Personal Data Processing Policy

1. General Provisions

This Personal Data Processing Policy is drafted in accordance with the requirements of Federal Law No. 152-FZ dated July 27, 2006, “On Personal Data” (hereinafter referred to as the “Personal Data Law”) and defines the procedure for processing personal data and the measures taken by Ervolt LLC (hereinafter referred to as the “Operator”) to ensure the security of personal data.

1.1. The Operator considers the protection of human and civil rights and freedoms when processing their personal data, including the right to privacy, personal and family secrets, as its highest priority and a fundamental condition for conducting its activities.

1.2. This Operator’s policy regarding the processing of personal data (hereinafter referred to as the “Policy”) applies to all information that the Operator may obtain about visitors to the website https://ervolt.ru.

2. Key Terms Used in the Policy

2.1. Automated processing of personal data – processing of personal data using computer technology.

2.2. Blocking of personal data – temporary cessation of personal data processing (except when processing is necessary to clarify personal data).

2.3. Website – a collection of graphical and informational materials, as well as computer programs and databases, ensuring their availability on the Internet at the network address https://ervolt.ru.

2.4. Personal data information system – a set of personal data contained in databases and the information technologies and technical means enabling their processing.

2.5. Depersonalization of personal data – actions that make it impossible to determine the ownership of personal data by a specific User or other subject of personal data without using additional information.

2.6. Processing of personal data – any action (operation) or set of actions (operations) performed with or without automation tools, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, or destruction of personal data.

2.7. Operator – a state body, municipal authority, legal entity, or individual that independently or jointly with others organizes and/or processes personal data, as well as determines the purposes of processing, the composition of personal data to be processed, and the actions (operations) performed with personal data.

2.8. Personal data – any information directly or indirectly related to an identified or identifiable User of the website https://ervolt.ru.

2.9. Personal data authorized for dissemination – personal data to which the subject of personal data has granted access to an unlimited number of persons by consenting to their processing in accordance with the Personal Data Law.

2.10. User – any visitor to the website https://ervolt.ru.

2.11. Provision of personal data – actions aimed at disclosing personal data to a specific person or group of persons.

2.12. Dissemination of personal data – actions aimed at disclosing personal data to an indefinite group of persons (transfer of personal data) or making personal data available to the public, including publication in media, placement in information and telecommunication networks, or providing access in any other way.

2.13. Cross-border transfer of personal data – transfer of personal data to the territory of a foreign state to an authority, foreign individual, or foreign legal entity.

2.14. Destruction of personal data – actions resulting in the irreversible destruction of personal data, making it impossible to restore the content of personal data in the information system and/or the destruction of physical storage media containing personal data.

3. Key Rights and Obligations of the Operator

3.1. The Operator has the right to:

  • Receive accurate information and/or documents containing personal data from the subject of personal data.

  • Continue processing personal data without the subject’s consent if grounds specified in the Personal Data Law exist.

  • Independently determine the necessary measures to comply with obligations under the Personal Data Law.

3.2. The Operator is obliged to:

  • Provide the subject of personal data, upon request, with information regarding the processing of their personal data.

  • Process personal data in accordance with Russian law.

  • Respond to requests from personal data subjects and their legal representatives.

  • Provide necessary information to the authorized body for personal data protection within 10 days of receiving a request.

  • Publish or otherwise ensure unrestricted access to this Policy.

  • Implement legal, organizational, and technical measures to protect personal data from unauthorized access, destruction, alteration, blocking, copying, or distribution.

  • Cease processing and destroy personal data in cases stipulated by law.

4. Key Rights and Obligations of Personal Data Subjects

4.1. Personal data subjects have the right to:

  • Obtain information about the processing of their personal data.

  • Demand the correction, blocking, or destruction of inaccurate or unlawfully processed data.

  • Withdraw consent to the processing of personal data.

  • Appeal unlawful actions of the Operator to the authorized body or in court.

4.2. Personal data subjects must:

  • Provide accurate personal data to the Operator.

  • Notify the Operator of any changes to their personal data.

4.3. Persons who provide false personal data or data about another subject without consent bear responsibility under Russian law.

5. Principles of Personal Data Processing

  • Lawfulness and fairness.

  • Purpose limitation (processing only for specified, legitimate purposes).

  • Data minimization (only necessary data is processed).

  • Accuracy and relevance of data.

  • Storage limitation (data is stored only as long as necessary).

6. Purposes of Personal Data Processing

Purpose of processing: Providing the User with access to services, information, and materials on the website.

Personal data processed:

  • Full name

  • Email address

  • Phone numbers

Legal basis: Operator’s statutory documents.

Types of processing: Collection, recording, storage, destruction, depersonalization, and sending informational emails.

7. Conditions for Processing Personal Data

Processing is carried out:

  • With the subject’s consent.

  • To comply with legal obligations.

  • For contractual performance.

  • For legitimate interests of the Operator or third parties.

8. Procedure for Collecting, Storing, and Transferring Personal Data

  • The Operator ensures security through legal, organizational, and technical measures.

  • Personal data is not transferred to third parties except as required by law or with the subject’s consent.

  • Users may update their data by emailing info@ervolt.ru with the subject “Updating Personal Data.”

  • Processing ceases upon achieving the purpose, withdrawal of consent, or unlawful processing detection.

9. Actions Performed by the Operator

The Operator performs collection, recording, storage, clarification, depersonalization, blocking, and destruction of personal data.

10. Cross-Border Data Transfer

The Operator must notify the authorized body before transferring personal data abroad.

11. Confidentiality

The Operator and authorized persons must not disclose personal data without consent unless required by law.

12. Final Provisions

  • Users may contact the Operator at info@ervolt.ru for clarifications.

  • The Policy is effective indefinitely and may be updated. The current version is available at https://privacy.