1. General provisions
Autonomous non—profit organization of cinema development "Siberian Film Commission" (ANO RK "Siberian Film Commission", TIN 2462227909, OGRN 1132468050516, address: Krasnoyarsk, 660049 Uritsky str. 24-24) (hereinafter referred to as the "Company"), within the framework of its core activities, processes personal data of various categories of personal data subjects using personal information systems data, including the following Company website: https://siberiadoc.ru.
In accordance with the current legislation of the Russian Federation, the Company is the operator of personal data. When organizing and processing personal data, the Company is guided by the requirements of Federal Law No. 152-FZ dated 27.07.2006 "On Personal Data" and other regulatory legal acts adopted in accordance with it.
For the purposes of this Policy, personal data means any information provided through the Company's website and/or collected using such an Internet site, relating directly or indirectly to a specific or identifiable individual (subject of personal data).
2. Collection of personal data
The company collects information through the website in two ways:
- Personal data provided by users: The Company collects personal data that is entered into the data fields on the Company's website by users themselves or other persons on their behalf.
- Passive collection of personal data about the current connection in terms of statistical information: The Company's website may collect statistical data about the user, including: pages visited; number of page visits; duration of the user session; entry points (third-party sites from which the user links to the Company's website); exit points (links to the Company's website, through which the user navigates to third-party sites); the user's country; the user's region; the user's provider; the user's browser; the user's system languages; the user's OS; the user's screen resolution; the number of colors of the user's screen.
Data can be obtained using various methods, for example, cookies and file web beacons, etc. The Company may use third-party Internet services to organize the collection of statistical personal data, third-party Internet services provide storage of the received data on their own servers. The Company is not responsible for the localization of servers of third-party Internet services. The Company does not compare the information provided by the user independently and allowing to identify the subject of personal data with statistical personal data obtained during the application of such passive methods of information collection.
3. Principles and conditions of personal data processing
The processing of personal data in the Company is carried out on a legal and fair basis and is limited to achieving specific, predetermined and legitimate goals.
Only personal data that meet the purposes of their processing are subject to processing. The content and volume of personal data processed by the Company correspond to the stated purposes of processing, redundancy of processed personal data is not allowed.
When processing personal data, the Company ensures the accuracy of personal data, their sufficiency and, if necessary, relevance in relation to the purposes of personal data processing. The Company takes the necessary measures (ensures their adoption) to delete or clarify incomplete or inaccurate personal data.
In the course of its activities, the Company may provide and (or) entrust the processing of personal data to another person without the consent of the subject of personal data, unless otherwise provided by the legislation of the Russian Federation on personal data. At the same time, a mandatory condition for providing and (or) ordering the processing of personal data to another person is the obligation of the parties to respect confidentiality and ensure the security of personal data during their processing.
The terms of processing of personal data are determined in accordance with the purposes for which they were collected.
4. Rights of the subject of personal data
The subject of personal data has the right (unless otherwise provided by law):
- demand clarification of their personal data, their blocking or destruction if the personal data are incomplete, outdated, unreliable, illegally obtained or are not necessary for the stated purpose of processing, as well as take measures provided by law to protect their rights;
- request a list of their personal data processed by the Company and the source of their receipt;
- receive information about the terms of processing of their personal data, including the terms of their storage;
- require notification of all persons who have previously been informed of incorrect or incomplete personal data about all exceptions, corrections or additions made in them;
- appeal to the authorized body for the protection of the rights of personal data subjects or in court against illegal actions or omissions in the processing of his personal data;
- to protect their rights and legitimate interests, including compensation for damages and (or) compensation for moral damage in court.
Если у Вас есть вопросы о характере применения, использовании, изменении или удалении Ваших персональных данных, которые были Вами предоставлены, или если Вы хотите отказаться от дальнейшей их обработки Компанией, пожалуйста, свяжитесь с нами по почте по адресу Компании или по электронной почте: This email address is being protected from spambots. You need JavaScript enabled to view it.
If you have any questions about the nature of the application, use, modification or deletion of your personal data that you have provided, or if you want to refuse further processing by the Company, please contact us by mail at the Company's address or by email: This email address is being protected from spambots. You need JavaScript enabled to view it.
Please note that the operator of personal data is not responsible for false information provided by the subject of personal data.
5. Implementation of personal data protection requirements
In order to maintain business reputation and ensure compliance with the requirements of federal legislation, the Company considers the most important tasks to ensure the legitimacy of personal data processing in the Company's business processes and to ensure an appropriate level of security of personal data processed in the Company.
The Company requires other persons who have access to personal data not to disclose to third parties and not to distribute personal data without the consent of the subject of personal data, unless otherwise provided by federal law.
In order to ensure the security of personal data during their processing, the Company takes the necessary and sufficient legal, organizational and technical measures to protect personal data from unauthorized or accidental access to them, destruction, modification, blocking, copying, provision, dissemination of personal data, as well as from other illegal actions in relation to them.
The Company strives to ensure that all measures implemented by it for the organizational and technical protection of personal data are carried out legally, including in accordance with the requirements of the legislation of the Russian Federation on the processing of personal data.
In order to ensure adequate protection of personal data, the Company assesses the harm that may be caused to personal data subjects in the event of a violation of the security of their personal data, and also determines the current threats to the security of personal data when they are processed in personal data information systems.
In accordance with the identified current threats, the Company applies the necessary and sufficient legal, organizational and technical measures to ensure the security of personal data, including the use of information protection tools, detection of unauthorized access to personal data and taking measures, recovery of personal data, restriction of access to personal data, registration and accounting of actions with personal data, as well as monitoring and evaluating the effectiveness of the measures applied to ensure the security of personal data.
The Company's management is aware of the importance and necessity of ensuring the security of personal data and encourages the continuous improvement of the personal data protection system processed within the framework of the Company's core business.
The Company has appointed persons responsible for organizing the processing and ensuring the security of personal data.
Each new employee of the Company who directly processes personal data is familiarized with the requirements of the legislation of the Russian Federation on the processing and security of personal data, this Policy and other local acts of the Company on the processing and security of personal data and undertakes to comply with them.