Privacy Policy

Personal data processing policy 1. General statements The current personal data processing policy is drawn...

Personal data processing policy

1. General statements

The current personal data processing policy is drawn up in accordance with Federal law of 27.07.2006 №152-F3 “On personal data” and it decides the order of personal data processing and Fiori Company’s (hereinafter Operator) measures for providing protection for personal data.

1.1. The Operator’s most important goal and condition of conducting their business is following human rights and freedoms of a client while processing their personal data, including protection of rights to privacy, personal and family secrets.

1.2. The Operator’s current personal data processing policy (hereinafter Policy) applies to all information that the Operator can receive about people visiting web-site.

2. General statements of the Policy

2.1. Automated personal data processing is personal data processing using computing equipment.

2.2. Personal data blocking is a temporary pause in personal data processing (excluding cases when processing is necessary for personal data clarification).

2.3. Web-site is a complex of graphical and informational resources and programs for computers and databases, providing them with Internet access via the network address

2.4. Informational personal data system is a personal data complex, contained within databases, and information technology and technical equipment ensuring data processing.

2.5. Personal data anonymity is achieved by actions that make it impossible  to determine the ownership of personal data by a User or another personal data subject without using any additional information.

2.6. Personal data processing is any action (operation) or any complex of actions (operations) carried out on personal data either using or not using means of automatization, including gathering, recording, systematization, accumulation, keeping, clarification (updating, changing), extraction, use, transfer (spread, submission, access), anonymization, blocking, deletion, destruction of personal data.

2.7. The Operator is a state body, a municipal body, a legal entity or an individual that either independently or along with other entities organizes and/or conducts personal data processing and determines personal data processing goals, contents of personal data that need to be processed, and actions (operations) carried out on personal data.

2.8. Personal data is any information connected directly or indirectly to a certain or a determinable User of the web-site.

2.9. A User is any web-site visitor.

2.10. Personal data submission is carried out by actions that are directed at revealing personal data to a certain entity or a certain group of entities.

2.11. Spread of personal data is carried out by any actions directed at revealing personal data to any group of entities (transfer of personal data) or at learning personal data of any group of entities, including publishing personal media in mass media, information and telecommunications networks or providing access to personal data in any other way.

2.12.Cross-border transfer of personal data is a transfer of personal data into foreign country’s territory, to a government body of a foreign country, to a foreign legal entity or a foreign individual.

2.13. Destruction of personal data is carried out by any actions that result in permanent destruction of personal data and impossibility of recovering personal data contents in a personal data information system, and/or result in destruction of tangible media containing personal data.

3. The Operator can process the following personal data of a User

3.1. Last name, first name, patronym.

3.2. E-Mail address.

3.3. Phone numbers.

3.4. Year, month, date and place of birth.

3.5. Delivery address.

3.6. There is also gathering and processing of anonymous data about users (including cookies) using Internet statistics services (Yandex.Metrica, Google Analytics and others).

3.7. All of the following Policies in the text below are combined under a common name — personal data.

4. Goals of personal data processing

4.1. The goal of processing personal data of a User is to inform the User by sending emails; to inform the User by sending messages to their phone number using messengers chosen by the User (Viber, WhatsApp, Telegram, SMS).

4.2. The Operator also has the right to send the User notifications about new products and services, special offers and various events. The User can always unsubscribe from the informational messages by sending the Operator an email to marked “Refusal to notifications about new products, services and special offers”.

4.3. Users’ anonymous data gathered using Internet statistics services serve for gathering information about Users’ actions on the web-site, improving the web-site’s quality and its contents.

5. Legal reasons for personal data processing

5.1. The Operator processes User’s personal data only when they are being filled in and/or sent by the User through special forms located on the web-site. By filling in the corresponding forms and/or sending their personal data to the Operator, the User confirmed their agreement with the Policy.

5.2.the Operator processes anonymous data about a User if it is allowed in the browser’s settings (cookies saving and use of JavaScript technology are turned on).

6. Order of gathering, keeping, transfer and other ways of personal data processing

Protection of personal data that is processed by the operator is maintained by implementing legal, organizational and technical measures necessary for fulfilling requirements of the current legislature concerning protection of personal data.

6.1. The Operator ensures safekeeping of personal data and takes all possible measures that limit access to personal data for unauthorized entities.

6.2. User’s personal data will never be transferred to third party representatives under any circumstance, except for cases involving following current legislature.

6.3. In case of detecting inaccuracies in personal data the User can update them on their own by sending the Operator a notification to the Operator’s e-mail address marked “Personal data update”.

6.4. There is no time limit on personal data processing. The User can withdraw their agreement on personal data processing at any moment by sending the Operator a notification to the Operator’s e-mail address marked “Withdrawal of the agreement on personal data processing”.

7. Cross-border transfer of personal data

7.1. Before proceeding with cross-border transfer of personal data, the Operator must make sure that the foreign state that will receive the personal data transfer ensures reliable protection of rights of the subjects of personal data.

7.2. Cross-border transfer of personal data on the territory of foreign states that do not follow above mentioned requirements can only be conducted in case of there being a written agreement  from the side of the subject of personal data on cross-border transfer of their personal data and/or fulfillment of a contract in which the subject of personal data is a part of.

8. Final statements

8.1. The User can receive clarification concerning questions about their personal data processing by getting in touch with the Operator via e-mail address

8.2. This document will contain any changes to the personal data processing policy made by the Operator. Policy is effective indefinitely until being replaced by a newer version.

8.3. Relevant version of the Policy is available in free access on the Internet at