal data (hereinafter `` Data ''), respect for the rights and freedoms of every person and, in particular, the right to privacy, personal and family secret.
2. Область применения.
2.1. Nastoyashchaya Politika rasprostranyayetsya na Dannyye, poluchennyye kak do, tak i posle vvoda v deystviye nastoyashchey Politiki.
3. Opredeleniya.
3.1. Pod Dannymi ponimayetsya lyubaya informatsiya, otnosyashchayasya k pryamo ili kosvenno opredelennomu, ili opredelyayemomu fizicheskomu litsu (grazhdaninu), t.ye. k takoy informatsii, v chastnosti, otnosyatsya: familiya, imya, otchestvo, telefon, adres registratsii/otpravki korrespondentsii, elektronnaya pochta, ssylka na personal'nyy sayt ili sotsseti.
3.2. Pod obrabotkoy Dannykh ponimayetsya lyuboye deystviye (operatsiya) ili sovokupnost' deystviy (operatsiy) s Dannymi, sovershayemykh s ispol'zovaniyem sredstv avtomatizatsii i/ili bez ispol'zovaniya takikh sredstv. K takim deystviyam (operatsiyam) otnosyatsya: sbor, zapis', sistematizatsiya, nakopleniye, khraneniye, utochneniye (obnovleniye, izmeneniye), izvlecheniye, ispol'zovaniye, peredacha (rasprostraneniye, predostavleniye, dostup), obezlichivaniye, blokirovaniye, udaleniye, unichtozheniye Dannykh.
3.3. Pod bezopasnost'yu Dannykh ponimayetsya zashchishchennost' Dannykh ot nepravomernogo i/ili nesanktsionirovannogo dostupa k nim, unichtozheniya, izmeneniya, blokirovaniya, kopirovaniya, predostavleniya, rasprostraneniya Dannykh, a takzhe ot inykh nepravomernykh deystviy v otnoshenii Dannykh.
4. Pravovyye osnovaniya i tseli obrabotki Dannykh.
4.1. Obrabotka i obespecheniye bezopasnosti Dannykh v Kompanii osushchestvlyayetsya v sootvetstvii s trebovaniyami Konstitutsii Rossiyskoy Federatsii, Zakona, Trudovogo kodeksa Rossiyskoy Federatsii, podzakonnykh aktov, drugikh opredelyayushchikh sluchai i osobennosti obrabotki Dannykh federal'nykh zakonov Rossiyskoy Federatsii, rukovodyashchikh i metodicheskikh dokumentov FSTEK Rossii i FSB Rossii.
4.2. Sub"yektami Dannykh, obrabatyvayemykh Kompaniyey, yavlyayutsya kliyenty – potrebiteli, v t.ch. posetiteli sayta https://travertawood.ru/ (daleye - Sayt), prinadlezhashchego Kompanii v tom chisle s tsel'yu oformleniya zakaza na Sayte https://travertawood.ru/
4.3. Kompaniya osushchestvlyayet obrabotku Dannykh sub"yektov v sleduyushchikh tselyakh:
4.3.1. osushchestvleniya vozlozhennykh na Kompaniyu zakonodatel'stvom Rossiyskoy Federatsii funktsiy, polnomochiy i obyazannostey v sootvetstvii s federal'nymi zakonami, v tom chisle, no ne ogranichivayas': Grazhdanskim kodeksom Rossiyskoy Federatsii, Nalogovym kodeksom Rossiyskoy Federatsii, Trudovym kodeksom Rossiyskoy Federatsii, Semeynym kodeksom Rossiyskoy Federatsii, Federal'nym zakonom ot 01.04.1996 g. No 27-FZ «Ob individual'nom (personifitsirovannom) uchete v sisteme obyazatel'nogo pensionnogo strakhovaniya», Federal'nym zakonom ot 27.07.2006 g. No 152-FZ «O personal'nykh dannykh», Federal'nym zakonom ot 28.03.1998 g. No 53-FZ «O voinskoy obyazannosti i voyennoy sluzhbe», Federal'nym zakonom ot 26.02.1997 g. No 31-FZ «O mobilizatsionnoy podgotovke i mobilizatsii v Rossiyskoy Federatsii», Federal'nym zakonom ot 8.02.1998 g. No14-FZ «Ob obshchestvakh s ogranichennoy otvetstvennost'yu», Federal'nym zakonom ot 07.02.1992 No2300-1 «O zashchite prav potrebiteley», Federal'nym zakonom ot 21.11.1996 g. No 129-FZ «O bukhgalterskom uchete», Federal'nym zakonom ot 29.11.2010 g. No 326-FZ «Ob obyazatel'nom meditsinskom strakhovanii v Rossiyskoy Federatsii»,
4.3.2. vzaimodeystviya s Kliyentami-potrebitelyami;
4.3.3. obrabotki postupayushchikh zaprosov i svyazi s Kliyentom-potrebitelem;
4.3.4. predostavleniya informatsii po tovaram/uslugam, prokhodyashchim aktsiyam i spetsial'nym predlozheniyam;
4.3.5. provedeniya marketingovykh, statisticheskikh i inykh issledovaniy;
4.3.6. analiza kachestva predostavlyayemogo Kompaniyey servisa i uluchsheniyu kachestva obsluzhivaniya kliyentov Kompanii;
4.3.7. informirovaniya o statuse zakaza;
4.3.8. ispolneniya usloviy publichnoy oferty;
4.3.9. vozmezdnogo okazaniya uslug;
4.3.10. ucheta okazannykh potrebitelyam uslug dlya osushchestvleniya vzaimoraschetov;
Свернуть 4006 / 5000 Результаты перевода2.1. This policy applies to data obtained both before and after commissioning this Policy. P>
3. Definitions. Strong> p>
3.1. Dates are understood as any information relating to directly or indirectly defined, or a definable physical person (citizen), i.e. Such information, in particular, include: surname, name, patronymic, telephone, address of registration / sending correspondence, email, link to personal site or social network. p>
3.2. Under data processing is understood to be any action (operation) or a set of actions (operations) with data made using automation tools and / or without the use of such funds. These actions (operations) include: collection, recording, systematization, accumulation, storage, refinement (update, change), extraction, use, transmission (distribution, provision, access), dewincing, blocking, deletion, data destruction. P >
3.3. Data security is understood to ensure the protection of data from unlawful and / or unauthorized access to them, destruction, changes, blocking, copying, providing, disseminating data, as well as other unlawful action on data. P>
4. Legal basis and data processing goals. Strong> p>
4.1. Processing and providing data security in the company is carried out in accordance with the requirements of the Constitution of the Russian Federation, the Law, the Labor Code of the Russian Federation, the subtitual acts, other cases and features of the processing of these federal laws of the Russian Federation, guideling and methodological documents of FSTEC of Russia and the FSB of Russia. P>
4.2. Subjects of data processed by the company are clients & ndash; Consumers, incl. Visitors to the site https://travertawood.ru/ (hereinafter - the site) owned by the company including in order to place an order on the site httpps://travertawood.ru/ p>
4.3. The company handling these subjects for the following purposes: p>
4.3.1. Implementation of functions, powers and responsibilities entrusted to the company in accordance with federal laws, including, but not limited to: the Civil Code of the Russian Federation, the Tax Code of the Russian Federation, the Labor Code of the Russian Federation, the Family Code of the Russian Federation, the Federal Law of 01.04 .1996 NO 27-FZ & laquo; on individual (personalized) accounting in the system of compulsory pension insurance & raquo;, by federal law of 27.07.2006 NO 152-FZ & laquo; about personal data & raquo;, federal law of 28.03.1998 NO 53-FZ & laquo; about military duty and military service & raquo;, by federal law of 26.02.1997 NO 31-FZ & laquo; on mobilization preparation and mobilization in the Russian Federation & raquo;, federal law of 8.02.1998 NO14-FZ & laquo ; On limited liability companies & raquo;, federal law on 07.02.1992 NO2300-1 & laquo; On Consumer Protection & Ra Quo;, by federal law of 11/21/1996 NO 129-FZ & laquo; About accounting & raquo;, by federal law of 11/29/2010 NO 326-FZ & laquo; on compulsory health insurance in the Russian Federation & raquo;, p>
4.3.2. Interactions with consumer clients; p>
4.3.3. processing incoming requests and communication with the customer consumer; p>
4.3.4. Providing information on goods / services, passing promotions and special offers; p>
4.3.5. holding marketing, statistical and other studies; p>
4.3.6. Analysis of the quality of the service provided by the Company and improving the quality of customer service of the company; p>
4.3.7. Inform about the status of the order; p>
4.3.8. execution of the conditions of public offer; p>
4.3.9. compensated service provision; p>
4.3.10. Accounting services provided to customers for carrying out mutual settlements; p>
5. Principles and data processing conditions. Strong> p>
5.1. When processing data, the company adheres to the following principles: p>
5.1.1. Data processing is carried out on a legitimate and fair basis; p>
5.1.2. Data is not disclosed to third parties and do not apply without the consent of the data entity, except in cases that require data disclosure on request of authorized state bodies, legal proceedings; p>
5.1.3. Determining specific legitimate goals prior to the start of processing (including data collection); p>
5.1.4. Only the data is being collected that are necessary and sufficient for the declared processing goal; p>
5.1.5. Combining the databases containing data, the processing of which is carried out for purposes that are incompatible with each other are not allowed; p>
5.1.6. Data processing is limited to the achievement of specific, predetermined and legitimate purposes; p>
5.1.7. The processed data is to be destroyed or deleasing to achieve processing objectives or in case of loss of need to achieve these goals, unless otherwise provided by federal law; p>
5.1.8. The company may include data of subjects to public data sources, while the company takes the written consent of the subject to process its data, or by expressing consent through the form form (Chekbox), by pressing the subject of personal data expresses its consent. P>
5.1.9. The company does not process data relating to racial, national affiliation, political views, religious, philosophical and other beliefs, intimate life, membership in public associations, including in professional unions; p>
5.1.10. Biometric data (information that characterize the physiological and biological features of a person, on the basis of which it is possible to establish its identity and which are used by the operator to establish the identity of the subject) in the company are not processed; p>
5.1.11. The company does not carry out transboundary data transfer; p>
5.1.12. In cases established by the legislation of the Russian Federation, the Company has the right to transmit data to third parties (federal tax service, the State Pension Fund and other state authorities) in cases provided for by the legislation of the Russian Federation; p>
5.1.13. The company has the right to entrust the processing of data of these subjects to third parties with the consent of the data entity, on the basis of the contract concluded with these persons, including with an agreement with sending, public offer and personal data processing policies posted on the site; p>
5.1.14. Persons engaged in data processing on the basis of the contract concluded with the Company (instructions of the operator), undertake to comply with the principles and rules for processing and protecting the data provided for by law. For each third party, a list of actions (operations) with data will be determined in the contract, which will be committed by a third-party data processing, processing objectives, establishes the obligation of such a person to follow the confidentiality and ensure the safety of data when they are processed, the requirements for protection of the data being processed in accordance with law; p>
5.1.15. In order to fulfill the requirements of the current legislation of the Russian Federation and its contractual obligations, data processing in the company is carried out without the use of automation tools. The set of processing operations includes the collection, recording, systematization, accumulation, storage, refinement (update, change), extraction, use, transmission (provision, access), depletion, blocking, deletion, data destruction. P>
6. Rights and duties of data entities, as well as companies in terms of data processing. Strong> p>
6.1. The subject of which is processed by the company, has the right to receive from the company: p>
6.1.1. Confirmation of data processing and information about the availability of data relating to the appropriate data subject; p>
6.1.2. Information about legal grounds and data processing purposes; p>
6.1.3. Details of data processing methods used by the Company; P>
6.1.4. Information about the name and location of the company; p>
6.1.5. Information about persons (with the exception of employees of the company), which have access to data or which data may be disclosed on the basis of an agreement with the company or on the basis of the Federal Law; p>
6.1.6. The list of data processed relating to the data subject, and information about the source of their preparation, unless otherwise provided by the Federal Law; p>
6.1.7. Data processing information, including their storage time; p>
6.1.8. Information on the procedure for implementing the subject of the data provided for by law; p>
6.1.9. Name (full name) and address of a person handling data on behalf of the company; p>
6.1.10. other information provided for by law or other regulatory acts of the Russian Federation; p>
6.2. The subject of which is processed by the company, has the right to demand from the company: p>
6.2.1. clarifying your data, blocking them or destruction if the data is incomplete, outdated, inaccurate, illegally obtained or are not necessary for the declared target processing; p>
6.2.2. withdraw your consent to data processing at any time; p>
6.2.3. Require the elimination of unlawful actions of the company with respect to its data; p>
6.2.4. appeal against the actions or inaction of the company in the Federal Service for Supervision in Communication, Information Technologies and Mass Communications (Roskomnadzor) or in court in case the data entity believes that the company has been processing its data with violation of the requirements of the law or otherwise violates his rights and freedom; p>
6.3. The subject of which is processed by the company, has the right to protect its rights and legitimate interests, including on damages and / or compensation for moral damage in court. P>
6.4. The company in the processing process is required: p>
6.4.1. Provide the subject to the subject of data on its request information relating to the processing of its PDs, or on legal basis to provide a refusal within thirty days from the date of receipt of a request to the subject of the data or its representative; p>
6.4.2. Explain the subject of the data Legal implications of refusal to provide data if the provision of data is mandatory in accordance with the Federal Law; p>
6.4.3. Before the start of data processing (if the data is received not from the data entity), provide the subject of the data to the following information, except for the cases provided for by paragraph 4 of Article 18 of the Law: p>
6.4.4. Publish on the Internet and provide unlimited access using the Internet to the document defining its data processing policies to information about data protection requirements; p>
6.4.5. provide subjects of data and / or their representatives free of charge the ability to familiarize yourself with the data when handling the relevant request within 30 days from the date of receipt of such a request; p>
6.4.6. To block the wrong-processed data relating to the data subject, or to block them (if data processing is performed by another person acting on behalf of the company) from the moment of handling or receiving a query for the verification period, in case of detection of unlawful data processing when the data entity is detected or its Representative or upon request of the subject of data or its representative or an authorized body to protect the rights of subjects of personal data; p>
6.4.7. clarify the data or provide clarification (if data processing is carried out by another person acting on behalf of the Company) within 7 working days from the date of information on information and remove data blocking, if the fact is confirmed by the fact of the inaccuracy of the data on the basis of information provided by the data entity or its representative; p>
6.4.8. Stop unlawful data processing or to ensure the termination of unlawful data processing by the person acting on behalf of the Company, in case of detection of unlawful processing of data carried out by the company or face acting on the basis of a contract with the company, in a period not exceeding 3 working days from the date of this detection; < / P>
6.4.9. Stop data processing or ensure its termination (if data processing is carried out by another person acting under the contract with the company) and destroy data or to ensure their destruction (if data processing is carried out by another person acting under the contract with the Company) to achieve the data processing goal, if otherwise Not stipulated by the contract, whose party, beneficiary, or guarantor, is a data subject, in the event of a data processing goal; p>
6.4.10. Stop data processing or ensure its termination and destroy data or to ensure their destruction in case of recalling data to the data processing, if the company is not entitled to process data without the consent of the data entity; p>
6.4.11. Maintain accounting of PDN entitlements in which the requests for data entities to receive data, as well as the facts of providing data on these requests. p>
7. Data timing (storage) data. Strong> p>
7.1. The timing of the processing (storage) of the data is determined on the basis of data processing purposes, in accordance with the term of the contract with the subject of data, the requirements of federal laws, the requirements of data operators, on whose behavior, the Company has been processing data, the main rules for the work of archives of organizations, limitations. Personal data is processed and stored before reaching or losing in the need to achieve the objectives of personal data processing, relevant consent to the processing of personal data by the subject of personal data. P>
7.2. Data, the timing (storage) of which has expired, should be destroyed, unless otherwise provided by federal law. Data storage after the cessation of their processing is allowed only after they are convertible. P>
8. The procedure for obtaining clarification on data processing. Strong> p>
8.1. Persons whose data are processed by the company can receive explanations on the processing of their data by sending a message to the email address of the company sale@traverta.ru . P >
8.2. In the case of the official request in the company in the query text, you must specify: p>
8.3. If the request is sent in electronic form, it must be decorated in the form of an electronic document and signed an electronic signature in accordance with the legislation of the Russian Federation. P>
9. Features of processing and protecting data collected by the company using the Internet. Strong> p>
9.1. The company processes data from the resource user: https://travertawood.ru/ , to the company's email address: sale@traverta.ru p>
9.2. There are three main methods that the company receives data using the Internet: p>
9.2.1. Providing data to a data subject (independent data entry) by entering on pages: p>
https://travertawood.ru/ and other pages located on the site https://travertawood.ru/ at the moment, or created in the future. p>
On the specified pages can be collected: p>
9.2.2. Data entities by sending to email address sale@traverta.ru p>
9.3. The company can collect and process information that are not personal data: p>
9.3.1. location definition; p>
9.3.2. IP address; p>
9.3.3. browser imprint; p>
9.3.4. information on the interests of users on the site based on the search queries of users of the site about the company sold and offered to sell goods in order to provide relevant information to the company's customers when using the site, as well as generalizations and analysis of information, about which sections of the site and the goods enjoy the greatest demand from Company clients. p>
9.4. The company automatically receives some types of information obtained in the process of interaction of users with a query, correspondence by email, etc. We are talking about technologies and services, such as web protocols, cookies, web markers, analytics system identifiers, as well as applications and tools of the specified third party. p>
9.5. The company has the right to use the data provided in accordance with the declared goals of their collection in the presence of the consent of the data entity, if such consent is required in accordance with the requirements of the legislation of the Russian Federation in the field of data. P>
9.6. The obtained data in generalized and impersonal form can be used to better understand the needs of buyers of goods and services implemented by the company and improving the quality of service. P>
9.7. The company may assign data processing to third parties solely with the consent of the data entity. The data can also be transmitted to third parties in the following cases: P>
9.7.1. B Answer to legitimate requests of authorized state bodies, in accordance with the laws, court decisions, etc. p>
9.7.2. The company has the right to entrust the processing of these data constituent entities to third parties with the consent of the data entity, on the basis of the contract concluded with these persons, including with an agreement with the sending, public offer and policy of processing personal data posted on the site. P>
9.8. The site contains links to other web resources where it may be useful and interesting for users of the site. At the same time, this policy does not apply to such other sites. Users passing through links to other sites are encouraged to familiarize themselves with data processing policies posted on such sites. P>
9.9. A site user may at any time withdraw its consent to data processing, sending a message to the email address of the company sale@traverta.ru . After receiving such a message, the user data processing will be discontinued, and its data will be deleted, except when the processing can be continued in accordance with the law. P>
9.10. This policy is publicly available. The public accessibility of this policy is provided by the publication on the company's website at the address https://travertawood.ru/personal/ . P>
9.11. This policy may be revised in any of the following cases: p>
9.12. In case of non-fulfillment of the provisions of this Policy, the Company is responsible in accordance with the current legislation of the Russian Federation. Control of the fulfillment of the requirements of this Policy is carried out by persons responsible for organizing the processing of the company's data, as well as for the safety of personal data. P>
div>