- General provisions
The present policy on processing of personal data is drawn up according to requirements of the Law of Ukraine 2297-VI “On Protection of Personal Data” dated June 01, 2010 and determines an order of processing of personal data and measures on providing security of personal data by Disсaf LTD (hereinafter referred to as the “Operator”).
The Operator sets the most important purpose and condition of realization of its activity as observance of rights and freedoms of the person and the citizen at processing of his/her personal data, including protection of rights to privacy, personal and family secrets.
This Operator`s processing of personal data policy (hereinafter referred to as the “Policy”) applies to all information that the Operator may receive about the visitors of https://discaf.coffee/ website.
- Basic concepts used in the Policy
Automated processing of personal data is processing of personal data by means of computer equipment;
Blocking of personal data is temporary termination of processing of personal data (except cases where processing is necessary to clarify personal data);
Website is a collection of graphic and informational materials, as well as computer programs for electronic computer and databases, ensuring their accessibility on the Internet at the network address https://discaf.coffee;
Information system of personal data is a collection of personal data contained in databases and information technologies and technical means ensuring its processing;
Depersonalization of personal data is any action in which it is impossible to determine, without the use of additional information, whether the personal data belongs to a particular User or another personal data;
Processing of personal data is any action (operation) or a collection of actions (operations), performed with or without the use of automation means with personal data, including collecting, recording, systematization, accumulation, storage, clarification (updating, changing), withdrawal, using, transferring (distribution, provision, access), depersonalization, blocking, removal, destruction of personal data;
Operator is a state body, municipal body, legal entity or individual, independently or together with other persons, organizing and (or) carrying out processing of personal data, as well as defining the purpose of processing of personal data, the composition of personal data to be processed, actions (operations) performed with personal data;
Personal data is any information relating directly or indirectly to a specific or identifiable User of https://discaf.coffee/ website;
User is any visitor to https://discaf.coffee website;
Provision of personal data is any action aimed at disclosure of personal data to a certain person or a certain group of people;
Distribution of personal data is any action aimed at disclosure of personal data to an indefinite group of people (transfer of personal data) or familiarization of personal data to an unlimited group of people, including publication of personal data in the media, posting in information and telecommunications networks or providing access to personal data in any other way;
Cross-border transfer of personal data is transfer of personal data to the territory of a foreign state to a foreign state authority, a foreign individual or a foreign legal entity;
Destruction of personal data is any action resulting in the destruction of personal data irretrievably with the impossibility of further restoration of the content of personal data in the information system of personal data and (or) resulting in the destruction of material carriers of personal data.
- The Operator may process the following personal data of the User
Surname, first name, patronymic name;
Data for product delivery (including actual addresses);
The site also collects and processes depersonalized visitor data (including cookie files) using Internet statistical services (Google Analytics and others).
Data according to the text of the Policy are united by the general concept of Personal data.
- Purposes of processing of personal data
The purpose of processing of the User`s personal data is informing the User by sending emails; providing the User with access to services, information and/or materials contained on the website.
The Operator also has the right to send the User notifications about new products and services, special offers and various events. The User can always refuse to receive information messages by sending a letter to the Operator to the address email@example.com with the note “Refusal of messages about new products and services and special offers”.
Depersonalized Users` data, which is collected through Internet statistical services, is used to collect information about Users` actions on the site, to improve the quality of the site and its content.
- Legal bases of processing of personal data
The Operator processes the User`s personal data only if they are filled in and/or sent by the User himself through special forms posted on https://discaf.coffee website. By filling out the relevant forms and/or sending their personal data to the Operator, the User expresses his agreement with this Policy.
- Procedure of collecting, storing, transferring and other processing of personal data
Safety of personal data, processed by the Operator, is ensured by implementing legal, organizational and technical measures, necessary for fulfilling the requirements of current legislation in the sphere of protection of personal data to the full extent.
The Operator ensures preservation of personal data and takes all possible measures which exclude access to personal data by unauthorized persons.
The User`s personal data will be never, under no circumstances, transferred to the Third Parties, except the cases related to the execution of the current legislation.
In case of discovering inaccuracies in the personal data, the User can update them independently by sending a message to the Operator`s e-mail address firstname.lastname@example.org with a note “Updating of personal data”.
The period of processing of personal data is unlimited. The User may withdraw their consent to the processing of personal data at any time by sending an email to the Operator`s email address email@example.com with a note “Withdrawal of consent to the processing of personal data”.
- Cross-border transfer of personal data
Before cross-border transfer of personal data, the Operator shall make sure that a foreign country, the territory of which is intended for the transfer of personal data, provides reliable protection of personal data subjects` rights.
Cross-border transfer of personal data to foreign countries that do not meet the aforementioned requirements may take place only if there is written consent of the personal data subject for cross-border transfer of his/her personal data and/or performance of an agreement, to which the personal data subject is a Party.
- Final provisions
The User can get any clarifications on issues related to the processing of his personal data by contacting the Operator via e-mail: firstname.lastname@example.org.
This document will reflect changes in the Operator`s processing of personal data policy. The policy is valid indefinitely until it is replaced by a new version.