Policy of Furnitur-RU LLC regarding the processing of personal data
1. Purpose and scope of the policy
1.1. This Policy regarding the processing of personal data (hereinafter referred to as the Policy) defines the position and intentions of Furnitur-RU LLC (hereinafter referred to as the Company) in the field of processing and protecting personal data (hereinafter referred to as PD).
1.2. The Policy is mandatory for execution by all managers, employees of divisions and branches of the Company, including employees engaged by the Company under a civil law contract.
1.3. The Policy applies to all PD processed by the Company, both with and without the use of automation tools.
2. Definitions
2.1. Personal data – any information directly or indirectly related to an individual (User): - last name, first name, patronymic, residential address,
- contact information (home, mobile, work phone numbers, e-mail address)
- date of birth;
- TIN;
- information about the channel through which the user came to the site (referral or advertising tags);
- link to the personal site and profile in social networks of the User;
- information about the User's preferences in choosing the Company's products,
- any other data about the User that is communicated to the Company
2.2. Processing of PD – implementation of any action (operation) or set of actions (operations) performed using the means automation or without the use of such means with personal data, including collection, receipt, recording, processing, systematization, accumulation, storage, clarification, extraction, use, transfer, depersonalization, blocking, deletion, destruction of personal data, maintenance of databases by automated, mechanical, manual methods
3. Subjects of personal data
The Company processes the personal data of the following persons:
- employees;
- former employees;
- counterparties (including individual entrepreneurs and self-employed citizens);
- clients and registered users of the site;
- job candidates.
4. Principles, conditions and purposes of processing
4.1. The Company ensures the security of PD from unauthorized access, destruction, modification and other illegal actions.
4.2. Processing is carried out in accordance with the Constitution of the Russian Federation, Federal Law No. 152-FZ "On Personal Data" and other regulatory legal acts.
4.3. Basic principles of processing:
- legality and fairness;
- limitation of processing to purposes;
- prevention of incompatible processing;
- minimization and relevance;
- security and confidentiality.
4.4. Grounds for processing:
- consent of the personal data subject;
- performance of the contract;
- fulfilment of obligations under the law;
- other legal grounds.
4.5. Processing may be entrusted to third parties if there is an agreement and security requirements are met.
4.6. Third parties are required to comply with the rules and ensure the protection of PD.
4.7. The Company establishes the scope, goals, and security requirements for all PD processors.
4.8. PD is transferred in cases established by law.
4.9. PD is destroyed or depersonalized when the goals are achieved or there is no longer a need for processing.
4.10. The purposes of PD processing include, but are not limited to:
- compliance with legislation;
- registration and user service;
- sale of goods and services;
- participation in promotions, surveys;
- informing about services and new products.
5. Rights of the personal data subject
The subject of the personal data has the right:
- to confirm the fact and purposes of processing;
- to information about the methods, terms, grounds for processing;
- to access their data;
- to request clarification, blocking or destruction of personal data;
- to revoke consent;
- to appeal the Company's actions in court;
- to compensation for damages or compensation for moral damage. 6. Use of cookies and analytics
The Company uses cookies to:
- ensure functioning and security;
- analyze User behavior;
- personalize the interface and advertising.
The User agrees to the use cookies. The user can disable cookies in the browser settings. The cookie storage period is no more than 12 months.
7. Requirements for the protection of personal data
The company applies legal, organizational and technical measures:
- identification of threats;
- protection of information systems of PD;
- registration and audit of actions;
- control and restoration data;
- media accounting and access control;
- training of responsible persons and monitoring compliance with requirements.
8. Responsibility
8.1. The Company shall be liable for violation of the Policy in accordance with the legislation of the Russian Federation.
8.2. Requests regarding the processing of PD are sent to:
- mailing address: 214013, Russia, Smolensk, st. Chernyakhovskogo, 4, office No. 1
- e-mail: info@furnitur-group.ru
The request must contain:
- Full name;
- Identity document;
- Information confirming the fact of personal data processing;
- Signature (or EDS in case of an electronic document).