Personal Data Processing Policy

1. General Provisions

This Personal Data Processing Policy is developed in accordance with the requirements of Federal Law No. 152-FZ "On Personal Data" dated July 27, 2006, and establishes the procedure for processing and protecting personal data carried out by LLC "Solta" (hereinafter referred to as the "Operator").

  1. The Operator prioritizes the observance of human and civil rights and freedoms in the processing of personal data, including the protection of the right to privacy, personal and family secrets.
  2. This Policy applies to all information about visitors to the website http://solta.io that the Operator may obtain during their interaction with the website.

2. Key Terms and Definitions

  1. Automated processing of personal data — processing of personal data using computer technology.
  2. Blocking of personal data — temporary suspension of personal data processing (except in cases where processing is necessary for information clarification).
  3. Website — a collection of graphic, textual materials, program code, and databases available at http://solta.io.
  4. Personal data information system — a set of personal data contained in databases and the technologies that ensure their processing.
  5. Anonymization of personal data — actions that eliminate the possibility of identifying personal data with a specific user.
  6. Operator — a state authority, municipal authority, legal entity, or natural person that independently or jointly with others organizes and/or carries out the processing of personal data, as well as determines the purposes of personal data processing, the composition of personal data to be processed, and the actions (operations) performed with personal data.
  7. Processing of personal data — any action (operation) or a set of actions (operations) performed with or without the use of automation tools on personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, provision, access), anonymization, blocking, deletion, and destruction of personal data.
  8. Automated Processing of Personal Data — processing of personal data using computer technology.
  9. Personal data — information related directly or indirectly to a specific user of the website http://solta.io.
  10. User — any visitor to the website http://solta.io.
  11. Provision of personal data — actions aimed at disclosing personal data to a specific group of persons.
  12. Distribution of personal data — any actions aimed at transferring personal data to an unspecified group of persons.
  13. Cross-border transfer of personal data — transfer of personal data to a foreign state authority, legal entity, or natural person.
  14. Destruction of personal data — actions that result in the impossibility of restoring the content of personal data in the personal data information system and/or that lead to the destruction of tangible media containing personal data.

3. Categories of Processed Personal Data

The Operator may process the following personal data of users:

  1. Last name, first name, and patronymic;
  2. Email address;
  3. Contact phone number;
  4. Anonymized data obtained via internet analytics (e.g., cookies, data from Yandex.Metrica and Google Analytics services).

All of the above data are collectively referred to as "Personal Data."

4. Purposes of Personal Data Processing

  1. Informing the user by sending emails.
  2. Ensuring user access to the services, information, and materials available on the website.
  3. The Operator may send users notifications about new products, promotions, and events. Users have the right to opt out of such notifications by sending an email to sales@solta.io with the note "Unsubscribe from notifications."
  4. Anonymized data is used to analyze user actions on the website and improve its quality.

5. Legal Grounds for Personal Data Processing

  1. Personal data processing is carried out with the user's consent, provided by filling out forms on the website http://solta.io.
  2. Anonymized data may be processed if the user's browser settings allow the use of cookies and JavaScript.

6. Protection of Personal Data

  1. The Operator takes necessary legal, organizational, and technical measures to protect personal data from unauthorized access.
  2. Users' personal data is not transferred to third parties, except as required by law.
  3. If a user identifies inaccuracies in their personal data, they may update it by sending a notification to sales@solta.io with the note "Update personal data."
  4. The processing period of personal data is unlimited. Users may withdraw their consent to personal data processing by sending a request to sales@solta.io with the note "Withdrawal of consent."

7. Cross-Border Transfer of Personal Data

  1. Before transferring personal data abroad, the Operator must ensure that the foreign state provides reliable protection of personal data subjects' rights.
  2. The transfer of personal data to countries that do not provide adequate protection is possible only with the written consent of the data subject or under an agreement to which they are a party.

8. Final Provisions

  1. Users may obtain clarifications on personal data processing issues by sending a request to sales@solta.io.
  2. This Policy may be updated, and changes take effect from the moment they are published on the website http://solta.io.
  3. The current version of the Policy is available at http://solta.io.