Privacy Policy for the Processing of Personal Data on the Website
1. Basic Concepts Used in the Privacy Policy for Personal Data.
The Website Administration is the authorized employees of YUMM PIZZA LLC for the management of the Website, acting on behalf of YUMM PIZZA LLC, who organize and (or) carry out actions to process financial data, and also determine the purposes of processing financial data, the composition of financial data, random processing (operations) performed with personal data.
Websites are the websites yummpizza.ru, yummpizza.com and other Internet services that refer to this Privacy Policy for Personal Data, and through which YUMM PIZZA LLC collects personal data of any persons visiting the websites of protection.
Website User is a person who has access to the Website via the Internet and uses this Website for his own purposes (subject of medical data).
Personal data — any information related to direct or abbreviated expansion or change of appearance of the person — the User of the Site (subject of medical data).
Special categories of medical data — personal data, dissemination of racial, national origin, scientific views, accidental or philosophical beliefs, health status, intimate life.
Confidentiality of financial data — a mandatory condition for compliance by the Site Administration with the requirement not to disclose to third parties and not to transfer personal data without compliance by the legislator of the subject of historical data, unless otherwise provided by federal law.
Processing of digital data — any action (operation) or set of actions (operations) performed with the use of automation tools or without the use of such tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of medical data.
Processing of digital data using automation tools — processing of digital data using computing technology.
Distribution of digital data - actions aimed at disclosing financial data to an indefinite circle of persons.
Provision of digital data - actions aimed at disclosing medical data, mitigating a person or mitigating a circle of persons.
Blocking of digital data - temporary continuation of processing of digital data (except for cases when processing is necessary to clarify digital data).
Destruction of monetary data - an action as a result of which it becomes impossible to restore the content of monetary data in the information system and (or) as a result of which the tangible media of monetary data are destroyed.
IP address - a unique network address of a node in a computer network, built according to the IP protocol.
Cookie - a small text file that the web server places on the hard drive of the User's computer. Cookies can be either "session" or "permanent".
2. General Provisions
2.1. This Privacy Policy of personal data of YUMM PIZZA LLC (hereinafter referred to as the Privacy Policy) applies when using the websites yummpizza.ru, yummpizza.com and other Internet services through which YUMM PIZZA LLC collects personal data of any persons visiting the websites (hereinafter referred to as the Site).
2.2. The Privacy Policy has been developed in accordance with the requirements of the Federal Law of 27.07.2006 No. 152-FZ "On Digital Data" (hereinafter referred to as the Federal Law "On Financial Data"), other federal laws regulating the procedures for processing financial data, as well as by-laws adopted during their implementation.
2.3. The use of the Site services by the Site User means his unconditional agreement with the Privacy Policy and the rules for processing the personal data of the Site User.
2.4. In case of disagreement with the requirements of the Privacy Policy, the Site User must stop using Site.
2.5. The Privacy Policy defines the main purposes and conditions for processing the data of the Site Users, as well as information on the implemented requirements for the protection of the data of the Site Users.
2.6. The Privacy Policy applies only to the Site. For other issues of digital data processing, YUMM PIZZA LLC has developed and implemented local acts. The Site Administration does not control and is not responsible for third-party sites to which the Site User can go via links available on the Site.
2.7. The Site Administration is the operator only of the technical data that it receives from the Site Users when using the Site with their agreement, providing the process of the Site User performing final actions on the Site.
2.8. The Site Administration does not verify the authenticity of the personal data provided by the Site User on the Site. The Site Administration assumes that the Site User provides accurate and sufficient personal data and keeps this information up to date. The Site User shall bear all responsibility for the consequences of providing inaccurate or invalid personal data.
2.9. The Site User confirms that by providing their personal data and giving consent to their processing, they act voluntarily, of their own will and in their own interests, and also confirms their legal capacity.
2.10. By providing their personal data, the User of the Site agrees that the personal data provided by them will be processed by YUMM PIZZA LLC (address: Russia, 143090, Moscow region, Krasnoznamensk city, Promyshlennaya street, building 4, INN 7841390249, OGRN 1089847252406) both with the use of automation tools and without the use of such tools.
2.11. Personal data permitted for processing within the framework of the Privacy Policy are not special or biometric, are provided by the User of the Site by filling in special forms on the Site indefinitely (until the User of the Site revokes their consent to the processing of personal data). Depending on the web form filled in by the User, the data includes the following information:
last name, first name, patronymic;
date of birth;
contact phone number;
email address (e-mail).
By filling out the relevant web forms and/or sending your personal data to the Site Administration, the Site User agrees to the Privacy Policy.
2.12. The Site Administration also takes measures to protect personal data that is automatically transferred during the visit to the Site pages, including from cookie files:
IP address assigned to the User's computer at the time of visiting the Site;
Received session data.
Cookies can be either "session" or "permanent".
Session cookies
The Site Administration uses session cookies to assign a unique identification number to the Site User's computer each time the Site is visited, and they are deleted after the browser is closed. Such files are also used to analyze the Site User's work with the Site (the visits to pages, links used, and the time the User spends on a particular page are studied).
Persistent cookies
The Site recognizes persistent cookies that are stored on the hard drives of the Site Users' computers, and by assigning unique identifiers to the Site Users' devices, the Site Administration can create a database of the actions and preferences of the Site Users (in particular, the frequency of visits and the frequency of the Site Users' returns, their preferences on the Site). It is important that cookies do not contain personal data of the Site Users, they only record their actions.
Consent to use cookies
Session cookies do not require prior consent from the Site Users; persistent cookies do require such consent.
Site Users can manage cookies through their web browser settings. Thus, they have the option to allow the use of all cookies integrated into pages or block cookies, as well as enable the use of cookies upon request, accept or reject cookies. Cookie management varies depending on the browser used.
At the same time, using cookie technology, the Site Administration does not store or use any specific data about the Site Users. The Site Administration draws attention to the fact that the Site User has the right to configure the browser to refuse to register requests to the Site or to warn about requests for such registration. Disabling cookies may result in the inability to access the Site.
2.13. If the Site Administration cannot in any way correlate the information specified in paragraphs 2.11 - 2.12 of the Privacy Policy with the Site User (an individual), the Site Administration will not consider this information to be personal data.
3. Purposes of processing the personal data of Site Users
3.1. The Site collects and stores only those personal data of the Site User that are necessary for the provision of services or the execution of agreements and contracts with the Site User, except for cases where the legislation provides for the mandatory storage of personal data for a period specified by law.
3.2. The Site processes the User's personal data for the following purposes:
3.2.1. Providing the Site Users with registration (authorization) on the Site, access to the Site and any other cases related to such actions.
3.2.2. Providing the Site User with access to the Site's personalized resources.
3.2.3. Establishing feedback with the User of the Site, including sending notifications, requests regarding the use of the Site, provision of services, processing requests and applications from the User of the Site.
3.2.4. Creating an account if the User of the Site has given consent to the account creation.
3.2.5. Providing the User of the Site with effective customer and technical support in the event of problems related to the use of the Site.
3.2.6. Ensuring the operability and security of the Site, to confirm the actions taken by the Users of the Site, to prevent cases of fraud, computer attacks and other abuses, as well as to investigate such cases.
4. Terms of processing personal data of Users of the Site and transferring them to third parties
4.1. The Site stores the personal data of Users of the Site in accordance with the internal regulations of specific services.
4.2. The personal data of the User of the Site is kept confidential, except in cases of voluntary provision by the User of the Site of data about himself for general access to an unlimited number of persons. When using individual services, the Site User agrees that a certain part of his personal data becomes publicly available.
4.3. The Site has the right to transfer the personal data of the Site User to third parties in the following cases:
4.3.1. The Site User has expressed consent to such actions.
4.3.2. The transfer is necessary for the Site User to use a certain service or for the execution of a certain agreement or contract with the Site User.
4.3.3. The transfer is provided for by the legislation of the Russian Federation within the framework of the procedure established by law.
4.4. The Site Administration hereby notifies the Site User that if the Site User wishes to make corrections to his/her personal data, block or destroy them if the personal data is incomplete, outdated, inaccurate, illegally obtained or is not necessary for the stated purpose of processing, or if the User wishes to revoke his/her consent to the processing of personal data or eliminate illegal actions of the Site Administration in relation to the personal data of the Site User, the Site User must send an official request to the Site Administration to the following address: 141420, Moscow Region, Khimki, Skhodnya microdistrict, Oktyabrskaya st., 37, pom.4, the recipient must indicate: LLC YUMM PIZZA. If LLC YUMM PIZZA sends an official request, the text of the request to the Site User must indicate his/her: full name; the number of the main identity document of the Website User (the subject of personal data or his/her representative), information on the date of issue of the said document and the issuing authority; information confirming the participation of the Website User in relations with YUMM PIZZA LLC or information otherwise confirming the fact of processing of the Website User's personal data by YUMM PIZZA LLC, the signature of the citizen (or his/her legal representative). If the request is sent electronically, it must be drawn up as an electronic document and signed with an electronic signature in accordance with the legislation of the Russian Federation.
4.5. The Site Administration undertakes to immediately stop processing the personal data of the Site User from the moment of receiving a written statement (revocation) from the Site User and, if the storage of personal data is no longer required for the purposes of processing personal data, to destroy them within the time frame and under the conditions established by the legislation of the Russian Federation.
4.6. If the purpose of processing personal data is achieved, the Site Administration undertakes to stop processing personal data and destroy them within the time frame and under the conditions established by the legislation of the Russian Federation.
4.7. If the Site User revokes consent to the processing of personal data, the Site Administration has the right to continue processing personal data without the consent of the Site User if there are grounds specified in paragraphs 2-11 of Part 1 of Article 6, Part 2 of Article 10 and Part 2 of Article 11 of the Federal Law "On Personal Data".
5. Obligations of the Parties
5.1. The Site User undertakes to:
5.1.1. Provide correct and truthful information about personal data necessary for using the Site.
5.1.2. Update and supplement the provided information about personal data in the event of changes to this information.
5.2. The Site Administration undertakes to:
5.2.1. Use the information received solely for the purposes specified in paragraph 3 of this Privacy Policy.
5.2.2. Ensure that confidential information is kept secret, not disclosed without the prior written consent of the Site User, and not sell, exchange, publish or disclose in any other possible way the transferred personal data of the Site User, except as provided for in this Privacy Policy.
5.2.3. Block the personal data related to the relevant Site User from the moment of the Site User's request or appeal, or their legal representative or authorized body for the protection of the rights of personal data subjects, for the period of verification in the event of detection of inaccurate personal data or illegal actions.
6. Liability of the Parties
6.1. The Site Administration is liable for the intentional disclosure of the personal data of the Site User in accordance with the current legislation of the Russian Federation, except for cases provided for in this Privacy Policy.
6.2. In the event of loss or disclosure of personal data, the Site Administration will not be liable if this confidential information:
6.2.1. Became publicly known prior to its loss or disclosure.
6.2.2. Was received from a third party prior to its receipt by the Site Administration.
6.2.3. Was disclosed with the consent of the Site User.
6.2.4. Was received by third parties through unauthorized access to the Site files.
6.3. The Site User is liable for the legality, correctness and truthfulness of the personal data provided in accordance with the legislation of the Russian Federation.
7. Information on the implemented requirements for the protection of personal data
7.1. The Site Administration takes the necessary and sufficient organizational and technical measures to protect the personal data of the Site User from unauthorized or accidental access, destruction, modification, blocking, copying, distribution, as well as from other illegal actions of third parties.
8. Dispute resolution
8.1. Before filing a claim in court for disputes arising from the relationship between the Site User and the Site Administration, it is mandatory to file a claim (a written proposal for voluntary settlement of the dispute).
8.2. The recipient of the claim, within 30 calendar days from the date of receipt of the claim, notifies the claimant in writing of the results of the consideration of the claim.
8.3. If an agreement is not reached, the dispute will be referred to the court for consideration in accordance with the legislation of the Russian Federation.
8.4. The legislation of the Russian Federation shall apply to this Privacy Policy and the relationship between the Site User and the Site Administration.
9. Additional terms
9.1. The Site Administration has the right to make changes to this Privacy Policy without the User's consent.
9.2. The new Privacy Policy comes into force from the moment it is posted on the Site, unless otherwise provided by the new version of the Privacy Policy.