Policy on Personal Data Processing
1. General Provisions
This personal data processing policy has been prepared in accordance with the requirements of the Federal Law dated July 27, 2006, No. 152-FZ "On Personal Data" (hereinafter referred to as the Personal Data Law) and defines the procedure for processing personal data and measures to ensure the security of personal data implemented by SIA Promstal GTU (hereinafter referred to as the Operator).
1.1.The Operator considers compliance with human and civil rights and freedoms in the processing of personal data, including the protection of the right to privacy, personal, and family secrets, as one of its most important objectives and conditions for its activities.
1.2. This Operator's policy on personal data processing (hereinafter referred to as the Policy) applies to all information that the Operator may receive about visitors to the website https://promstal.eu.
2. Basic Terms Used in the Policy2.1. Automated processing of personal data
Processing personal data using computer technology.
2.2. Blocking personal data
Temporary suspension of personal data processing (except when processing is necessary to clarify personal data).
2.3. Website
A set of graphic and informational materials, as well as computer programs and databases, ensuring their availability on the Internet at the network address https://promstal.eu.
2.4. Personal data information system
A set of personal data contained in databases and information technologies and technical tools ensuring their processing.
2.5. Depersonalization of personal data
Actions that result in the inability to determine the ownership of personal data to a specific User or another personal data subject without the use of additional information.
2.6. Processing of personal data
Any action (operation) or set of actions (operations) performed with or without the use of automation tools with personal data, including collection, recording, systematization, accumulation, storage, updating (modification), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, and destruction of personal data.
2.7. Operator
A state body, municipal body, legal or natural person that independently or jointly with other persons organizes and/or performs personal data processing, as well as determines the purposes of personal data processing, the composition of personal data to be processed, actions (operations) performed with personal data.
2.8. Personal data
Any information relating directly or indirectly to a specific or identifiable User of the website https://promstal.eu.
2.9. Personal data permitted by the subject for dissemination
Personal data made available to an unlimited number of persons by the personal data subject by giving consent to the processing of personal data permitted for dissemination in accordance with the Personal Data Law.
2.10. User
Any visitor of the website https://promstal.eu.
2.11. Provision of personal data
Actions aimed at disclosing personal data to a specific person or a specific group of persons.
2.12. Distribution of personal data
Any actions aimed at disclosing personal data to an indefinite number of persons (transferring personal data) or at familiarizing an unlimited number of persons with personal data, including publication of personal data in the media, posting in information and telecommunication networks, or providing access to personal data in any other way.
2.13. Cross-border transfer of personal data
Transfer of personal data to the territory of a foreign state, to a foreign state authority, a foreign individual, or a foreign legal entity.
2.14. Destruction of personal data
Any actions resulting in the irreversible destruction of personal data, with the impossibility of further restoration of the content of personal data in the personal data information system and/or destruction of the material media containing personal data.
3. Key Rights and Obligations of the Operator
3.1. The Operator has the right to:

• Request accurate information and/or documents containing personal data from the personal data subject;
• Continue processing personal data without the consent of the subject in cases provided for by the Personal Data Law;
• Independently determine the composition and list of measures necessary and sufficient to ensure the fulfillment of obligations under the Personal Data Law unless otherwise provided by federal laws.

3.2. The Operator is obliged to:

• Provide information related to the processing of personal data at the request of the personal data subject;
• Ensure the protection of personal data during processing;
• Stop processing and destroy personal data when required by law or upon withdrawal of consent.