Regulations on Personal Data Protection (Policy on Personal Data)
1. General Provisions
1.1. O.L.G.A. Fertility Clinic (International Fertility Center Ltd, Company No. 7840085309) and ART Guarantee Ltd (Company No. 7801654103), hereinafter referred to as the "Operator", acting in accordance with the legislation of the Russian Federation, being the administrator of the following website(s) in the Internet: fertilityguarantee.com (hereinafter referred to as the "Website", "Websites") in order to prevent unauthorized use of personal data received from each of the visitors (users) of the above Websites, hereby determines the procedure for processing personal data of the Websites users.
1.2. These Regulations are designed to streamline processing the personal data of the Website users and is aimed at ensuring compliance with the legitimate rights and interests of users, ensuring the protection of their rights and freedoms when processing personal data, including protection of privacy rights, personal and family secrets in connection with the need to obtain, collect, systematize, analyze, store and, if necessary, transfer (grant access) the information within the limits defined herein, constituting their personal data to achieve the legitimate aims for operation of the Websites.
1.3. The user’s personal data is any information related to a specific user (personal data owner) provided by it voluntarily and necessary to the Websites in connection with the purpose of their activities including:
- The user's surname, first name, and patronymic;
- The user's e-mail address (e-mail);
- The user's phone number;
- Other information reported by the user on the basis of which identification of the personal data owner is possible.
1.4. Information about the User's personal data is classified as confidential (constituting a secret of the Websites protected by the law). The confidential treatment for personal data is removed in cases provided for by the law.
1.5. The Operator has the right to carry out all legitimate necessary actions with the received users’ personal data connected solely with the achievement of the purpose for which the Websites are created and used.
2. Basic Concepts
Personal data are any information related directly or indirectly to a particular or defined individual (personal data owner).
User is a person who uses the telecommunication channels to access content and services of the Websites.
The Operator is a person who independently or collectively with other persons organizes and / or carries out personal data processing, as well as defines the purposes of personal data processing, the composition of personal data subject to processing, actions (operations) performed with personal data.
Personal data processing is any action (operation) or a set of actions (operations) performed using automation means or without using such means with personal data, including collection, recording, systematization, accumulation, storage, amendment(updating, modification), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of personal data.
Personal data distribution is actions aimed at disclosing personal data to an undetermined number of persons.
Personal data provision is actions aimed at disclosing personal data to a specific person or a certain number of persons.
Personal data blocking is temporary termination of personal data processing (except for cases when processing is necessary for personal data updating).
Personal data destruction is an action that makes it impossible to restore the contents of personal data in the personal data information system and (or) as a result of which the tangiblepersonal data media are destroyed.
Personal data depersonalization is an action that makes it impossible to use the additional information to determine whether personal data belong to a particular personal data owner.
Information is details (messages, data) regardless of the form of their presentation.
Documented information is information recorded on a material medium by documenting information with details that allow to determine such information or its tangible medium.
3. Personal Data Processing
3.1. The source of information about the user’s personal data is directly the user of any of the Operator’s Websites. The Operator does not receive or process personal data from other sources. By registering on any of the Operator's Websites, or by completing the feedback form, the user thereby agrees to its personal data processing for the purpose of providing information services. The user confirms its rights in relation to the account thus created.
3.2. When processing personal data, the Operator must take the necessary legal, organizational and technical measures to protect personal data from unauthorized, improper or accidental access thereto, distributiondestruction, modification, blocking, copying, provision, distributionas well as other illegal actions in relation to personal data:
- limiting and regulating the composition of employees who have access to personal data;
- implementation of a permissive system for users' access to information resources, software and hardware for information processing and protection;
- implementation of antivirus control, prevention of malicious programs (virus programs) and program bookmarks introduction into the corporate network;
- intrusion detection into the Operator's corporate network that violates or creates prerequisites for violating established requirements for ensuring the personal datasecurity;
- information backup;
- access control to the Operator’s territory;
3.3. When determining the scope and content of personal dataprocessed, the Operator is guided by the Constitution of the Russian Federation, Federal Law No. 152-FZ dated July 27, 2006 (as amended on July 25, 2011) "On Personal Data".
3.4. Protection of the user's personal data against their unauthorized use is provided by the Operator at its own expense in the manner prescribed by the federal law.
4. Access to Personal Data
The Operator undertakes to ensure that unauthorized and inappropriate access to the personal data of Websites’ users is prevented. In this case the authorized and appropriate access to the personal data of the Websites’ users will be the access of the persons authorized by the Operator within the framework of the Websites’ objectives and the scope.
The Operator undertakes not to transfer personal data to third parties without the user's consent, except for cases provided for by the legislation of the Russian Federation.
5. User's Rights
The Website’s user has the right to receive information regarding its personal data processing. The Website’s user has the right to appeal to the authorized body for the protection of the rights of personal data owners or in the judicial order the illegal actions or omissions of the Website when processing and protecting its personal data.
6. Information Messages
By completing the feedback form or registering on the Website, or by using other website services, the User agrees to receive information and advertising mailings via e-mail, SMS, as well as at the phone number specified by the User, weekly or periodically. To revoke its consent, the User can address to the Operator by sending a written application, by e-mail: firstname.lastname@example.org