This Policy is drafted in accordance with the requirements of GDPR (Regulation (EU) 2016/679), which is binding on the implementation of the legislative act and, thus, our website is also managed in accordance with the General Data Protection Regulation (GDPR).
We consider data confidentiality as an important business principle. Our policies and methods of data protection are focused on the processing, transfer and storage of personal data in an appropriate and legal way, in order to ensure their confidentiality, integrity and accessibility.
The SI data protection policy is based on the following principles:
- The processing of personal data is carried out in a legal, conscientious and transparent manner;
- The collection of personal data is carried out only for specified, unambiguous and legitimate purposes and does not contemplate additional processing of data which is incompatible with these purposes;
- The collection of personal data is appropriate, relevant and limited only to the information required for the purposes for which these data are collected;
- Personal data is accurate and updated if necessary;
- It is necessary to take all reasonable measures to ensure that inaccurate personal data, depending on the purpose of their processing, will be immediately removed or corrected;
- Personal data is stored in such a way that the data subject may be identified no longer than is required to achieve the purposes for which these data were collected;
- All personal data is stored in such a way as to ensure their confidentiality and safety;
- Personal data is not transferred to third parties, except the cases when it is necessary to provide services on the basis of a contract and legal requirements;
- Data subjects should have the right to access personal data, to modify or delete them, to restrict processing, to object to it, and the right to transfer the data.
Personal data means any information that can be attributed to an identified or identifiable individual (“data subject”). Personal data includes all types of information that can be directly or indirectly (i.e., using other data) correlated with the data subject, such as name, date of birth, address, email address, phone number, etc.
Collection of Personal Data
Depending on the services, products, Internet site and Applications that you use, we receive personal data of different types from you or about you.
The data you provide. We collect personal information that you provide, such as: your name, username or email address, date of birth, profile photo, phone number, username, nickname and other data when you use our website, applications and other services/products, create an account, contact us, take part in an online survey, discussions on the forum or in chat rooms, interact with us at events or in any other way.
Data on the use of our services and products. When you visit our website, Application, we can collect information about the type of device that you use, your IP address, information about the operating system, UDID of the device, the content that the user is accessing, and other technologies, if they are available, which allows us to improve our own services.
Data received from third parties. We can collect data from third parties, such as business partners and marketing agencies. Such data may include your name, your contact information, your IP address and other information. We can also collect personal data for other purposes such as statistics, administration and communication, IT technologies and security management, authentication and authorization systems, support systems, work on international projects. We collect a minimum of information to achieve the objectives under this policy.
Users of the Internet site, wishing to use our services and providing us with information, may be requested personal information so that SI can carry out its work, provide services and improve them.
In general, we collect only the information that allows us to provide you with our services at the highest level.
Processing and Use of Personal Data
We process personal data only to the extent necessary for defined, specific and legitimate purposes.
In general, we use personal data to provide, improve and develop our products and services, to communicate with you and offer you the services designed specifically for you, and also to protect us and our customers/users.
SI collects, processes your personal data and determines how to process them, as a personal data controller for the following purposes:
– provision, improvement and development of our products and services;
– security (confirmation of the account and the actions of the user/client, etc.);
– communication with you.
Access to personal data is provided solely to the SI employees and its affiliated companies, that have the appropriate permission and a clear operational need for access to data.
Transfer of Personal Data
You can be sure of the security of your data. Personal data is not transferred to third parties, except when we share your personal information with our trusted partners, and when such transfer is necessary to provide our services. We can delegate business on our behalf to other companies and our business partners: for example, technology companies to process or provide systems and technologies that extend our products and services. In such cases, we give them the necessary information. Service providers receive only the personal data they require to provide services. We do not disclose personal data to third parties in order to enable them to advertise their products and services to our customers.
In some situations, SI may be obliged to disclose personal information in response to legitimate requests from higher supervisory authorities to meet the requirements set out in the GDPR. We can also disclose personal information in cases when this is required by law, for example, in the implementation of court decisions or other legal procedures, as well as if we are compelled to protect our rights, the safety of our clients or to respond to law enforcement body requests.
Security of Data Processing
We know that security is important to our users/customers and we take care of the security of your information. We take technical, physical and administrative security measures to protect your personal information from loss, unlawful use, unauthorized access, disclosure or modification. Some of the protection methods that we use include data encryption, physical access control to data processing, and authorization control of access to information. We also need your help: you are responsible for the accuracy of the personal information you provided, and also because your password and account login information are stored in a secure place and protected from third-party access.
Access to Personal Data, Data Change and Data Deletion
We take the necessary measures to ensure the accuracy, completeness, and relevance of your personal data. To help us ensure the relevance of personal data, we recommend clients to inform us of any changes or inconsistencies.
You have the right to access your personal data, which we collect, correct and delete. You also have the right at any time to prohibit or restrict further processing of your personal data. In case of your request for the removal of your data before the expiration of the above-stated retention period, we undertake to delete your data within 10 calendar days. You have the right to receive your personal data in a structured standard format. You can file a complaint with the relevant data protection authority regarding the processing of your personal data.
To ensure the privacy and security of your personal data, we may ask you for information that will confirm your identity and give the right to access to such data, as well as to search for personal data, and to furnish you with it.
Users/customers have the right to forward requests to SI for the use of their personal data. All correspondence received by SI from clients refers to information of limited access and is not disclosed without the client’s consent. Personal data and other information about the client who sent the request will be used solely to respond to the subject of the received request. To request information from us related to access to personal data, please contact the following address: email@example.com
We will respond to your request within a reasonable time, which in any case will not exceed 30 calendar days.
With the consent of clients, the SI can send them promotional letters. This special form of consent must be provided voluntarily, knowingly and unambiguously. These requirements are considered to be fulfilled if the customer noted the point about the consent to receive advertising emails (active consent).
The Customer has the right to object at any time, upon prior request and free of charge, against the use of personal data relating to the customer for direct marketing purposes without explanation. To do this, the customer should use the option “Unsubscribe”, which is contained in the e-mails sent to us, or contact us at: firstname.lastname@example.org
After the first objection from the client, personal data will no longer be used for direct marketing purposes.
The newsletter contains information that, in our opinion, may be of interest to our customers – for example, news about our products and services.
The SI monitors the implementation of the requirements of the GDPR and the principles set forth in this Policy and can demonstrate this at any time. The SI should keep records of data processing activities, including the required GDPR information, and, if necessary, provide data to the supervisory authorities on demand in accordance with the GDPR.
Amendments to the Policy
You agree to be notified of the update of this Regulation by publishing the updated Terms on our website. We recommend that customers regularly check our website for up-to-date information about our Privacy Statement. If you do not agree with any terms of the provision or its updated version, you must stop using our services/products and/or delete your account. Continuing to use any services/products, the website, you accept all the conditions of this provision and its updates.
Also, you can write to us at: Oleg Koshevogo str., 1 Chernihiv, Ukraine 14033