Русский Русский (ru)

Privacy policy regarding the processing of personal data of site visitors
1. General provisions

1.1. This Policy on personal data processing (hereinafter referred to as the "Policy") has been prepared in accordance with clause 2.1 of article 18.1 of the Federal law of the Russian Federation "on personal data" No. 152-FZ of July 27, 2006 (hereinafter referred to as the" Law") and determines the position of the individual owner of the site https://medialike.ru) and/or its affiliates (the "Company") in the field of processing and protection of personal data (the "Data"), respect for the rights and freedoms of everyone and, in particular, the right to privacy, personal and family secrets.

2. Scope of application


2.1. This Policy applies to Data received both before and after the implementation of this Policy. 2.2. Understanding the importance and value of Data, as well as taking care to respect the constitutional rights of citizens of the Russian Federation and citizens of other States, the Company ensures reliable Data protection.

3. Definitions

3.1. Data refers to any information related directly or indirectly to a specific or identifiable individual (citizen), i.e. such information, in particular, includes: last name, first name, patronymic, email, photo, link to a personal website or social networks, ip address. 3.2. Data processing refers to any action (operation) or a set of actions (operations) with Data performed using automation tools and/or without using such tools. Such actions (operations) include: collection, recording, systematization, accumulation, storage, clarification (update, change), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of Data. 3.3. Data security refers to the protection of Data from unauthorized and / or unauthorized access to it, destruction, modification, blocking, copying, provision, distribution of Data, as well as from other illegal actions in relation to Data.

4. Legal basis and purpose of Data processing

4.1. Processing and security of Data in the Company is carried out in accordance with the requirements of the Constitution of the Russian Federation Law, the Labour code of the Russian Federation, bylaws, other governing the cases and features of processing of the Federal laws of the Russian Federation, guidelines and methodical documents FSTEK Russia and FSB of Russia.

4.2. the data Subjects processed by the Company are:
customers-consumers, including site visitors https://medialike.ru owned by the Company.

4.3. The company carries out the processing of Data subjects for the following purposes:
functions, powers and responsibilities in accordance with Federal laws, including, but not limited to: the Civil code of the Russian Federation, the Tax code of the Russian Federation, the Labor code of the Russian Federation, the Family code of the Russian Federation, Federal law No. 27-FZ of 01.04.1996 "on individual (personalized) accounting in the mandatory pension insurance system", Federal law No. 152-FZ of 27.07.2006 "on personal data", Federal law No. 53-FZ of 28.03.1998 "on military duty and military service", Federal law of 26.02.1997, No. 31-FZ "on mobilization training and mobilization in the Russian Federation", Federal law No. 14-FZ "on limited liability companies" of 8.02.1998, Federal law No. 2300-1 "on consumer rights protection" of 07.02.1992, Federal law No. 129-FZ "on accounting" of 21.11.1996, Federal law No. 326-FZ "on mandatory medical insurance in the Russian Federation" of 29.11.2010, Customers-consumers in order to: 1. analyzing the quality of the service provided by the Company and improving the quality of customer service;

5. Principles and conditions of Data processing.

5.1. when processing Data, the Company adheres to the following principles: Data processing is carried out on a legal and fair basis; Data is not disclosed to third parties and is not distributed without the consent of the Data subject, except in cases requiring disclosure of Data at the request of authorized state bodies, legal proceedings; identification of specific legitimate purposes before the start of processing (including collection) of Data; only those Data that are necessary and sufficient for the stated purpose of processing are collected; combining databases containing Data that are processed for purposes incompatible with each other is not allowed; Data processing is limited to achieving specific, predetermined and legitimate goals; the processed Data is subject to destruction or depersonalization upon achieving the processing goals or in case of loss of the need to achieve these goals, unless otherwise provided by Federal law.

5.2. The company can include these subjects in public Data sources, the Company takes a written consent of the subject for processing of his Data, or by the expression of consent by using the site (the checkbox), clicking which the data subject agrees.

5.3. the Company does not process Data related to race, nationality, political views, religious, philosophical or other beliefs, sexual life, membership in public associations, including trade unions.

5.4. Biometric information (physiological and biological characteristics of a person, on the basis of which to establish his identity and used by the operator to establish the identity of the subject Data) in the Company are not processed.

5.5. The company is not engaged in cross-border Data transfer.

5.6.in cases established by the legislation of the Russian Federation, the Company is entitled to transfer Data to third parties (Federal tax service, state pension Fund and other state bodies) in cases stipulated by the legislation of the Russian Federation.

5.7. Persons who process Data on the basis of an agreement concluded with the Company (operator's instructions) are obliged to comply with the principles and rules of Data processing and protection provided for by Law. For each third party, the agreement defines a list of actions (operations) with Data that will be performed by a third party processing Data, the purpose of processing, establishes the obligation of such a person to maintain confidentiality and ensure Data security during processing, specifies the requirements for the protection of processed Data in accordance with the Law.

5.8.in order to comply with the requirements of the current legislation of the Russian Federation and its contractual obligations, Data processing in the Company is carried out both with and without the use of automation tools. The totality of processing operations includes collection, recording, systematization, accumulation, storage, clarification (updating, changing), extraction, use, transfer (provision, access), depersonalization, blocking, deletion, destruction of Data.

5.9. the Company is prohibited from making decisions based solely on automated Data processing that generate legal consequences for the Data subject or otherwise affect his rights and legitimate interests, except in cases provided for by the legislation of the Russian Federation.

6. Rights and obligations of Data subjects and Companies regarding Data processing

6.1. The subject whose Data are processed by the Company, is entitled:
- receive from the Company:
confirmation of data processing and information about the availability of Data related to the relevant Data subject;
information about the legal basis and purpose of Data processing;
information about the Company's Data processing methods;
information about the Company's name and location;
information about persons (other than employees of the Company) who have access to the Data or to whom the Data may be disclosed under a contract with the Company or under Federal law;
a list of processed Data related to the Data subject and information about the source of their receipt, unless a different procedure for providing such Data is provided by Federal law;
information about the terms of Data processing, including the terms of their storage;
information on the procedure for the exercise by the subject of These rights provided for by Law;
name (Full Name) and address of the person who processes Data on behalf of the Company;
other information provided by Law or other legal acts of the Russian Federation;
- demand from the Company:
clarify your data, block Or destroy it if the Data is incomplete, outdated, inaccurate, illegally obtained or not necessary for the stated purpose of processing;
revoke your consent to data processing at any time; demand that the Company's unlawful actions with respect to your Data be corrected;
appeal against The company's actions or omissions to the Federal service for supervision of communications, information technology and mass communications (Roskomnadzor) or in court if the Data subject believes that the Company processes their Data in violation of the Law or otherwise violates their rights and freedoms;
- to protect their rights and legitimate interests, including compensation for damages and / or compensation for moral damage in court.
6.2. The company is in the process of Data processing required:
provide the Data subject with information concerning the processing of his / her PD upon request, or provide a legal refusal within thirty days from the date of receipt of the request of the Data subject or his / her representative;
explain to the Data subject the legal consequences of refusing to provide Data, if the provision of Data is mandatory in accordance with Federal law;
prior to the start of Data processing (if the Data is not received from the Data subject), provide the following information to the Data subject, except as provided for in part 4 of article 18 of the Law:
1) name or surname, first name, patronymic and address of the Company or its representative;
2) the purpose of Data processing and its legal basis;
3) expected users of the Data;
4) Legal rights of Data subjects;
5) the source of Data.
take the necessary legal, organizational and technical measures or ensure that they are taken to protect Data from unauthorized or accidental access to it, destruction, modification, blocking, copying, provision, distribution of Data, as well as from other illegal actions in relation to Data;
publish on the Internet and provide unrestricted access using the Internet to the document defining its policy on Data processing, to information about the implemented Data protection requirements;
provide Data subjects and / or their representatives, free of charge, with the opportunity to review the Data when making a relevant request within 30 days from the date of receipt of such a request;
block unlawfully processed Data related to the Data subject, or ensure their blocking (if Data processing is carried out by another person acting on behalf of the Company) from the moment of applying or receiving a request for the verification period, in case of detection of illegal Data processing when the Data subject or its representative applies, or at the request of the Data subject or its representative or the authorized body for the protection of the rights of personal data subjects;
clarify the Data or ensure that they are clarified (if the Data is processed by another person acting on behalf of the Company) within 7 business days from the date of submission of the data and remove the Data blocking, if the fact of inaccuracy of the Data is confirmed on the basis of information provided by the Data subject or his representative;
to stop unlawful processing of Data or to ensure an end to unlawful processing of Data by a person acting on behalf of the Company, in case of detection of unlawful processing of Data carried out by the Company or any person 5 acting under contract with the Company, within a period not exceeding 3 working days from the date of this identify;
terminate Data processing or ensure its termination (if Data processing is carried out by another person acting under a contract with the Company) and destroy the Data or ensure their destruction (if Data processing is carried out by another person acting under a contract with the Company) upon achieving the purpose of Data processing, unless otherwise provided by the contract to which the Data subject is a party, beneficiary or guarantor, if the purpose of Data processing is achieved;
terminate Data processing or ensure its termination and destroy the Data or ensure their destruction if the Data subject withdraws consent to data processing, if the Company does not have the right to process Data without the consent of the Data subject;
keep a log of requests from PD subjects, which should record requests from Data subjects to receive Data, as well as the facts of providing Data for these requests.

7. Data protection Requirements

7.1. when processing Data, the Company takes the necessary legal, organizational and technical measures to protect Data from unauthorized and/or unauthorized access to it, destruction, modification, blocking, copying, provision, distribution of Data, as well as from other illegal actions in relation to Data.

7.2. such measures in accordance with the Law, in particular, include:
assign the person responsible for organizing Data processing and the person responsible for ensuring Data security;
development and approval of local acts on Data processing and protection;
application of legal, organizational and technical measures to ensure Data security:
Identification of threats to Data security during their processing in personal data information systems;

Application of organizational and technical measures to ensure Data security during their processing in personal data information systems that are necessary to meet Data protection requirements, the implementation of which ensures the levels of Data security established by the Government of the Russian Federation;

Use of information security tools that have passed the compliance assessment procedure in accordance with the established procedure;

Evaluating the effectiveness of measures taken to ensure Data security prior to commissioning of the personal data information system;

Accounting for machine-based data carriers, if Data is stored on machine-based media;

Detecting unauthorized access to Data and taking measures to prevent such incidents in the future;

Recovery of Data that has been modified or destroyed due to unauthorized access;

Establishing rules for access to Data processed in the personal data information system, as well as ensuring registration and accounting of all actions performed with Data in the personal data information system.
control over the measures taken to ensure Data security and the level of protection of personal data information systems;
assessment of the harm that may be caused to Data subjects in the event of a violation of the Law, the ratio of this harm and the measures taken by the Company to ensure compliance with the obligations stipulated by Law;
compliance with conditions that prevent unauthorized access to physical data carriers and ensure Data security;
familiarization of the Company's employees directly involved in Data processing with the provisions of the Russian Federation Data legislation, including Data protection requirements, local acts on Data processing and protection, and training of the Company's employees.

8. Terms of Data processing (storage) 

8.1. the Terms of Data processing (storage) are determined based on the purposes of Data processing, in accordance with the term of the agreement with the Data subject, the requirements of Federal laws, the requirements of Data operators, on whose behalf the Company processes Data, the basic rules of the organization's archives, and the Statute of limitations.

8.2. Data whose processing (storage) period has expired must be destroyed, unless otherwise provided by Federal law. Storage of Data after termination of processing is allowed only after their depersonalization.

9. Procedure for receiving explanations on Data processing issues


9.1. Persons whose Data is processed by the Company can obtain clarification on the processing of their Data by contacting the Company personally or by sending a corresponding written request to the address of The company's location: Moscow Novoselov street 34 office 12.

9.2. if you send an official request to the Company, you must specify in the request text:
full name of the Data subject or its representative;
number of the main identity document of the Data subject or its representative, information about the date of issue of the specified document and the issuing authority;
information confirming that the data subject has a relationship with the Company; information for feedback in order to send the Company a response to the request;
signature of the Data subject (or its representative). If the request is sent in electronic form, it must be made in the form of an electronic document and signed with an electronic signature in accordance with the legislation of the Russian Federation.

10. Features of processing and protection of Data collected by the Company using the Internet

10.1. the Company processes Data received from users of the Site from the resource: https://medialike.ru (hereinafter jointly referred to as the Website), as well as those sent to the Company's email address: medialikeru@yandex.ru.

10.2. Data Collection
There are two main ways a Company receives Data over the Internet:

10.2.1. Providing Data

Providing Data (independent data entry): 
last name
name
middle name
email address
photo
link to a personal website or social networks
10.2.2. The Data subjects by entering the email address of the company medialikeru@yandex.ru.

10.3. Automatically collected information

The company may collect and process information that is not personal data:
ip address
information about the interests of users on the Site based on the entered search queries of Site users about the products sold and offered for sale by the Company in order to provide up-to-date information to The company's customers when using the Site, as well as generalize and analyze information about which sections of the Site and products are most in demand among The company's customers;
processing and storing search queries of Site users for the purpose of summarizing and creating client statistics on the use of Site sections.
The company automatically receives certain types of information obtained in the course of user interaction with the Site, e-mail correspondence, etc.this Refers to technologies and services, such as web protocols, cookies, web tags, as well as applications and tools of the specified third party. However, web tags, cookies, and other monitoring technologies do not allow you to automatically receive Data. If the Site user chooses to provide their own Data, for example, when filling out a feedback form or when sending an email, only then will the processes of automatic collection of detailed information be started for the convenience of using the websites and/or to improve user interaction

10.4. Data Usage

The company has the right to use the Data provided in accordance with the stated purpose of collection only with the consent of the Data subject if such consent is required in accordance with the legislation of the Russian Federation in the field Data.

The data obtained in a generalized and depersonalized form can be used to better understand the needs of customers of goods and services sold by the Company and improve the quality of service.

10.5. Data Transmission

The company may assign Data processing to third parties only with the consent of the Data subject. Data may also be transferred to third parties in the following cases:

a) as a response to legitimate requests from authorized state bodies, in accordance with laws, court decisions, etc.

b) Data may not be transferred to third parties for marketing, commercial or other similar purposes, unless the Data subject has obtained prior consent.

10.6. The site contains links to other web resources, where it can be useful and interesting to users of the Site information. However, this Policy does not apply to such other sites. Users who click on links to other sites are encouraged to read the Data processing policies posted on such sites.

10.7. the Site User can withdraw their consent to Data processing at any time by sending a message to the Company's email address: medialikeru@yandex.ru, or by sending a written notification to the Company's address: Moscow . After receiving such a message, the processing of the user's Data will be terminated and their Data will be deleted, except in cases where processing can be continued in accordance with the law. Final provisions This Policy is a local regulatory act of the Company. This Policy is publicly available. This Policy is made publicly available by publishing it on the Company's Website. This Policy may be revised in any of the following cases:

when changing the legislation of the Russian Federation in the field of personal data processing and protection;
in cases of receiving instructions from the competent state authorities to eliminate inconsistencies affecting the scope of the Policy;
by decision of the Company's management;
if you change the purpose and duration of processing;
when changing the organizational structure, structure of information and / or telecommunications systems (or introducing new ones);
when using new technologies for Data processing and protection (including transmission, storage); when there is a need to change the Data processing process related to the Company's activities. In case of non-compliance with the provisions of this Policy, the Company and its employees are liable in accordance with the current legislation of the Russian Federation. Compliance with the requirements of this Policy is monitored by the persons responsible for the organization of the Company's Data processing, as well as for the security of personal data.


Log in via: