1. General Provisions

1.1. The policy regarding the processing of personal data (hereinafter referred to as the Policy) is aimed at protecting the rights and freedoms of individuals whose personal data is processed by Melnichuk Law Firm LLC (hereinafter referred to as the Operator). 1.2. The policy was developed in accordance with paragraph 2 of part 1 of Art. 18.1 of the Federal Law of July 27, 2006 No. 152-FZ "On Personal Data" (hereinafter - the Federal Law "On Personal Data"). 1.3. The policy contains information to be disclosed in accordance with Part 1 of Art. 14 of the Federal Law "On Personal Data", and is a public document.

2. Information about the operator

2.1. The operator operates at the address 125009, Moscow, st. Tverskaya, 14 and 125009, Moscow, M. Gnezdnikovsky lane, d. 12.2.2. Melnichuk Law Firm LLC appoints responsible for organizing the processing of personal data.

3. Information about the processing of personal data

3.1. The operator processes personal data on a lawful and an equitable basis for the fulfillment of the tasks assigned by law functions, powers and duties, exercise of rights and legal interests of the Operator, employees of the Operator and third parties. 3.2. The operator receives personal data directly from the subjects personal data. 3.3. The operator processes personal data in automated and non-automated ways, with using computer technology and without using such funds. 3.4. Actions for the processing of personal data include collection, recording, systematization, accumulation, storage, clarification (updating, changing), extracting, using, transfer (distribution, provision, access), depersonalization, blocking, deletion and destruction. 3.5. information databases, containing personal data of citizens of the Russian Federation, located on the territory of the Russian Federation.

4. Processing of personal data of clients

4.1. The operator processes personal data of customers within the framework of legal relations with the Operator, regulated by part two of the Civil Code of the Russian Federation dated January 26, 1996 No. 14-FZ, (hereinafter - clients). 4.2. The operator processes personal customer data in order to comply with the laws of the Russian Federation, and also for the purpose of: entering into and fulfilling obligations under contracts with clients. 4.3. The operator processes personal data of customers with their consent, granted for the duration of the prisoners with them contracts. In cases provided for by the Federal Law "On personal data, consent is given in writing. In others cases, consent is considered to be received at the conclusion of the contract or when performing implicit actions. 4.4. Operator processes personal data of clients during the terms of validity of the concluded agreements with them. The operator may process personal data customers after the expiration of the terms of the contracts concluded with them contracts within the period established by paragraph 5 h. 3 Article. 24 parts the first Tax Code of the Russian Federation, part 1 of Art. 29 of the Federal Law "On Accounting" and others normative legal acts. 4.5. Operator processes the following personal data of clients: Surname, name, patronymic; Contact phone number; E-mail address.

5. Information about ensuring the security of personal data

5.1. The operator appoints a person responsible for organizing the processing of personal data to fulfill the obligations provided for by the Federal Law "On Personal Data" and the regulatory legal acts adopted in accordance with it. 5.2. The Operator applies a set of legal, organizational and technical measures to ensure the security of personal data to ensure the confidentiality of personal data and protect them from illegal actions: provides unlimited access to the Policy, a copy of which is posted at the Operator’s location, and can also be posted on the Operator’s website (if its presence); in pursuance of the Policy, approves and puts into effect the document “Regulations on the processing of personal data” (hereinafter referred to as the “Regulations”) and other local acts; familiarizes employees with the provisions of the legislation on personal data, as well as with the Policy and Regulations; provides employees with access to personal data processed in the information system of the Operator, as well as to their material carriers only for the performance of labor duties; establishes the rules for access to personal data processed in the information system of the Operator, and also ensures registration and accounting of all actions with them; makes an assessment of the harm that may be caused to the subjects of personal data in case of violation of the Federal Law "On Personal Data"; determines threats to the security of personal data during their processing in the information system of the Operator; applies organizational and technical measures and uses information security tools necessary to achieve the established level of personal data security; detects facts of unauthorized access to personal data and takes measures to respond, including the restoration of personal data modified or destroyed due to unauthorized access to them; evaluates the effectiveness of the measures taken to ensure the security of personal data prior to the commissioning of the Operator's information system; exercises internal control over the compliance of the processing of personal data with the Federal Law "On Personal Data", the regulatory legal acts adopted in accordance with it, the requirements for the protection of personal data, the Policy, the Regulations and other local acts, including control over the measures taken to ensure the security of personal data and their level security during processing in the information system of the Operator.

6. Rights of personal data subjects

6.1. The subject of personal data has the right: to receive personal data relating to this subject, and information, concerning their processing; to clarify, block or destruction of his personal data if they are incomplete, outdated, inaccurate, illegally obtained or not are necessary for the stated purpose of the processing; for feedback his consent to the processing of personal data; to the defense their rights and legitimate interests, including compensation for damages and compensation for non-pecuniary damage in court; to appeal actions or inaction of the Operator to the authorized body for protection of the rights of personal data subjects or in court. 6.2. In order to exercise their rights and legitimate interests, subjects personal data have the right to contact the Operator or submit a request in person or through a representative. Request must contain the information specified in Part 3 of Art. 14 Federal Law "On personal data".