1. General terms
1.1. Policy regarding the processing of personal data (further — Policy) is directed to protection of the rights and freedoms of individuals, personal data of which is processed the Regional Youth Public Organization "CLUB of YOUNG ENTREPRENEURS of Seaside territory"
(further — the Operator).
1.2. The policy was developed in accordance with paragraph 2 of part 1 of article 18.1 of the Federal law of July 27, 2006, No 152 " About personal data» (further — the Federal Law "About Personal Data").
1.3. The policy contains information to be disclosed in accordance with part 1 of article 14 of the Federal law "About personal data" and is a public document.
2. Information about the operator
2.1. The operator conducts the activities at the address Seaside Region, Vladivostok, Nizhneportovaya St., building 6G, apartment 11.
2.2. Chairman Of The Board Evgeny Shkarupa (phone +7 (423) 272−3076) is appointed responsibilities for the organization of personal data processing.
2.3. The database of information containing personal data of citizens of the Russian Federation is located at: Seaside Region, Vladivostok, Nizhneportovaya St., building 6G, apartment 11.
3. Information on the processing of personal data
3.1. The operator processes personal data on a legal and fair basis for the accomplishment of functions assigned by the legislation, powers, and obligations, implementation of the rights and legitimate interests of the Operator, the Operator's employees and the third parties.
3.2. The operator receives personal data directly from the subjects of personal data.
3.3. The operator processes personal data in automated and non-automated ways, using computer technology and without the use of such means.
3.4. Actions for processing of personal data include collection, record, systematization, accumulation, storage, refining (updating, change), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, removal and destruction.
3.5. Databases of information containing personal data of citizens of the Russian Federation are in the territory of the Russian Federation.
4. Processing of personal data of individuals: potential participants of events
4.1. The operator processes personal data of physical persons "potential participants of events" within the legal relationship with the Operator settled by part second of the Civil Code of the Russian Federation of January 26, 1996 No 14.
4.2. The operator processes personal data of individuals "potential participants of events" for the purpose of:
— Concluding and fulfilling agreement obligations;
— performing the types of activity provided by constituent documents
Regional Youth Public Organization "CLUB of YOUNG ENTREPRENEURS of Seaside territory";
- registration on events.
4.3. The operator processes personal data of individuals "potential participants of events" with their consent provided on the valid period of the agreements signed with them. In the cases provided by the Federal Law "About Personal Data", consent is provided in writing.
In other cases consent is considered received in case of signing of the contractor when making implied actions.
4.4. The operator processes personal data of an individual's "potential participants of events" during the validity of contracts concluded with them.
The operator may process the personal data of individuals "potential participants" after the end of periods of validity of contracts concluded with them within the term established by clause 5 part 3, article 24 of the Tax code of the Russian Federation, part 1 of article 29 of the Federal law "About Financial Accounting" and other normative legal acts.
4.5. The operator processes special categories of personal data of a minor individual's "potential participants of actions" from a written consent of their legal representatives based on part 1 of article 9, paragraph 1 of part 2 of the article 10 of the Federal Law "About Personal Data".
4.6. The operator processes the following personal data of individuals "potential participants of events":
- Name, surname;
- Type, series and number of identity document;
- Date of issue of the identity document and information on the issuing authority;
— Year of birth;
— Month of birth;
— Date of birth;
— Place of birth;
- Contact phone number;
- Email address;
- Academic degree, title.
5. Information on personal data security
5.1. The operator assigns responsible for the organization of personal data processing for execution of the duties provided by the Federal Law "About Personal Data" and the regulations adopted according to it.
5.2. The operator applies a combination of legal, organizational and technical measures on the safety of personal data to ensure the confidentiality of personal data and their protection against illegal acts:
- providing unrestricted access to the Policy, a copy of which is available at
location of the Operator, and can also be posted on the Operator's website (if available);
— in pursuance of Policy claims and puts in action the document "Regulations on the processing of personal data" (further — the Regulation) and other local acts;
— making acquaintance of employees with provisions of the legislation on personal data and also with Policy and Situation;
— performing the admission of employees to the personal data processed in an information system of the Operator and also to their material carriers only for the accomplishment of labor obligations;
— establishing rules of access to the personal data processed in the Operator's information system, and also provides registration and accounting of all actions with them;
— making an assessment of harm which can be caused to subjects of personal data in case of violation of the Federal Law "About Personal Data";
— identifying threats to the security of personal data during their processing in the Operator's information system;
- applying organizational and technical measures and uses information security measures necessary to achieve the established level of personal data protection;
— performing detection of the facts of unauthorized access to personal data and takes measures for reaction, including recovery of the personal data modified or destroyed owing to unauthorized access to them;
— making an efficiency evaluation of the taken measures for the safety of personal data before commissioning of an information system of the Operator;
- carrying out internal control of compliance of processing of Federal law's personal data "on personal data", adopted in accordance with the regulatory legal acts, requirements for the protection of personal data, Policies, Regulations and other local acts, including control over the measures taken to ensure the security of personal data and their level of protection during processing in the information system of the Operator.
6. Rights of subjects of personal data
6.1. The subject of personal data has the right:
— to receive of the personal data relating to this subject, and information concerning to their processing;
- to clarify, block or destroy of its personal data if they are incomplete, outdated, inaccurate, illegally obtained or are not necessary for the stated purpose of processing;
— to revoke agreed by its consent to a processing of personal data;
— to the protection of its rights and legitimate interests, including on indemnification and compensation of moral harm in a judicial proceeding;
— to the appeal of actions or inaction of the Operator in an authorized body on the protection of the rights of subjects of personal data or in a judicial proceeding.
6.2. For realization of the rights and legitimate interests personal data subjects have the right to address the Operator or to send inquiry personally or by means of the representative. The inquiry has to contain the data specified in part 3 of article 14 of the Federal Law "About Personal Data".