CONFIDENTIALITY
POLICY
Definitions
Data means any information relating to a directly or indirectly identified or identifiable natural person (citizen), i.e. such information includes, but is not limited to: Full name, telephone number, e-mail address for communication.
Data processing means any action (operation) or set of actions (operations) with data, performed with the use of automation tools and/or without the use of such tools. Such actions (operations) include: collection, recording, systematisation, accumulation, storage, clarification (update, change), extraction, use, transfer (distribution, provision, access), depersonalisation, blocking, deletion, destruction of data.
Data security means the protection of data from unlawful and/or unauthorised access to them, destruction, modification, blocking, copying, provision, distribution of data, as well as from other unlawful actions against data.RBD LLC Moscow, Paveletskaya naberezhnaya, 2, building 2, floor 4, room 52, OGRN 1147746857081, TIN 7701402832, KPP 772501001, R/s 40702810801300033887, K/s 30101810200000000593 BANK JSC "ALFA-BANK", BIK 044525593. The Company provides individuals and legal entities (users) with necessary information about its activities and information about goods and services (products) provided by RBD LLC. The information on the website is mostly informational in nature.
All content of the site is the property of RBD Ltd. and is protected by the current legislation governing copyright issues. Therefore, users of the website may use its content for personal and non-commercial purposes. The use of the content of the site for other purposes is not permitted.
The Company does not authorise any changes to the content of this site, as well as the subsequent reproduction of its content.
Please note that the company's website may contain links and forms to other websites, in this case the company is not responsible for the confidentiality of information on other resources.
The Company reserves the right to change the Privacy Policy at any time in order to further improve the system of protection against unauthorised access to the personal data reported by you.
The Company collects personal information about you (personal data) whenever you provide it on the website, send it by e-mail or provide it in person. By submitting your personal data to the company, you agree to the terms and conditions set out herein. In accordance with applicable law and RBD Ltd's Personal Data Protection Policy, you may change, update or request deletion of your personal data at any time.
When filling out forms on the website or documents, including in company shops, you may provide the following information:
1. Name.
2. A contact telephone number and email address where we can contact you.
The company also collects some statistical information, such as:
1. User's IP address.
2. browser type.
3. Date, time and number of visits.
4. The address of the site from which the user travelled to the company's website.
5. Location information.6. Information about the pages visited, about viewing advertising banners.
7. Information provided by your browser (device type, browser type and version, operating system, etc.).
What we guarantee
RBD Ltd. is responsible for the privacy of its users and respects the right of each user of the site to privacy.
The company guarantees that any information received from you will never and under no circumstances be provided to third parties without your consent, except as provided by the current legislation of the Russian Federation.
The Company guarantees that the personal data provided by you to the Company will be processed in strict compliance with the current legislation. The data is stored on the servers of the Russian Federation and is protected in accordance with the current legislation.
Biometric data (information characterising physiological and biological features of a person, on the basis of which it is possible to establish his/her identity and which is used by the operator to establish the identity of the data subject) is not processed in the company.
The Company does not carry out cross-border data transfer.
In cases stipulated by the legislation of the Russian Federation, the company has the right to transfer data to third parties in cases stipulated by the legislation of the Russian Federation.
The Company has the right to entrust the processing of data of data subjects to third parties with the consent of the data subject, on the basis of an agreement concluded with such parties.
Persons performing data processing on the basis of a contract concluded with the company (operator's order) undertake to comply with the principles and rules of data processing and protection stipulated by the Law. For each third party, the contract defines the list of actions (operations) with data to be performed by the third party processing the data, the purposes of processing, establishes the obligation of the third party to maintain confidentiality and ensure data security during data processing, and specifies the requirements for the protection of processed data in accordance with the Law.
In order to fulfil the requirements of the current legislation of the Russian Federation and its contractual obligations, the Company processes data both with and without the use of automation tools. The totality of processing operations includes collection, recording, systematisation, accumulation, storage, clarification (update, change), extraction, use, transfer (provision, access), depersonalisation, blocking, deletion, destruction of data.
The Company is prohibited from making decisions based solely on automated data processing that give rise to legal consequences in relation to the data subject or otherwise affect his or her rights and legitimate interests, except in cases provided for by the laws of the Russian Federation.
Data protection requirements
When processing data, the Company takes the necessary legal, organisational and technical measures to protect data from unlawful and/or unauthorised access to it, destruction, alteration, blocking, copying, provision, dissemination of data, as well as from other unlawful actions in relation to data.Such measures in accordance with the Law, in particular, include: appointment of a person responsible for organising data processing and a person responsible for ensuring data security; development and approval of local acts on data processing and protection; application of legal, organisational and technical measures to ensure data security: identification of data security threats during their processing in personal data information systems; application of organisational and technical measures to ensure data security during their processing in personal data information systems; application of organisational and technical measures to ensure data security during their processing in personal data information systems; application of legal, organisational and technical measures to ensure data security during their processing in personal data information systemsThe Government of the Russian Federation levels of data security; use of information security means that have passed the compliance assessment procedure in accordance with the established procedure; assessment of the effectiveness of measures taken to ensure data security before putting into operation the personal data information system; accounting for computer storage media, if data is stored on computer storage media; detecting cases of unauthorized access to data and taking measures to prevent similar incidents in the future; restoration of data modified or destroyed due to unauthorized access to it; establishing rules for access to data processed in the personal data information system, as well as ensuring registration and accounting of all actions performed with data in the personal data information system; control over the measures taken to ensure data security and the level of security of personal data information systems; assessment of the harm that may be caused to data subjects in case of violation of the requirements of the Law, the relationship between this harm and the measures taken by the company aimed at ensuring the fulfillment of the obligations provided for by the Law; compliance with conditions that exclude unauthorized access to material data carriers and ensure data safety; familiarization of company employees directly involved in data processing with the provisions of the legislation of the Russian Federation on data, local acts on the issues of data processing and protection and training of company employees.
Terms of data processing (storage)
The terms of data processing (storage) are determined based on the purposes of data processing, in accordance with the validity period of the contract with the data subject, the requirements of federal laws, the requirements of data operators on whose behalf the company processes data, the basic rules for the operation of organizational archives, and the statute of limitations.
Data whose processing (storage) period has expired must be destroyed, unless otherwise provided by federal law. Storing data after termination of processing is permitted only after it has been depersonalized.
Changes and updates
The Company reserves the right to make necessary changes to the site, replace or remove any parts of its content and restrict access to the site at any time at its sole discretion.
The company also reserves the right to change the Privacy Policy at any time in order to further improve the system of protection against unauthorized access to the personal data you provide.