This policy for the processing of personal data is drawn up in accordance with the requirements of Federal Law No. 152-FZ of July 27, 2006, "On Personal Data," and defines the procedure for processing personal data and measures to ensure the security of personal data taken by LLC "Medicare" (hereinafter referred to as the Operator).
1.1. The Operator sets compliance with the rights and freedoms of individuals as its most important goal and condition for carrying out its activities in the processing of their personal data, including the protection of rights to privacy, personal, and family secrets.
1.2. This Operator's policy regarding the processing of personal data (hereinafter - the Policy) applies to all information that the Operator may obtain about visitors to the website http://mdcr.ru/en2. Basic Concepts Used in the Policy
2.1. Automated processing of personal data - processing of personal data using computer technology;
2.2. Blocking of personal data - the temporary cessation of the processing of personal data (except in cases where processing is necessary to clarify personal data);
2.3. Website - a set of graphic and informational materials, as well as computer programs and databases, ensuring their availability on the Internet at the network address http://mdcr.ru
2.4. Information system of personal data - a set of personal data contained in databases, and the information technologies and technical means ensuring their processing;
2.5. Depersonalization of personal data - actions that make it impossible to determine the belonging of personal data to a specific User or other subject of personal data without the use of additional information;
2.6. Processing of personal data - any action (operation) or set of actions (operations) performed with or without the use of automation tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, changing), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of personal data;
2.7. Operator - a state body, municipal body, legal or natural person, independently or jointly with other persons organizing and (or) carrying out the processing of personal data, as well as determining the purposes of processing personal data, the composition of personal data subject to processing, actions (operations) performed with personal data;
2.8. Personal data - any information directly or indirectly related to a specific or determinable user of the website http://mdcr.ru
2.9. User - any visitor to the website http://mdcr.ru
2.10. Provision of personal data - actions aimed at disclosing personal data to a specific person or a specific group of persons;
2.11. Dissemination of personal data - any actions aimed at disclosing personal data to an indefinite circle of persons (transmission of personal data) or acquainting an unlimited circle of persons with personal data, including the disclosure of personal data in the media, posting in information and telecommunication networks, or providing access to personal data by any other means;
2.12. Cross-border transfer of personal data - the transfer of personal data to the territory of a foreign state to the authorities of a foreign state, a foreign individual, or a foreign legal entity;
2.13. Destruction of personal data - any actions that result in the irreversible destruction of personal data with the impossibility of further recovery of the content of personal data in the information system of personal data and/or the destruction of material carriers of personal data. 3. The Operator may process the following personal data of the User:
3.1. Email address;
3.2. Phone numbers;
3.3. The website also collects and processes anonymized data about visitors (including "cookie" files) using internet analytics services (Yandex Metrica, Google Analytics, and others).
3.4. The data listed above are collectively referred to as Personal Data throughout the text of the Policy.
4. Purposes of Personal Data Processing
4.1. The purpose of processing the User's personal data is to inform the User through the sending of electronic emails; the conclusion, execution, and termination of civil contracts; providing the User with access to services, information, and/or materials contained on the website.
4.2. The Operator also has the right to send the User notifications about new products and services, special offers, and various events. The User can always opt-out of receiving informational messages by sending a letter to the Operator at the email address email@example.com with the subject "Opt-out of notifications about new products and services and special offers."
4.3. Anonymized data of Users collected through internet analytics services is used to gather information about Users' actions on the website, improve the quality of the site, and its content. 5. Legal Grounds for Personal Data Processing
5.1. The Operator processes the User's personal data only if they are filled out and/or submitted by the User independently through special forms located on the website http://mdcr.ru
. By filling out the respective forms and/or submitting their personal data to the Operator, the User expresses their consent to this Policy.
6. Procedure for the Collection, Storage, Transfer, and Other Types of Processing of Personal Data
The security of personal data processed by the Operator is ensured through the implementation of legal, organizational, and technical measures necessary to fully comply with the requirements of current legislation in the field of personal data protection.
6.1. The Operator ensures the integrity of personal data and takes all possible measures to prevent unauthorized access to personal data.
6.2. The User's personal data will never, under any circumstances, be transferred to third parties, except in cases related to the fulfillment of current legislation.
6.3. In case of inaccuracies in personal data, the User can update them independently by sending a notification to the Operator at the Operator's email address firstname.lastname@example.org with the subject "Update of Personal Data."
6.4. The processing period of personal data is unlimited. The User can revoke their consent to the processing of personal data at any time by sending a notification to the Operator via email to the Operator's email address email@example.com with the subject "Withdrawal of Consent to the Processing of Personal Data." 7. Cross-Border Transfer of Personal Data
7.1. Before initiating the cross-border transfer of personal data, the Operator must ensure that the foreign state to which the transfer of personal data is intended provides reliable protection of the rights of subjects of personal data.
7.2. Cross-border transfer of personal data to the territories of foreign states that do not meet the above-mentioned requirements may only occur if there is written consent from the subject of personal data for the cross-border transfer of their personal data and/or the execution of a contract in which the subject of personal data is a party. 8. Final Provisions
8.1. The User can receive any clarifications on matters related to the processing of their personal data by contacting the Operator via email at firstname.lastname@example.org.
8.2. Any changes to the policy of personal data processing by the Operator will be reflected in this document. The policy is in effect indefinitely until replaced by a new version.
8.3. The current version of the Policy is publicly available on the Internet at http://mdcr.ru