This Privacy Policy (hereinafter referred to as the "Policy") applies to all information that Individual Entrepreneur Kartsev A.G., TIN 502008401509 (hereinafter referred to as the "Service Owner") may receive about the User while using the website https://flymeet.ru/ (hereinafter referred to as the "Site") and the @flymeetbot service (hereinafter referred to as the "Service").

This Policy is developed in compliance with the requirements of the Federal Law of 27.07.2006 No. 152-FZ "On Personal Data".

The Policy applies to all personal data provided by the User, which are processed by the Service Owner.

Use of the Service and the Site implies the unconditional consent of the User to this Policy and the terms of processing their personal information specified therein; in case of disagreement with these terms, the User should refrain from using the Service and the Site.

The Service Owner processes the Personal Data of Users of the Service and the Site with their consent, provided by Users through the process of registration/authorization in the Service, i.e., by performing conclusive actions confirming their agreement with this Policy.

This Policy is subject to placement on the Operator's website https://flymeet.ru/.

Personal Data — any information relating to a directly or indirectly identified or identifiable individual (subject of personal data);

Personal Data Operator (Operator) — the Service Owner, TIN 502008401509, independently or jointly with other persons organizing and carrying out the processing of personal data, as well as determining the purposes of processing personal data, the composition of personal data subject to processing, the actions (operations) performed with personal data;

Processing of Personal Data — any action (operation) or set of actions (operations) with personal data, performed with the use of automation tools or without the use of such tools. Processing of personal data includes, among other things:

• collection;
• recording;
• systematization;
• accumulation;
• storage;
• updating (modification, alteration);
• extraction;
• use;
• transfer (distribution, provision, access);
• anonymization;
• blocking;
• deletion;
• destruction;

Automated Processing of Personal Data — processing of personal data using computer technology;

Distribution of Personal Data — actions aimed at disclosing personal data to an indefinite number of persons;

Provision of Personal Data — actions aimed at disclosing personal data to a specific person or a specific circle of persons;

Blocking of Personal Data — temporary suspension of personal data processing (except when processing is necessary to clarify personal data);

Destruction of Personal Data — actions resulting in the impossibility of restoring the content of personal data in the personal data information system and (or) as a result of which the physical media containing personal data are destroyed;

Anonymization of Personal Data — actions resulting in the impossibility of identifying the personal data subject without using additional information;

Personal Data Information System — a set of personal data contained in databases and information technologies and technical means ensuring their processing;

Cross-Border Transfer of Personal Data — the transfer of personal data to the territory of a foreign state, to a foreign government authority, a foreign individual, or a foreign legal entity.

2.1. Processing of personal data is limited to the achievement of specific, pre-defined, and legitimate purposes. Processing of personal data incompatible with the purposes of personal data collection is not allowed.

2.2. Only personal data that meet the purposes of their processing are subject to processing.

2.3. The processing of personal data by the Service Owner is carried out for the purpose of providing the services of the Service.

2.4. The content and volume of processed personal data must correspond to the stated purposes of processing, as provided for in clause 2.3 of this Policy. The processed personal data should not be excessive in relation to the stated purposes of their processing.

3.1. The processing of personal data is carried out by the Service Owner based on the following principles:

• legality and fairness;
• limiting the processing of personal data to the achievement of specific, pre-defined, and legitimate purposes;
• prohibition of processing personal data incompatible with the purposes of personal data collection;
• prohibition of combining databases containing personal data, the processing of which is carried out for purposes incompatible with each other;
• processing only personal data that meet the purposes of their processing;
• correspondence of the content and volume of processed personal data to the stated purposes of processing;
• prohibition of processing personal data that is excessive in relation to the stated purposes of their processing;
• ensuring the accuracy, sufficiency, and relevance of personal data in relation to the purposes of personal data processing;
• destruction or anonymization of personal data upon the achievement of the purposes of their processing or in case of loss of the need to achieve these purposes, if it is impossible for the Service Owner to eliminate the violations committed with personal data unless otherwise provided by federal law.

4.1. The Service Owner has the right to:

• independently determine the composition and list of measures necessary and sufficient to ensure the fulfillment of the obligations provided for by the Personal Data Law and the normative legal acts adopted in accordance with it unless otherwise provided by the Personal Data Law or other federal laws;
• entrust the processing of personal data to another person with the consent of the subject of personal data unless otherwise provided by federal law, based on a contract concluded with this person. The person processing personal data on behalf of the Service Owner is obliged to comply with the principles and rules for processing personal data provided for by the Personal Data Law;

4.2. The Service Owner is obliged to:

• organize the processing of personal data in accordance with the requirements of the Personal Data Law;
• respond to requests and inquiries from personal data subjects and their legal representatives in accordance with the requirements of the Personal Data Law;
• provide the authorized body for the protection of the rights of personal data subjects with the necessary information within 30 days from the date of receipt of such a request.

5.1. The personal data subject has the right to:

• receive information related to the processing of their personal data, except in cases provided by federal laws. The information is provided to the personal data subject by the Service Owner in an accessible form and should not contain personal data relating to other personal data subjects, except in cases where there are legal grounds for disclosing such personal data. The list of information and the procedure for obtaining it are established by the Personal Data Law;
• request from the Service Owner clarification of their personal data, blocking or destruction of personal data in case the personal data is incomplete, outdated, inaccurate, unlawfully obtained, or not necessary for the declared purpose of processing, as well as take measures provided by law to protect their rights;

5.2. Responsibility for violating the requirements of the legislation of the Russian Federation and the regulatory acts of the Service Owner in the field of personal data processing and protection is determined in accordance with the legislation of the Russian Federation.

5.3. The User:

• confirms that all the data provided by them belongs to them personally,
• confirms and acknowledges that they have carefully read the provisions of this Policy and the conditions for processing their personal data, the text of the Policy and the conditions for processing personal data are clear to them;
• expresses Consent to the processing of personal data without reservations and limitations (hereinafter referred to as the "Consent"). The moment of acceptance of the Consent is the marking of the corresponding field in the Form and clicking on the send button of the Form on any page of the Site;
• confirms that by giving Consent, they act freely, by their own will and in their own interest;
• Consent is given for the processing of personal data both without the use of automation tools and with their use.

5.4. Consent is valid indefinitely from the moment the data is provided and may be revoked by the User by submitting a written application to the Service Owner at the email support@flymeet.ru or the bot in Telegram https://t.me/flymeethelpbot.

6.1. The processing of personal data is carried out by the Service Owner in accordance with the requirements of the legislation of the Russian Federation.

6.2. The processing of personal data is carried out with the consent of the personal data subjects for the processing of their personal data, as well as without such consent in cases provided by the legislation of the Russian Federation.

6.3. The Service Owner carries out both automated and non-automated processing of personal data.

6.4. The processing of personal data is carried out by:

• receiving personal data in oral and written form directly from the personal data subjects;
• receiving personal data from publicly available sources;
• using other methods of processing personal data.

6.5. The Service Owner takes necessary legal, organizational, and technical measures to protect personal data from unlawful or accidental access, destruction, alteration, blocking, distribution, and other unauthorized actions, including:

• determining the threats to the security of personal data during their processing;
• adopting local regulatory acts and other documents regulating relations in the field of personal data processing and protection;
• appointing persons responsible for ensuring the security of personal data in the structural divisions and information systems of the Service Owner;
• creating necessary conditions for working with personal data;
• organizing the accounting of documents containing personal data;
• organizing work with information systems in which personal data are processed;
• storing personal data under conditions that ensure their safety and prevent unauthorized access to them.

6.6. The Service Owner stores personal data in a form that allows identifying the subject of personal data no longer than the purposes of personal data processing require unless the period of personal data storage is established by federal law, a contract.

6.7. When collecting personal data, including through the information and telecommunications network Internet, the Service Owner ensures the recording, systematization, accumulation, storage, clarification (updating, modification), extraction of personal data of citizens of the Russian Federation using databases located on the territory of the Russian Federation, except for cases specified in the Personal Data Law.

6.8. Data that is automatically transmitted to the services of the Site during their use with the help of software installed on the User's device, including IP address, cookie data, information about the User's browser (or other programs used to access the services), technical characteristics of the equipment and software used by the User, date and time of access to the services, addresses of the requested pages, and other similar information.

6.9. The Service Owner has the right to engage a third party to process Personal Data in the manner and for the purpose established in this Policy.

The list of third parties to whom the Service Owner may transfer the personal data of Users is available on the Site. The Service Owner has the right to make changes to the specified list of third parties by publishing changes on the website. The User independently monitors changes to the list of third parties.

Third parties who are in labor relations with the Service Owner (employees of the Service Owner) may have access to the personal data of Users for the purposes established in this Policy. These employees are not subject to inclusion by name in the list of third parties, while the User's consent to the processing of Personal Data applies to these employees. The Service Owner enters into a similar confidentiality agreement with third parties engaged by the Service Owner to provide services to the User based on civil law contracts. Such third parties are not subject to coordination with the User.

7.1. The Service Owner has the right to make changes to this Policy without the User's consent.

7.2. The new Policy comes into force from the moment of its publication on the Site unless otherwise provided by the new version of the Policy.

7.3. The current version of the Policy is available on the Internet at: https://flymeet.ru/privacy.