1.1. This policy regarding processing of personal data (hereinafter referred to as the «Policy») is prepared in accordance with paragraph 2 of Part 1 of Art. 18.1 of the Federal Law of the Russian Federation «On Personal Data» No. 152-ФЗ dated July 27, 2006 (hereinafter referred to as the «Law») and defines the position of MEDIPAL LLC, 75, F. Engelsa Str., bld. 21, floor 4, office 403B, Moscow, 105082, Russia, TIN 9701145988, KPP 770101001, p/c: 40702810000180840042 in the Corporate Branch of Sovcombank PJSC Moscow, credit/c 30101810445250000360, BIK 044525360 (hereinafter referred to as the «Company») in the field of personal data processing and protection (hereinafter referred to as the «Data»), respect for the rights and freedoms of everyone and in particular the right to privacy, personal and family secrets.
1.2. The Policy applies to all information that the Website can receive about the User during the use of the Website and its services.
1.3. The use of the Website by the User means consent to this Privacy Policy and the terms of processing of the User’s personal data.
1.4. In case of disagreement with the terms of the Privacy Policy the User must stop using the Website.
1.5. This Privacy Policy directly applies only to the Website. The Company does not control and is not responsible for the websites of third parties, to which the User can go through the links available on the Website.
1.6. The Website Administration does not check the accuracy of the personal data provided by the Website User.
2.1. This Policy applies to Data received both before and after the enactment of this Policy.
2.2. Understanding the importance and value of Data, as well as taking care of observing the constitutional rights of citizens of the Russian Federation and citizens of other states, the Company ensures reliable protection of Data.
The following terms are used in this Privacy Policy:
3.1. Website means the website of MEDIPAL LLC, located on the domain name www.medipal.ru, carrying out its activities through the Internet resource and related services.
3.2. Website Administration means persons authorized by the owner of the Website to manage the Website, acting on behalf of MEDIPAL LLC.
3.3. Website User (hereinafter referred to as the User) measn a person using the Website without undergoing the registration procedure for the introductory and similar purposes, as well as the person, who has undergone the registration procedure on the Website in order to access to online ordering of goods / services presented on the Website.
3.4. Personal data mean any information relating to a directly or indirectly identified or identifiable individual (the subject of personal data).
3.5. Processing of personal data means any action (operation) or set of actions (operations) performed with or without the use of automation with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transfer (distribution, provision, access), anonymization, blocking, removal, destruction of personal data.
3.6. Confidentiality of personal data means mandatory for compliance with the Operator or other person accessed to personal data requirement to prevent their dissemination without the consent of the subject of personal data or availability of other legal grounds.
3.7. Cookies mean is a small fragment of data, sent by a web-server and stored on a user’s computer, which the web-client or a web-browser sends to the web-server in HTTP-request every time it tries to open a page of a corresponding website.
3.8. IP address means a unique network address of a node in a computer network based on the IP protocol.
4.1. Processing and security of Data in the Company shall be carried out in accordance with the requirements of the Constitution of the Russian Federation, the Law on Personal Data Protection, the Labor Code of the Russian Federation, the bylaws, other federal laws of the Russian Federation, the governing and methodological documents of the FSTEC of Russia and the FSB of Russia which define the cases and specifics of Data processing.
4.2. The subjects of Data processed by the Company shall include: customers — consumers, including visitors to the website www.medipal.ru, owned by the Company, for the purpose of placing an order on the Website with subsequent delivery to the customer, the recipients of services.
4.3. The Company processes the Subject Data for the following purposes:
4.3.1. Identification of the User, registered on the Website, to place an order and (or) to enter into agreement for the provision of services remotely;
4.3.2. Providing the User with access to personalized resources of the Website;
4.3.3. Establishing feedback with the User, including sending notices, requests regarding use of the Website, service delivery, handling requests and applications from the User;
4.3.4. Identifying the User’s location to ensure that they have access to the personalized resources of the Website;
4.3.5. Providing the User with information and services that are provided by the Company;
4.3.6. Setting up the means for communication with the User.
4.3.7. Providing the User with updates on the range of services, special offers, pricing information, newsletters and other information on behalf of the Website Owner or on behalf of its partners.
4.3.8. Performing advertising activities with the consent of the User.
4.3.9. Providing access to User’s websites or services of the Owner’s partners in order to receive products, updates and services.
5.1. This Privacy Policy sets forth the obligations of the Website Administration regarding nondisclosure and ensuring the protection of personal data, which the User provides upon the request of the Website Administration upon registration on the Website.
5.2. Personal information, which is allowed to be processed within the framework of this Privacy Policy, is provided by the User by filling in the feedback form on the Website www.medipal.ru, and may include the following information:
5.2.1. last name, first name, middle name of the User;
5.2.2. contact phone number of the User;
5.2.3. electronic mail address (e-mail);
5.3. The website protects Data, which is automatically transmitted when viewing pages with the system’s statistics script installed: IP address; cookies information; information about the browser (or other program accessing the ad showing); access time; address of the page where the ad unit is located; referrer (address of the previous page); geolocation.
5.3.1. Disabling cookies may make it impossible to access parts of the Website that require authorization.
5.3.2. The Website collects statistics about the IP-addresses of its visitors. This information is used to detect and resolve technical problems and to control the legality of the financial payments.
5.4. Any other personal information not stipulated above (order history, used browsers and operating systems, etc.) would be stored securely and not shared, except as specified in paragraphs.5.7. and 5.8. of this Privacy Policy.
6.1. In processing Data, the Company shall adhere to the following principles:
6.2. The Company may include the subjects’ Data in publicly available sources of Data, whereby the Company shall take the subject’s written consent to the processing of their Data, or by expressing consent through a website form, by clicking on which the subject of personal data expresses his or her consent.
6.3. The Company shall not process any Data related to race, ethnicity, political views, religious, philosophical and other beliefs, intimate life, membership in public associations, including trade unions.
6.4. The Company does not process biometric Data (information that characterizes the physiological and biological characteristics of a person, based on which it is possible to identify him or her, and which is used by the operator to identify the Data subject).
6.5. The Company does not transfer Data across borders.
6.6. In cases stipulated by the legislation of the Russian Federation, the Company shall be entitled to transfer Data to third parties (the federal tax service, the state pension fund and other state bodies) in cases stipulated by the legislation of the Russian Federation.
6.7. The User agrees that the Website Administration has the right to transfer personal data to third parties, in particular courier services, postal organizations, telecommunication operators, solely for the purpose of fulfilling the User’s request posted on the Website.
6.8. Persons processing Data on the basis of an agreement concluded with the Company (commissioned by the operator) shall be obliged to comply with the principles and rules of data processing and protection stipulated by law. For each third party, the contract shall define the list of actions (operations) with the Data to be performed by the third party processing the Data, the purpose of processing, establish the obligation of such person to maintain confidentiality and ensure the security of the Data during their processing, specify the requirements for the protection of the processed Data in accordance with the Law.
6.9. In order to fulfill the requirements of the current legislation of the Russian Federation and its contractual obligations, the Company shall process Data both with and without the use of automation tools. The set of processing operations includes collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transfer (provision, access), depersonalization, blocking, deletion, destruction of Data.
6.10. The Company shall not make decisions based solely on the automated processing of Data, which produce legal consequences in respect of the Data subject or otherwise affect his rights and legitimate interests, except in cases stipulated by the legislation of the Russian Federation.
7.1 The User shall provide accurate information about personal data required to use the Website.
7.2. Update, supplement the provided information about personal data in case of changes in such information.
7.3. The subject, whose Data is processed by the Company, has the right to:
7.4. In the course of Data processing, the Company shall:
8.1. In processing Data, the Company shall take the necessary legal, organizational and technical measures to protect Data from unauthorized and/or unauthorized access to it, destruction, change, blocking, copying, submission, distribution of Data, as well as from other unlawful acts in relation to Data.
8.2. Such measures in accordance with the Law, in particular, include:
9.1. The Data processing (storage) periods are determined on the basis of the Data processing objectives. The User’s Personal Data shall be processed without time limitations, in any lawful manner, including in the information systems of personal data with or without the use of automated means.
9.2. Data whose processing (storage) period has expired shall be destroyed, unless otherwise provided by federal law. Storage of Data after termination of its processing shall only be allowed after depersonalization.
10.1. Persons whose Data are processed by the Company may obtain explanations with respect to the processing of their Data by contacting the Company in person or by sending a written request to the following address: 75, F. Engelsa Str., bld. 21, office 2116, Moscow, 105082, Russia.
10.2. If an official request is sent to the Company, the following information must be specified in the text of the request:
If the request is sent electronically, it shall be in the form of an electronic document and signed by electronic signature in accordance with the laws of the Russian Federation.
11.1. The Company shall process and protect Data coming from users of the Website, from the resource www.medipal.ru, as well as coming to the Company telephone number + 7 (499) 426-09-95, to the e-mail address info@medipal.ru, through the Company’s feedback form, located at www.medipal.ru.
11.2. Data Collection. There are two main ways in which the Company obtains Data via the Internet:
11.3. Provision of Data. Provision of Data — independent entry of data (including surname, first name, patronymic, contact phone number, e-mail address, address) by Data subjects by filling out appropriate forms on the Website and by sending e-mails to the corporate addresses of the Company.
11.4. Automatically collected information. The Company can collect and process information that is not personal data:
11.5. Use of Data. The Company shall be entitled to use the provided Data in accordance with the stated purposes of its collection, subject to the consent of the Data subject, if such consent is required in accordance with the requirements of the legislation of the Russian Federation in the field of Data. The obtained Data in a generalized and depersonalized form may be used to better understand the needs of customers of goods and services sold by the Company and to improve the quality of services.
11.6. Transfer of Data. The Company may entrust Data processing to third parties only with the consent of the Data subject. a) In response to lawful requests from the competent public authorities, in accordance with the law, court orders, etc. b) Data may not be transmitted to third parties for marketing, commercial or similar purposes, unless the Data subject has given his prior consent. c) Data may be transmitted to courier services for the purpose of order delivery.
11.7. The Website contains links to other web resources where there may be useful and interesting information for users of the Website. However, this Policy does not apply to such other websites. Users clicking on the links to other websites are recommended to read the policies on data processing posted on such websites.
11.8. Users of the Website may withdraw their consent to the processing of Data at any time by sending an e-mail to the following address: info@medipal.ru, or by sending a written notice to the Company at the following address: 75, F. Engelsa Str., bld. 21, office 2116, Moscow, 105082, Russia. Upon receipt of such notification, processing of User Data will be terminated and his Data will be deleted, except where processing can be continued in accordance with the law.
12.1. Before filing a lawsuit in court for any disputes arising out of relations between the Website’s User and the Administration, it is obligatory to file a complaint (written offer for voluntary dispute resolution).
12.2. The recipient of the claim within 30 calendar days from the date of receipt of the claim shall notify the claimant in writing of the results of its consideration.
12.3. In case of failure to achieve the agreement, the dispute will be transferred for consideration in the judicial authority at the location of the owner of the Website in accordance with the current legislation of the Russian Federation.
12.4. The current legislation of the Russian Federation shall apply to this Privacy Policy and the relations between the User and the Website Administration.
13.1. This Policy is a local regulatory act of the Company. This Policy is publicly available. Public accessibility of this Policy is ensured by publication on the Company’s Website.
13.2. The Website Administration has the right to make changes to this Privacy Policy without the consent of the User.
13.3. The new Privacy Policy comes into force upon its publication on the Website, unless otherwise stipulated by the new Privacy Policy version.
13.4. Any suggestions or questions on this Privacy Policy should be reported to the Website Administration via the feedback form at www.medipal.ru.
13.5. The current Privacy Policy is available at www.medipal.ru.
We use cookies to analyze events on our website, which allows us to improve the site's performance. If you do not want your data to be processed, please disable cookies in your browser settings. By continuing to use our site, you accept its terms of use and give your consent to the processing of cookies. For more detailed information on the use of cookies and how to opt out, please refer to our Cookie Policy.