1.2. Relations associated with the processing of information, including but not limited to the collection, use, storage, distribution and protection of information about Users of Furnar.io Services, are governed by this Policy and other rules posted within the Furnar.io Services (hereinafter collectively referred to as the “Policies” and separately “Policy”), as well as the current legislation of the Russian Federation. Before starting to use the Company Services, the User is obliged to get acquainted with this Policy, as well as with all applicable Terms.
2.1. Information processed by the Company includes:
2.1.1. Credentials understood as:
(a) information provided by the User when he/she registers (creates) a user account;
(b) additional information provided by the User when he/she edits a user account while using the Services;
(c) additional data provided by the User at the Company’s request for the purpose of fulfilling obligations by the Company to the User arising from an agreement to provide the corresponding Service, for example, name, surname, date of birth, gender, mobile phone number, etc.
The Credentials received by the Company in the amount required and sufficient for their classification in accordance with the current legislation of the Russian Federation as Personal data are processed by the Company as personal data under the terms of this Policy.
2.1.2. Other electronic data (except for personal data) required for the functioning of the Services, may
(a) data on technical devices, technological interaction with the Service (including the host IP address, type of the User’s operating system, browser type, geolocation, data on Internet service provider);
(b) information automatically obtained when accessing the Service using bookmarks (cookies);
(c) information created by users in the Service outside the account editing section (if applicable);
(d) information obtained as a result of the User’s actions in the Service, in particular, information on the any added content (if applicable);
(e) information obtained as a result of actions of other Users in the Service (if applicable);
(f) generalized analytical information on the use of Internet services.
2.2. Functionality and terms of using certain Services may allow the User to post any other information (if applicable) in the Services, in addition to the one specified in clause 2.1. of this Policy, if it does not contradict the requirements of the current legislation. At the same time, the Company does not intend to process biometric and special data categories.
2.3. If the functionality of the Service reflects information about the User in his Account, which is available for viewing by other Users of such a Service or Internet users, then the User agrees to reflect information about him in his Account. The User agrees that the Information, including Account and other data, as well as other information may be available to other Users of the corresponding Service and / or other Internet users, taking into account the existing functionality of the Service (which may change from time to time by the Company).
2.4. The Company does not check the Credentials provided by the User and cannot judge their authenticity, as well as whether the User has sufficient legal capacity to provide these data. Nevertheless, the Company assumes that the User provides reliable and sufficient credentials, and also updates them in a timely manner. By registering in the corresponding Service or gaining access to it without registration, the User confirms that he has reached the acceptable age for using such a Service in accordance with applicable law.
3.1. Processing information about Users is carried out by the Company in accordance with the following principles:
3.1.1. the legitimacy of the purposes and methods of processing Information;
3.1.2. Company integrity;
3.1.3. compliance of the purposes of processing the Information with the goals previously defined and declared during its collection, as well as the powers of the Company;
3.1.4. compliance of the volume and nature of the processed Information, the methods of its processing with the purposes of processing the Information;
3.1.5. Inadmissibility of combining databases containing User Information created for incompatible purposes.
3.2. Information Processing Goals
The Company processes the Credentials (including personal data) and other data of the Users of the Services in order to fulfill the agreements concluded with the Users on the use of the relevant Services.
3.3. Information Collection
The collection of the User Credentials is carried out upon registration in the corresponding Service by filling in the registration form by the User, as well as when the User edits the previously provided information or when the Credentials are supplemented on their own initiative (if applicable) using the tools of the corresponding Service.
Other data is collected by the Company independently in the process of using the Service by the User. In some cases, the collection of Other User data begins from the moment the User obtains access to the Service (for example, when downloading an Internet page or launching an application) until it is registered in the corresponding Service.
3.4. Processing and Transmission of Information
The User’s credentials and Other data are not transferred to any third parties, with the exception of cases expressly provided for by this Policy, as well as other applicable rules, as well as applicable law. In particular, the User’s Credentials and Other data may be transferred at the request of state bodies (local authorities) in the manner prescribed by applicable law.
Taking into account the foregoing, as well as taking into account the Company's compliance with the processing goals specified in clause 3.2 of this Policy, the User agrees and allows the Company to carry out, as well as instruct affiliates and partners to carry out processing, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), comparison, extraction, use, depersonalization, blocking, deletion and destruction of Accounts and Other user data, including the results of their automated processing, including in the form of integer and / or text values and identifiers, transfer of Accounting and Other data to affiliates and / or partners in pursuance of such a processing order, as well as collection (receipt) from affiliates and / or partners and joint processing of the User’s Credential and Other data.
It is not allowed to extract and use the User Account and Other data, including for commercial purposes, without the permission of the Company.
3.5. Information Storage
User credentials and Other data are stored on the territory of the Russian Federation, while storage is carried out exclusively on electronic media, and processing is carried out using automated systems, unless the automated processing of Credential and Other data is necessary in connection with the fulfillment of the requirements of applicable law.
3.6. Information Retention Periods
The Credentials and Other data are stored by the Company during the term of the agreement between the User and the Company on the use of the corresponding Service, and after the termination of such an agreement - for the period necessary and established by the current legislation of the Russian Federation.
3.7. Termination of Information Processing
Upon reaching the goals of processing Information, the Company stops processing the Credentials and Other data in accordance with the Federal Law “About Personal Data Protection”.
Users are entitled:
4.1. get free access to information about themselves by viewing the User Account in the corresponding Service;
4.2. independently edit the information about themselves in the User Account, provided that such changes and corrections contain relevant and reliable information;
4.3. delete information about themselves in the User Account of the corresponding Service (if applicable); at the same time, the removal by the User of certain information about themselves from the User Account in some Services may lead to the inability to provide the User with access to these Services.
4.4. require the Company to clarify information about the User, block it or destroy it if such information is incomplete, outdated, inaccurate, unreasonably received or is not necessary for the stated purpose of processing and if the functionality of the Service does not allow the User to delete such information;
4.5. based on a request to receive information from the Company regarding the processing of information about the User;
4.6. to refrain from processing personal data by sending the Company in the manner provided for in section 7 of this Policy, the corresponding request.
5.1. The Company takes technical and legal measures to ensure the protection of information about Users from unauthorized or accidental access, destruction, alteration, blocking, copying, distribution, as well as from other illegal actions.
5.2. All technical security measures have been implemented by the Company taking into account the requirements
of applicable law, the state of the art, the nature of the information being processed and the risks associated
with its processing.
Information is processed primarily automatically without access to it by employees and / or contractors of the Company. If such access is granted to employees or contractors of the Company, then only to the extent necessary for such persons to perform their official duties or obligations under an agreement with the Company, while such persons are obligated to comply with security requirements when accessing the Information. To protect and ensure data confidentiality, all employees / contractors comply with internal rules and procedures regarding the processing of information. These people also comply with all technical and organizational security measures provided for by applicable law and necessary to protect information about Users.
6.1. The Company is not responsible for the disclosure and dissemination of information about the User by other Users of the Services or other users of the Internet if such people gained access to this information in case the User violates the safety of his username and / or password or other data necessary for authorization.
7.1. Information about the data processed by the Company, including the personal data of the User, in connection with the use of the corresponding Service by him is provided to the User or his representative upon request.
7.2. Requests are sent in writing to the address of the location of the Company or in any other form provided for by the current legislation of the Russian Federation.
7.3. The user has the right to withdraw consent to the processing of his personal data by sending the Company a written statement at the location of the Company in accordance with the requirements of applicable law.
8.1. This Policy may be changed by the Company with notification to the User by posting a new version of the policy on the Site. Changes to the Policy made by the Company shall enter into force upon posting on the Website a new edition of such a Policy. The user undertakes to independently verify this Policy for changes. Failure by the User to familiarize himself with the actions may not serve as a basis for non-fulfillment by the User of his obligations and non-compliance by the User with the restrictions established by this Agreement.
8.2. The User has the right to refuse to accept changes and additions to this Policy, which means the User’s refusal to use all Furnar.io Services and all rights granted to him earlier.
8.3. This Policy is governed by and interpreted in accordance with the laws of the Russian Federation. Issues which are not regulated by this Policy shall be resolved in accordance with the legislation of the Russian Federation.
Last updated 25.06.2020