PRIVACY POLICY
for the users of smileexpo.ru website
This Privacy Policy (hereinafter referred to as the “Privacy Policy”) has been developed in accordance with the Federal Law dd. 27.07.2006 № 152-ФЗ “On personal data” (hereinafter referred to as “ФЗ-152”) and on the basis of the Convention for the Protection of Individuals with regard to Automatic Processing of Personal Data (Strasbourg, January 28, 1981) (hereinafter referred to as the “Convention”).
This Privacy Policy shall be applied to all information about the User, which can be received by the Website Administration of the Website https://smileexpo.ru (hereinafter referred to as the “Website”) during the use of Website, its services, software and products.
1. TERMS AND DEFINITIONS
1.1. “Website Administration” shall mean individuals or legal entities, authorized to manage the Website on the behalf of SMileS LLC, who organize and/or process personal data.
1.2. “Personal data” shall mean any information expressly or implicitly related to the User (personal data subject), provided by the User personally during the registration (personal account creation) or during the use of Website services.
1.3. “Processing of personal data” shall mean any action (operation) or a series of actions (operations), involving automation tools or not, on personal data, including gathering, recording, systematization, collection, saving, specification (updating, changing), receiving, usage, transferring (dissemination, provision, access) depersonalization, blocking, removing and destroying of personal data.
1.4. “Confidentiality of personal data” shall mean the requirement, which is binding upon the Operator or other persons that have access to personal data, on prevention of information dissemination without the consent of personal data subject or other legitimate grounds.
1.5. “Operator” shall mean the public authority, municipal authority, legal body or individual that on its own account or together with other subjects organize and/or conduct processing of personal data, as well as define the aims of processing of personal data, content of personal data to be processed, actions (operations) conducted with personal data.
1.6. “Blocking of personal data” shall mean the temporary cessation of personal data processing (except for cases when such processing is necessary for specifying personal data).
1.7. “Destruction of personal data” shall mean the actions that make it impossible to recover the content of personal data in the personal data information system and/or result in the destruction of tangible media containing personal data.
1.8. “Depersonalization of personal data” shall mean the actions that make it impossible to define the relation of personal data to a certain subject of personal data without referring to the additional information.
1.9. “Personal data information system shall mean the complex of personal data containing in the database and informational technologies and technical means that ensure the processing of personal data.
1.10. “Cross-border transfer of personal data” shall mean the transfer of personal data to the territory of the foreign country to the public authority of the foreign country, foreign individual or foreign legal body.
1.11. “Website” shall mean the SMileS LLC website in the Internet at the address: https://smileexpo.ru.
2. GENERAL PROVISIONS
2.1. Privacy policy defines the procedure of processing personal data and measures of ensuring the security of personal data by the Operator, aiming to protect human and civil rights and freedoms, including the right to personal and family privacy.
2.2. The use of the Website services shall mean unreserved compliance of the User with this Privacy Policy and conditions of its personal data processing, specified herein.
In case the User fails to comply with the terms and conditions of the Privacy Policy, the User shall desist from the use of the Website services.
2.3. The Privacy Policy shall be applied to the Website only. The Website Administration shall not control and be liable for websites of the third parties, which can be visited by the User using links published on the Website.
2.4. Personal data of the User shall include:
2.4.1. minimum of necessary information, provided by the User: name, e-mail, telephone number, as well as surname, patronymic, workplace, position, location for the purpose of making an agreement;
2.4.2. other information, which is automatically saved in logs of the server and includes as follows: IP address, given to the User by its Internet service provider; information about the User’s browser (or other programs used for accessing the services); addresses of pages visited by the User on the Website; date and period of visiting.
2.5. Personal data specified in p. 2.4.1 are saved only if specified by the User.
Information that is obligatory for services provision is marked. Other information is provided by the User in its sole discretion.
2.6. To satisfy the requirements of p. 2 Art. 18.1 ФЗ-152, this Privacy policy is available in the free access in the information and telecommunication Internet network on the Operator’s website.
3. PURPOSES OF USERS’ PERSONAL DATA PROCESSING
3.1. The Website Administration shall store and keep only the Personal data that is necessary for service rendering, execution of agreements and contracts with the User, feedback.
3.2. The Website shall process User’s Personal data only for purposes as follows:
3.2.1. identifying of the User, registered on the Website, ordering options and/or making Agreements remotely;
3.2.2. providing the access to personalized Website resources to the User;
3.2.3. arranging feedback and communication with the User, including notification and message sending regarding the use of the Website, provision of services, processing User’s requests and applications;
3.2.4. determining User’s location to ensure safety and prevent fraud;
3.2.5. ensuring validity and integrity of Personal data, provided by the User;
3.2.6. creating personal account to make orders, in case the User gives its consent for it;
3.2.7. notifying the Website User about the status of orders;
3.2.8. processing and receiving payments, confirming taxes or tax concessions, payment contestation;
3.2.9. providing the User with efficient clients and technical support if problems regarding the use of the Website arise;
3.2.10. providing the User with information about service updates, special offers, information on prices, newsletter or other information on the behalf of the Website or partners of the Website, etc., providing that the User gives its consent for it;
3.2.11. providing the User with the access to websites or services of the Website partners.
4. TERMS AND CONDITIONS OF PERSONAL DATA PROCESSING
4.1. Processing of the User’s personal data shall be carried out without any time limits, in any legal way, including its carrying out in personal data information systems, applying means of automation or without applying such means.
4.2. The Website shall have the right to transfer the User’s Personal data to the third parties on the occurrence of any of the following:
4.2.1. The User gives its consent for such actions;
4.2.2. Such transfer is necessary for the use of particular service by the User or for executing particular agreement or contract with the User;
4.2.3. Such transfer is subject to applicable law in accordance with the procedure established by the law, including: obtaining an official request from law enforcement agencies, executing judgement, preventing fraud, protecting users’ rights, etc.
4.3. The Website Administration shall take necessary organizational and technical measures to protect the User’s Personal data from unauthorized or accidental access, destroying, modification, blocking, copying, dissemination, as well as from other illegal actions of the third parties, including:
4.3.1. the use of cryptographic protocol SSL, ensuring the security of connection and transfer of encrypted data;
4.3.2. regular updating of services and management systems of the Website and its content;
4.3.3. regular tests for malicious codes;
4.3.4. the use of private virtual server for hosting the Website.
4.4. The Website Administration shall ensure the Confidentiality of personal data, not to disclose it without the prior written consent of the User, as well as not to sell, exchange, publish or disclose in other possible way the User’s Personal data, except as provided in this Privacy Policy.
4.5. The Website Administration shall block Personal data of the relevant User from the moment of receiving the request of the User or its authorized representative or authorized body on the protection of the rights of personal data subjects for the verification period in case of revealing unreliable personal data or illegal actions.
4.6. Operator must make sure that foreign country that is expected to accept the personal data transferred to its territory ensures the proper security of rights of personal data owners before the start of such transfer.
4.7. Cross-border transfer of personal data to the territories of foreign countries that fail to ensure the proper security of rights of personal data owners can take place in cases of:
4.7.1. a written consent of the User for cross-border transfer of his personal data;
4.7.2. circumstances stipulated by the international agreements of the Russian Federation;
4.7.3. circumstances stipulated by the federal laws if this is necessary to protect the basis of the constitutional order of the Russian Federation, ensure the protection and safety of the country, as well as ensure the consistent and safe functioning of the transport system, protection of interests of the personality, community and state in the field of transport system from the unlawful acts;
4.7.4. fulfillment of the agreement that involves the User as one of the parties;
4.7.5. protection of life, health, other vital interests of personal data owners or other bodies when it is not possible to acquire the written consent from personal data owners.
5. LIABILITY OF THE PARTIES
5.1. The Website Administration failed to fulfil its obligations shall be liable for damages caused to the User as the result of unlawful use of personal data, in accordance with the legislation.
5.2. On his own account, User shall be responsible for preservation of confidentiality of his login and password, as well as for the validity of the submitted data regarding himself and the third parties.
6. DISPUTES RESOLUTION
6.1. Before initiating legal action regarding the disputes arising out of the relationship between the Website User and the Website Administration, a claim (a written proposal for voluntary settlement) shall be submitted.
6.2. The claimee shall notify the claimant about the results of the claim examination in writing within 30 (thirty) calendar days from the date of the claim receipt.
6.3. In the event of failure to settle the disputes, disputes shall be submitted for settlement in Shchelkovo Town Court in Moscow region, in accordance with the acting legislation.
7. SUPPLEMENTARY CONDITIONS
7.1. The Website Administration shall have the right to change this Privacy Policy without the consent of the User.
7.2. New Privacy Policy shall be effective as of the time of its publication on the Website, unless otherwise provided by the new version of the Privacy Policy.
7.3. In case of selling the Website, all obligations on abidance by the terms of the Privacy Policy regarding the received personal data shall be passed on the buyer.