Personal Data Processing Policy

General provisions
This personal data processing policy is drawn up in accordance with the requirements of the Federal Law of 27.07.2006. No. 152-FZ "on personal data" (hereinafter — the Law on Personal Data) and determines the procedure for processing personal data and measures to ensure the security of personal data taken by Laserenissima LLC (hereinafter — The operator).
1.1. The operator sets its most important objective and condition for the exercise of its activities respect for the rights and freedoms of a person and a citizen in the processing of his personal data, including the protection of rights to privacy, personal and family secrets.
1.2. This policy of the operator regarding the processing of personal data (hereinafter the policy) applies to all information that the operator may obtain about visitors to the siteeb https://laserenissima.ru.
2. Basic concepts used in politics
2.1. Automated processing of personal data-processing of personal data with the help of computer equipment.
2.2. Blocking of personal data-temporary cessation of processing of personal data (unless processing is necessary to clarify personal data).
2.3. Site andb - a collection of graphic and information materials, as well as computer programs and databases that ensure their availability on the Internet through a network address https://laserenissima.ru.
2.4. Information system of personal data-the set of personal data contained in databases and providing their processing of information technologies and technical means.
2.5. Depersonalization of personal data-actions as a result of which it is not possible to determine without the use of additional information the belonging of personal data to a particular user or other subject of personal data.
2.6. Processing of personal data-any action (operation) or set of actions (operations) performed with or without the use of such means of automation with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transmission (dissemination, granting, access), depersonalization, blocking, deletion, destruction of personal data.
2.7. The operator is a public authority, a municipal authority, a legal or natural person, independently or together with other persons who organize and/or process personal data, as well as who define the purposes of the processing of personal data, the composition of the personal data to be processed, the actions (operations) performed with the personal data.
2.8. Personal data - any information relating directly or indirectly to a particular user of the siteeb https://laserenissima.ru.
2.9. The personal data allowed by the data subject to personal data for dissemination is personal data to which the data subject has access to an unlimited number of people who are granted consent to the processing of personal data allowed by the data subject to personal data for dissemination in the manner prescribed by the law on personal data (hereinafter — Personal Data allowed for dissemination).
2.10. User - any visitor to the siteeb https://laserenissima.ru.
2.11. The provision of personal data is an action aimed at the disclosure of personal data to a certain person or to a certain circle of persons.
2.12. Disclosure of personal data - any action aimed at disclosing personal data to an indefinite circle of persons (transmission of personal data) or familiarizing with the personal data of an unlimited circle of persons, including disclosure of personal data in the media, publication on information and telecommunications networks, or granting access to personal data in any other way.
2.13. Cross-border transfer of personal data-transfer of personal data on the territory of a foreign State to an authority of a foreign State, to a foreign foreign natural or legal person.
2.14. Destruction of personal data - any action as a result of which personal data is irrevocably destroyed with the impossibility of further restoring the content of personal data in the personal data information system and/or the destruction of material media of personal data.
3. Fundamental rights and obligations of the operator
3.1. The operator has the right to:
- obtain reliable information and/or documents containing personal data from the data subject;
- in the event that the data subject withdraws consent to the processing of personal data, as well as the management of the processing with a request to stop the processing of personal data, the operator has the right to continue the processing of personal data without the consent of the data subject, provided that there are grounds specified in the personal data Act;
- independently determine the composition and list of necessary and sufficient measures to ensure the fulfillment of obligations under the Personal Data Law and regulatory acts adopted in accordance with it, except as otherwise provided by the Personal Data Law or other federal laws.
3.2. The operator must:
- provide the data subject, at his request, with information relating to the processing of his personal data;
- organize the processing of personal data in the manner established by the current legislation of the Russian Federation;
- respond to requests and requests of data subjects and their legal representatives in accordance with the requirements of the Personal Data Act;
- communicate to the competent authority for the protection of the rights of the subjects of personal data, at the request of that authority, the necessary information within 10 days from the date of receipt of such a request;
- publish or otherwise provide unrestricted access to this Privacy Policy;
- take legal, organizational and technical measures to protect personal data from improper or accidental access, destruction, modification, blocking, copying, provision, dissemination of personal data and other unlawful actions against personal data;
- interrupt the transfer (dissemination, provision, Access) of personal data, interrupt the processing and destroy personal data in the manner and in the cases provided for by the law on personal data;
- fulfill other obligations under the law on personal data.
4. Fundamental rights and obligations of the subjects of personal data
4.1. The subjects of Personal Data have the right to:
- receive information regarding the processing of your personal data, except as required by federal laws. The information is provided to the personal data subject by the Data Controller in an accessible form and must not contain personal data relating to other personal data subjects, unless there are legitimate reasons for the disclosure of such personal data. The list of information and the procedure for obtaining it is established by the law on personal data;
- request the operator to clarify your personal data, block or destroy it in the event that the personal data is incomplete, outdated, inaccurate, illegally obtained or is not necessary for the stated purpose of processing, as well as take the measures provided for by law to protect your rights;
- submit a condition of prior consent to the processing of personal data in order to promote goods, works and services on the market;
- the withdrawal of consent to the processing of personal data, as well as the request for termination of the processing of personal data;
- appeal to the competent authority for the protection of the rights of the subjects of personal data or in court for unlawful actions or omissions of the operator in the processing of your personal data;
- for the exercise of other rights provided for by the legislation of the Russian Federation.
4.2. The subjects of personal data are required to:
- provide the operator with reliable data about himself;
- communicate to the Operator the Refinement (Updating, modification) of their personal data.
4.3. Persons who transmitted to the operator false information about themselves or information about another subject of personal data without the consent of the latter are liable in accordance with the legislation of the Russian Federation.
5. Principles of personal data processing
5.1. The processing of personal data is carried out on a legal and fair basis.
5.2. The processing of personal data is limited to the achievement of specific, predetermined and legitimate objectives. The processing of personal data incompatible with the purposes of the collection of personal data is not allowed.
5.3. It is not allowed to merge databases containing personal data processed for purposes incompatible with each other.
5.4. Only personal data that meet the purposes of their processing are subject to processing.
5.5. The content and scope of the personal data processed are consistent with the stated purposes of the processing. The redundancy of personal data processed in relation to the stated purposes of their processing is not allowed.
5.6. The processing of personal data guarantees the accuracy of the personal data, their sufficiency and, where necessary, the relevance with respect to the purposes of the processing of personal data. The operator shall take the necessary measures and / or ensure that they are taken to delete or clarify incomplete or inaccurate data.
5.7. The storage of personal data is carried out in a form that allows the data subject to be determined, no longer than required by the purpose of the processing of personal data, unless the retention period of personal data is established by federal law, the Contract of which the data subject is a beneficiary or guarantor. The personal data processed are destroyed or impersonalized upon the achievement of the purposes of the processing or in the event of loss of the need to achieve these purposes, unless otherwise provided for by federal law.
6. Purpose of personal data processing
Purpose of processing

inform the user by sending e-mails

Personal data

surname, first name, patronymic
email
telephone number
Legal reasons

statutory (constituent) documents of the operator
contracts concluded between the operator and the data subject
Types of personal data processing

Collection, recording, systematization, accumulation, storage, destruction and depersonalization of personal data
Sending informative emails to an email address
7. Conditions for the processing of personal data
7.1. The processing of personal data is carried out with the consent of the data subject to the processing of his personal data.
7.2. The processing of personal data is necessary for the achievement of the purposes provided for by the international treaty of the Russian Federation or by law, for the exercise of the functions, powers and duties assigned by the legislation of the Russian Federation to the operator.
7.3. The processing of personal data is necessary for the execution of justice, the execution of a judicial act, an act of another body or official to be executed in accordance with the legislation of the Russian Federation on enforcement proceedings.
7.4. The processing of personal data is necessary for the performance of a contract of which the beneficiary or guarantor is the subject of the personal data, as well as for the conclusion of a contract on the initiative of the subject of the personal data or a contract according to which the subject of the personal data will be the beneficiary or guarantor.
7.5. The processing of personal data is necessary for the exercise of the rights and legitimate interests of the operator or third parties or for the achievement of socially relevant objectives, provided that there are no violations of the rights and freedoms of the data subject.
7.6. The processing of personal data is carried out, access to an unlimited range of persons to whom the data subject has provided personal data or at his request (hereinafter — Public Personal Data).
7.7. The processing of personal data to be published or disclosed is carried out compulsorily in accordance with federal law.
8. Procedure for the collection, storage, transfer and other types of processing of personal data
The security of the personal data processed by the Data Controller is ensured through the implementation of the legal, organizational and technical measures necessary to fully meet the requirements of the current legislation on the protection of personal data.
8.1. The operator ensures the security of personal data and takes all possible measures that exclude access to personal data by unauthorized persons.
8.2. The user's personal data will never, under any circumstances, be transferred to third parties, except in cases related to the execution of current legislation or in the event that the data subject has given consent to the operator to transfer data to third parties to fulfill the obligations under a civil law contract.
8.3. In case of inaccuracies in personal data, the user can update them independently by sending a notification to the operator at the operator's email address laserenissima@mail.ru with the label "Updating Personal Data".
8.4. The period of processing of personal data is determined by the achievement of the purposes for which the personal data was collected, unless another period is provided for by the Contract or applicable law.
The user can at any time withdraw his consent to the processing of personal data by sending a notification to the operator by e-mail to the operator's e-mail address laserenissima@mail.ru with the label "withdrawal of consent to the processing of personal data".
8.5. All information collected by third-party services, including payment systems, means of communication and other service providers, is stored and processed by such persons (operators) in accordance with their terms of service and Privacy Policy. The data subject of personal data and / or with the aforementioned documents. The operator is not responsible for the actions of third parties, including the service providers referred to in this paragraph.
8.6. The prohibitions established by the data subject on the transfer (with the exception of granting access), as well as on the processing or conditions of processing (with the exception of Access) of personal data allowed for dissemination, do not apply in cases of processing of personal data in the public, public and other public interest defined by the legislation of the Russian Federation.
8.7. The person responsible for the processing of personal data guarantees the confidentiality of personal data.
8.8. The operator retains personal data in a form that allows the data subject to be identified, no longer than is required by the purpose of the processing of personal data, unless the retention period of personal data is established by federal law, the Contract of which the data subject is a beneficiary or guarantor.
8.9. A condition for the termination of the processing of personal data may be the achievement of the purposes of the processing of personal data, the expiration of the consent of the subject of personal data, the withdrawal of the consent of the subject of personal data or the request for termination of the processing of personal data, as well as the identification of improper processing of personal data.
9. List of actions carried out by the operator with the personal data received
9.1. The operator collects, records, systematizes, accumulates, stores, clarifies (updates, modifies), recovers, uses, transmits (dissemination, granting, access), depersonalizes, blocks, erases and destroys personal data.
9.2. The operator carries out the automated processing of personal data with or without the receipt and/or transmission of the Information received over information and Telecommunications networks.
10. Cross-border transfer of personal data
10.1. The operator, before the commencement of the cross-border transfer of personal data, is obliged to notify the competent authority for the protection of the rights of personal data subjects of his intention to carry out the cross-border transfer of personal data (this notification is sent separately from the notification of the intention to process personal data).
10.2. The operator, before submitting the aforementioned notification, is obliged to receive relevant information from the authorities of a foreign State, from foreign natural persons, from foreign legal entities wishing to transfer personal data across borders.
11. Confidentiality of personal data
The operator and other persons who have obtained access to personal data are obliged not to disclose to third parties or distribute personal data without the consent of the subject of personal data, unless otherwise provided by federal law.
12. Final provisions
12.1. The user can obtain any clarification on matters of interest related to the processing of his personal data by contacting the operator by e-mail laserenissima@mail.ru.
12.2. This document will reflect any changes to the policy of processing personal data by the operator. The policy is in effect indefinitely until it is replaced with a new version.
12.3. The current version of the Privac policyy https://laserenissina.ru/policyeng