Privacy Policy

1. Introduction

1.1. The policy for processing personal data of the Academy of Legal Solutions (hereinafter referred to as the Policy) was developed in accordance with the Federal Law of 07.27.2006. No. 152-FL “On Personal Data” (hereinafter - FL-152).

1.2. This Policy determines the procedure for the processing of personal data and measures to ensure the security of personal data at the Academy of Legal Solutions (hereinafter referred to as the Organization) in order to protect the rights and freedoms of a person and citizen in the processing of his personal data, including the protection of privacy rights, personal and family secrets.

1.3. Personal data are confidential, strictly protected information and they are subject to all the requirements established by the Organization’s internal documents for the protection of confidential information.

2. The concept and composition of personal data.

2.1. The list of personal data to be protected in the Organization is formed in accordance with the Federal Law of the Russian Federation of July 27, 2006 No. 152-FL “On Personal Data” and the document “Agreement on the processing of personal data”.

2.2. Information constituting personal data in the Organization is any information relating to directly or indirectly determined or determined by an individual (subject of personal data).

2.3. The organization processes personal data of its own employees.

3. Purpose of processing personal data.

3.1. The organization processes personal data in order to provide services, ensure payments, formalize labor and other contractual relations, personnel, accounting, and tax accounting, as well as for other purposes provided for by Federal Law No. 152-FL of June 27, 2006, 85-90 of the Labor Code RF.

4. Terms of personal data processing

4.1. The terms for processing personal data are determined in accordance with the term of the contract with the subject of personal data, Order No. 558 of the Ministry of Culture of the Russian Federation of August 25, 2010 No. 558 “On Approval of the“ List of typical administrative archival documents generated in the course of activities of state bodies, local authorities and organizations, indicating periods of storage ", limitation period, as well as other requirements of the legislation of the Russian Federation.

5. Rights and obligations

5.1. Rights and Obligations of the Organization

5.1.1. The organization as an operator of personal data may:

  • to defend their interests in court;
  • provide personal data of subjects to third parties, if it is provided for by current legislation (tax, law enforcement, etc.);
  • refuse to provide personal data in cases stipulated by law;
  • use the personal data of the subject without his consent, in cases provided by law.

5.2. Rights and obligations of the subject of personal data

5.2.1. The personal data subject has the right

  • require clarification of their personal data, their blocking or destruction if personal data is incomplete, outdated, inaccurate, illegally obtained or not necessary for the stated purpose of processing, and also take measures provided by law to protect their rights;
  • request a list of their personal data processed by the Organization and indicate the source of their receipt;
  • receive information on the processing time of their personal data, including the storage period;
  • to demand notification of all persons to whom his incorrect personal data were previously reported, about all exceptions, corrections or additions made to them;
  • appeal against the authorized body for the protection of the rights of subjects of personal data or in court the wrongful actions or omissions in the processing of his personal data;
  • to protect their rights and legitimate interests, including compensation for damages and (or) compensation for moral damage in court.

6. Principles and conditions for the processing of personal data.

6.1. The processing of personal data in the Organization is based on the principles of:

  • the legality and fairness of the purposes and methods of processing personal data;
  • the compliance of the objectives of the processing of personal data with the goals predetermined and stated in the collection of personal data, as well as the powers of the Organization;
  • correspondence of the volume and nature of the personal data being processed, the methods of personal data processing to the purposes of personal data processing;
  • the reliability of personal data, their sufficiency for processing purposes, the inadmissibility of the processing of personal data redundant in relation to the goals stated in the collection of personal data;
  • the inadmissibility of combining the databases created for incompatible purposes of databases containing personal data;
  • storage of personal data in a form that allows to determine the subject of personal data, no longer than required by the purpose of their processing;
  • destruction upon reaching the goals of processing personal data or in case of loss of the need to achieve them.

6.2. The processing of personal data is carried out on the basis of conditions determined by the legislation of the Russian Federation.

7. Ensuring the security of personal data

7.1. The organization takes the necessary organizational and technical measures to ensure the security of personal data from accidental or unauthorized access, alteration, blocking of access and other unauthorized actions.

7.2. In order to coordinate actions to ensure the security of personal data in the Organization, a person responsible for ensuring the security of personal data has been appointed.

8. Final provisions.

8.1. This Policy is an internal document of the Organization, publicly available and subject to posting on the official website of the Organization.

8.2. This Policy is subject to change, addition in the case of the emergence of new legislation and special regulatory documents on the processing and protection of personal data, but not less than once every three years.

8.3. The monitoring of compliance with the requirements of this Policy is carried out by the person responsible for ensuring the security of personal data of the Organization.

8.4. The responsibility of officials of the Organization with access to personal data for non-compliance with the requirements of the rules governing the processing and protection of personal data is determined in accordance with the legislation of the Russian Federation and internal documents.

Our Services