Politics Sophia – khavinsonpeptides

Politics Sophia International Institute of Beauty and Health Ltd. regarding the processing of personal data

1. General Provisions
1.1. Politics Sophia International Institute of Beauty and Health Ltd. (hereinafter referred to as the Operator) regarding the processing of personal data” (hereinafter referred to as the Policy) governs the processing and use of personal data in accordance with the Law providing for the Protection of Natural Persons with regard to the Processing of Personal Data and for the Free Movement of such Data of 2018 (Law 125(I)/2018) of the Cyprus Republic.
1.2. The Policy applies to all personal data of subjects processed in the Company using automation tools and without the use of such tools.
1.3. Any subject of personal data has access to this Policy.

2. Definitions
2.1. Personal data – any information relating to a directly or indirectly identified or identifiable natural person (subject of personal data).
2.1.1. In particular, such information can include: information contained in a passport, other document proving his identity, allowing to identify the subject of personal data, address of residence, information about family, social, property status, information about income, information about the state of health, number phone, email address.
2.2. Processing of personal data – any action (operation) or a set of actions (operations) with personal data performed using automation tools or without the use of such tools. Such actions (operations) include: collection, receipt, recording, systematization, accumulation, storage, clarification (updating, changing), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of personal data (Law 125(I)/2018)

3.St. Sophia International Institute of Beauty and Health Ltd. processes personal data of the following persons:
3.1. workers;
3.2. entities with which contracts of a civil law nature have been concluded;
3.3. clients;
3.4. registered users of the site;
3.5. representatives of legal entities;
3.6. buyers.

4. Principles and conditions for the processing of personal data.
4.1. Under the security of personal data, the Operator understands the protection of personal data from unauthorized or accidental access to them, destruction, modification, blocking, copying, provision, distribution of personal data, as well as from other illegal actions in relation to personal data and takes the necessary legal, organizational and technical measures to protect personal data.
4.2. The processing and security of personal data by the Operator is carried out in accordance with the requirements of the Law providing for the Protection of Natural Persons with regard to the Processing of Personal Data and for the Free Movement of such Data of 2018 (Law 125(I)/2018) of the Cyprus republic.
4.3. When processing personal data, the Operator adheres to the following principles:
4.3.1. limiting the processing of personal data to the achievement of specific, predetermined and legitimate purposes;
4.3.2. preventing the processing of personal data that is incompatible with the purposes of collecting personal data;
4.3.3. preventing the merging of databases containing personal data, the processing of which is carried out for purposes that are incompatible with each other;
4.3.4. processing of personal data that meet the purposes of their processing;
4.4. The Company processes personal data only if at least one of the following conditions exists:
4.4.1. the processing of personal data is carried out with the consent of the subject of personal data to the processing of his personal data;
4.4.2. the processing of personal data is necessary to achieve the goals provided for by law, to implement and fulfill the functions, powers and duties assigned by the legislation of the Russian Federation to the operator;
4.4.3. the processing of personal data is necessary for the performance of an agreement to which the subject of personal data is a party or beneficiary or guarantor, as well as to conclude an agreement on the initiative of the subject of personal data or an agreement under which the subject of personal data will be the beneficiary or guarantor;
4.4.4. the processing of personal data is necessary to exercise the rights and legitimate interests of the Operator or third parties or to achieve socially significant goals, provided that the rights and freedoms of the subject of personal data are not violated;
4.4.5. processing of personal data is carried out, access of an unlimited circle of persons to which is provided by the subject of personal data or at his request;
4.4.6. processing of personal data subject to publication or mandatory disclosure in accordance with federal law is carried out.
4.5. The operator has the right to entrust the processing of personal data of citizens to third parties, on the basis of an agreement concluded with these persons. Persons processing personal data on behalf of the Operator undertake to comply with the principles and rules for the processing and protection of personal data provided by the Law providing for the Protection of Natural Persons with regard to the Processing of Personal Data and for the Free Movement of such Data of 2018 (Law 125(I)/2018) of the Cyprus Republic.
For each person, a list of actions (operations) with personal data that will be performed by a legal entity processing personal data, the purposes of processing, the obligation of such a person to maintain confidentiality and ensure the security of personal data during their processing, as well as requirements for the protection of processed personal data data.
4.6. In cases established by the legislation of the Cyprus Republic, the Operator has the right to transfer personal data of citizens.
4.7. For the purpose of information support of the Operator, publicly available sources of personal data of employees, including directories and address books, may be created. With the consent of the employee, public sources of personal data may include his last name, first name, patronymic, date and place of birth, position, contact phone numbers, e-mail address. Information about the employee must be excluded from publicly available sources of personal data at any time at the request of the employee or by decision of the court or other authorized state bodies.
4.8. The Company destroys or depersonalizes personal data upon reaching the purposes of processing or in case of loss of the need to achieve the purpose of processing.

5. Rights of the subject of personal data
5.1. A citizen whose personal data is processed by the Operator has the right to:
5.2. Receive from the Operator:
5.2.1. confirmation of the fact of processing personal data by the Operator;
5.2.2. legal grounds and purposes of personal data processing;
5.2.3. a list of processed personal data relating to the citizen from whom the request was received and the source of their receipt, unless a different procedure for providing such data is provided by law;
5.2.4. name and address of the person who processes personal data on behalf of the Operator.
5.2.5. other information provided by Law providing for the Protection of Natural Persons with regard to the Processing of Personal Data and for the Free Movement of such Data of 2018 (Law 125(I)/2018) of the Cyprus Republic.
5.3. demand clarification of their personal data, their blocking or destruction if the personal data is incomplete, outdated, inaccurate, illegally obtained or not necessary for the stated purpose of processing;
5.4. withdraw your consent to the processing of personal data;
5.5. demand the elimination of illegal actions by the Operator in relation to his personal data;
5.6. appeal against the actions or inaction of the Operator to the Federal Service for Supervision of Communications, Information Technology and Mass Communications (Roskomnadzor) or in court if a citizen believes that the Operator is processing his personal data in violation of the requirements of Law providing for the Protection of Natural Persons with regard to the Processing of Personal Data and for the Free Movement of such Data of 2018 (Law 125(I)/2018) of the Cyprus Republic.

6. Procedure for obtaining information
6.1. Get information on the issues of your personal data processing that are of interest to you by contacting the Operator personally.
6.2. If an official request is sent to St. Sophia International Institute of Beauty and Health Ltd. in the text of the request, you must specify:
6.2.1. FULL NAME;
6.2.2. Number of the main document proving the identity of the subject of personal data or his representative, information on the date of issue of the said document and the authority that issued it;
6.2.3. information confirming your participation in relations with St. Sophia International Institute of Beauty and Health Ltd. or information otherwise confirming the processing of personal data by St. Sophia International Institute of Beauty and Health Ltd.
6.2.4. signature of the citizen (or his legal representative). If the request is sent electronically, then it must be executed in the form of an electronic document and signed with an electronic signature in accordance with the law.
6.3. The website www.khavinsonpeptides.com publishes the current version of the St. Sophia International Institute of Beauty and Health Ltd. regarding the processing of personal data”.

7. Measures aimed at ensuring the fulfillment by the Operator of duties.
7.1. Information about the implemented requirements for the protection of personal data Sophia International Institute of Beauty and Health Ltd. when processing personal data, takes the necessary legal, organizational and technical measures to protect personal data from unauthorized or accidental access to them, destruction, modification, blocking, copying, provision, distribution of personal data, as well as from other illegal actions in relation to personal data. These measures include:
7.1.1. determination of threats to the security of personal data during their processing in information systems of personal data;
7.1.2. application of organizational and technical measures to ensure the security of personal data during their processing in personal data information systems necessary to fulfill the requirements for the protection of personal data;
7.1.3. detection of facts of unauthorized access to personal data and taking measures;
7.1.4. control over the measures taken to ensure the security of personal data and the level of security of personal data information systems;
7.1.5. accounting of machine carriers of personal data;
7.1.6. organization of access control to the territory of the Company;
7.1.7. placement of technical means for processing personal data within the protected area;
7.1.8. maintenance of technical means of protection in constant readiness;
7.1.9. monitoring user actions, conducting proceedings on violations of personal data security requirements
7.1.10. In order to coordinate actions to ensure the security of personal data in St. Sophia International Institute of Beauty and Health Ltd. persons responsible for ensuring the security of personal data have been appointed.
By clicking the “Register” button, I confirm my legal capacity, I agree to the processing of my personal data in accordance with the St. Sophia International Institute of Beauty and Health Ltd. regarding the processing of personal data.

Cookie	Duration	Description
cookielawinfo-checkbox-analytics	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional	11 months	The cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance	11 months	This cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy	11 months	The cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.