Do you want answers to your questions?
Leave your contact information and we will contact you.

Privacy Policy of the Website Users' Personal Data

1. General Provisions
1.1. This Privacy Policy of the Website Users' Personal Data (hereinafter referred to as the "Policy") has been developed in compliance with the requirements of Article 18.1 of Federal Law No. 152-FZ of July 27, 2006 "On Personal Data," as well as other regulatory legal acts of the Russian Federation in the field of personal data protection and processing.
1.2. Individual Entrepreneur Kirill Slavchovich Georgiev (Taxpayer Identification Number: 691008737401, Primary State Registration Number of Individual Entrepreneur: 320695200032579) (hereinafter referred to as the "Operator") ensures the protection of processed personal data from unauthorised access and disclosure, unlawful use or loss in accordance with the requirements of Federal Law No. 152-FZ of July 27, 2006 "On Personal Data."
1.3. The Policy is a publicly available document that applies exclusively to the website located on the information and telecommunications network "Internet" at https://geoolegal.pro/ (hereinafter referred to as the "Website").
1.4. The Policy does not apply to third-party websites that the personal data subject may access through the Website.
1.5. The Policy establishes general requirements and rules binding upon the Operator's employees involved in the processing of personal data, regarding work with all types of information media containing personal data of personal data subjects using the Website.
1.6. The Policy does not apply to issues of ensuring the security of personal data classified as information constituting state secrets of the Russian Federation.
1.7. The main objectives of the Policy are:
  • ensuring the protection of human and civil rights and freedoms in the processing of personal data, including the protection of the right to privacy, personal and family secrets;
  • preventing unauthorised actions by the Operator's employees and third parties involving the collection, systematisation, accumulation, storage, updating (renewal, modification) of personal data, and other forms of unlawful interference with the Operator's information resources and local area network;
  • ensuring the legal and regulatory regime of confidentiality of non-documented information of Website Users;
  • protecting the constitutional rights of citizens to personal privacy and confidentiality of information constituting personal data, and preventing the emergence of potential threats to the security of Website Users.
1.8. The main terms used in the Policy:
  • Website – a set of software and hardware for computers that ensures the publication for public viewing of information and data united by a common purpose, by means of technical means used for communication between computers on the Internet;
  • User – a personal data subject who has access to the Internet and uses the capabilities of the Website;
  • personal data – any information relating directly or indirectly to an identified or identifiable individual (personal data subject);
  • Manager – the sole executive body of the Operator;
  • processing of personal data – any action (operation) or set of actions (operations) performed with personal data using automation means or without such means. The processing of personal data includes, inter alia:
  • collection;
  • recording;
  • systematisation;
  • accumulation;
  • storage;
  • updating (renewal, modification);
  • retrieval;
  • use;
  • transfer (provision, access);
  • depersonalisation (anonymisation);
  • blocking;
  • deletion;
  • destruction.
  • automated processing of personal data – processing of personal data using computer technology;
  • dissemination of personal data – actions aimed at disclosing personal data to an indefinite circle of persons;
  • provision of personal data – actions aimed at disclosing personal data to a specific person or a specific circle of persons;
  • blocking of personal data – temporary suspension of the processing of personal data (except where processing is necessary for the purpose of updating personal data);
  • destruction of personal data – actions as a result of which it becomes impossible to restore the content of personal data in the personal data information system and/or as a result of which the physical media containing personal data are destroyed;
  • depersonalisation (anonymisation) of personal data – actions as a result of which it becomes impossible without the use of additional information to determine the ownership of personal data to a specific personal data subject;
  • personal data information system (hereinafter – PDIS) – a set of personal data contained in databases and the information technologies and technical means ensuring their processing.
2. Principles of Processing
2.1. In processing personal data, the Operator's employees are guided by the following principles:
  • processing of personal data is carried out on a lawful and fair basis;
  • processing of personal data shall be limited to the achievement of specific, predetermined and lawful purposes. Processing of personal data incompatible with the purposes of collecting personal data is not permitted;
  • consolidation of databases containing personal data, the processing of which is carried out for purposes incompatible with each other, is not permitted;
  • the content and scope of processed personal data shall correspond to the stated purposes of processing. Processed personal data shall not be excessive in relation to the purposes of their processing;
  • accuracy and sufficiency of personal data shall be ensured in the processing of personal data;
  • storage of personal data shall be carried out no longer than required by the purposes of processing personal data, unless the storage period for personal data is established by federal law or an agreement with the User;
  • processed personal data shall be destroyed or depersonalised (anonymised) upon achievement of the purposes of processing or in the event of loss of the need to achieve these purposes, unless otherwise provided by law.
2.2. Conditions for the processing of personal data:
  • processing of personal data of Website Users is carried out in accordance with the requirements of the current legislation in the field of personal data protection;
  • processing of personal data on the Website is carried out in compliance with the principles and rules provided for by the Policy and the legislation of the Russian Federation.
2.3. Processing of personal data of Website Users is carried out exclusively for the following purposes:
  • promotion of goods, works, and services on the market.
2.5. Personal data used on the Website is provided by the User independently by entering it into the appropriate form when registering an account, constitutes confidential information, and is processed exclusively using automation means.

3. Rights of the User
3.1. The User has the right:
  • to receive information about the Operator, its location, the Operator's possession of personal data relating to the User, as well as to review such personal data, except in cases expressly provided for by law;
  • to receive from the Operator the following information relating to the processing of his/her personal data:
  • confirmation of the fact of processing of personal data by the Operator, as well as the purpose of such processing;
  • legal grounds and purposes of processing personal data;
  • purposes and methods of processing personal data used by the Operator;
  • name and location of the Operator, information about persons who have access to personal data or to whom personal data may be disclosed on the basis of an agreement with the Operator or on the basis of applicable law;
  • processed personal data relating to the relevant User, and the source of their receipt;
  • periods of processing of personal data, including periods of their storage;
  • procedure for the exercise by the personal data subject of the rights provided for by Federal Law;
  • information on cross-border data transfer that has been carried out or is contemplated;
  • name or surname, first name, patronymic, and address of the person carrying out the processing of personal data on behalf of the Operator, if processing has been or will be entrusted to such person;
  • other information provided for by the current legislation of the Russian Federation;
  • to demand changes, updates, or destruction of information about themselves;
  • to appeal against unlawful actions or omissions in the processing of personal data and to demand appropriate compensation in court;
  • to appoint representatives for the protection of their personal data;
  • to require the Operator to notify of all changes made to them or exclusions from them;
  • to appeal, to the authorised body for the protection of the rights of personal data subjects or in court, the actions or omissions of the Operator if the User believes that the Operator is processing his/her personal data in violation of the requirements of Federal Law No. 152-FZ of July 27, 2006 "On Personal Data" or otherwise violates his/her rights and freedoms;
  • to protect their rights and legitimate interests, including compensation for losses or compensation for moral damage in court.
4. Obligations of the Operator
4.1. Upon receipt of a written request from the User, the Operator is obliged to process it and provide a response in the manner prescribed by the Rules for Handling Requests of Personal Data Subjects and the applicable legislation of the Russian Federation.
4.2. Upon receipt of a request from the authorised body for the protection of the rights of personal data subjects for the provision of information necessary for the exercise of the activities of the said body, the Operator is obliged to provide such information within the time limits established by law.
4.3. In the event of detection of unlawful processing of personal data, the Operator is obliged to block the unlawfully processed personal data relating to the User from the moment such fact is established.
4.4. Upon achievement of the purpose of processing personal data, the Operator is obliged to cease processing personal data and destroy the personal data in the manner prescribed by the Regulation on the Procedure for the Destruction of Personal Data and the applicable legislation of the Russian Federation.
4.5. The Operator is prohibited from making decisions on the basis solely of automated processing of personal data that give rise to legal consequences in relation to the personal data subject or otherwise affect his/her rights and legitimate interests.

5. Confidentiality of Personal Data
5.1. The Operator ensures the confidentiality and security of personal data in their processing in accordance with the requirements of the Operator's local regulations and the requirements of applicable law.
5.2. The Operator does not disclose personal data to third parties or disseminate personal data without the User's consent, unless otherwise provided by the requirements of the applicable legislation of the Russian Federation.

6. Processing of Personal Data
6.1. All personal data shall be obtained from the User directly. In the event of obtaining consent to the processing of personal data from the User's representative, such representative's authority shall be confirmed in the manner prescribed by law.
6.2. The list of persons entitled to access personal data is determined in accordance with the Operator's local regulations and approved by order of the Operator's Manager.
6.2. The Operator stores the personal data of Users from the moment of their provision until the withdrawal of consent to the processing of personal data, the achievement of processing purposes, or the expiration of the period for which consent was provided, as well as in other cases expressly provided for by the applicable legislation of the Russian Federation.
6.3. The Operator does not process Users' personal data on paper-based information media.
6.4. The Operator does not transfer personal data to third parties, including for the purpose of processing. Users' personal data are processed exclusively by the Operator's employees.
6.5. Blocking and deletion of personal data on the Website shall be carried out on the basis of a written request from the User or an authorised body.
6.6. Destruction of personal data is carried out by erasing information using certified software.

7. Protection of Personal Data
7.1. When processing personal data, the Operator takes necessary legal, organisational and technical measures, or ensures their adoption, to protect personal data from unlawful or accidental access, destruction, modification, blocking, copying, provision, dissemination of personal data, as well as from other unlawful actions in relation to personal data.
7.2. Security of personal data is achieved by the following means:
  • identification of threats to the security of personal data in their processing in personal data information systems;
  • application of organisational and technical measures to ensure the security of personal data in their processing in personal data information systems, necessary to fulfil the requirements for the protection of personal data;
  • accounting of computer-based personal data media;
  • detection of facts of unauthorised access to personal data and taking measures;
  • restoration of personal data modified or destroyed as a result of unauthorised access;
  • establishment of rules for access to personal data processed in the personal data information system, as well as ensuring registration and recording of all actions performed with personal data in the personal data information system;
  • control over the measures taken to ensure the security of personal data and the level of security of personal data information systems;
  • appointment of a person responsible for the processing of personal data;
  • establishment of individual access passwords for employees to the information system in accordance with their job responsibilities;
  • use of certified antivirus software;
  • training of the Operator's employees directly involved in the processing of personal data on the provisions of the legislation of the Russian Federation on personal data, including the requirements for the protection of personal data.
7.3. The protected information about the User on the Website includes data allowing the identification of the User or obtaining additional information about them, as provided for by law and the Policy.
7.4. The protected objects of personal data include:
  • informatisation objects and technical means of automated processing of information containing personal data;
  • information resources containing information about information and telecommunications systems in which personal data are used, about events that have occurred with managed objects, about plans for ensuring uninterrupted operation and procedures for transitioning to management in emergency modes;
  • communication channels used for the transmission of personal data in the form of informative electrical signals and physical fields;
  • alienable computer-based information media on magnetic, magneto-optical and other media used for the processing of personal data.
7.5. Technological information about information systems and elements of the personal data protection system subject to protection includes:
  • information on the access control system to informatisation objects where personal data is processed;
  • control information;
  • technological information of access means to control systems;
  • characteristics of communication channels used for the transmission of personal data in the form of informative electrical signals and physical fields;
  • information on personal data protection means, their composition and structure, principles and technical solutions for protection;
  • service data generated during the operation of software, messages and protocols of network interaction resulting from the processing of personal data.
7.6. The personal data protection system complies with the requirements of Government Resolution No. 1119 of November 1, 2012 "On Approval of Requirements for the Protection of Personal Data in Their Processing in Personal Data Information Systems" and ensures:
  • timely detection and prevention of unauthorised access to personal data or their transfer to persons not entitled to access such information;
  • prevention of impact on the technical means of automated processing of personal data that may result in disruption of their functioning;
  • the possibility of immediate restoration of personal data modified or destroyed as a result of unauthorised access;
  • continuous monitoring of ensuring the level of security of personal data.
8. Liability
8.1. All employees of the Operator involved in the processing of personal data are obliged to maintain the confidentiality of information containing personal data.
8.2. Persons guilty of violating the requirements for the processing of personal data shall bear liability in accordance with the applicable legislation of the Russian Federation.
8.3. Responsibility for compliance with the personal data regime in respect of personal data contained in the Website's databases lies with the Operator's employees responsible for the processing of personal data.

9. Final Provisions
9.1. The Policy was approved by order of the Operator's Manager No. 1-PDn of May 21, 2025, and remains in force indefinitely until a new version of the Policy takes effect.
9.2. In the event of changes to the legislation of the Russian Federation in the field of personal data protection, the Operator shall adopt a new version of the Policy in accordance with such changes. Until then, the Policy shall remain in effect to the extent that it does not contradict the applicable legislation of the Russian Federation.
9.3. For the purpose of contacting the Operator, the following contact details may be used:
Tel.: +7 (960) 717-51-77
E-mail: kir.georgiev.work@gmail.com
Postal address: 119618, Moscow, Zelyonaya Gorka Street, Building 1, Block 1.