PERSONAL DATA PROCESSING AND PROTECTION POLICY
(PRIVACY POLICY)

1. GENERAL PROVISIONS

1.1. This Privacy Policy (hereinafter referred to as the “Policy”) is conducted in relation to the processing and protection of personal data of individuals on the basis of the Federal Law “On Personal Data”.
1.2. This Policy applies to the following Internet resources and mobile applications https://eye-ai.tech
1.3. The Policy applies to all personal data that may be received by the Licensor in the course of the Licensor’s activities. The processing of personal data is carried out in accordance with the applicable laws and regulations of the countries when using the resources.
1.4. The purpose of the Policy is to provide persons providing their personal data with the necessary information to assess what personal data and for what purposes are processed by the Licensor, what methods of ensuring their security are implemented, as well as to establish the basic principles and approaches to the processing and ensuring the security of personal data.
1.5. The Policy ensures the protection of the rights and freedoms of subjects when processing their personal data using automation tools or without using such tools, and also establishes the liability of persons who have access to personal data for failure to comply with the requirements governing the processing and protection of personal data.
1.6. Users (subjects of personal data), using the services and services of the Licensor posted on the resources listed in paragraphs 1.2 (hereinafter referred to as “Internet resources and applications”), having communicated their personal data to the Licensor, including through third parties, confirm their consent to the processing of personal data in accordance with this Policy. In case of disagreement with this Policy as a whole, as well as in case of disagreement with any clause of this Policy, the subject of personal data (hereinafter referred to as the “Subject”) shall refrain from using the services of the Site.
1.7. The Licensor shall begin processing the personal data of the Subject of personal data from the moment of receiving his/her consent. Consent to the processing of personal data may be given by the Subject of personal data in any form that allows confirmation of the fact of receiving consent, unless otherwise established by law: in writing, orally or in another form stipulated by the current legislation, including through the performance by the Subject of personal data of implicative actions when using the services on Internet resources and the application, using feedback forms and accepting offers containing provisions on the processing of personal data in accordance with the current legislation. In the absence of consent from the Subject of personal data to the processing of his/her personal data, such processing shall not be carried out.
1.8. Consent to the processing of personal data may be revoked by the Subject of personal data. In the event that the Subject of personal data revokes consent to the processing of personal data, the Licensor has the right to continue processing personal data without the consent of the Subject of personal data, if there are grounds specified by the current legislation.
1.9. This Policy may be changed by the Licensor. The Licensor has the right to amend this Policy at any time, at its sole discretion, without prior notice to the User. When making changes, the date of the last update is indicated in the current version. The new version of the Policy comes into force from the moment it is posted on the Internet resources and in applications, unless otherwise provided by the new version of the Policy. The Subject of personal data has the right to familiarize themselves with the current version of the Policy on the Internet resources and application of the Licensor at any time.
1.10. When providing services, including in cases where the User contacts the support service, the Licensor may carry out cross-border transfer of personal data solely for the purpose of recording requests and analyzing statistics, and such transfer is carried out using databases located in the territory of the country of use of the Internet resources and applications. Personal data shall be stored only in the country of use. The personal data subject gives his/her consent to the Licensor for such cross-border transfer of data for the purposes of analyzing statistics and recording requests specified in this clause.
1.11. The personal data subject may at any time contact the Licensor with a request to:
delete the personal data provided within the timeframes established by law (in the event that the personal data subject revokes consent to the processing of personal data);
change or update personal data;
provide information on the purposes and conditions for processing the personal data provided, etc.
also send in response the provided personal data in a structured form.
1.12. Any questions regarding the procedure for deleting personal data and revoking consent to the processing of personal data can be sent to the Licensor by e-mail at aiborn.store@gmail.com.

2. CONCEPT AND COMPOSITION OF PERSONAL DATA

2.1. For the purposes of this Policy, personal data shall mean any information related to a directly or indirectly identified individual (Personal Data Subject).
2.2. The Licensor may process the following personal data in order to carry out its activities and fulfill its obligations:
information required by the Licensor to fulfill its obligations within the framework of contractual relations with the Personal Data Subject and to comply with legal requirements.
personal data of the Personal Data Subject provided upon registration on the Site.
2.3. The personal data subject agrees to the processing of the following personal data: last name, first name, patronymic (including in English transcription); date of birth; postal addresses (at the place of registration and for contacts); citizenship information; information about the number of the main identity document, the date of issue of the specified document and the issuing authority; individual taxpayer identification number (ITN), telephone numbers; email addresses.

3. GROUNDS, PRINCIPLES AND PURPOSES OF PERSONAL DATA PROCESSING

3.1. The Licensor processes personal data to carry out its activities, including to provide services to the Personal Data Subject.
3.2. The Licensor processes personal data only if at least one of the following conditions is met:
personal data processing is carried out with the consent of the Personal Data Subject to the processing of his personal data;
the processing of personal data is necessary to achieve the goals stipulated by the legislation of the Russian Federation or the agreement;
3.3. The Licensor shall not disclose to third parties or distribute personal data without the consent of the Personal Data Subject, unless otherwise provided by law.
3.4. Purposes of personal data processing:
to identify the Personal Data Subject;
to enable the Personal Data Subject to register on the Licensor’s Website;
to contact the Personal Data Subject if necessary, including for sending offers, notifications, information and requests, both related and not related to the provision of services, as well as for processing applications, requests and applications of the Personal Data Subject;
to improve the quality of services provided by the Licensor;
to provide services posted on the Licensor’s Internet resources and provided by the Licensor.
3.5. Information for the above purposes is collected in the following cases and in the following ways:
3.6. In addition to collecting personal data, the Licensor may also collect anonymized data of the Personal Data Subject (including, but not limited to: cookies, Personal Account ID of the Personal Data Subject). The specified anonymized and aggregated data of Users is collected for the purpose of improving the Site, conducting statistical, marketing and other research related to the provision of its personalized services.

4. PERSONAL DATA PROCESSING TERMS

4.1. The terms of personal data processing are determined based on the processing purposes, in accordance with the term of the agreement to which the Personal Data Subject is a party.
4.2. The processed personal data are subject to destruction or anonymization upon the occurrence of the following conditions:
achievement of the personal data processing purposes or maximum storage periods, subject to destruction or anonymization within 90 days;
loss of the need to achieve the personal data processing purposes, subject to destruction or anonymization within 90 days;
provision by the Personal Data Subject or his legal representative of confirmation that the personal data were illegally obtained or are not necessary for the stated processing purpose, subject to destruction within 7 days;
the Subject’s revocation of consent to the processing of personal data, if the storage of personal data is no longer required for the purposes of processing personal data, is subject to destruction or depersonalization within 30 days.

5. PROCEDURE AND METHODS OF PROCESSING PERSONAL DATA

5.1. In the process of providing services, when implementing internal business activities, the Licensor uses automated and non-automated processing of personal data.
5.2. The Licensor has the right to entrust the processing of personal data to another person with the consent of the Subject of personal data, unless otherwise provided by law, on the basis of an agreement concluded with this person, a mandatory condition of which is their compliance with the principles and rules for processing personal data stipulated by the Law “On Personal Data”.
5.3. Personal data are not disclosed to third parties tami and are not distributed in any other way without the consent of the Personal Data Subject, unless otherwise provided by law or an agreement between the Licensor and the Personal Data Subject.
5.4. The Licensor has the right to:
process the personal data of the Personal Data Subject in accordance with the stated purpose;
demand from the Personal Data Subject the provision of reliable personal data necessary for the performance of the agreement, provision of the service, identification of the Personal Data Subject, as well as in other cases provided for by law;
restrict the access of the Personal Data Subject to his personal data if the processing of personal data is carried out in accordance with the legislation on combating the legalization (laundering) of proceeds from crime and the financing of terrorism, the access of the Personal Data Subject to his personal data violates the rights and legitimate interests of third parties, as well as in other cases provided for by law;
process publicly available personal data of individuals;
process personal data subject to publication or mandatory disclosure in accordance with the legislation of the countries where Internet resources and applications are used;
assign the processing of personal data to another person with the consent of the Personal Data Subject.
5.5. In the event of confirmation of the fact of inaccuracy of personal data or illegality of their processing, the personal data are subject to updating by the Licensor, and the processing must be terminated.
5.6. The Organization and the Personal Data Subject also have other rights and bear other obligations established by the law “On Personal Data”.

6. IMPLEMENTATION OF PERSONAL DATA PROTECTION

6.1. The exchange of personal data during their processing is carried out through communication channels protected by technical means of information protection.
6.2. When processing personal data, the Licensor ensures:
implementation of measures aimed at preventing unauthorized access to personal data and / or their transfer to persons who do not have the right to access such information;
timely detection of unauthorized access to personal data;
prevention of impact on technical means of automated processing of personal data, as a result of which their functioning may be disrupted;
the possibility of immediate restoration of personal data modified and destroyed as a result of unauthorized access to them.

Effective date: 01.10.2023