Privacy Policy

1. General Provisions

1.1. This personal data processing policy has been drawn up in accordance with the requirements of Federal Law No. 152-FZ of 27.07.2006 "On Personal Data" (hereinafter — the Personal Data Law) and defines the procedure for processing personal data and measures to ensure the security of personal data taken by Limited Liability Company "Divniy Bereg" (hereinafter — the Operator).

1.2. The Operator considers the observance of the rights and freedoms of individuals in the processing of their personal data, including the protection of the rights to privacy, personal and family secrets, as its most important goal and condition for carrying out its activities.

1.3. This Operator's policy regarding the processing of personal data (hereinafter — the Policy) applies to all information that the Operator may receive about visitors to the website https://divniybereg.ru/ (hereinafter — the Website).

2. Key Terms Used in the Policy

2.1. Automated processing of personal data — processing of personal data using computer technology.

2.2. Blocking of personal data — temporary cessation of personal data processing (except in cases where processing is necessary to clarify personal data).

2.3. Website — a collection of graphic and informational materials, as well as computer programs and databases that ensure their availability on the Internet at the network address https://divniybereg.ru/.

2.4. Personal data information system — a set of personal data contained in databases and information technologies and technical means that ensure their processing.

2.5. Depersonalization of personal data — actions that make it impossible to determine, without the use of additional information, the attribution of personal data to a specific User or other subject of personal data.

2.6. Processing of personal data — any action (operation) or set of actions (operations) performed with or without the use of automation tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of personal data.

2.7. Operator — a state body, municipal body, legal entity or individual that independently or jointly with other persons organizes and/or carries out the processing of personal data, as well as determines the purposes of processing personal data, the composition of personal data to be processed, and actions (operations) performed with personal data.

2.8. Personal data — any information relating directly or indirectly to a specific or identifiable User of the website https://divniybereg.ru/.

2.9. User — any visitor to the website https://divniybereg.ru/.

2.10. Provision of personal data — actions aimed at disclosing personal data to a specific person or a specific group of persons.

2.11. Distribution of personal data — any actions aimed at disclosing personal data to an indefinite group of persons.

2.12. Cross-border transfer of personal data — transfer of personal data to the territory of a foreign state.

2.13. Destruction of personal data — any actions as a result of which personal data are irreversibly destroyed.

3. Fundamental Rights and Obligations of the Operator

3.1. The Operator has the right to:

• receive reliable information and/or documents containing personal data from the subject of personal data;
• continue processing personal data without the consent of the subject if there are grounds specified in the Personal Data Law;
• independently determine the composition and list of measures necessary to ensure the fulfillment of obligations provided for by the Personal Data Law.

3.2. The Operator is obliged to:

• provide the subject of personal data, upon request, with information regarding the processing of their personal data;
• organize the processing of personal data in accordance with the procedure established by the current legislation of the Russian Federation;
• respond to inquiries and requests from subjects of personal data;
• publish this Policy in open access;
• take legal, organizational and technical measures to protect personal data;
• cease processing and destroy personal data in the manner and cases provided for by the Personal Data Law.

4. Fundamental Rights and Obligations of Personal Data Subjects

4.1. Subjects of personal data have the right to:

• receive information regarding the processing of their personal data;
• require the operator to clarify, block or destroy their personal data if the personal data is incomplete, outdated, or inaccurate;
• withdraw consent to the processing of personal data;
• appeal to the authorized body (Roskomnadzor) or in court against unlawful actions or inaction of the Operator.

4.2. Subjects of personal data are obliged to:

• provide the Operator with reliable data about themselves;
• inform the Operator about the clarification (updating, modification) of their personal data.

5. Principles of Personal Data Processing

5.1. Processing is carried out on a lawful and fair basis.

5.2. Processing is limited to the achievement of specific, predetermined and legitimate purposes.

5.3. It is not permitted to combine databases containing personal data processed for purposes incompatible with each other.

5.4. Only personal data that meets the purposes of their processing are subject to processing.

5.5. The content and volume of processed personal data correspond to the stated purposes of processing.

5.6. The accuracy, sufficiency and relevance of personal data is ensured.

5.7. Storage is carried out in a form that allows the identification of the subject of personal data for no longer than the purposes of processing require.

6. Purposes of Personal Data Processing

6.1. The Operator does not process special categories of personal data (race, nationality, political views, health status, biometric data).

7. Conditions for Personal Data Processing

7.1. Processing is carried out with the consent of the subject of personal data.

7.2. Processing is necessary for the performance of a contract to which the subject of personal data is a party.

7.3. Processing is necessary for the exercise of the rights and legitimate interests of the Operator or third parties.

7.4. Processing of publicly available personal data is carried out.

8. Procedure for Collection, Storage, Transfer and Other Types of Personal Data Processing

8.1. The Operator ensures the safety of personal data and takes all possible measures to prevent access by unauthorized persons.

8.2. Transfer of personal data to third parties:

• To the courier service (Operator's employees or engaged couriers) — for the delivery of fish products to an address in Kazan. Transferred: full name, phone number, delivery address.
• Upon request of a court or law enforcement agencies — in the manner established by the legislation of the Russian Federation.

8.3. The Operator does not sell or transfer personal data to third parties for advertising or other purposes without the User's consent.

8.4. In case of inaccuracies in personal data, the User may update them by sending a notification to the Operator at the email address DivniybereGK@yandex.ru with the subject "Personal data update".

8.5. The period of personal data processing is determined by the achievement of the purposes for which the personal data were collected, unless a different period is provided for by the contract or current legislation. The User may withdraw consent to the processing of personal data at any time by sending a notification to DivniybereGK@yandex.ru with the subject "Withdrawal of consent".

8.6. All information collected by third-party services (Yandex.Metrica, payment systems, communication tools and other service providers) is stored and processed by said parties in accordance with their privacy policies. The Operator is not responsible for the actions of third parties.

8.7. The Operator ensures the confidentiality of personal data.

8.8. Storage is carried out in a form that allows the identification of the subject of personal data for no longer than the purposes of processing require.

9. List of Actions Performed by the Operator with Received Personal Data

9.1. The Operator carries out the collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transfer (provision, access), depersonalization, blocking, deletion and destruction of personal data.

9.2. The Operator carries out automated processing of personal data with the receipt and/or transmission of received information via information and telecommunication networks or without such.

10. Cross-Border Transfer of Personal Data

10.1. The Operator does not carry out cross-border transfer of personal data. All data is processed and stored on servers located on the territory of the Russian Federation.

11. Confidentiality of Personal Data

The Operator and other persons who have gained access to personal data are obliged not to disclose to third parties and not to distribute personal data without the consent of the subject of personal data, unless otherwise provided by federal law.

12. Use of Cookies

12.1. The Website uses cookies for:

• Saving items in the shopping cart;
• Remembering the city (Kazan) and delivery method;
• Collecting anonymized statistics (Yandex.Metrica).

12.2. The User may disable cookies in their browser settings, but this may affect the functionality of some website features (for example, placing an order).

13. Final Provisions

13.1. The User may obtain any clarifications on issues of interest regarding the processing of their personal data by contacting the Operator via email at DivniybereGK@yandex.ru or by phone at +7 (986) 826-00-03.

13.2. This document will reflect any changes to the Operator's personal data processing policy. The Policy is valid indefinitely until replaced by a new version.

13.3. The current version of the Policy is freely available on the Internet at https://divniybereg.ru/privacy.