1. General Provisions

This personal data processing policy is compiled in accordance with the requirements of the Federal Law No. 152-FZ “On Personal Data” dated 27.07.2006 (hereinafter referred to as the Personal Data Law) and determines the procedure for processing personal data and measures to ensure the security of personal data taken by Geek Marketing Agency (hereinafter referred to as the Operator).

1.1. The Operator considers the observance of human and civil rights and freedoms in the processing of personal data, including the protection of privacy, personal, and family secrets, as its most important goal and condition for carrying out its activities.

1.2. This Policy on personal data processing (hereinafter referred to as the Policy) applies to all information that the Operator may obtain about visitors to the website https://geekmarketing.ae.

2. Key Terms Used in the Policy

2.1. Automated processing of personal data – processing of personal data using computing technology.

2.2. Blocking of personal data – temporary suspension of personal data processing (except when processing is necessary for clarification of personal data).

2.3. Website – a set of graphical and informational materials, as well as computer programs and databases ensuring their availability on the internet at https://geekmarketing.ae.

2.4. Personal data information system – a set of personal data contained in databases and ensuring their processing through information technologies and technical means.

2.5. Depersonalization of personal data – actions making it impossible to determine personal data ownership without additional information.

2.6. Processing of personal data – any action (operation) or a set of actions (operations) performed with or without automation tools with personal data, including collection, recording, systematization, accumulation, storage, updating (modification), retrieval, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, and destruction of personal data.

2.7. Operator – a state body, municipal body, legal entity, or individual that independently or jointly organizes and/or carries out personal data processing and determines the purposes, composition, and actions (operations) performed with personal data.

2.8. Personal data – any information related directly or indirectly to a specific or identifiable User of the website https://geekmarketing.ae.

2.9. Personal data authorized by the subject for dissemination – personal data to which an unlimited number of persons have access, provided by the subject of personal data with consent in accordance with the Personal Data Law (hereinafter referred to as publicly available personal data).

2.10. User – any visitor of the website https://geekmarketing.ae.

2.11. Provision of personal data – actions aimed at disclosing personal data to a specific person or a specific circle of persons.

2.12. Distribution of personal data – any actions aimed at disclosing personal data to an indefinite number of persons (transfer of personal data) or at making personal data available to an unlimited number of persons, including publication in mass media, placement in information and telecommunication networks, or providing access in any other way.

2.13. Cross-border transfer of personal data – transfer of personal data to the territory of a foreign state, to a foreign authority, a foreign individual, or a foreign legal entity.

2.14. Destruction of personal data – any actions leading to irreversible destruction of personal data with no possibility of further restoration.

3. Main Rights and Obligations of the Operator

3.1. The Operator has the right to:

  • Obtain accurate information and/or documents containing personal data from the subject;
  • Continue processing personal data without the subject’s consent if there are legal grounds specified in the Personal Data Law;
  • Independently determine the necessary and sufficient measures to fulfill its obligations under the Personal Data Law.

3.2. The Operator is obliged to:

  • Provide the subject with information on the processing of their personal data upon request;
  • Organize the processing of personal data in accordance with Russian law;
  • Respond to requests and inquiries regarding personal data processing;
  • Report to the authorized body for personal data protection upon request within 10 days;
  • Publish or otherwise ensure unrestricted access to this Policy;
  • Take legal, organizational, and technical measures to protect personal data;
  • Cease personal data processing and destroy personal data when necessary in accordance with the Personal Data Law.

4. Main Rights and Obligations of Personal Data Subjects

4.1. Personal data subjects have the right to:

  • Obtain information about the processing of their personal data except in cases specified by federal law;
  • Demand correction, blocking, or destruction of inaccurate, outdated, or unlawfully obtained personal data;
  • Withdraw consent for personal data processing;
  • Complain about illegal actions of the Operator to the authorized body or in court.

4.2. Personal data subjects are obliged to:

  • Provide accurate personal data;
  • Update or correct their personal data when necessary.

5. Principles of Personal Data Processing

5.1. Processing of personal data is carried out lawfully and fairly.

5.2. Processing is limited to specific, predefined, and lawful purposes.

5.3. Combining databases containing personal data for incompatible purposes is not allowed.

5.4. Only personal data that meet the processing purposes are subject to processing.

5.5. The content and volume of processed personal data correspond to the stated processing purposes.

5.6. Accuracy, sufficiency, and relevance of personal data are ensured. The Operator takes necessary measures to remove or clarify incomplete or inaccurate data.

5.7. Personal data is stored in a form allowing identification of the data subject no longer than required for processing purposes unless otherwise provided by federal law.

6. Purposes of Personal Data Processing

  • Purpose: Informing the User via email communications.
  • Legal Basis: Federal Law “On Information, Information Technologies, and Information Protection” No. 149-FZ dated 27.07.2006.
  • Types of Processing: Transmission of personal data.

7. Conditions for Personal Data Processing

7.1. Processing is carried out with the consent of the personal data subject.

7.2. Processing is necessary for the performance of a contract involving the subject.

7.3. Processing is necessary for legal obligations or judicial acts.

7.4. Processing is necessary for the legitimate interests of the Operator or third parties, provided it does not infringe on the rights and freedoms of the subject.

7.5. Processing applies to publicly available personal data.

8. Collection, Storage, Transfer, and Other Processing of Personal Data

8.1. The Operator ensures the security of personal data through legal, organizational, and technical measures.

8.2. Personal data is never transferred to third parties without the subject’s consent, except as required by law.

8.3. Users can update their personal data by sending an email to privacy@geekmarketing.ae with the subject “Personal Data Update.”

8.4. Users may withdraw consent for personal data processing at any time by emailing privacy@geekmarketing.ae with the subject “Withdrawal of Consent.”

8.5. Third-party services used by the website process personal data according to their respective privacy policies.

8.6. The Operator ensures confidentiality and does not disclose personal data except as required by law.