The rules below are based on the regulations adopted in the European Union.(General Data Protection Regulation), hereinafter GDPR or the Rules, which came into force on May 25, 2018. The Rules are mandatory for those who collect personal data of individuals who are residents of the European Union. Rules apply to persons working in the field of works or services where an entity (natural person) residing in the EU participates. GDPR – General Data Protection Regulation, which unifies the rules for the processing of personal data by private companies and public authorities across the European Union. The rules also comply with the national legislation of Ukraine in the field of processing and protection of personal data.
These Rules are applied by the Subsidiary with 100% foreign investment “Burda-Ukraine”, address: Kyiv, Radyshcheva St., 10/14, Building 3 (hereinafter referred to as the Company), to the website www.moirebenok.ua (hereinafter referred to as the Site), through which we collect personal data and which refers to the Rules. The Rules do not apply to the Company’s websites that do not contain a link to the Rules or that contain a link to a document other than the Rules regarding the processing of personal data.
The Rules are developed and used in conjunction with the Consent to the Processing of Users' Personal Data.
The 100% foreign-invested subsidiary “Burda-Ukraine” takes the protection of your personal data seriously, therefore the Company makes the following data protection rules, which constitute its privacy policy. These data protection rules first provide definitions of terms, and then describe them:
Viznachennya
The following terms are used in these data protection regulations.
Personal data:
Personal data includes technical information if it can be associated with a natural person. For example, this is an IP address, type of operating system, type of device (personal computer, mobile phone, tablet), type of browser, geographical location, the fact of filling out a web form, provider - Internet service provider. Personal data is any information that relates directly or indirectly to an identified or identifiable natural person. For example, personal data is a surname, first name, patronymic, email address, telephone number, as well as other information. If we cannot in any way associate the information with a natural person, we will not consider this information to be personal data.
You understand that the Company is the operator only of the personal data that we have received from you, as an individual, through our Site.
This document defines the Company's rules in the field of processing and protection of personal data and is posted at ua. The Company also provides unlimited access to the Rules to any person who personally contacts the Company. Processing means any operation or set of operations which is performed on personal data or on sets of personal data, whether or not by automated means, including collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction. Processing restrictions means the marking of stored personal data in order to restrict their processing in the future.
The main goal of the Company is to ensure the protection of the rights and freedoms of individuals and citizens when processing their personal data, in particular the protection of the rights to privacy, personal and family secrets, and clear and strict compliance with the requirements, primarily, of Ukrainian legislation in the field of personal data.
The Rules apply to all personal data of individuals processed by the Company, as well as processes related to the processing of personal data. The Company may process personal data both with the use of automation tools and without the use of such tools. The processes, in particular, but not limited to, may include collection, recording, systematization, accumulation, storage, clarification (update, change), electronic copying, extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion and destruction of personal data.
The Company has the right to amend the Rules as necessary. A mandatory review of the Rules is carried out in the event of significant changes in international or national legislation in the field of personal data.
Use of the Site
When you visit the Site, the system automatically collects the following data:
Your computer's IP address and/or hostname;
the name, language and version of your browser;
the operating system used to access our websites;
Referrer URL (previously visited page);
the date and time of your visit;
time zone difference relative to Greenwich Mean Time (GMT);
the content of the request (specific page);
the amount of data transferred;
access status and HTTPS status code.
We do not use this data to identify you. We need it to:
to obtain aggregated and anonymous website usage statistics;
to optimize the Site and advertising;
to maintain the Site's functions in working order;
to assist law enforcement in the event of a cyberattack.
The Site's log files are stored separately from other personal data.
The company is guided by the principle of adequacy, reasonableness and appropriateness of personal data processing. We carry out processes related to the processing of personal data in the cases specified in this section and for the appropriate purpose.
Cookies
Our websites use cookies. A cookie contains small amounts of data, such as a “cookie ID.” This is a unique string of characters that allows websites to associate page views with a specific browser. The browser can be identified by the cookie ID.
We also use cookies for the following purposes:
improving the usability of the Site;
saving your preferences, such as website language.
You can delete cookies in your browser settings at any time so that cookies are not stored in them. By doing so, you express your disagreement with the use of cookies. If you disable the storage of cookies, you will not be able to use all the functions of the Site.
Contact by email or via the feedback form
If you contact us by email or through one of our feedback forms, we will receive and store certain personal data.
Contact via the feedback form: The type of personal data we receive can be seen from the input fields of the feedback form. In addition to the visible records, your IP address, date and time of access are also collected and stored. We need this additional data to track possible misuse of the email address and thus for our legal protection.
Email communications: If you contact us by email, the personal data collected and stored by us will include the full email message sent to us, including all headers.
This data is not transferred to third parties, except as provided for by applicable law.
Personal data retention period
We only store personal data until the purpose for which the data was stored has been achieved. Once the purpose of storing the data has been achieved, the personal data is usually deleted or blocked.
Data subject rights
Each data subject whose personal data is being processed has a number of rights that he/she can exercise against us. To exercise his/her rights, the data subject must contact us by any generally accepted means of communication.
Right to restriction of data processing
The data user has the right to request the restriction of data processing if certain conditions for the restriction of data processing exist.
Right to object
The data subject has the right to object at any time to the processing of personal data concerning him/her, on grounds relating to his/her particular situation.
Right to withdraw consent
The data user has the right to withdraw their consent to the processing of their personal data at any time.
Data protection provisions relating to our use of Facebook
In order for our users to interact with Facebook, we use components of the Facebook social network on the Site.
Each time the data subject visits one of the pages of the Site, his browser automatically downloads a graphical representation of the Facebook components from Facebook. At the same time, Facebook receives information about which pages of the Site the data subject visits. If the data subject is logged in to his Facebook account, each time the data subject visits a page of the Site, Facebook learns which page of the Site the data subject visited.
This information is collected by the Facebook components and sent to Facebook via the data subject's Facebook user account. If the user leaves a comment, Facebook associates this information with the data subject's personal Facebook user account and stores this personal data.
If the data user does not want such information to be transmitted to Facebook, he or she can prevent this transmission by logging out of his or her Facebook user account before visiting the Site.
Information on how Facebook collects, processes and uses personal data, as well as how to configure or prohibit the transfer of information to Facebook, is set out in Facebook's privacy policy (https://www.facebook.com/about/privacy/).
Data protection provisions regarding our use of Google Analytics
On the Site we use the Google Analytics component with IP anonymization.
Google Analytics and Google components in general are provided by Google Inc., 1600 Amphitheatre Pkwy, Mountain View, CA 94043-1351, USA.
Google is certified under the Privacy Shield (EU-US Privacy Shield) and thus guarantees compliance with European data protection law.
As part of the analysis of the use of the Website pages, Google Analytics stores cookies on the data user's computer. Each time the data user visits a page of the Website on which Google Analytics is used, the browser transmits the data to Google for analysis purposes. In this way, Google receives personal data, such as the data user's IP address, which Google uses, among other things, to track the origin of visitors and clicks.
Information generated by the cookie about your use of the website, such as:
Your computer's IP address and/or hostname;
the name, language and version of your browser;
the operating system you are using;
Referrer URL (previously visited page);
the date and time of your visit;
Usually transmitted to a Google server in the USA, where it is stored together with an anonymized IP address. The IP address transmitted by your browser as part of Google Analytics is not merged with other Google data. Google may disclose the personal data obtained to third parties.
You can delete cookies at any time in your browser settings; in addition, you can configure all widely used browsers so that cookies are not stored in them. By doing so, you express your disagreement with the use of cookies. If you disable the storage of cookies, you will not be able to use all the functions of the Site.
You can also prevent Google from collecting and processing the data generated by the cookie relating to your use of our website (including your IP address).
Refusing cookies will prevent your data from being collected when you visit this website in the future. Refusing cookies is only valid for this browser and only for the Site once and is stored on your computer. If you delete cookies in this browser, you must set the cookie opt-out again.
We also use Google Analytics to evaluate data from DoubleClick and AdWords cookies for statistical purposes. You can disable this feature using the Ads Preferences Manager.
Personal data processing policy
This Policy on the processing and protection of personal data (hereinafter referred to as the Policy) is applied by the Subsidiary with 100% foreign investment “Burda-Ukraine”, located at 10/14 Radyshcheva St., Building 3, Kyiv (hereinafter referred to as the Company), to the website www.moirebenok.ua, through which we collect personal data and which refers to the Policy.
In the Policy, we openly talk about all the ways in which personal data is processed when using the Site. We understand the importance of a proper approach to privacy and data security and adhere to the principle of comprehensive and complete protection of our users' personal data.
The Policy has been developed by the Company in accordance with the General Data Protection Regulation (GDPR).
The Policy is developed and used in conjunction with the Consent to the Processing of Users' Personal Data.
Terms
1.1 Personal data is any information that relates directly or indirectly to an identified or identifiable natural person. For example, personal data is a surname, first name, patronymic, email address, telephone number, as well as other information.
Personal data also includes technical information if it can be associated with a natural person. For example, this is an IP address, type of operating system, type of device (personal computer, mobile phone, tablet), type of browser, geographical location, the fact of filling out a web form, provider - Internet service provider.
If we cannot in any way associate the information with an individual, we will not consider that information to be personal data.
1.2 You understand that the Company is the operator only of the personal data that we have received from you, as an individual, through our Site.
1.3) This document defines the Company's policy in the field of processing and protection of personal data and is posted at www.moirebenok.ua. The Company also provides unlimited access to the Policy to any person who personally contacts the Company.
1.4) The main goal of the Company is to ensure the protection of the rights and freedoms of individuals and citizens when processing their personal data, in particular the protection of the rights to privacy, personal and family secrets, and clear and strict compliance with the requirements, primarily of Russian legislation in the field of personal data.
1.5 The Policy applies to all personal data of individuals processed by the Company, as well as processes related to the processing of personal data. The Company may process personal data both with the use of automation tools and without the use of such tools. The processes, in particular, but not limited to, may include collection, recording, systematization, accumulation, storage, clarification (update, change), electronic copying, extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion and destruction of personal data.
1.6 The Company has the right to make changes to the Policy as necessary. A mandatory review of the Policy is carried out in the event of significant changes in international or national legislation in the field of personal data. In the event that we process personal data, we undertake to notify you of such changes to your email address.
1.8 The Company does not verify the accuracy of the personal data provided and the legal capacity of the person who provided it. You guarantee that all data is accurate, up-to-date and does not violate the law.
Purposes of personal data processing
The company is guided by the principle of adequacy, reasonableness and appropriateness of personal data processing. We carry out processes related to the processing of personal data in the cases specified in this section and for the appropriate purpose.
Purposes of personal data processingI confirm that the Company carries out processes related to the processing of personal data for the following purposes:
when accessing Sai that – for the purpose of properly fulfilling the Company's obligations to you, access to the Site, registration on the Site, as well as in any other cases related to this action;
when contacting you – at the e-mail address you provided for the purpose of timely communication and providing you with any necessary reliable and complete information related to the Company's activities. Including providing and sending information about the Site and promotional campaigns organized by the Company and/or authorized third parties;
upon receiving feedback from you for the purpose of:
obtaining information about loyalty and satisfaction, its further research and processing;
analysis to improve the quality of the Site;
conducting research of any category;
while ensuring the protection and confidentiality of your personal data – to ensure the functionality and security of the Site, to confirm the actions you take, to prevent fraud, cyberattacks and other abuses, as well as to investigate such cases;
List of personal data for the processing of which consent is given
3.1 Depending on the web form you fill out, we may process the following personal data about you:
personal data:
general personal data: last name, first name, patronymic, email address;
other personal data: gender, age, portrait photo;
other information processed by the Company:
data about technical means (devices): type of operating system, type of device (personal computer, mobile phone, tablet), type of browser, geographical location;
information obtained as a result of your actions, including the following information: about comments, requests, feedback and questions you have sent;
information that is automatically obtained when accessing the Site using cookies. Cookies are fragments of text that are automatically stored in the memory of your Internet browser by our Internet site. This allows the Site to access and retrieve information stored on your computer when necessary. We use cookies to display banners on the Site, the functioning of the 1C-Bitrix Site management system, your authorization and obtaining session data. The next time you return to our Site, we will be able to better take into account your preferences for using our Site. Most Internet browsers automatically store cookies, but you can always change your Internet browser settings and refuse to store cookies.
Principles of personal data processing
Adequacy is a key principle that we strictly adhere to when processing personal data. Your personal data will not be processed unless it is truly necessary.
We also process personal data based on the following principles:
4.1. lawfulness and fairness of the processing of personal data.
4.2. processing of personal data for specific, predetermined and legitimate purposes.
4.3) Preventing the merging of databases containing personal data processed for purposes that are incompatible with each other.
4.4. processing only those personal data that meet the purposes of their processing.
4.5) Compliance of the content and scope of personal data with the stated purposes of processing.
4.6) Accuracy, adequacy, relevance and reliability of personal data.
4.7 Lawfulness of technical measures aimed at processing personal data.
4.8. reasonableness and appropriateness of processing personal data.
4.9 Keeping personal data in a form that allows for the identification of an individual, and for no longer than is required for the purposes of their processing, or for the period of the individual's consent.
4.10. Processed personal data shall be destroyed or depersonalized: immediately after the purposes of processing have been achieved; in the event of the need to achieve them no longer being necessary.
Personal information
5.1. Collection of personal data.
Personal data is collected in the following ways:
your provision of personal data when filling out forms, including web forms on the Site;
automatic collection of information using technologies and services: web protocols, cookies, web beacons that are launched only when you enter your data;
your provision of personal data in writing, including by means of communication.
5.2. storage and use of personal data:
personal data are stored exclusively on properly protected media, including electronic ones, and are processed both with and without the use of automation tools;
The company, when processing personal data automatically, ensures the use of databases located in Ukraine.
5.3 Transfer of personal data:
The Company transfers personal data to third parties, including but not limited to consultants, partners, contractors, and agents (hereinafter referred to as “Consultants”) with your consent. Exceptions are cases where the transfer is made to ensure compliance with legal requirements, prevent or stop your illegal actions and protect the legitimate interests of the Company and third parties;
the transfer of personal data to Consultants is carried out to achieve the above-mentioned purposes and is based on the contract concluded with the relevant Consultant. In this case, Consultants undertake to use personal data exclusively in accordance with this Policy, to achieve the specified purposes and to provide services under the concluded contract;
5.4. Destruction of personal data.
The company destroys personal data in the following cases:
the presence of a threat to the security of the Site;
your violation of the terms of the Policy;
expiration of the storage period of personal data;
at your request.
Your rights
6.1) You have the right to receive information about the processing of your personal data, including that which contains:
confirmation of the fact of processing your personal data;
the legal grounds for processing your personal data;
the purposes and methods of processing your personal data used by the Company;
what personal data we process and the source of their receipt;
the processing periods for your personal data, including the periods for which they are stored;
the procedure for exercising rights provided for by the legislation of Ukraine;
information about completed or planned cross-border data transfers;
information about persons to whom personal data may be disclosed on the basis of an agreement with the Company or in accordance with the legislation of Ukraine;
name or surname, first name, patronymic and address of the person who processes personal data on behalf of the Company, if the processing has been or will be entrusted to such a person;
other information provided for by the legislation of Ukraine.
You have the right to receive such information an unlimited number of times. To do this, you must send the Company a corresponding request in the manner provided for in Section 11 of the Policy.
Company Responsibilities
7.1 In accordance with the requirements of the Law, the Company is obliged to:
7.1.1. provide, at your request, information about the processing of your personal data specified in clause 6.1. of the Policy, or a reasoned refusal; 1.1. of the Policy, or a reasoned refusal;
7.1.2. take measures necessary and sufficient to ensure the fulfillment of obligations stipulated by the Law;
7.1.3. at your request, clarify the processed personal data, block or delete them if they are incomplete, outdated, inaccurate, unlawfully obtained or unnecessary for the stated purpose of processing;
7.1.4. ensure the lawfulness of personal data processing. If it is impossible to ensure the lawfulness of personal data processing, the Company is obliged to destroy or ensure their destruction within a period not exceeding 10 (ten) business days from the date of detection of unlawful processing of personal data;
7.1.5. If you withdraw your consent to the processing of your personal data, we will stop processing it and destroy it within a period not exceeding 30 (thirty) business days from the date of receipt of your withdrawal. Exceptions are cases where processing may be continued in accordance with the legislation of Ukraine.
Information about personal data protection
8.1. All personal data provided by you is confidential by default. The protection of personal data processed by the Company is ensured by the implementation of legal, organizational and technical measures necessary and sufficient to meet the requirements of the legislation of Ukraine in the field of personal data protection. However, we always try to protect your data as much as possible and apply a greater number of personal data protection measures than are required by law. Here are some of the personal data protection measures implemented by the Company:
8.2. Legal measures include:
8.2.1. development of local regulatory acts of the Company that implement the requirements of the law, including this Policy on the processing and protection of personal data, and posting it at www.moirebenok.ua
8.2.2. refusal of any methods of processing personal data that do not meet the purposes predetermined by the Company.
8.3 Organizational activities include:
8.3.1. appointment of the person responsible for organizing the processing of personal data. You can contact such person using the following email address: _______________________
8.3.2. limiting the number of Company employees who have access to personal data, and organizing a permission system for access to them;
8.3.3. periodic assessment of risks related to the processing of personal data;
8.3.4. conducting internal investigations to identify facts related to unauthorized access to personal data;
8.3.5. use of encryption methods when processing personal data;
8.3.6. monitoring and analysis of the security of the Company's network infrastructure;
8.3.7. familiarizing the Company's employees with the provisions of the legislation of Ukraine on personal data, including the requirements for the protection of personal data, with the Company's local acts on the processing of personal data, and training the said employees.
8.3.8. organization of a security regime for premises where personal data carriers are located, which prevents the possibility of uncontrolled penetration or stay in these premises by persons who do not have the right to access these premises;
8.3.9. organization of trainings for the Company's employees regarding various issues of personal data processing.
8.4. The company undertakes and obliges third parties, in the event of transferring to them the right to process personal data, to observe the confidentiality regime regarding personal data and not to use personal data without the consent of the individual, except for the cases provided for in this policy.
Policy limitations
9.1) You are also obliged to be reasonable and responsible when posting your personal data publicly, in particular on the Site when leaving reviews and comments.
9.2) The Company is not responsible for the actions of third parties who have gained access to your personal data through your fault or the fault of the latter.
Personal Data Subject's Appeal
10.1) You have the right to send your requests to the Company, in particular requests regarding the use of your personal data:
10.1.1. in writing at the address: Kyiv, Radyshcheva St., 10/14, building 3
10.1.2. in the form of an electronic document to the email address: _________________
10.2 The request must contain the following information:
10.2.1. number of the main document that identifies you;
10.2.2. information about the date of issue of the specified document and the authority that issued it;
10.2.3. information confirming your participation in relations with the Company;
10.2.4. your signature.
10.3 The Company undertakes to consider and send a response to the received request to the address specified in the request within 30 (thirty) calendar days from the date of receipt of the request.
10.4 All correspondence received by the Company (applications in written or electronic form) is classified information and is not disclosed without its written consent.
