EU Privacy Policy

1. OBJECTIVE
   1. The aim of this EU Privacy Policy (“the Policy”) is to provide adequate and consistent safeguards for the handling of Personal Data (as defined below) by all “IMOTECH” (as defined below) in accordance with Directive 95/46/EC of the European Parliament and of the Council of 24 October 1995 on the protection of individuals with regard to the processing of personal data and on the free movement of such data (“the Directive”) and all the relevant transposing legislation of the Directive in the European Union/European Economic Area (“EU/EEA”), the Swiss Federal Data Protection Act, as such laws may from time to time be amended and valid during the application of this Policy, and any other privacy laws, regulations and principles concerning the collection, storage, use, transfer and other processing of Personal Data transferred from the European Economic Area (“EEA”) or Switzerland to the United States including but not limited to the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (“the General Data Protection Regulation”) as of its entry into force on 24 May 2018.
2. SCOPE
   1. This Policy applies to all IMOTECH entities in the EU that process Personal Data.
   2. “Consumer” means any natural person who is located in the EU, but excludes any individual acting in his or her capacity as an Employee.
   3. “Controller” means a person or organization which, alone or jointly with others, determines the purposes and means of the processing of Personal Data as referred to in applicable data privacy laws.
   4. “Employee” means any current, former or prospective employee, temporary worker, intern or other non-permanent employee of IMOTECH or any current or prospective subsidiary or affiliate of IMOTECH.
   5. “European Economic Area (“EEA”)” means the following countries: Austria, Belgium, Bulgaria, Cyprus, Czech Republic, Denmark, Estonia, Finland, France, Germany, Greece, Hungary, Iceland, Republic of Ireland, Italy, Latvia, Liechtenstein, Lithuania, Luxembourg, Malta, The Netherlands, Norway, Poland, Portugal, Romania, Slovakia, Slovenia, Spain, Sweden, the UK.
   6. “Personal Data” means any information relating to an identified or identifiable natural person (“data subject”); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identification number or to one or more factors specific to his physical, physiological, mental, economic, cultural or social identity and includes information, that (i) relates to an identified or identifiable Customer, Employee or Supplier’s representative; (ii) can be linked to that Customer, Employee or Supplier’s representative.
   7. “Processing” is defined as any action that is performed on Personal Data, whether in whole or in part by automated means, such as collecting, modifying, using, disclosing, or deleting such data.
3. PRINCIPLES FOR PROCESSING PERSONAL DATA
   1. IMOTECH respects Employee, Consumer (including personnel of customers, suppliers, stakeholders, and third parties) privacy and is committed to protecting Personal Data in compliance with the applicable legislation in the EEA.
      1. Data will be processed fairly and in accordance with applicable law.
      2. Data will be collected for specified, legitimate purposes and not processed further in ways incompatible with those purposes.
      3. Data will be relevant to and not excessive for the purposes for which they are collected and used. For example data may be rendered anonymous if deemed reasonable, feasible and appropriate, depending on the nature of the data and the risks associated with the intended uses.
      4. Data subjects in the EU will be asked to provide their clear and unequivocal consent for the collection, processing and transfer of their Personal Data.
      5. Data will be accurate and, where necessary kept up up-to-date. Reasonable steps will be taken to rectify or delete Personal Data that is inaccurate or incomplete.
      6. Data will be kept only as it is necessary for the purposes for which it was collected and processed. Those purposes shall be described in this Policy.
      7. Data will be deleted or amended following a relevant request by the concerned data subject, should such notice comply with the applicable legislation each time.
      8. Data will be processed in accordance with the individual’s legal rights (as described in this Policy or as provided by law).
      9. Appropriate technical, physical and organizational measures will be taken to prevent unauthorized access, unlawful processing and unauthorized or accidental loss, destruction or damage to data. In case of any such violation with respect to Personal Data, IMOTECH will take appropriate steps to end the violation and determine liabilities in accordance with applicable law and will cooperate with the competent authorities.
4. TYPES OF DATA PROCESSED
   1. Personal Data relating to Consumers may include:
      1. Contact information, such as name, postal address, email address and telephone number;
      2. Personal Data in content Consumers provide on IMOTECH’s website and other data collected automatically through the website (such as IP addresses, browser characteristics, device characteristics, operating system, language preferences, referring URLs, information on actions taken on our website, and dates and times of website visits).
5. WAYS OF OBTAINING PERSONAL DATA
   1. The ways by which IMOTECH obtains Personal Data are defined hereby. IMOTECH does not obtain any personal information about Employees or Consumers unless the Employee or Consumer has provided that information to IMOTECH in a way providing for its clear and unequivocal consent to do so including but not limited to visiting IMOTECH’s website.
6. PURPOSES FOR PERSONAL DATA PROCESSING
   1. IMOTECH processes personal data for legitimate purposes related to human resources, business and safety /security. The limitation of purposes shall be taken into consideration before any type of processing of Personal Data and shall not be subject to any changes without prior notification.
7. SECURITY AND CONFIDENTIALITY
   1. IMOTECH is committed to taking appropriate technical, physical and organizational measures to protect Personal Data against unauthorized access, unlawful processing, accidental loss or damage and unauthorized destruction.
8. ACCESS SECURITY
   1. The importance of security for all personally identifiable information associated with IMOTECH’s Employees is of highest concern. IMOTECH is committed to safeguarding the integrity of personal information and preventing unauthorized access to information maintained in IMOTECH’s databases. These measures are designed and intended to prevent corruption of data, block unknown and unauthorized access to our computerized system and information, and to provide reasonable protection of Personal Data in IMOTECH’s possession. Access to the computerized database is controlled by a log-in sequence and requires users to identify themselves and provide a password before access is granted. Users are limited to data required to perform their job function. Security features of our software and developed processes are used to protect personal information from loss, misuse, and unauthorized access, disclosure, alteration, and destruction.
9. COOKIE STATEMENT
   1. What is a cookie?
      A cookie is a small amount of data that is placed in the browser of your computer or on your mobile device. So-called “first party cookies” (not as much fun as they sound) are cookies which are served by the entity operating the domain through which the cookie is served. IMOTECH.ru own cookies are therefore “first party cookies”. In case we allow others to service cookies through the Booking.com websites and apps, these cookies are so-called “third party cookies”.
   2. How are cookies used?
      Cookies are used for different purposes. They allow you to be recognised as the same user across the pages of a website, between websites or when you use an app. The types of information that we collect through cookies include IP address; device ID; viewed pages; browser type; browsing information; operating system; internet service provider; timestamp; whether you have responded to an advertisement; the referring URL; and features used or activities engaged in within the website/apps.
   3. What are your choices?
      To learn more about cookies and how to manage or delete them, simply visit allaboutcookies.org and the help section of your browser. In the settings for browsers such as Internet Explorer, Safari, Firefox or Chrome, you can set which cookies to accept and which to reject. Where you find these settings depends on which browser you use. Use the "Help" function in your browser to locate the settings you need.
   4. Advertising. When it comes to online advertising and marketing companies, we strive to work with companies that are members of the Network Advertising Initiative (NAI) and/or the Interactive Advertising Bureau (IAB). Members of NAI and IAB adhere to industry standards and codes of conduct. NAI and IAB members allow you to opt out of behavioural advertising. Visit www.networkadvertising.org to identify the NAI members that may have placed an advertising cookie file on your computer.
   5. To opt out of an NAI member's behavioural advertising program, simply check the box that corresponds to the company from which you wish to opt out. You may also want to visit www.youronlinechoices.com or www.youradchoices.com to learn how to opt out of customized advertisement. Your mobile device may allow you to limit the sharing of information for retargeting purposes through its settings. Please be aware that opting out of an online advertising network does not mean that you will no longer receive or be subject to online advertising or marketing analysis. It means that the network from which you opted out will no longer deliver ads tailored to your web preferences and browsing patterns.
   6. Analytics. In order to control the collection of data for analytical purposes through Google Analytics from certain browser types, you may want to visit the following link: Google Analytics Opt-out Browser Add-on (only for desktop). In order to control the collection of data for analytical purposes by Yandex.Metrica (a tracking pixel owned by Russian search engine YANDEX), users with language setting Russian, Ukrainian or Turkish may want to visit the following link: yandex.com. Yandex.Metrica is not used for users with any other languages. You also have an option to opt-out from Yandex personalized advertisement. In order to do so, please, visit https://yandex.ru/tune/adv/ and untick the box “Consider my interests”.
   7. If you have any questions about this Cookie Statement, please send an email to info@imotech.ru. Our Cookie Statement may also be amended from time to time. So visit this page regularly to keep abreast of updates.