Обработка персональных данных

Обработка персональных данных

 

Chipmedia.ru Limited Liability Company

(PSRN 1167232094677, TIN 7203406721, KPP 720301001)

 

POLITICS
Chipmedia.ru LLC
regarding the processing of personal data

 

1. TERMS AND DEFINITIONS

 

The policy of the owner of the Internet site http://cheapmedia.ru (hereinafter referred to as the Site Owner) regarding the processing of personal data and the implementation of the requirements for the protection of personal data.

In this Policy LLC "Chipmedia.ru" with respect to the processing of personal data (hereinafter - Policy) the following terms and definitions are used:

1) personal data - any information related directly or indirectly to a specified or identified individual (personal data subject), including last name, first name, patronymic, date and place of birth, address, telephone number, profession, education;

2) the operator - a state body, a municipal body, a legal entity or an individual, independently or jointly with other persons organizing and (or) carrying out the processing of personal data, as well as defining the purposes of processing personal data, the composition of personal data subject to processing, actions (operations) , performed with personal data;

3) personal data processing - any action (operation) or a set of actions (operations) performed using automation tools or without using such means with personal data, including collection, recording, systematization, accumulation, storage, updating (updating, modification); extraction, use, transfer (distribution, provision, access), depersonalization, blocking, removal, destruction of personal

data;

4) automated processing of personal data - processing of personal data by means of computer facilities;

5) distribution of personal data - actions aimed at disclosing personal data to an undefined circle of persons;

6) provision of personal data - actions aimed at disclosing personal data to a specific person or a certain circle of persons;

7) blocking of personal data - temporary termination of processing of personal data (except for cases when processing is necessary for clarification of personal data);

8) destruction of personal data - actions, as a result of which it becomes impossible to restore the contents of personal data in the information system of personal data and (or) as a result of which material carriers of personal data are destroyed;

9) depersonalization of personal data - actions, as a result of which it becomes impossible without using additional information to determine the belonging of personal data to a specific subject of personal data;

10) personal data information system - a set of personal data contained in databases and providing their processing of information technology and technical means.

 

2. GENERAL PROVISIONS

 

2.1.Politika regarding the processing of personal data is published and applied by LLC "Chipmedia.ru" (hereinafter - the Operator) in accordance with subpar. 2 part 1 tbsp. 18.1 of the Federal Law of July 27, 2006 N 152-FZ "On Personal Data".

2.2. This Policy defines the terms and conditions of the Operator regarding the processing of personal data, establishes procedures aimed at preventing and detecting violations of the legislation of the Russian Federation, and eliminating the consequences of such violations related to the processing of personal data.

2.3.The effect of this Policy extends to all processes for collecting, recording, systemizing, storing, storing, clarifying, extracting, using, transferring (distributing, providing, accessing), depersonalizing, blocking, deleting, destroying personal data carried out using automation tools and without using such means.

2.4.The purpose of processing personal data The operator is to obtain information about the subject of personal data in connection with the conclusion of a contract to which the subject of personal data is a party.

2.5. Personal data is not disseminated, nor is it provided to third parties without the consent of the personal data subject, unless otherwise provided by the contract, and used by the Operator solely for the performance specified in clause 2.4 of the Policy, contract and other agreements with the personal data subject.

 

3. PRINCIPLES OF PERSONAL DATA PROCESSING

 

3.1. The processing is organized by the Operator on the principles:

- legality and justice;

- processing only personal data that meet the objectives of their processing;

- compliance of the content and volume of processed personal data with the stated processing objectives. The processed personal data should not be redundant in relation to the stated purposes of their processing;

- Inadmissibility of combining databases containing personal data, processing of which is carried out for purposes that are not compatible with each other.

- Ensuring the accuracy of personal data, their sufficiency, and in necessary cases and relevance in relation to the purposes of processing personal data. The operator takes the necessary measures or ensures their acceptance for the removal or refinement of incomplete or inaccurate data;

- storage of personal data in a form that allows you to determine the subject of personal data, no longer than the purpose of processing personal data.

3.2. Processing of personal data is carried out in compliance with the principles and rules provided for by Federal Law No. 152-FZ of July 27, 2006 "On Personal Data" and this Policy.

 

4. RIGHTS OF THE OPERATOR AND THE PERSONAL DATA SUBJECT

 

4.1. The personal data operator has the right:

- to provide personal data of subjects to third parties, if it is provided by the current legislation (tax, law enforcement agencies, etc.);

- refuse to provide personal data in cases provided for by law;

- use the personal data of the subject without his consent in cases stipulated by law;

- to entrust processing of personal data to other persons on the basis of agreements concluded with these persons. At the same time, the Operator obliges the persons carrying out the processing of personal data on behalf of the Operator to comply with the principles and rules for the processing of personal data provided for by Federal Law No. 152-FZ of July 27, 2006 "On Personal Data";

- The operator has other rights established by the Federal Law Federal Law No. 152-FZ of July 27, 2006 "On Personal Data".

4.2. The personal data subject has the right:

- to demand the clarification of their personal data, their blocking or destruction in the event that personal data are incomplete, outdated, unreliable, illegally obtained or are not necessary for the stated purpose of processing, and also take legal measures to protect their rights;

- receive information on the processing of their personal data, including the time of their storage;

- to require the notification of all persons who have previously been informed of incorrect or incomplete personal data about all exceptions, corrections or additions made in them;

- Appeal in the authorized body for the protection of the rights of subjects of personal data or in the judicial order, wrongful acts or omissions when processing his personal data

- the subject of personal data has other rights established by the Federal Law

Federal Law of July 27, 2006 N 152-FZ "On Personal Data."

 

5. OBLIGATIONS OF THE OPERATOR

 

5.1. Processing of personal data by the Operator is carried out with the consent of the subject of personal data except for cases established by the legislation of the Russian Federation.

5.2. In the cases established by the legislation of the Russian Federation in the field of personal data, the Operator is obliged to inform the subject of personal data or his representative, whose powers will be duly executed, information concerning the processing of the personal data of the subject.

5.3. The operator bears other duties established by the Federal Law by the Federal Law of July 27, 2006 N 152-FZ "On Personal Data".

 

6.           MEASURES TO PROTECT PERSONAL DATA SAFETY

 

6.1. When processing personal data, the Operator shall apply legal, organizational and technical measures to ensure the security of personal data in accordance with Art. 19 of the Federal Law of July 27, 2006 N 152-FZ "On Personal Data".

6.2.The operator takes the following measures to protect personal data:

- appointed responsible for organizing the processing of personal data;

- local acts are issued on the processing of personal data, as well as local acts that establish procedures aimed at preventing and detecting violations of the legislation of the Russian Federation, eliminating the consequences of such

violations,
- threats to the security of personal data are determined when they are processed in

information systems of personal data;

- organizational and technical measures are implemented to ensure the safety of personal data when processing them in personal data information systems necessary to fulfill the requirements for the protection of personal data, the fulfillment of which is ensured by the levels of protection of personal data established by the Government of the Russian Federation;

- Evaluation of the effectiveness of measures taken to ensure the security of personal data prior to the commissioning of an information system for personal data;

- measures are taken to exclude the facts of unauthorized access to personal data;

- restoration of personal data, modified or destroyed due to unauthorized access to them;

- rules for access to personal data processed in the information system are established, as well as registration and recording of actions performed with personal data in the personal data information system;

- means for minimizing access rights are introduced and applied, means of access delimitation (identification and authentication of access subjects, limitation of the number of unsuccessful access attempts) and other protection measures;

- Employees of the Operator directly processing and organizing the protection of personal data, as well as persons engaged in the processing of personal data on behalf of the Operator, are familiarized with the documents defining the Operator's policy regarding the processing of personal data, local acts on the processing of personal data and legislation of the Russian Federation in respect of personal data.

6.3. In order to coordinate actions to ensure the safety of personal data, the Operator appoints the person responsible for ensuring the security of personal data.

 

7. FINAL PROVISIONS

 

7.1.This Policy is approved by the Operator according to the standards of the Operator, is publicly available and is to be posted on the official website of the Operator on the Internet.

7.2. The policy is subject to amendment and / or supplementation in case of amending the existing legislative acts and the appearance of new legislative acts, special regulatory documents for the processing and protection of personal data, the introduction of new technologies in ensuring the security of personal data.

7.3.Audit and control over the fulfillment of the requirements of this Policy is carried out by the person responsible for ensuring the security of personal data.

7.4. Responsibility of the Operator's officials who have access to personal data for non-compliance with the requirements of the rules governing the processing and protection of personal data is determined in accordance with the legislation of the Russian Federation and the local acts of the Operator.


Главная

Каталог

Избранное

Медиаплан

Профиль