Privacy Policy

This Privacy Policy (hereinafter referred to as the “Policy”) defines the procedure for processing and protecting the personal information of Users that the individual entrepreneur Goncharov Bogdan Aleksandrovich, INN: 680402208165 (hereinafter referred to as “Operator” or “Administration”) may collect during the use of the Administration’s Service: [https://goncharov.pw/] (hereinafter referred to as “Service”, “Site”).
Before using the Service, Users should read the terms of this Privacy Policy.

1. General Provisions

1.1. The use of the Service in any form means the User’s unconditional consent to the terms of this Privacy Policy and the conditions for processing their personal information stated herein. If the User does not agree with the terms of this Privacy Policy, they must refrain from using the Service.

1.2. The Privacy Policy (including any part of it) may be modified by the Administration without any special notification or compensation in this regard. The new version of the Privacy Policy takes effect from the moment it is posted on the Administration’s website.

1.3. By accepting the terms of this Policy, the User agrees to the processing of their data by the Administration for the purposes set forth in this Policy and to the transfer of their data to third parties in cases outlined in this Policy. This consent may be withdrawn by the User only by providing written notice to the Administration at least 3 days before the intended date of ceasing to use the data by the Administration.

1.4. As a general rule, the Administration does not verify the accuracy of the personal information provided by Users. However, in cases stipulated by the User Agreement, the User must provide confirmation of the accuracy of the personal information they have provided.

1.5. In compliance with part 2 of Article 18.1 of the Personal Data Law, this Policy is published and made available in the public domain on the Operator’s website: [https://goncharov.pw/].

1.6. The legal basis for processing personal data is a combination of legal acts under which the Operator processes personal data. The legal grounds for processing personal data include: a request, a public offer, Federal Law “On Advertising” No. 38-FZ, and the Federal Law of the Russian Federation dated July 27, 2006, No. 149-FZ “On Information, Information Technologies, and Information Protection.”

2. Types of Information Collected and Processed by the Administration

2.1. This Policy applies to the following types of personal information:

2.1.1. Personal information provided by Users voluntarily when filling out forms or submitting messages, and any other personal data provided by the User through third-party websites or services, or posted by the Users during the use of the Service. Such information may include, but is not limited to:

• Last name, first name, patronymic;
• Phone number;
• Email address;
• Country of residence;
• Telegram messenger username.

Additional information may be provided by the User at their discretion. The provision of personal data about third parties without their consent or if such data has not been obtained by the User from publicly available sources is prohibited.

2.1.2. The Operator guarantees the confidentiality of the following personal information:

• Card information (last 4 digits);
• Purchase and order details.

Such information is only transferred to third parties by the Operator for the purpose of processing payment transactions. No other transfer of this data to third parties is allowed.

2.1.3. Data automatically transmitted to the Service during its use via the User’s device, including: IP address, unique device network number (MAC address, device ID), electronic serial number (IMEI, MEID), cookies, browser information, operating system, access time, and search queries.

2.1.4. Data additionally provided by Users upon the Administration’s request to fulfill its obligations toward Users regarding the use of the Service.

2.1.5. Any other information collected or processed as stipulated by the User Agreement of the Administration.

3. Purposes for Collecting and Processing User Information

3.1. The Administration collects and processes only the personal information about Users that is necessary to fulfill its obligations to provide the Service, respond to queries, and perform obligations stipulated by the User Agreement.

3.2. The Administration may use Users’ personal information for the following purposes:

• Identifying the parties in contracts between the User and the Administration;
• Providing services to Users using the Service and fulfilling its obligations to them, including clarifying payment data, processing orders and requests, and further improving the Service, developing new services and features;
• Informing Users about new content on the Site, responding to requests related to the use of the Service, and communicating with Users;
• Conducting marketing tasks, statistical and other studies based on anonymized data;
• Informing Users via email newsletters. By providing their data, the User agrees to receive promotional and service-related messages (newsletters).

3.3. Mobile applications may collect anonymized location data to provide more accurate payment method options. They may also collect anonymous usage statistics.

3.4. If the Administration needs to use personal information for purposes not covered by this Policy, the Administration will request the User’s consent for such actions.

4. Processing of User Information

4.1. Personal information about Users is stored in accordance with applicable law.

4.2. Personal information about Users will not be shared with third parties except in the following cases:

• The User has given separate consent for such actions;
• The transfer is necessary to ensure the functioning of the Service and/or its specific features;
• The transfer is required by applicable law;
• To protect the legal rights and interests of the Administration and/or third parties in cases where the User violates the terms of the User Agreement;
• In case the Administration participates in a merger, acquisition, or any other form of sale of part or all of its assets. In this case, the acquirer assumes all obligations related to compliance with the terms of this Policy.

4.3. The User is hereby notified and agrees that the Administration may collect personal data of third parties provided by the User when using the Service and may use this data to perform certain functions of the Service, provided that the User guarantees that they have obtained consent from third parties for the processing of their data by the Administration, as outlined in this Policy, and the transfer of such data in cases described in this Policy.

4.4. Additionally, the User is hereby notified and agrees that the Administration may collect statistical anonymized (non-personally identifiable) data regarding the User’s actions while using the Service.

4.5. Users have the right to request information from the Administration regarding the processing of their personal data.

5. Protection of User Information

5.1. The Administration takes all necessary and sufficient organizational and technical measures to protect the personal information of Users from unauthorized or accidental access, destruction, modification, blocking, dissemination, or any other illegal actions regarding this information.

5.2. When processing Users’ personal data, the Administration adheres to the Federal Law “On Personal Data” No. 152-FZ, dated July 27, 2006.

6. Main Rights of Users and Obligations of the Operator

6.1. Main rights of Users.
The User has the right to access their personal data and obtain the following information:

• Confirmation of the fact that the Operator is processing their personal data;
• The legal grounds and purposes for processing personal data;
• The purposes and methods of processing personal data used by the Operator;
• The name and location of the Operator, information about individuals (other than employees of the Operator) who have access to personal data or to whom personal data may be disclosed based on a contract with the Operator or in accordance with federal law;
• The duration of personal data processing, including the terms of data retention;
• The procedure for exercising the rights provided by this Federal Law;
• The name or surname, first name, patronymic, and address of the person processing the personal data on behalf of the Operator, if processing is delegated to a third party;
• Contact information for the Operator to direct requests;
• The ability to challenge the actions or inactions of the Operator.

6.2. Obligations of the Operator.
The Operator is obliged to:

• Provide information about the processing of personal data when collected;
• Notify the User when personal data is obtained from sources other than the User;
• Explain the consequences of refusing to provide personal data to the User;
• Publish or otherwise ensure unlimited access to a document that defines the policy for processing personal data, along with details of the measures taken to protect personal data;
• Take necessary legal, organizational, and technical measures to protect personal data from unauthorized or accidental access, destruction, alteration, blocking, copying, provision, dissemination, or any other illegal actions with respect to personal data;
• Respond to requests and inquiries from the subjects of personal data, their representatives, and authorized bodies protecting the rights of data subjects.

7. Final Provisions

7.1. This Policy, as well as the relationships between the User and the Administration arising from the application of this Policy, and issues not addressed by this Policy, are governed by the current legislation of the Russian Federation.

7.2. The Operator’s email address for sending statements and inquiries from Users: bgproject113@gmail.com.