1.1 Policy regarding the processing of personal data (hereinafter - the Policy) is aimed at protecting the rights and freedoms of individuals whose personal data is processed by Hostingru.net (hereinafter - the Operator).
1.2. The policy is developed in accordance with p. 2 h. 1 tbsp. 18.1 of the Federal Law of July 27, 2006 No. 152-FZ "On Personal Data" (hereinafter - the Federal Law "On Personal Data").
1.3. The policy contains information subject to disclosure in accordance with Part 1 of Art. 14 of the Federal Law "On Personal Data", and is a publicly available document.
2. Information about the processing of personal data
2.1. The operator processes personal data for legal and fair basis for the performance of the functions, powers and duties assigned by law, for the exercise of the rights and legitimate interests of the Operator, the Operator's employees and third parties.
2.2. The operator receives personal data directly from subjects of personal data.
2.3. The operator processes personal data automatically and in non-automated ways, using computer technology and without using such means.
2.4. Actions to process personal data include collection, recording, systematization, accumulation, storage, clarification (update, change), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion and destruction.
3.1. The operator processes personal data of clients within the framework of legal relations with the Operator, regulated by part two of the Civil Code of the Russian Federation dated January 26, 1996 No. 14-FZ, (hereinafter referred to as clients).
3.2. The operator processes personal data of clients in order to comply with the norms of the legislation of the Russian Federation, as well as for the purpose of:
enter into and fulfill obligations under contracts with clients;
carry out the activities provided for by the constituent documents of Hostingru.net;
inform about new products, special promotions and offers.
3.3. The operator processes personal data of clients with their consent, provided for the duration of the contracts concluded with them. In the cases provided for by the Federal Law "On Personal Data", consent is provided in writing. In other cases, consent is deemed to have been obtained when concluding a contract or when performing implicit actions.
3.4. The operator processes personal data of clients during the term of the contracts concluded with them. The operator can process the personal data of customers after the expiration of the validity of contracts concluded with them within the period established by clause 5 of part 3 of Art. 24 pieces of lanehowl of the Tax Code of the Russian Federation, part 1 of Art. 29 of the Federal Law "On Accounting" and other regulatory legal acts.
3.5. The operator processes the following personal data clients:
Last name, first name, patronymic;
Type, series and number of the identity document;
Date of issue of the identity document and information about the issuing authority;
Address;
Contact phone number;
Email address;
Year of birth;
Month of birth;
Date of birth.
3.6. To achieve the purposes of processing personal data and with the consent of customers, the Operator provides personal data or entrusts their processing to the following persons:
Domain name registrars - for registering domain names;
Certificate Authorities - for issuing SSL certificates;
Software manufacturers - to purchase software.
Fiscal data operators - to comply with the requirements of the legislation of the Russian Federation.
3.7. In cases established by state legal acts regulating the activities of the Operator, personal data of clients without their consent may be transferred to law enforcement agencies (including the FSB, the Ministry of Internal Affairs, the prosecutor's office, the court).
4. Processing personal data of employees under civil contracts
4.1. The operator processes the personal data of employees under agreements of a civil nature (partners acting within the framework of the partnership program) within the framework of legal relations with the Operator, regulated by part two of the Civil Code of the Russian Federation dated January 26, 1996 No. 14-FZ.
4.2. The operator processes the personal data of employees under contracts of a civil nature in order to comply with the norms of the legislation of the Russian Federation, as well as:
conclude and execute contracts of a civil nature;
inform about new products, special promotions and offers;
to deduct insurance contributions to the Pension Fund of the Russian Federation, FSS, MHIF and other bodies;
act as a tax agent.
4.3. The operator processes the personal data of employees under contracts of a civil nature with their consent, provided for the duration of the contracts concluded with them. In the cases provided for by the Federal Law "On Personal Data", consent is provided in writing. In other cases, consent is deemed to have been obtained when concluding a contract or when performing implicit actions.
4.4. The operator processes the personal data of employees under contracts of a civil nature during the term of the contracts concluded with them. The operator can process the personal data of employees under contracts of a civil law nature after the expiration of the validity of contracts concluded with them within the period established by clause 5 of part 3 of Art. 24 of the first part of the Tax Code of the Russian Federation, part 1 of Art. 29 of the Federal Law "On Accounting" and other regulatory legal acts.
4.5. The operator processes the following personal data employees under civil law contracts:
Last name, first name, patronymic;
Type, series and number of the identity document;
Date of issue of the identity document and information about the issuing authority;
Date of birth;
Address;
Contact phone number;
Email address;
Taxpayer identification number;
State pension insurance certificate number;
Income;
Information about the services rendered.
4.6. To achieve the purposes of processing personal data and with the consent of employees under civil law contracts, the Operator provides personal data or entrusts their processing to the following persons:
State authorities (Pension Fund, FTS, FSS, etc.).
4.7. In cases established by the stateby legal acts regulating the activities of the Operator, personal data of employees under civil law contracts without their consent may be transferred to law enforcement agencies (including the FSB, the Ministry of Internal Affairs, the prosecutor's office, the court).
5. Information on ensuring the security of personal data
5.1. The operator appoints a person responsible for the organization processing of personal data to fulfill the obligations provided for by the Federal Law "On Personal Data" and the regulatory legal acts adopted in accordance with it.
5.2. The operator applies a set of legal organizational and technical measures to ensure the security of personal data to ensure the confidentiality of personal data and their protection from illegal actions:
provides unrestricted access to the Policy, a copy of which is posted at the address of the Operator, as well as on the Operator's website in the section "Documents";
in pursuance of the Policy approves and enforces the document "Regulation on the processing of personal data" (hereinafter the Regulation) and other local acts;
familiarizes employees with the provisions of the legislation on personal data, as well as with the Policy and Regulations;
allows employees to access personal data processed in the Operator's information system, as well as to their material carriers only to fulfill their job duties;
establishes the rules for access to personal data processed in the Operator's information system, and also ensures registration and accounting of all actions with them;
assesses the harm that may be caused to subjects of personal data in case of violation of the Federal Law "On Personal Data";
identifies threats to the security of personal data during their processing in the Operator's information system;
applies organizational and technical measures and uses information security tools necessary to achieve the established level of protection of personal data;
detects facts of unauthorized access to personal data and takes response measures, including the recovery of personal data modified or destroyed due to unauthorized access to them;
evaluates the effectiveness of measures taken to ensure the security of personal data prior to the commissioning of the Operator's information system;
carries out internal control over the compliance of the processing of personal data with the Federal Law "On Personal Data", the regulatory legal acts adopted in accordance with it, the requirements for the protection of personal data, the Policy, the Regulations and other local acts, including control over the measures taken to ensure the security of personal data and their level of security when processed in the Operator's information system.
to receive personal data relating to this subject and information regarding their processing;
to clarify, block or destroy his personal data if they are incomplete, outdated, inaccurate, illegally obtained or not necessary for the stated purpose of processing;
to revoke his consent to the processing of personal data;
to protect their rights and legitimate interests, including compensation for damages and compensation for moral damage in court;
to appeal against the actions or inaction of the Operator to the authorized body for the protection of the rights of subjects of personal data or in court.
6.2. To exercise your rights and of legitimate interests, subjects of personal data have the right to contact the Operator or send a request in person or with the help of a representative. The request must contain the information specified in Part 3 of Art. 14 of the Federal Law "On Personal Data".