Privacy Policy Regarding the Processing of Personal DataGeneral ProvisionsThis personal data processing policy is compiled in accordance with the requirements of Federal Law No. 152-FZ “On Personal Data” dated July 27, 2006 (hereinafter referred to as the "Personal Data Law") and defines the procedure for processing personal data and measures to ensure the security of personal data implemented by LLC M-Resurs Gidrotekhnika (hereinafter referred to as the "Operator").
1.1. The Operator considers ensuring the observance of human and citizen rights and freedoms when processing personal data, including the protection of privacy, personal, and family secrets, to be its most important objective and condition for its activities.
1.2. This Operator’s policy regarding the processing of personal data (hereinafter referred to as the "Policy") applies to all information that the Operator may receive about visitors to the website
https://botsla.com.
Key Terms Used in the Policy2.1. Automated processing of personal data: processing of personal data using computing tools.
2.2. Blocking of personal data: temporary cessation of personal data processing (except in cases when processing is necessary to clarify personal data).
2.3. Website: a set of graphic and informational materials as well as programs for electronic computers and databases ensuring their accessibility on the internet at the network address
https://botsla.com.
2.4. Information system of personal data: a set of personal data contained in databases and information technologies and technical tools ensuring their processing.
2.5. Depersonalization of personal data: actions that make it impossible to determine the identity of personal data to a specific User or other subject of personal data without additional information.
2.6. Processing of personal data: any action (operation) or a set of actions (operations) performed with or without the use of automation tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, and destruction of personal data.
2.7. Operator: a state or municipal body, legal entity, or individual, independently or jointly with other entities, organizing and/or performing the processing of personal data and determining the purposes, composition, and actions (operations) performed with personal data.
2.8. Personal data: any information directly or indirectly related to a specific or identifiable User of the website
https://botsla.com.
2.9. Personal data permitted for distribution by the subject of personal data: personal data to which unrestricted access is granted by the subject of personal data through consent for processing personal data for distribution purposes, as provided by the Personal Data Law (hereinafter referred to as "data permitted for distribution").
2.10. User: any visitor of the website
https://botsla.com.
2.11. Provision of personal data: actions aimed at disclosing personal data to a specific person or a specific circle of persons.
2.12. Distribution of personal data: any actions aimed at disclosing personal data to an indefinite circle of persons (transfer of personal data) or at familiarizing oneself with personal data by an indefinite circle of persons, including the publication of personal data in mass media, posting on information and telecommunications networks, or providing access to personal data in any other way.
2.13. Cross-border transfer of personal data: transfer of personal data to the territory of a foreign state, a foreign state authority, a foreign individual, or a foreign legal entity.
2.14. Destruction of personal data: any actions resulting in the irreversible destruction of personal data with no possibility of further recovery in the personal data information system and/or destruction of personal data carriers.
Operator’s Main Rights and Responsibilities3.1. The Operator has the right to:
— receive accurate information and/or documents containing personal data from the subject of personal data;
— in the case of the withdrawal of consent by the subject of personal data for its processing, or a demand to cease processing, the Operator may continue processing without consent on grounds specified in the Personal Data Law;
— independently determine the composition and list of measures sufficient for ensuring compliance with the Personal Data Law and related regulatory acts unless otherwise stated by the Personal Data Law or other federal laws.
3.2. The Operator is obligated to:
— provide the subject of personal data with information regarding the processing of their data upon request;
— organize the processing of personal data as established by current Russian legislation;
— respond to requests and inquiries from personal data subjects and their legal representatives in accordance with the Personal Data Law;
— notify the authorized body for the protection of personal data rights upon request within 10 days from the date of receipt of such a request;
— publish or otherwise ensure unrestricted access to this Policy;
— take legal, organizational, and technical measures to protect personal data from unauthorized or accidental access, destruction, modification, blocking, copying, provision, distribution, and other unlawful actions;
— cease the transfer (distribution, provision, access) of personal data and terminate processing and destroy personal data as prescribed by the Personal Data Law;
— fulfill other obligations provided by the Personal Data Law.
4. Main Rights and Responsibilities of Personal Data Subjects4.1. Personal data subjects have the right to:
— receive information regarding the processing of their personal data, except as provided by federal laws. Information is provided by the Operator in an accessible form, and it should not include personal data related to other personal data subjects unless there are legal grounds for disclosing such data. The list of information and the procedure for obtaining it are defined by the Personal Data Law;
— demand that the Operator clarify their personal data, block it, or destroy it if the personal data is incomplete, outdated, inaccurate, illegally obtained, or unnecessary for the stated purpose of processing, as well as take legal measures to protect their rights;
— put forward the condition of prior consent when processing personal data for the purpose of promoting goods, works, and services on the market;
— withdraw consent for the processing of personal data;
— appeal to the authorized body for the protection of the rights of personal data subjects or to the court if they believe that their rights and interests have been violated;
— exercise other rights provided by Russian legislation.
4.2. Personal data subjects are obligated to:
— provide the Operator with accurate data about themselves;
— inform the Operator of any updates (changes) to their personal data.
4.3. Persons who have provided the Operator with false information about themselves or information about another personal data subject without their consent shall be liable in accordance with Russian legislation.
5. The Operator Can Process the Following Personal Data of the User5.1. Full Name.
5.2. Email address.
5.3. Phone numbers.
5.4. Year, month, date, and place of birth.
5.5. Photos.
5.6. Information about the User’s employer, position, and education.
5.7. Data that is automatically transmitted during the use of the website, including IP address, cookie data, browser information, access time, referrer (address of the previous page).
5.8. Other personal data provided by the User independently in the course of using the website, including during communication within the website functionality.
5.9. Data specified in clauses 5.1–5.8 of this Policy is further referred to as Personal Data.
5.10. Processing of special categories of personal data related to race, ethnicity, political views, religious or philosophical beliefs, health status, or intimate life is not carried out by the Operator.
5.11. Processing of personal data permitted for distribution from among special categories of personal data specified in Article 10(1) of the Personal Data Law is allowed if the prohibitions and conditions established by Article 10(1.1) of the Personal Data Law are observed.
5.12. The User’s consent to the processing of personal data permitted for distribution is provided separately from other consents for the processing of their data. The conditions established, in particular, by Article 10(1.1) of the Personal Data Law are followed.
5.13. The Operator ensures the confidentiality of personal data when processing personal data.
5.14. The Operator may store personal data in information systems both within the territory of the Russian Federation and beyond.
6. Principles of Personal Data Processing6.1. Processing of personal data is carried out on a lawful and fair basis.
6.2. Processing of personal data is limited to achieving specific, pre-defined, and lawful objectives. Processing of personal data incompatible with the purpose of collecting personal data is not allowed.
6.3. Combining databases containing personal data processed for incompatible purposes is not allowed.
6.4. Only personal data that meets the processing purposes is subject to processing.
6.5. The content and volume of processed personal data correspond to the stated purposes of processing. The redundancy of processed personal data concerning the stated purposes is not allowed.
6.6. When processing personal data, the accuracy of personal data, its sufficiency, and, when necessary, its relevance to the purposes of personal data processing are ensured. The Operator takes necessary measures and/or ensures their adoption to remove or clarify incomplete or inaccurate data.
6.7. Personal data is stored in a form that allows the identification of the personal data subject no longer than required by the purposes of personal data processing unless the storage period is established by federal law, an agreement to which the personal data subject is a party, beneficiary, or guarantor.
7. Terms for Processing Personal Data7.1. The Operator processes personal data only if the personal data subject consents to the processing of their personal data.
7.2. The processing of personal data is necessary to achieve the objectives stipulated by an international treaty of the Russian Federation or by law, to carry out and fulfill the functions, powers, and duties assigned to the Operator by Russian legislation.
7.3. The processing of personal data is necessary to administer justice, execute a judicial act, an act of another body, or an official subject to execution under Russian legislation regarding enforcement proceedings.
7.4. The processing of personal data is necessary to execute a contract where the personal data subject is a party, beneficiary, or guarantor, as well as to conclude a contract on the initiative of the personal data subject or a contract under which the personal data subject will be a beneficiary or guarantor.
7.5. The processing of personal data is necessary to exercise the rights and legitimate interests of the Operator or third parties, provided that this does not violate the rights and freedoms of the personal data subject.
7.6. Personal data is processed when access to it is granted to an unlimited number of persons by the personal data subject or at their request (hereinafter referred to as public personal data).
7.7. The processing of personal data subject to publication or mandatory disclosure under federal law is allowed.
8. The Order of Collection, Storage, Transfer, and Other Types of Personal Data ProcessingThe security of personal data processed by the Operator is ensured through the implementation of legal, organizational, and technical measures required to fully comply with the requirements of current personal data protection legislation.
8.1. The Operator ensures the safety of personal data and takes all possible measures to exclude access to personal data by unauthorized persons.
8.2. The User’s personal data will never be shared with third parties unless required by law. It will not be sold, exchanged, or disclosed in any other way except for the purposes outlined in this Policy or with the User's consent.
8.3. In the event of inaccuracies in personal data, the User may update it independently by sending a notification to the Operator at the Operator’s email address, indicating "Updating personal data" in the subject line.
8.4. The processing duration of personal data is determined by achieving the purposes for which the personal data was collected unless a different period is stipulated by a contract or applicable law. The User can withdraw consent for the processing of their data at any time by sending a notification to the Operator via email with the subject line "Withdrawal of consent for personal data processing."
8.5. All information collected by third-party services, including payment systems, communication tools, and other service providers, is stored and processed by these parties (Operators) per their User Agreements and Privacy Policies. The personal data subject and/or User must familiarize themselves with these documents in a timely manner. The Operator is not responsible for the actions of third parties, including the services specified in this clause.
8.6. The prohibitions established by the personal data subject on the transfer (except providing access), as well as on processing or storage, do not apply in cases of personal data processing in public sources as established by federal law.
8.7. The Operator ensures the confidentiality of personal data when processing personal data.
8.8. The Operator stores personal data in a form that allows the identification of the personal data subject no longer than the purposes of personal data processing require unless the storage period is established by federal law, a contract to which the personal data subject is a party, beneficiary, or guarantor.
8.9. A condition for terminating the processing of personal data may be the achievement of the purposes of processing personal data, the expiration of the consent provided by the personal data subject, or the withdrawal of consent by the personal data subject, as well as the identification of unlawful processing of personal data.
9. Cross-Border Transfer of Personal Data9.1. Before carrying out the cross-border transfer of personal data, the Operator is obligated to ensure that the foreign state to whose territory the transfer of personal data is intended provides reliable protection of the rights of personal data subjects.
9.2. Cross-border transfer of personal data to foreign states that do not meet the above requirements can only be carried out if the personal data subject consents in writing to the cross-border transfer of their personal data and/or the execution of a contract where the personal data subject is a party.
10. Final Provisions10.1. The User may obtain any clarifications on matters of interest related to the processing of their personal data by contacting the Operator via email.
10.2. This document will reflect any changes in the Operator’s personal data processing policy. The policy is valid indefinitely until replaced by a new version.
10.3. The current version of the Policy is freely available on the Operator’s website
Confidentiality of Personal DataThe Operator and other persons who have access to personal data are obligated not to disclose or distribute personal data to third parties without the consent of the subject of personal data unless otherwise stipulated by federal law.
Final Provisions12.1. The User may obtain any clarifications regarding questions related to the processing of their personal data by contacting the Operator via email at
sales@botsla.com.
12.2. Any changes to the Operator's personal data processing policy will be reflected in this document. The Policy is effective indefinitely until replaced by a new version.
12.3. The current version of the Policy is freely available online at
https://botsla.com/privacyen.
