1.1. The administrator of collected personal data through the website is svit.software SvitSoftware LLC.
1.2. The personal data collected by the administrator through the website are processed by the Regulation of the European Parliament and of the Council (EU) 2016/679 of April 26, 2021, on the protection of natural persons concerning the processing of personal data and the free movement of such data, hereinafter referred to as RODO.
1.3. All written words or phrases in the content of this privacy policy with a capital letter must be interpreted in accordance with them as defined in the Regulations on the website www.svit.software.
2.1. Purpose and processing. Legal basis.
The administrator processes the personal data of clients and visitors of www.svit.software in the event of:
a) Registration on the Site to create a personal account, in accordance with paragraph 6.1, GDPR (agreement on the implementation of the provision of services in electronic form under the Rules for the provision of services);
b) compilation of paid services in accordance with paragraph 6. 1, GDPR (agreement on implementation for the provision of services by electronic means of the Rules for the provision of services).
2.2. Type of personal data to be collected, processed, and profiled:
a) Customer accounts:
b) Paid services:
2.3. Storage of personal data. The customer’s personal data is stored in the following cases:
a) when the basis for processing is the fulfillment of the terms of the contract, the storage will correspond to the time required to fulfill the terms of the contract, or the time specified by the terms of the contract. Unless otherwise specified by additional agreements, the data storage period is six years, and three years for accounts where remittances related to business activities are provided;
b) in the case when based on the processing of the agreement data, the information is saved until the processing is withdrawn, during the corresponding period or extended period by the site administration. Unless otherwise specified in the additional agreements, the retention period is six years, and for accounts that provide remittances related to business activities — three years.
2.4. When using the services of the site, additional information may be stored and processed, in particular: the IP address assigned to the client’s computer or the external IP address of the provider, domain name, browser type, access time, or type of the operating system.
2.5. Navigation data also may be collected from site visitors, including information about clicks and other actions to use the website’s services. The legal basis for this type of activity is the legitimate interest of the Administrator (Article 6, paragraph 1, GDPR), consisting in promoting the use of electronic services and improving the functionality of these services.
2.6. Providing personal data to the Administrator is voluntary.
2.7. Personal data is processed automatically, including in the form of a personal profile, if the User does not agree with this, based on paragraph 6.1 point a) of the GDPR. then at the request of the User, an employee of the company will be determined for data processing, for further analysis, profiling, and forecasting.
2.8. The client has the right to contact the object of processing regarding the collected data and their volume at any time, as specified in paragraph 6 of this document, with a request for information on the methods of profiling and processing of personal data, to request their deletion, reduction, modification, or correction.
2.9. The controller takes all measures available to him to protect the interests of the data subject, and in particular to ensure that the data collected by him:
a) are processed legally;
b) collected for the specified legal purposes and are not the subject to further processing, does not correspond to the specified purposes;
c) correspond to the purposes for which they are processed and are stored in a form that allows the identification of the subject no longer than is necessary to achieve the processing.
3.1. The list of personal data collected by the site administrator for the provision of services and site services is available to customers and website visitors. The website user can transfer personal data in accordance with certain agreements, subject to the purposes, and methods of processing this data (processors).
4.1. The data subject has the right to access his personal data and the right to rectification, erasure, processing restrictions, the right of data transferring, has the right to withdraw consent at any time, without affecting the legality of the processing that was based on the previous consent
4.2. List of legal requirements of the site user:
a) Access to information — paragraph 15 RODO;
b) Change of information — paragraph 16 RODO;
c) Data erasure (i.e. the right to be forgotten) — paragraph 17 RODO;
d) Restrictions on processing — paragraph 18 RODO;
The client has the right to demand restrictions on the processing of his personal data at a certain time or in a certain range.
e) Data transmission — paragraph 20 RODO;
To do this, contact the administrator, providing the name and address of the person to whom the data should be transferred and their volume. Confirmation of the fulfillment of the requirement will be provided in electronic form upon the request of the Client.
f) Objection — paragraph 21 RODO;
The client has the right to object to the processing of his data, both in general and in the range specified by him.
g) Removal of consent — paragraph 7 RODO.
The consent to the processing of data can be revoked at any time without giving any reason. The request may include the withdrawal of permission only for the specific purpose or purposes of processing all personal data.
4.3. In order to exercise the rights referred to the paragraph 2, an email must be sent to [email protected]. To process a request, it is important to provide as much information as possible on the subject of the request, in particular, the definition of authority and desired actions in accordance with paragraph 2 of this section, as well as contact information. The information you provide will greatly facilitate and speed up the processing of the application by the administrator.
4.4. In case of receiving a request to change the conditions of data processing from a user or client of the site, the Administrator must make the necessary changes and report the fulfillment of the request (paragraph 6 of this section) no later than one month after its receipt. If due to the complexity of the request, or the number of requests, the administrator cannot fulfill the request within a month, the period for its execution lasts up to two months, with the obligatory informing the Client within one month from the date of receipt of the request, indicating the extended period and its reasons.
4.5. If it is established that the processing of personal data violates the provisions of the GDPR, the subject of personal data has the right to lodge a complaint with the Chairman of the Office for Personal Data Protection.
4.6. The right to erasure (“the right to be forgotten”) is basic. Paragraph 17, GDPR 1 and 2 of this article do not apply in full if the processing is necessary for:
a) the exercise of the right to freedom of expression and information;
b) comply with legal obligations requiring processing in accordance with Union law or the law of the Member State to which the controller is subject or the performance of tasks is carried out in the public interest or the exercise of public authority and is entrusted to the administrator;
c) for reasons of public interest in the field of public health in accordance with paragraph 6.2;
d) for archival purposes in the public interest, for the purpose of historical or scientific research, or statistical purposes in accordance with GDPR 1, if there is a possibility that the law referred to the paragraph 17 GDPR, prevents or seriously hinders the achievement of the purposes of such processing;
e) to determine the investigation or defense of claims.
<h2“Cookies”
5.1. The Site Administrator uses “Cookies”.
5.2. The installation of “Cookies” is necessary for the proper provision of services on the website. “Cookies” — information that necessary for the normal functioning of the site to provide it with the ability to collect general statistics of visitors.
5.3. Within the page, two types of “Cookies” are collected: “Session” and “History”.
a) “Cookies” “Session” are temporary files that are stored in the terminal of the service equipment until the moment of exiting (closing the page).
b) “Cookies” “History” are stored in the terminal equipment of the recipient within the period specified in the “Cookies” parameters or until they are deleted by the user.
5.4. The administrator uses his own Terminal “Cookies” to better understand how they interact in the area of the page content and the user. The files store information about how the site is used by type of user, the pages from which the user was redirected and the number of visits during the user’s visit to the site. This information does not record the personal data of a specific user, but is used to develop statistics on the use of the site.
5.5. The user has the right to decide to grant access to “Cookies” on his computer through the settings in the browser window. Detailed information on the possibilities and methods of using “Cookies” is available in the software settings (web browser).
5.6. Website visitors can make changes to settings for “Cookies” at any time. These parameters can be changed, in particular, in such a way as to block the automatic processing of “Cookies” in the configuration of the web browser or to report them every time you visit the site.
5.7. Blocking the use of “Cookies” may lead to difficulties in using certain features of the site in the framework of the provision of services, in particular, the ability to log in.
6.1. The administrator uses technical and organizational measures to protect processed personal data in order to prevent the risks of their dissemination and illegal transfer, in particular, protects data from unauthorized opening, capture, and processing by unauthorized persons who received them in violation of current legislation; as well as from alteration, loss, damage, or destruction.
6.2. The administrator takes all necessary technical measures to prevent the acquisition and changes by unauthorized persons. Personal data transmitted in electronic form.
6.3. In cases that not provided by this privacy policy, the provisions of the GDPR and other relevant provisions of the legislation of Ukraine are used.