Personal Data Processing Policy
POLICY ON THE PROCESSING OF PERSONAL DATA AND IMPLEMENTATION OF PERSONAL DATA PROTECTION REQUIREMENTS IN LIMITED LIABILITY COMPANY “LAW FIRM ‘ESHICH & PARTNERS’”
-
General provisions and terms used in the Policy
1.1. This document defines the policy of Limited Liability Company “LAW FIRM ‘ESHICH & PARTNERS’” (INN 7717667111) (hereinafter, the “Company”) regarding the processing of personal data and the implementation of personal data protection requirements (hereinafter, the “Policy”) in accordance with the requirements of Article 18.1 of Federal Law No. 152-FZ dated 27.07.2006 “On Personal Data”.
1.2. The following basic terms are used in this Policy:
personal data means any information relating directly or indirectly to an identified or identifiable natural person (subject of personal data);
personal data processing means any action (operation) or a set of actions (operations) performed with or without the use of automation tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of personal data;
automated personal data processing means processing of personal data using computer facilities;
distribution of personal data means actions aimed at disclosing personal data to an indefinite circle of persons;
provision of personal data means actions aimed at disclosing personal data to a specific person or a specific circle of persons;
blocking of personal data means temporary suspension of personal data processing (except where processing is necessary to clarify personal data);
destruction of personal data means actions as a result of which it becomes impossible to restore the content of personal data in the personal data information system and/or as a result of which physical media containing personal data are destroyed;
depersonalization of personal data means actions as a result of which it becomes impossible, without the use of additional information, to determine the belonging of personal data to a specific subject of personal data;
personal data information system means a set of personal data contained in databases and information technologies and technical means ensuring their processing;
subject of personal data means a natural person to whom personal data relates directly or indirectly.
2. Principles of personal data processing in the Company
2.1. Personal data is processed on a lawful and fair basis.
2.2. Personal data processing is limited to achieving specific, predetermined and legitimate purposes. Processing of personal data that is incompatible with the purposes of collecting personal data is not permitted.
2.3. It is not permitted to combine databases containing personal data that are processed for purposes that are incompatible with each other.
2.4. Only personal data that meets the purposes of its processing is subject to processing; processing of personal data that is incompatible with the purposes of collecting personal data is not permitted.
2.5. The content and scope of personal data processed correspond to the stated purposes of processing and are not excessive in relation to the stated purposes of their processing.
2.6. When processing personal data, the accuracy of personal data, their sufficiency and, where necessary, their relevance to the purposes of personal data processing are ensured. Necessary measures are taken to delete or clarify incomplete or inaccurate data.
2.7. Personal data is stored in a form that allows identifying the subject of personal data no longer than required by the purposes of personal data processing, unless a longer period for storing personal data is established by federal law, or by a contract to which the subject of personal data is a party, beneficiary or guarantor.
2.8. Personal data being processed is subject to destruction upon achievement of the purposes of processing or if there is no longer a need to achieve these purposes, unless otherwise provided by federal law.
2.9. When collecting personal data, including via the information and telecommunication network “Internet”, recording, systematization, accumulation, storage, clarification (updating, modification) and retrieval of personal data of citizens of the Russian Federation are ensured using databases located on the territory of the Russian Federation.
2.10. Personal data processing is not used for the purpose of causing property and/or moral harm to subjects of personal data or hindering the exercise of their rights and freedoms.
3. Legal grounds for personal data processing
3.1. Personal data processing in the Company is carried out in accordance with Federal Law No. 152-FZ dated 27.07.2006 “On Personal Data” (hereinafter, the “Personal Data Law”), the Labour Code of the Russian Federation, Federal Law No. 402-FZ dated 06.12.2011 “On Accounting”, Federal Law No. 27-FZ dated 01.04.1996 “On Individual (Personified) Record-Keeping in the System of Mandatory Pension Insurance and Mandatory Social Insurance”, Federal Law No. 316-FZ dated 30.12.2008 “On Patent Attorneys”, Government Decree of the Russian Federation No. 1119 dated 01.11.2012 “On Approval of Requirements for the Protection of Personal Data During Their Processing in Personal Data Information Systems”, Government Decree of the Russian Federation No. 687 dated 15.09.2008 “On Approval of the Regulation on Peculiarities of Personal Data Processing Performed Without the Use of Automation Tools”, the Company’s Charter and other regulatory legal acts in the field of personal data protection.
3.2. The conditions for personal data processing include:
3.2.1. personal data processing is carried out with the consent of the subject of personal data to the processing of his/her personal data;
3.2.2. personal data processing is necessary to achieve the purposes stipulated by an international treaty of the Russian Federation or by law, to exercise and perform the functions, powers and duties imposed on the Company by the legislation of the Russian Federation;
3.2.3. personal data processing is carried out in connection with the participation of a person in constitutional, civil, administrative, criminal proceedings or proceedings in arbitration courts;
3.2.4. personal data processing is necessary for the execution of a court judgment or an act of another body or official subject to execution in accordance with the legislation of the Russian Federation on enforcement proceedings (hereinafter, “execution of a court act”);
3.2.5. personal data processing is necessary for the exercise of powers by federal executive authorities, state extrabudgetary funds, executive authorities of the constituent entities of the Russian Federation, local self-government authorities and organizations participating in the provision of state and municipal services as provided by Federal Law No. 210-FZ dated 27.07.2010 “On the Organization of the Provision of State and Municipal Services”, including registration of the subject of personal data on the unified portal of state and municipal services and/or regional portals of state and municipal services;
3.2.6. personal data processing is necessary for performance of a contract to which the subject of personal data is a party, beneficiary or guarantor, as well as for entering into a contract at the initiative of the subject of personal data or a contract under which the subject of personal data will be a beneficiary or guarantor. A contract entered into with a subject of personal data may not contain provisions that restrict the rights and freedoms of the subject of personal data, that establish cases of processing personal data of minors, unless otherwise provided by the legislation of the Russian Federation, as well as provisions allowing, as a condition for entering into the contract, inaction on the part of the subject of personal data;
3.2.7. personal data processing is necessary to protect the life, health or other vital interests of the subject of personal data, if obtaining the consent of the subject of personal data is impossible;
3.2.8. personal data processing is necessary for the exercise of the rights and legitimate interests of the Company or third parties, including in cases provided by Federal Law “On the Protection of Rights and Legitimate Interests of Individuals in the Exercise of Activities for the Recovery of Overdue Debt and on Amendments to Federal Law ‘On Microfinance Activities and Microfinance Organizations’”, or for achieving socially significant purposes, provided that the rights and freedoms of the subject of personal data are not violated;
3.2.9. personal data processing is necessary for scientific, literary or other creative activities, provided that the rights and legitimate interests of the subject of personal data are not violated;
3.2.10. personal data processing is carried out for statistical or other research purposes, except for the purposes specified in Article 15 of the Personal Data Law, subject to mandatory depersonalization of personal data;
3.2.11. personal data processing is carried out with respect to personal data that is subject to publication or mandatory disclosure in accordance with federal law;
3.2.12. other cases provided for by the Personal Data Law.
4. Purposes of personal data processing
4.1. The Company processes only those personal data that are necessary for the provision of services and for conducting its activities, as well as for ensuring the rights and legitimate interests of third parties, provided that the rights of the subject of personal data are not violated. The purposes of personal data processing and the list of personal data processed by the Company are specified in Appendix No. 1 to the Policy.
4.2. The Company does not process special categories of personal data relating to race, nationality, political views, religious beliefs, health status, nor does it process biometric personal data. Processing of health-related information of employees is carried out exclusively in accordance with applicable legislation, including the Labour Code of the Russian Federation.
5. Conditions for termination of personal data processing
The conditions for termination of personal data processing in the Company may include:
- achievement of the purposes of personal data processing;
- expiration of the term of the consent to personal data processing or of the contract with the subject of personal data;
- withdrawal by the subject of personal data of his/her consent to the processing of personal data (in the absence of other legal grounds for processing);
- detection of unlawful personal data processing;
- liquidation of the Company.
6. Conditions for personal data processing
6.1. Personal data of subjects of personal data is processed for the purpose of ensuring compliance with the laws and other regulatory legal acts of the Russian Federation, provision of services under contracts concluded by the Company, training of subjects of personal data who are employees of the Company, ensuring personal safety of subjects of personal data, monitoring the quantity and quality of work performed, and ensuring the preservation of the Company’s property.
6.2. Personal data processing is carried out by the Company with the consent of the subjects of personal data, both with the use of automation tools and without the use of such tools.
6.3. The Company does not provide or disclose personal data of subjects of personal data to third parties without the written consent of the subject of personal data, except when this is necessary to prevent a threat to life and health, as well as in cases established by the applicable legislation of the Russian Federation.
6.4. Upon a reasoned request of a competent authority and strictly within the framework of compliance with applicable legislation, personal data of a subject may be transferred without his/her consent:
- to courts in connection with the administration of justice;
- to bodies of the Federal Security Service;
- to prosecution authorities;
- to police authorities;
- to other bodies and organizations in cases established by regulatory legal acts that are mandatory for execution.
6.5. If consent to the processing of personal data is obtained from a representative of the subject of personal data, the Company verifies the authority of such representative to give consent on behalf of the subject of personal data.
6.6. In case of withdrawal by the subject of personal data of his/her consent to the processing of personal data, the Company has the right to continue processing the personal data without the consent of the subject if grounds specified in applicable legislation are present.
6.7. Personal data is processed by the Company as well as by other third parties engaged by the Company to process personal data or to whom personal data is transferred for the purposes specified above in accordance with the legislation of the Russian Federation.
The Company may carry out cross-border transfer of personal data in cases stipulated by the legislation of the Russian Federation.
6.8. The Company has the right to engage third parties in the processing of personal data received and/or to transfer the received data to them, as well as to receive data from them for the purposes specified above without additional consent of the subject, provided that such third parties ensure confidentiality and security of personal data during processing. The processing of personal data by such third parties is allowed with or without the use of automation tools, as well as the performance by them of any actions with personal data that do not contradict the legislation of the Russian Federation. Processing of personal data by a third party may be carried out only on the basis of a contract which specifies the list of actions (operations) that will be carried out with personal data, and the purposes of processing, as well as provisions on ensuring the security of personal data, including requirements not to disclose and not to distribute personal data without the consent of the subject, unless otherwise provided by the legislation of the Russian Federation, and also requirements in accordance with Article 19 of the Personal Data Law.
6.9. The Company undertakes to take necessary legal, organizational and technical measures to protect personal data received against unlawful or accidental access, destruction, modification, blocking, copying, provision, dissemination of personal data, as well as against other unlawful actions in relation to personal data, and to comply with the principles and rules for personal data processing provided for by the Personal Data Law and other applicable regulations.
6.10. Organization of personal data storage
6.10.1. Processing, including storage, of personal data in the Company is carried out no longer than required by the purposes of personal data processing.
6.10.2. Personal data is stored on physical (paper) media and in electronic form.
6.10.3. The right of access to specific personal data of subjects is granted to employees of the Company who need such access to perform their job duties.
6.10.4. When organizing the storage of physical media containing personal data, conditions are ensured that guarantee the safekeeping of personal data and exclude unauthorized access.
6.10.5. Personal data may be stored for the period established by:
- a contract to which the subject of personal data is a party, beneficiary or guarantor;
- the consent of the subject of personal data;
- applicable legislation of the Russian Federation.
6.10.6. The Company organizes the storage of personal data for the time specified by the requirements of legislation regulating archival storage and other regulatory acts containing rules on personal data storage.
– Upon achievement of the purposes of personal data processing or in case of loss of necessity to achieve these purposes, as well as in case of withdrawal of consent to processing, personal data is subject to destruction, unless otherwise provided by federal laws.
6.11. Destruction of documents containing personal data is carried out in any manner that excludes the possibility for third parties to become acquainted with the destroyed materials and the possibility of restoring their content.
6.12. Features of personal data processing on the website:
6.12.1. A subject of personal data may, at his/her own discretion, when filling in and/or submitting a special form located on the website https://eshich.ru/, provide the Company with his/her personal data by filling in the fields of the form on the website. Consent to the processing of personal data constitutes Appendix No. 2 to the Policy. After entering data in the form, the subject of personal data confirms the accuracy and correctness of the data provided and expresses the intention to submit the data by activating the “Submit” field. At the same time, the subject of personal data checks the box “I consent to the processing of personal data. I confirm that I have read and agree with the POLICY ON THE PROCESSING OF PERSONAL DATA AND IMPLEMENTATION OF PERSONAL DATA PROTECTION REQUIREMENTS IN THE COMPANY and with the USER AGREEMENT”.
6.12.2. When subjects of personal data visit the Company’s website and use its functionality, technical information may be collected using various technologies and methods, including “cookies”, which make it possible to monitor the quality of the website and the nature of its use, as well as to optimize marketing activities on the Internet.
The Company may process information contained in cookies.
6.12.3. When using the Company’s website, the user confirms his/her consent to the use of cookies in accordance with the pop-up notification (banner) regarding this type of files.
6.13. Cookies
6.13.1. The following types of cookies may be used on the website.
| Type | Description | Purpose of use |
| Necessary cookies | Ensure proper functioning of the website; are essential | To ensure correct display of interfaces and their interactive components |
| Functional cookies | Store preferences related to website settings | To simplify the use of the website and improve user experience |
| Analytical cookies | Store aggregated information on the use of the website and its individual elements | To further improve interfaces and plan the development of the website |
| Marketing cookies | Store information about how the website is used, i.e. website-related preferences | To personalize the website, optimize advertising communications and assess the effectiveness of personalization |
| Performance cookies | Store information about the areas visited and the amount of time spent | To understand and analyze key performance indicators of the website, which helps improve user experience and website performance |
6.13.2. Types of cookies and their storage periods:
Session cookies: effective from the moment the user enters the website and until the end of the current browser session. When the browser is closed, such cookies become unnecessary and are automatically deleted.
Persistent cookies: stored on the device between browser sessions and are not deleted after the browser is closed. The storage period for persistent cookies on the device varies for different cookies.
First-party cookies: placed on the user’s device by the Operator when visiting the website.
Third-party cookies: may be placed on the user’s device by other operators when users visit their websites.
6.13.3. To refuse the use of cookies, the user may use browser settings to disable the use of cookies, as well as the interface of the website, if applicable. Complete disabling of cookies may lead to limitations in the website’s functionality.
Detailed instructions on disabling cookies are available via external links:
7. Confidentiality of personal data
7.1. Information relating to personal data that becomes known in connection with the implementation of employment relations, performance of civil-law contracts and the provision of services by the Company is confidential and is protected by the applicable legislation of the Russian Federation.
7.2. Persons who have gained access to personal data being processed have signed a confidentiality undertaking and have been informed of possible disciplinary, administrative, civil and criminal liability in case of violation of the norms and requirements of the legislation of the Russian Federation in the field of personal data protection.
7.3. Persons who have access to personal data being processed do not have the right to disclose personal data of a subject of personal data to third parties without the written consent of such subject, except in cases when this is necessary to prevent a threat to the life and health of the subject of personal data, as well as in cases established by the legislation of the Russian Federation.
7.4. Persons who have access to personal data undertake not to disclose personal data for commercial purposes without the written consent of the subject of personal data. Processing of personal data of subjects of personal data for the purpose of promotion of goods, works and services on the market through direct contacts with a potential consumer by means of communication is allowed only with the prior consent of such subject.
8. Exercise of rights by subjects of personal data
8.1. A subject of personal data has the right to receive information regarding the processing of his/her personal data, including information containing:
8.1.1. confirmation of the fact of processing personal data by the Company;
8.1.2. legal grounds and purposes of personal data processing;
8.1.3. purposes and methods of personal data processing used by the Company;
8.1.4. the name and location of the Company, information about persons (other than the Company’s employees) who have access to personal data or to whom personal data may be disclosed on the basis of a contract with the Company or on the basis of a federal law of the Russian Federation;
8.1.5. processed personal data relating to the relevant subject of personal data, the source of their receipt, unless another procedure for providing such data is provided by the Personal Data Law or another federal law of the Russian Federation;
8.1.6. time limits for personal data processing, including retention periods;
8.1.7. the procedure for the subject of personal data to exercise the rights provided by the Personal Data Law;
8.1.8. information on actual or intended cross-border transfer of data;
8.1.9. the name or surname, first name, patronymic and address of the person processing personal data on behalf of the Company, if such processing is delegated or will be delegated to such person;
8.1.10. other information provided by the Personal Data Law or other federal laws of the Russian Federation.
8.2. A subject of personal data has the right to request that the Company clarify his/her personal data, block or destroy them if the personal data are incomplete, outdated, inaccurate, unlawfully obtained or are not necessary for the stated purpose of processing, as well as to take other measures provided by law to protect his/her rights.
8.3. A subject of personal data has, among other things, the right to withdraw consent to the processing of personal data in the same form in which such consent was given.
8.4. Upon receipt of a request from a subject of personal data regarding information on the processing of personal data, the Company undertakes to provide such information to the subject free of charge in an accessible form within the period established by law.
8.5. The Company blocks personal data for the period of internal verification in case of detection of:
8.5.1. unlawful personal data processing;
8.5.2. inaccurate personal data;
8.5.3. impossibility of destroying personal data within the period established by the legislation on personal data or by local regulations.
8.6. The Company undertakes to cease processing and destroy personal data in the following cases:
8.6.1. impossibility of ensuring lawful processing of personal data;
8.6.2. achievement of the purpose of personal data processing;
8.6.3. expiration or withdrawal by the subject of personal data of consent to the processing of personal data;
8.6.4. expiration of the established period of personal data processing.
8.7. A subject of personal data has the right to protect his/her rights and legitimate interests, including the right to claim damages and/or compensation for moral harm in court.
9. Measures aimed at ensuring the Company’s fulfilment of obligations stipulated by Articles 18.1 and 19 of the Personal Data Law
9.1. The Company takes all necessary legal, organizational and technical measures prescribed by applicable regulatory legal acts to protect personal data from unlawful or accidental access, destruction, modification, blocking, copying, provision, dissemination, as well as from other unlawful actions in relation to personal data.
9.2. When processing personal data, the Company:
9.2.1. appoints a person responsible for organizing the processing of personal data;
9.2.2. adopts local regulations defining the policy and issues of personal data processing and protection;
9.2.3. keeps records of machine media containing personal data;
9.2.4. ensures the detection of unauthorized access to personal data and takes measures, including measures for detection, prevention and elimination of consequences of computer attacks on personal data information systems and for responding to computer incidents in such systems;
9.2.5. ensures restoration of personal data modified or destroyed as a result of unauthorized access to them;
9.2.6. establishes rules for access to personal data processed in a personal data information system and ensures logging and recording of all actions performed with personal data in such system;
9.2.7. exercises control over the measures taken to ensure the security of personal data and over the level of protection of personal data information systems.
9.3. As part of the personal data protection system, the Company implements:
- equipping the Company’s premises with lockable doors;
- use of necessary software and hardware protection tools;
- organizational measures to ensure the security of personal data, in particular, implementation of procedures for establishing rules of access to personal data.
9.4. When processing personal data without the use of automation tools, the requirements established by Government Decree of the Russian Federation No. 687 dated 15.09.2008 “On Approval of the Regulation on Peculiarities of Personal Data Processing Performed Without the Use of Automation Tools” are fulfilled.
9.5. The Company ensures that its employees directly involved in personal data processing are familiarized with the provisions of the legislation of the Russian Federation on personal data (including requirements for the protection of personal data), as well as with local acts on personal data processing. The Company regularly trains its employees and informs them of the requirements of the legislation of the Russian Federation.
9.6. The Company is liable for violation of obligations to ensure the security and confidentiality of personal data during their processing in accordance with the legislation of the Russian Federation.
9.7. To ensure unrestricted access to the Company’s Policy, the text of this Policy is published on the Company’s website (https://www.eshich.ru/).
10. Liability
The liability of the Company’s employees who have access to personal data for failure to comply with the requirements of the rules regulating personal data processing and protection is determined in accordance with the applicable legislation of the Russian Federation and the Company’s internal regulations.
Appendix No. 1 to the POLICY ON THE PROCESSING OF PERSONAL DATA AND IMPLEMENTATION OF PERSONAL DATA PROTECTION REQUIREMENTS IN THE COMPANY
Purposes of personal data processing and list of personal data processed by the Company.
No. 1:
Purpose of data processing: Carrying out activities of a patent attorney
Categories of personal data
Personal data
surname, first name, patronymic; year of birth; month of birth; date of birth; place of birth; marital status; income; gender; email address; residential address; registered address; telephone number; SNILS; INN; citizenship; identity document details; driver’s license details; data contained in a birth certificate; current account number; personal account number; profession; position; information on employment history (including length of service, current employment data with indication of the name and current account of the organization); military conscription status and records; information on education; photo and video image of the person
Special categories of personal data
information on criminal record
Categories of data subjects whose personal data is processed:
employees; job applicants; former employees; contractors; representatives of contractors; clients; website visitors; students
Legal grounds for personal data processing:
personal data processing is carried out with the consent of the subject of personal data to the processing of his/her personal data; personal data processing is carried out in connection with the participation of a person in constitutional, civil, administrative, criminal proceedings or proceedings in arbitration courts; personal data processing is necessary for the execution of a court judgment, or an act of another body or official subject to execution in accordance with the legislation of the Russian Federation on enforcement proceedings; personal data processing is necessary for performance of a contract to which the subject of personal data is a party, beneficiary or guarantor, as well as for entering into a contract at the initiative of the subject of personal data or a contract under which the subject of personal data will be a beneficiary or guarantor.
A contract entered into with a subject of personal data may not contain provisions that restrict the rights and freedoms of the subject of personal data.
List of actions:
collection; recording; systematization; accumulation; storage; clarification (updating, modification); use;
transfer (provision, access); deletion
Methods of processing: mixed; without transfer via the internal network of the legal entity; with transfer via the Internet
No. 2:
Purpose of data processing: Personnel and accounting administration
Categories of personal data
Personal data
surname, first name, patronymic; year of birth; month of birth; date of birth; place of birth; marital status; social status; property status; income; gender; email address; residential address; registered address; telephone number; SNILS; INN; citizenship; identity document details; driver’s license details; identity document details outside the Russian Federation; data contained in a birth certificate; bank card details; current account number; personal account number; profession; position; information on employment history (including length of service, current employment data with indication of the name and current account of the organization); military conscription status and records; information on education
Special categories of personal data
information on criminal record
Categories of data subjects whose personal data is processed:
employees; former employees
Legal grounds for personal data processing:
personal data processing is carried out with the consent of the subject of personal data to the processing of his/her personal data
List of actions:
collection; recording; systematization; accumulation; storage; clarification (updating, modification); use; transfer (provision, access)
Methods of processing: mixed; without transfer via the internal network of the legal entity; with transfer via the Internet
No. 3:
Purpose of data processing: Selection of personnel (job applicants) for vacant positions of the operator
Categories of personal data
Personal data
surname, first name, patronymic; year of birth; month of birth; date of birth; place of birth; marital status; social status; property status; income; gender; email address; residential address; registered address; telephone number; SNILS; INN; citizenship; identity document details; driver’s license details; profession; position; information on employment history (including length of service, current employment data with indication of the name and current account of the organization); military conscription status and records; information on education
Special categories of personal data
information on health status; information on criminal record
Categories of data subjects whose personal data is processed:
Job applicants
Legal grounds for personal data processing:
personal data processing is carried out with the consent of the subject of personal data to the processing of his/her
personal data
List of actions:
collection; recording; systematization; retrieval; deletion
Methods of processing: mixed; without transfer via the internal network of the legal entity; with transfer via the Internet
No. 4:
Purpose of data processing: Ensuring introductory, industrial or pre-graduation internship based on an agreement with an educational institution
Categories of personal data
Personal data
surname, first name, patronymic; year of birth; month of birth; date of birth; place of birth; gender; email address; residential address; registered address; telephone number; SNILS; INN; citizenship; identity document details; bank card details; personal account number; profession; position; information on employment history (including length of service, current employment data with indication of the name and current account of the organization); information on education
Categories of data subjects whose personal data is processed:
Students
Legal grounds for personal data processing:
personal data processing is carried out with the consent of the subject of personal data to the processing of his/her
personal data
List of actions:
collection; recording; systematization; accumulation; storage; clarification (updating, modification); retrieval; use; transfer (provision, access); deletion
Methods of processing: mixed; with transfer via the internal network of the legal entity; with transfer via the Internet
Appendix No. 2 to the POLICY ON THE PROCESSING OF PERSONAL DATA AND IMPLEMENTATION OF PERSONAL DATA PROTECTION REQUIREMENTS IN THE COMPANY
CONSENT TO PERSONAL DATA PROCESSING
By this document, I (hereinafter, the “Subject of personal data”), in fulfilment of the requirements of Federal Law No. 152-FZ dated 27.07.2006 “On Personal Data” (as amended and supplemented), freely, of my own will and in my own interest, give my consent to Limited Liability Company “LAW FIRM ‘ESHICH & PARTNERS’” (INN 7717667111) (hereinafter, the “Operator”) to the processing of my personal data.
I have been informed that the entity organizing and/or carrying out the processing of personal data, and also determining the purposes of such processing, the composition of personal data to be processed, and the actions (operations) performed with personal data, is Limited Liability Company “LAW FIRM ‘ESHICH & PARTNERS’” (INN 7717667111).
The Operator processes personal data of Subjects of personal data in accordance with the purposes of such processing, which are listed in Article 4 of the Policy on the processing of personal data and implementation of personal data protection requirements in Limited Liability Company “LAW FIRM ‘ESHICH & PARTNERS’”, i.e. performs all actions with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, provision, access), depersonalization, blocking, deletion and destruction of personal data.
I have read the Policy and this Consent by visiting the Operator’s website at https://eshich.ru/.
I am aware that the Operator processes my personal data if they are filled in and/or submitted by me independently through a special form located on the website https://eshich.ru/, which presupposes or allows inclusion of the following personal data:
| Categories of subjects of personal data | List of personal data processed |
| Website visitors | Surname, first name, patronymic; year of birth; month of birth; date of birth; place of birth; marital status; income; gender; email address; residential address; registered address; telephone number; SNILS; INN; citizenship; identity document details; driver’s license details; data contained in a birth certificate; current account number; personal account number; profession; position; information on employment history (including length of service, current employment data with indication of the name and current account of the organization); military conscription status and records; information on education; photo and video image of the person. |
With regard to minors, consent to the processing of personal data is given by their legal representatives.
Furthermore, I have been informed of the purpose of collecting personal data of Subjects of personal data, which is the carrying out of activities of a patent attorney (including, but not limited to: communication with the Subject of personal data, including sending emails, messages, making calls; processing of requests and applications of the Subject of personal data; conducting statistical and other research).
Personal data may be used for other purposes if they are mandatory under the legislation of the Russian Federation.
The date of issuance of consent to the processing of personal data of the Subject of personal data is the date of sending the web form from the website. Personal data processing begins from the moment personal data is received.
Any information transmitted to the Operator orally or in writing via the information and telecommunication network “Internet” or otherwise is considered confidential.
The Operator ensures the safekeeping of personal data of Subjects of personal data received, except in cases where the Subject of personal data voluntarily provides information about him/herself for public access to an unlimited circle of persons.
After entering data in the form, I confirm the accuracy and correctness of the data provided and express my intention to submit the data by activating the “Submit” field. At the same time, I check the box “I consent to the processing of personal data. I confirm that I have read and agree with the POLICY ON THE PROCESSING OF PERSONAL DATA AND IMPLEMENTATION OF PERSONAL DATA PROTECTION REQUIREMENTS IN THE COMPANY and with the USER AGREEMENT”.
I am informed that, if inaccuracies in personal data are detected, I may update them independently by sending a letter to the Operator by email at info@eshich.ru with the subject “Updating of personal data”.
The period of personal data processing is limited by the termination of the Operator’s activities. I may withdraw my consent to the processing of personal data at any time by sending a notice to the Operator by email to the Operator’s email address info@eshich.ru with the subject “Withdrawal of consent to personal data processing”.
I confirm that I act of my own free will and in my own interest. This Consent is specific, informed and conscious.
