Privacy Policy
1. General Provisions
This Privacy Policy applies to information that the Humio — 3D Anatomy Atlas application and the humio.ru website may receive from a user while the user is using the application, website and related services.
Using the application or website means that the user accepts this Policy and the stated terms of personal data processing. If the user does not agree with the Policy, the user should stop using the services.
This Policy is prepared in accordance with applicable Russian personal data legislation, including Federal Law No. 152-FZ “On Personal Data”.
2. Key Terms
- Automated processing of personal data means processing personal data using computing equipment.
- Blocking of personal data means temporary suspension of processing, except where processing is required to clarify the data.
- Website means the set of graphic and informational materials, software and databases available at humio.ru.
- Personal data information system means databases containing personal data and the technologies and technical tools used to process it.
- Depersonalization of personal data means actions that make it impossible to identify a specific user without additional information.
- Processing of personal data means any action or set of actions performed with personal data, with or without automation.
- Operator means Individual Entrepreneur Marinicheva Svetlana Leonidovna (TIN 524911713391, OGRNIP 305524902800055), who processes personal data.
- Personal data means any information related directly or indirectly to an identified or identifiable user.
- User means any person accessing the website or application through the Internet.
- Provision, dissemination, cross-border transfer and destruction of personal data have the meanings assigned to them by applicable personal data legislation.
3. Operator Rights and Obligations
The Operator may request accurate information and documents containing personal data, define necessary protection measures, and continue processing personal data where allowed by law after consent is withdrawn.
The Operator must provide information about personal data processing upon lawful request, publish this Policy with unrestricted access, and take legal, organizational and technical measures to protect personal data from unauthorized or accidental access, destruction, modification, blocking, copying, provision or dissemination.
4. Rights and Obligations of Data Subjects
Data subjects have the right to receive information about personal data processing, request correction, blocking or destruction of incomplete, outdated, inaccurate, unlawfully obtained or unnecessary data, withdraw consent to processing, and appeal the Operator’s actions to the authorized authority or a court.
Data subjects must provide accurate data and notify the Operator of updates or changes to their personal data.
5. Processing Principles
- Personal data is processed lawfully and fairly.
- Processing is limited to specific, predetermined and lawful purposes.
- Databases processed for incompatible purposes are not combined.
- Only personal data corresponding to the stated purposes is processed.
- The content and scope of processed data correspond to the stated purposes.
- Accuracy, sufficiency and relevance of personal data are maintained.
- Personal data is stored no longer than required by the processing purposes.
6. Processing Purposes and Data Categories
Purpose: providing the user with access to services, information and materials in the application and on the website.
Personal data processed:
- last name, first name and patronymic where provided;
- email address.
Operations: collection, recording, systematization, accumulation, storage, destruction and depersonalization of personal data, and sending informational emails to the user’s email address.
7. Conditions for Processing
Personal data is processed with the data subject’s consent, in cases provided by law, on the basis of a court act or authorized authority decision, for performance of an agreement involving the data subject, and in other cases allowed by Russian law.
8. Collection, Storage, Transfer and Protection
The Operator protects personal data and takes reasonable measures to prevent unauthorized access.
User personal data is not transferred to third parties except where required by law or where the data subject has consented to transfer for performance of contractual obligations.
9. Actions Performed With Personal Data
The Operator may collect, record, systematize, accumulate, store, clarify, retrieve, use, transfer, depersonalize, block, delete and destroy personal data.
10. Cross-Border Transfer
Before cross-border transfer, the Operator verifies that the foreign state receiving personal data provides reliable protection of data subjects’ rights.
11. Confidentiality
The Operator and other persons who obtain access to personal data must not disclose or disseminate personal data to third parties without the data subject’s consent unless otherwise provided by law.
12. Final Provisions
The user may request clarification about personal data processing by emailing info@humio.ru.
This Policy remains effective until replaced by a new version. The current version is available at humio.ru/privacy.