Personal Data Processing Policy


1. General ProvisionsThis Personal Data Processing Policy has been prepared in accordance with the requirements of the European Union law dated 25 May 2018 No. 679 General Data Protection Regulation (GDPR) (hereinafter referred to as the “Personal Data Law”) and defines the procedure for processing personal data and the measures to ensure the security of personal data undertaken by UNI (hereinafter referred to as the “Operator”).


1.1.The Operator considers compliance with human and civil rights and freedoms when processing personal data, including the protection of the right to privacy and personal and family confidentiality, as its most important goal and condition for carrying out its activities.

1.2.This Personal Data Processing Policy of the Operator (hereinafter referred to as the “Policy”) applies to all information that the Operator may obtain about visitors to the website.


2. Key Definitions Used in This Policy 2.1.Automated processing of personal data — processing of personal data using computer technology.


2.2.Blocking of personal data — temporary suspension of the processing of personal data (except in cases where processing is necessary to clarify personal data).

2.3.Website — a collection of graphic and informational materials, as well as computer programs and databases, ensuring their availability on the Internet at a network address.

2.4.Personal data information system — a set of personal data contained in databases and information technologies and technical means ensuring their processing.

2.5.Anonymization of personal data — actions as a result of which it becomes impossible to determine the ownership of personal data by a specific User or other data subject without the use of additional information.

2.6.Processing of personal data — any action (operation) or set of actions (operations) performed with or without automation tools, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transfer (distribution, provision, access), anonymization, blocking, deletion, and destruction of personal data.

2.7.Operator — a state authority, municipal authority, legal entity, or individual who independently or jointly with others organizes and/or processes personal data and determines the purposes of processing personal data, the composition of personal data, and actions performed with personal data.

2.8.Personal data — any information relating directly or indirectly to an identified or identifiable User of the website.

2.9.Personal data authorized by the data subject for distribution — personal data made available to an unlimited number of persons by the data subject through consent to such processing in accordance with the Personal Data Law.

2.10.User — any visitor to the website.

2.11.Provision of personal data — actions aimed at disclosing personal data to a specific person or a specific group of persons.

2.12.Distribution of personal data — any actions aimed at disclosing personal data to an indefinite number of persons, including publication in mass media, placement in information and telecommunication networks, or providing access in any other way.

2.13.Cross-border transfer of personal data — transfer of personal data to the territory of a foreign state to a foreign authority, foreign individual, or foreign legal entity.

2.14.Destruction of personal data — actions as a result of which personal data are irreversibly destroyed without the possibility of further recovery.


3. Rights and Obligations of the Operator 3.1. The Operator has the right to:obtain reliable information and/or documents containing personal data from the data subject;

  • continue processing personal data without the consent of the data subject in cases provided by the Personal Data Law;
  • independently determine the necessary and sufficient measures to ensure compliance with applicable personal data legislation.
  • 3.2. The Operator is obliged to:provide information related to the processing of personal data at the request of the data subject;
  • organize personal data processing in accordance with EU legislation;
  • respond to requests from data subjects and their representatives;
  • publish or otherwise ensure unrestricted access to this Policy;
  • take legal, organizational, and technical measures to protect personal data;
  • terminate processing and destroy personal data when required by law.

4. Rights and Obligations of Personal Data Subjects 4.1. Data subjects have the right to:receive information regarding the processing of their personal data;

  • demand clarification, blocking, or destruction of personal data if such data are incomplete, outdated, inaccurate, unlawfully obtained, or unnecessary;
  • withdraw consent to personal data processing;
  • appeal unlawful actions or inaction of the Operator;
  • exercise other rights provided by EU legislation.
  • 4.2. Data subjects are obliged to:provide accurate personal data;
  • inform the Operator of changes to their personal data.

4.3.Persons who provide false information or disclose third-party personal data without consent bear responsibility in accordance with EU law.


5. Personal Data Processed by the OperatorThe Operator may process the following personal data:

  • Full name;
  • Email address;
  • Phone number.

The website also collects anonymized data, including cookies, using internet analytics services (such as Google Analytics).

Special categories of personal data are not processed.


6. Principles of Personal Data ProcessingPersonal data processing is carried out lawfully, fairly, and limited to specific, legitimate purposes. Only relevant and necessary data are processed, ensuring accuracy and appropriate storage duration.


7. Purposes of Personal Data ProcessingInforming Users via email;

  • Concluding and executing civil law contracts;
  • Providing access to website services and materials;
  • Improving website quality and content.

8. Legal Grounds for ProcessingPersonal data processing is based on:

  • contracts with data subjects;
  • applicable EU legislation;
  • consent of the User.

9. Conditions of Personal Data ProcessingProcessing is carried out with consent or where required for contractual, legal, or legitimate interest purposes, without violating the rights of data subjects.


10. Procedure for Collection, Storage, and ProcessingThe Operator ensures the security and confidentiality of personal data and prevents unauthorized access. Personal data are not transferred to third parties except as required by law or with consent.


11. Actions Performed with Personal DataThe Operator performs collection, storage, use, transfer, anonymization, blocking, deletion, and destruction of personal data, including automated processing.


12. Cross-Border Transfer of Personal DataCross-border transfer is permitted only to countries ensuring adequate protection or with explicit consent of the data subject.

1

3. Confidentiality of Personal DataPersonal data shall not be disclosed or distributed without consent unless otherwise required by law.


14. Final ProvisionsUsers may contact the Operator for clarification via email: info@guarlawуer.com


This Policy is effective indefinitely until replaced by a new version.

The current version is publicly available at: privacy

Made on
Tilda