Politics regarding the processing of personal data

1. General provisions
This Personal Data Processing Policy is compiled in accordance with the requirements Federal Law of 07.27.2006. No. 152 "About Personal Data" (hereinafter - the Law on Personal data) and determines the procedure for processing personal data and measures to ensure security personal data undertaken by IP Alyaev Sergey Sergeevich (hereinafter - the operator).
1.1. The operator sets his most important goal and the condition for the implementation of his activity observance rights and freedoms of man and citizen in the processing of his personal data, including the protection of rights for the inviolability of private life, personal and family secrets.
1.2. This policy of the operator regarding personal data processing (hereinafter referred to as a Policy) applied to all the information that the operator can get about visitors to web site https://enigmata.io or mobile application Enigmata.
2. Basic concepts used in politics
2.1. Automated personal data processing - processing of personal data using computing equipment.
2.2. Personal data blocking - temporary termination of personal data processing (except for cases, if processing is necessary to clarify personal data).
2.3. Web site - a set of graphic and information materials, as well as computer programs and databases data that ensure their availability on the Internet at the network address https://enigmata.io.
Enigmata mobile application - a set of graphic and information materials, as well as computer programs and databases data providing access to the Internet to the network address https://enigmata.io.
2.4. Personal data information system - a set of data contained in databases personal data and ensuring their processing of information technologies and technical means.
2.5. Depersonalization of personal data - actions, as a result of which it is impossible to determine without use of additional information belonging to personal data to the specific User or other subject of personal data.
2.6. Personal data processing - any action (operation) or a set of actions (operations), performed using automation tools or without the use of such means with personal data, including collection, recording, systematization, accumulation, storage, clarification (update, change), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, removal, destruction of personal data.
2.7. Operator - a state agency, municipal agency, legal or individual, independently or together with other persons organizing and/or processing personal data, as well as determining the goals of the processing of personal data, the composition of personal data to be processed, actions (operations) performed with personal data.
2.8. Personal data - any information related directly or indirectly to a specific or determined by the user of the website https://enigmata.io or the mobile application Enigmata.
2.9. Personal data allowed by the subject of personal data for distribution - personal data, access of an unlimited circle of persons to which is provided by the subject of personal data by giving consent to the processing of personal data allowed by the subject of personal data for distribution in the manner prescribed by the Law on Personal Data (hereinafter - personal data allowed for distribution).
2.10. User - any visitor to the website https://enigmata.io and/or user of the mobile application Enigmata.
2.11. Providing personal data - actions aimed at disclosing personal data a certain person or a certain circle of persons.
2.12. Distribution of personal data - any actions aimed at disclosing personal data to an indefinite circle of persons (transfer of personal data) or to familiarize themselves with personal data of an unlimited circle of persons, including the publication of personal data in the media, placement in information and telecommunication networks or providing access to personal data in some other way.
2.13. Cross-border transfer of personal data - transfer of personal data to the territory a foreign state to the agency of a foreign state, foreign physical or foreign legal entity.
2.14. Destruction of personal data - any actions as a result of which personal data destroyed irrevocably with the impossibility of further restoration of the content of personal data in the information system of personal data and/or material carriers are destroyed personal data.
3. Basic rights and obligations of the operator
3.1. The operator has the right:
- receive reliable information and/or documents containing from the subject of personal data personal data;
- in the case of a personal data subject to consent to the processing of personal data, as well as directions of appeal with a request to terminate the processing of personal data, the operator has the right continue the processing of personal data without the consent of the subject of personal data in the presence the grounds specified in the Law on Personal Data;
- independently determine the composition and list of measures necessary and sufficient to ensure fulfillment of the obligations provided for by the Law on Personal Data and adopted in accordance with him regulatory legal acts, unless otherwise provided by the law on personal data or other federal laws.
3.2. The operator is obliged:
- provide the subject of personal data at his request for information regarding the processing of his personal data;
- organize the processing of personal data in the manner prescribed by the current legislation;
- respond to appeals and requests of personal data subjects and their legal representatives in accordance with the requirements of the Law on Personal Data;
- report to the authorized agency for the protection of the rights of personal data subjects for this agency is the necessary information within 10 days from the date of receipt of such a request;
- publish or otherwise provide unlimited access to this policy regarding personal data processing;
- take legal, organizational and technical measures to protect personal data from unlawful or accidental access to them, destruction, change, blocking, copying, provision, distribution of personal data, as well as from other unlawful actions regarding personal data;
- stop transmitting (distribution, provision, access) of personal data, stop processing and destroy personal data in the manner and cases provided for by the law about personal data;
- fulfill other duties provided for by the Law on Personal Data.
4. Basic rights and obligations of personal data subjects
4.1. Personal data subjects have the right:
- receive information regarding the processing of his personal data, with the exception of cases, stipulated by federal laws. Information is provided to the subject of personal data the operator in an accessible form, and they should not contain personal data related to other subjects of personal data, with the exception of cases when there are legal grounds for disclosure of such personal data. The list of information and the procedure for its receipt is established by law about personal data;
- demand from the operator to clarify his personal data, their blocking or destruction in the case if personal data is incomplete, outdated, inaccurate, illegally obtained or are not necessary for the declared processing goal, as well as accept the laws provided by law measures to protect their rights;
- put forward the condition for preliminary consent in the processing of personal data in order to promote in the market of goods, works and services;
- for the review of consent to the processing of personal data, as well as to send the requirements on the termination of personal data processing;
- appeal to the authorized agency for the protection of the rights of personal data subjects or in a judicial the procedure for the unlawful actions or inaction of the operator when processing his personal data;
- to exercise other rights provided for by the legislation.
4.2. Personal data are required:
- provide the operator with reliable data about himself;
- inform the operator about the clarification (update, change) of your personal data.
4.3. Persons who transferred the operator inaccurate information about themselves, or information about another subject personal data without the consent of the latter, are liable in accordance with with the legislation.
5. Principles of personal data processing
5.1. Personal data processing is carried out on a legal and fair basis.
5.2. The processing of personal data is limited to the achievement of specific, predetermined and legal purposes. The processing of personal data is not allowed, incompatible with the goals of the collection personal data.
5.3. It is not allowed to combine databases containing personal data, the processing of which carried out for purposes incompatible with each other.
5.4. Only personal data that meets the goals of your processing
are subject to processing. 5.5. The content and volume of the processed personal data correspond to the declared goals processing. The redundancy of the processed personal data in relation to the declared goals of their processing.
5.6. When processing personal data, the accuracy of personal data is ensured, their sufficient and in necessary cases, and relevance in relation to the goals of the processing of personal data. Operator takes the necessary measures and/or ensures their adoption to remove or clarify incomplete or inaccurate data.
5.7. The storage of personal data is carried out in a form that allows you to determine the subject personal data, no longer than the purpose of processing personal data, if the term the storage of personal data is not established by federal law, the agreement, the party of which, the beneficiary or guarantor for which is the subject of personal data. The processed personal data is destroyed or impersoned by achieving the goals processing or in case of loss of need to achieve these goals, unless otherwise provided Federal Law.
6. Personal data processing goals
The purpose of processing providing access to the user to services, information and/or materials contained on the website and in the mobile application, informing User by sending emails personal data
 email address
Legal grounds
 Federal Law "On Information, Information Technologies and about information protection ”from 07.27.2006 N 149
types of processing personal data
 collection, recording, systematization, accumulation, storage, destruction and depersonalization of personal data
7. Personal data processing conditions
7.1. Personal data processing is carried out with the consent of the subject of personal data to process his personal data.
7.2. The processing of personal data is necessary to achieve the goals provided for law.
7.3. The processing of personal data is necessary for the administration of justice, the execution of a judicial act, act of another body or official subject to execution in accordance with the legislation on enforcement proceedings.
7.4. The processing of personal data is necessary for the execution of the contract, the party of which or the beneficiary or guarantor for which is the subject of personal data, as well as for making an agreement on the initiative of a subject of personal data or an agreement under which a subject personal data will be the beneficiary or guarantor.
7.5. The processing of personal data is necessary for the exercise of the rights and legitimate interests of the operator or third parties or to achieve socially significant goals, provided that at the same time the rights and freedoms of the subject of personal data are not violated.
7.6. Personal data is processed, access to an unlimited circle of persons to which provided by the subject of personal data or at his request (hereinafter - publicly available personal data).
7.7. The processing of personal data subject to publication or mandatory disclosure in accordance with federal law.
8. The procedure for collecting, storage, transfer and other types of personal data processing the safety of personal data that is processed by the operator is ensured by implementation of legal, organizational and technical measures necessary to fulfill in full requirements of the current legislation in the field of personal data protection.
8.1. The operator ensures the safety of personal data and takes all possible measures, excluding access to personal data of unauthorized persons.
8.2. Personal data of the user will never, under any conditions, will not be transferred to third parties, with the exception of cases related to the implementation of the current legislation or if the subject of personal data consent to the operator to transfer data to a third party for fulfillment of obligations under a civil legal contract.
8.3. If inaccuracies are detected in personal data, the user can actualize them independently, by sending the operator a notification to the email address Operator support@enigmata.io marked "actualization of personal data".
8.4. The deadline for processing personal data is determined by the achievement of the goals for which personal data, unless otherwise provided by the contract or applicable law. The user can at any time withdraw his consent to the processing of personal data by directing Operator notification by e-mail to email address Operator support@enigmata.io marked "review of consent to the processing of personal data".
8.5. All information that is collected by third-party services, including payment systems, communications and other service providers are stored and processed by the indicated persons (Operators) in accordance with their user agreement and confidentiality policy. The operator is not responsible for the actions of third parties, including those specified in this paragraph, service providers.
8.6. Personal data established by the subject of personal data for transmission (except for access), as well as processing or processing conditions (except for access) personal data, permitted for distribution, do not act in cases of processing personal data in state, public and other public interests determined by the legislation.
8.7. The operator when processing personal data provides the confidentiality of personal data.
8.8. The operator storage of personal data in a form that allows you to determine the subject personal data, no longer than the purpose of processing personal data, if the term the storage of personal data is not established by federal law, the agreement, the party of which, the beneficiary or guarantor for which is the subject of personal data.
8.9. The condition for the termination of the processing of personal data may be the achievement of processing goals personal data, expiration of the consent of the subject of personal data, the review of consent the subject of personal data or the requirement to terminate the processing of personal data, as well as identification of illegal processing of personal data.
9. A list of actions performed by the operator with the received personal data
9.1. The operator collects, recording, systematization, accumulation, storage, clarification (update, change), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, removal and destruction of personal data.
9.2. The operator carries out automated processing of personal data with obtaining and/or the transfer of information received on information and telecommunication networks or without so
10. The confidentiality of personal data The operator and other persons who gained access to personal data are required not to disclose to third parties and not to disseminate personal data without the consent of the subject of personal data, if otherwise not provided for by federal law.
11. Final provisions
11.1. The user can receive any clarification on questions of interest regarding processing his personal data, turning to the operator using e-mail support@enigmata.io.
11.2. This document will reflect any changes in the policy of processing personal data Operator. Politics acts indefinitely before replacing it with a new version.
11.3. The current version of the policy in the public domain is located on the Internet at https://enigmata.io/cabinet/privacy.