Privacy Policy

1. General Provisions

Our website address is (address: Piskaryovskiy pr., 2 building 2, St. Petersburg, Russia, 195027) (hereinafter referred to as the “Company”), as part of its core business, processes personal data of various categories of personal data subjects using personal data information systems, including but not limited to the following websites of the Company:, as well as other websites of the Company that link to this policy.

In accordance with the current legislation of Russia, the Company is a personal data operator. When organizing and implementing the processing of personal data, the Company is guided by the requirements of the law and other regulatory legal acts adopted in accordance with it.
For the purposes of this Policy, personal data refers to any information provided through the Company’s websites and (or) collected using such websites related to a directly or indirectly determined or determined individual (personal data subject).

2. Collection of personal data

The company collects information through websites and mobile applications in the following ways:

• Personal data provided by users:
The Company collects personal data that users or other persons enter into the data fields on the Company’s websites on their behalf.
• Collection of data on the location of devices of users of the Company’s mobile application when users use the mobile application.
• Collection of user IP addresses and cookies.
• Passive collection of personal data about the current connection in terms of statistical information:
– user identifier assigned by the Site;
– visited pages;
– number of page visits;
– information about moving through the pages of the site;
– duration of the user session;
– entry points (third-party sites from which the user clicks on the Site via a link);
– exit points (links to the Site through which the user goes to third-party sites);
– user country;
– region of the user;
– the time zone installed on the user’s device;
– user provider;
– user’s browser;
– browser digital fingerprint (canvas fingerprint);
– available browser fonts;
– Installed browser plugins;
– WebGL browser settings;
– type of available media devices in the browser;
– the presence of ActiveX;
– a list of supported languages on the user’s device;
– processor architecture of the user device;
– user OS;
– screen parameters (resolution, color depth, page placement parameters on the screen);
– information on the use of automation when accessing the Site.

Regarding registered users of the Site, information about the use of ports on users ‘devices may be collected in order to identify suspicious activity and protect users’ personal dashboards. Data can be obtained using various methods, for example, cookies and file web beacons, etc.

The company can use third-party Internet services (third-party technologies) to organize the collection of statistical personal data, third-party Internet services provide storage of received data on its own servers. The company is not responsible for the localization of servers of third-party Internet services. Moreover, such third-party Internet services (third-party technologies) installed on the Site and used by the Company can set and read cookies of browsers of the end-users of the Site or use network beacons to collect information in the process of advertising on the Site. The procedure for collecting and using data collected by such third-party Internet services (technologies of third parties) is determined independently by these third-party Internet services and they are directly responsible for observing this order and using the data they collect, including these third-party Internet services are responsible and ensure compliance with applicable laws, including legislation on personal data of the Russian Federation.
The company does not compare the information provided by the user independently and allowing to identify the subject of personal data with statistical personal data obtained in the application of such passive methods of collecting information.

3. Principles and conditions for the processing of personal data

The processing of personal data in the Company is carried out on a legal and fair basis and is limited to the achievement of specific, predetermined and legal goals, including, in accordance with the Terms of Use of the Sites, the Terms of Service, the Agreement on the provision of employment assistance services.
Only personal data that meets the purposes of their processing are subject to processing. The content and volume of personal data processed by the Company correspond to the declared processing goals, redundancy of processed personal data is not allowed.
When processing personal data, the Company ensures the accuracy of personal data, their sufficiency and, if necessary, relevance in relation to the purposes of processing personal data. The company takes the necessary measures (ensures their adoption) to delete or clarify incomplete or inaccurate personal data.
The company in the course of its activities may provide and (or) instruct the processing of personal data to another person with the consent of the subject of personal data unless otherwise provided by the legislation of the Russian Federation on personal data. In this case, the obligatory condition for the provision and (or) an order to process personal data to another person is the obligation of the parties to maintain confidentiality and ensure the security of personal data during their processing.

The terms for processing personal data are determined in accordance with the purposes for which they were collected. 

4. Rights of the subject of personal data

The personal data subject has the right (unless otherwise provided by law):
• require clarification of their personal data, their blocking or destruction of personal data is incomplete, outdated, inaccurate, illegally obtained or is not necessary for the stated purpose of processing, and also take measures prescribed by law to protect their rights;
• require a list of their personal data processed by the Company and the source of their receipt;
• receive information on the processing time of their personal data, including the storage time;
• require notification of all persons who were previously provided with incorrect or incomplete personal data about all exceptions, corrections or additions made to them;
• appeal to the authorized body for the protection of the rights of subjects of personal data or in a judicial proceeding of unlawful actions or inaction in the processing of his personal data;
• to protect their rights and legitimate interests, including for damages and (or) compensation for non-pecuniary damage in court.
If you have questions about the nature of the use, use, change or deletion of your personal data that you have provided, or if you want to refuse to further process it by the Company, please contact us by mail at the address of the Company or by e-mail: [email protected].
Please note that the personal data operator is not responsible for inaccurate information provided by the personal data subject.

5. Implementation of requirements for the protection of personal data

In order to maintain a business reputation and ensure compliance with the legislation of the Russian Federation, the Company considers the most important tasks to ensure the legitimacy of the processing of personal data in the business processes of the Company and to ensure the appropriate level of security of personal data processed in the Company.
The company requires other persons who have gained access to personal data not to disclose to third parties and not to distribute personal data without the consent of the personal data subject unless otherwise provided by the Russian Federation law.
In order to ensure the security of personal data during its processing, the Company takes the necessary and sufficient legal, organizational and technical measures to protect personal data from unlawful or accidental access to it, destruction, modification, blocking, copying, provision, distribution of personal data, as well as from other illegal actions against them.
The company seeks to ensure that all measures taken by it for the organizational and technical protection of personal data are carried out legally, including in accordance with the requirements of the Legislation of the Russian Federation on the processing of personal data.
In order to ensure adequate protection of personal data, the Company assesses the harm that may be caused to personal data subjects in case of violation of the security of their personal data and also identifies actual threats to the security of personal data when they are processed in personal data information systems.
In accordance with the identified threats, the Company applies the necessary and sufficient legal, organizational and technical measures to ensure the security of personal data, including the use of information protection tools, detection of unauthorized access to personal data and taking measures, restoring personal data, restricting access to personal data, registration and accounting of actions with personal data, as well as monitoring and evaluating the effectiveness of the measures taken to ensure the security of personal data.
The Company’s management recognizes the importance and necessity of ensuring the security of personal data and encourages the continuous improvement of the system for protecting personal data processed as part of the Company’s core business.
The Company has appointed persons responsible for organizing the processing and ensuring the security of personal data.
Each new employee of the Company who directly processes personal data is familiarized with the requirements of the Legislation of the Russian Federation on processing and ensuring the security of personal data, this Policy and other local acts of the Company on the processing and ensuring the security of personal data and undertakes to comply with them.

6. Media

If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.

If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.

If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.

When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.

If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.

7. Embedded content from other websites

Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.

These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.

8. Who we share your data with

We maintain direct control over as many processes as we can. As necessary in connection with the above purposes, your personal data may be transferred to our authorized third-party service providers and partners. We conscientiously select and review authorized third parties when possible and review their privacy and security policies. These authorized third parties may be engaged in, among other things, the processing of donations, technology support, outreach campaigns, or research projects carried out in connection with our mission. Limited members of Privacy International staff or the staff working for these third parties may also access and otherwise process your personal data in connection with their job responsibilities or contractual obligations.

Some of these personnel and authorized third parties (for example payment processors) may transfer data outside the Russian Federation. We take appropriate steps to ensure that data remains within jurisdictions with adequate protections for personal data and ensure that recipients of personal data from us are bound to duties of confidentiality, where relevant or appropriate.

9. How long we retain your data

If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.

For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.

10. How we protect your data

We take the protection of your personal information seriously and aim to ensure this site is as secure as possible. We have implemented restrictions related to the storage and the ability to access your personal information. These include:

Daily malware scanning is done automatically on our hosting servers.
Making regular, secure backups of your website data.
Backups are kept in secure storage.
Encouraging strong, unique passwords on all user accounts, using the integrated password strength indicator tool and encouraging users to change passwords periodically.
Limiting the number of people with access to the website’s CMS and admin
Restricting access to sensitive website files with current best hardening practices.
Individual accounts for users – no shared logins.
Removing accounts (or reset of associated passwords) when employees with user accounts leave our community
Transferring of website files between local to public environments by secure transfer protocols (SFTP).
Our website platform is continually being upgraded and maintained by our website provider FastComet, to keep up to date with the latest versions, security practices and technologies, to help minimize security risk.

Please note that no transmission over the Internet or method of electronic storage can be guaranteed to be 100% secure.

11. What rights you have over your data

If you have an account on this site or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.

12.Where we send your data

We never send your data to anyone. Visitor comments may be checked through an automated spam detection service.

13. Cookies policy

We use cookies, small files which we put on your computer, to administer content for visitors to our site. We do not use cookies to track individuals and identify them personally.

14. Third-party cookies

We may also point from our websites to other internet services that do use cookies. Our payment processors, for example, will place cookies as well. This is also the case with multi-media services, and with the links that we post on our Twitter and Facebook accounts.

15. How to contact us

Please read the Policy carefully. To update your preferences, review or update your information, submit a request, raise any issues regarding the processing of your personal data or raise any questions, comments, or concerns about the Policy, you may contact us by writing to Piskaryovskiy pr., 2 building 2, St. Petersburg, Russia, 195027, or [email protected].

16. What data breach procedures we have in place

In case of a data breach, our system administrators will go through affected users and will attempt to reset passwords if needed after informing the user. We will create a fresh backup, scan the site for malware and attempt to identify the breach, removing any associated code and means of access. Subsequently, we will look at preventative measures that will prevent a similar breach from happening again, and take action where possible.

17. Third-party Websites

This website contains links to other websites. This Notice does not apply to, nor are we responsible for, the privacy, information or other practices of any third parties, including any third party operating any site or service to which the Website links including but not limited to social media sites. The inclusion of a link on the Website does not imply our endorsement of the linked site or service.

18. Our contact details

Please see contact page to contact us with any question.




Share This