This Privacy Policy sets out how we collect, use, store, and protect the personal data of users of the SCI4O service (hereinafter referred to as the “Service,” “we,” or “the Company”). We take the protection of your personal information seriously and strive to be transparent about how your data is processed.

By using our Service, you trust us with your information, and we do our best to ensure its security. This Policy describes in detail what data we collect, for what purpose, how it may be used, and what rights you have regarding your personal information.

We recommend that you read this document carefully to understand how SCI4O processes your data and what measures are taken to protect it.

The company’s most important goal and condition for carrying out its activities is to respect the rights and freedoms of individuals and citizens when processing their personal data, including protecting their rights to privacy and personal and family secrets.

The company’s main rights and responsibilities

The Company has the right to:

  • receive from the subject of personal data reliable information and/or documents containing personal data;
  • in the event that the data subject withdraws their consent to the processing of personal data, the Company has the right to continue processing personal data without the consent of the data subject if there are grounds specified in the Personal Data Law;
  • independently determine the composition and list of measures necessary and sufficient to ensure the fulfillment of obligations provided for by the Personal Data Law and regulatory legal acts adopted in accordance with it, unless otherwise provided by the Personal Data Law or other federal laws.

The company is obliged to:

  • provide the personal data subject, at his or her request, with information concerning the processing of his or her personal data;
  • respond to requests and inquiries from personal data subjects and their legal representatives in accordance with the requirements of the Personal Data Law;
  • provide the authorized body for the protection of the rights of personal data subjects with the necessary information at the request of that body within 30 days from the date of receipt of such a request;
  • publish or otherwise provide unrestricted access to this Policy regarding the processing of personal data;
  • take legal, organizational, and technical measures to protect personal data from unauthorized or accidental access, destruction, alteration, blocking, copying, provision, distribution of personal data, as well as from other unlawful actions in relation to personal data;
  • cease the transfer (distribution, provision, access) of personal data, cease processing and destroy personal data in the manner and in the cases provided for by the Personal Data Act;
  • perform other duties provided for by the Personal Data Act.

The Company may process the following personal data of the User:

  • Surname, first name, patronymic.
  • Email address.
  • Phone numbers.
  • The above data is hereinafter referred to in the Policy as Personal Data.

The transfer (distribution, provision, access) of personal data authorized by the subject of personal data for distribution must be terminated at any time at the request of the subject of personal data. This request must include the surname, first name, patronymic (if any), contact information (telephone number, email address, or postal address) of the personal data subject, as well as a list of personal data whose processing is to be terminated. The personal data specified in this request may only be processed by the Company to which it is addressed.

Principles of personal data processing

  • Personal data is processed on a lawful and fair basis.
  • The processing of personal data is limited to the achievement of specific, predefined, and lawful purposes. The processing of personal data that is incompatible with the purposes of collecting personal data is not permitted.
  • It is not permitted to combine databases containing personal data that are processed for incompatible purposes.
  • Only personal data that meets the purposes of its processing shall be processed.
  • The content and scope of the personal data processed shall correspond to the stated purposes of processing. The processing of personal data that is excessive in relation to the stated purposes of its processing is not permitted.
  • Personal data shall be stored in a form that allows the identification of the data subject for no longer than is necessary for the purposes of processing personal data, unless the storage period for personal data is established by federal law or by a contract to which the data subject is a party, beneficiary, or guarantor. Processed personal data shall be destroyed or anonymized upon achievement of the purposes of processing or in the event that the need to achieve these purposes ceases to exist, unless otherwise provided by federal law.

The Company also has the right to send the User notifications about new products and services, special offers, and various events. The User can always opt out of receiving informational messages by sending a letter to the Company at [email protected] with the subject line “Opt out of notifications about new products and services and special offers.”

Legal grounds for processing personal data

The legal grounds for the processing of personal data by the Company are:

  • agreements concluded between the operator and the subject of personal data;
  • consent of Users to the processing of their personal data, to the processing of personal data permitted for distribution.

The Company processes anonymized data about the User if this is permitted in the User’s browser settings (cookies are enabled and JavaScript technology is used).

The subject of personal data independently decides whether to provide their personal data and gives their consent freely, of their own will, and in their own interest.

Terms and conditions for the processing of personal data

  • Personal data is processed with the consent of the personal data subject to the processing of their personal data.
  • The processing of personal data is necessary for the performance of a contract to which the personal data subject is a party or the beneficiary or guarantor, as well as for the conclusion of a contract at the initiative of the personal data subject or a contract under which the personal data subject will be the beneficiary or guarantor.
  • The processing of personal data is necessary for the exercise of the rights and legitimate interests of the operator or third parties, or for the achievement of socially significant goals, provided that this does not violate the rights and freedoms of the personal data subject.
  • Personal data is processed, access to which is provided to an unlimited number of persons by the subject of personal data or at his request (hereinafter referred to as publicly available personal data).
  • Procedure for the collection, storage, transfer, and other types of processing of personal data The security of personal data processed by SCI4O is ensured through the implementation of legal, organizational, and technical measures necessary to fully comply with the requirements of current legislation in the field of personal data protection.

Cross-border transfer of personal data

Before initiating a cross-border transfer of personal data, the company is obliged to ensure that the foreign state to which the personal data is to be transferred provides reliable protection of the rights of personal data subjects.

Cross-border transfer of personal data to foreign countries that do not meet the above requirements may only be carried out with the written consent of the personal data subject to the cross-border transfer of their personal data and/or the performance of a contract to which the personal data subject is a party.

Final provisions

The user may obtain any clarifications on issues of interest concerning the processing of their personal data by contacting SCI4O by email at [email protected].

This document will reflect any changes to SCI4O’s personal data processing policy. The policy is valid indefinitely until replaced by a new version.