The Privacy Policy for websites defines the Company's policy regarding the processing of personal data, as well as contains information about implemented requirements for the protection of personal data and the provisions, applicable to the activity of the company of collection of personal data in any country where such activity are carried out.

We bring to your notice that the processing of personal data on the platforms and services of our Company is carried out in full compliance with the General Data Protection Regulation (GDPR), which entered into force on the territory of the European Union on May 25, 2018.

In accordance with the provisions of the General Data Protection Regulation (GDPR), which entered into force in the territory of the European Union on May 25, 2018, you are entitled to:

• operative access to the data provided;
• correction of the data provided;
• deletion of the data provided;
• requirement to limit the processing of the provided data in accordance with the provisions of the applicable law;
• portability of data, namely: obtaining the data provided to us in a structured, commonly used and machine-readable format;
• objections to our processing order of your data;

“Registrar of domain names REG.RU” LLC (hereinafter referred to as REG.RU) is registered in the territory of the Russian Federation and is governed by local legislation, including Federal Law No. 152-FZ of 27.07.2006 “On Personal Data”.

Current privacy policy is created for the purpose of transparent description of all processes related to the processing of personal data, allowing directly or indirectly to identify the person who provided them (hereinafter — personal data).

This Policy contains explanations of:

• what data we collect on our websites (www.reg.ru; www.reg.com);
• how we do it;
• how and why we use your personal data.

Having become acquainted with this Policy, you will also learn about the possibilities you have for accessing, processing, and changing personal data.

For additional information about the order of procession of personal data in the company, you can refer to the following documents:

• Personal Data Processing Policy;
• Cookie files usage policy;
• Domain registration agreement;
• Agreement for the provision of telematic services.

The confidentiality and security of customers data, as well as visitors of our service, are extremely important for “Registrar of domain names REG.RU” LLC (hereinafter referred to as “REG.RU”) and we carefully treat the trust given to us.

Any information collected and stored within the framework of REG.RU services, located on the websites on the Internet at: www.reg.ru, www.reg.com is serviced with all due precautions. We use all necessary organizational, technical and protective measures to prevent unauthorized access to the processed data or other unlawful use of data from our users and customers.

Personal data we receive from our clients and users of REG.RU services, as well as visitors to the company's websites (www.reg.ru; www.reg.com):

• processed lawfully, in a fair and transparent manner with respect to the data subject;
• are collected for specific, clearly defined in this Policy and lawful purposes and can not be processed in a way incompatible with these purposes;
• are kept up-to-date, if necessary, can be updated / deleted / changed by the client;
• can be removed or corrected in a timely manner;
• are stored in a form that allows you to identify the data subjects within the period necessary for the purposes for which the personal data is processed;
• processed in a manner that ensures appropriate security of personal data, including protection from unauthorized or illegal processing, as well as from accidental loss, damage or destruction, using appropriate technical and organizational measures.

“REG.RU” LLC company can access and use the information provided by you only for the purposes of:

• provision of services within the framework of REG.RU services located on the organization's websites (www.reg.ru; www.reg.com);
• communication with you in order to inform about the terms and order of services provision within the framework of REG.RU services;
• responses to your questions related to the work of REG.RU services.

We do not use your data for any other purposes not expressly indicated in this Policy unless we receive your direct and accurate consent to use the information you provide for other purposes.

Your data provided when using REG.RU services on www.reg.ru, www.reg.com, are processed by us only on condition of:

• provision by you of a direct consent to the processing of your personal data for one or several specific purposes;
• necessity of procession of specified information in order to fulfill the agreement and provide the services you ordered;
• is necessary to protect the vital interests of the data subject or other individual;
• processing is necessary for the performance of a task carried out in the public interests or in the exercise of official authority vested on the controller;
• processing is necessary for the purposes of securing the legitimate interests of the controller or a third person, except when such interests do not take into account the interests or fundamental rights and freedoms of the data subject that require the protection of personal data, in particular when the data subject is a child.

Who to contact?

In case of arising of objections, comments or requests regarding our processing order of personal data, as well as all matters related to the processing of personal data on REG.RU sites (www.reg.ru; www.reg.com), you can apply for all necessary consultations on the following requisites:

• Limited Liability Company “Registrar of domain names REG.RU”
• TIN / CAT 7733568767 / 771401001
• Address for correspondence on the processing of personal data: 125252, Moscow, passage Berozovoy Roshchi, 12, floor 2, room 4.
• Email: pd@reg.ru
• Telephone: 8 (495) 580-11-11

What else should I need to know?

You can access the public sites of REG.RU (www.reg.ru, www.reg.com) without giving us any information about yourself. In limited cases, we may need to ask you to provide information in order to provide you the service in full. In such cases, we may ask you to register or tick off the consent to provide data in the form of data entry.

If you will agree to inform us the necessary for each specific case data about yourself (for example, your name, e-mail address), the information we receive may be provided for processing by third parties only upon receipt of your direct consent for such a transfer.

Also, we often use personal data that you voluntarily provide (for example, during registration on the site, during the call) to respond to your requests, provide you with offers or information, process your orders.

In the context of existing customer relations, the following operations are possible:

• collection, preservation and processing of personal data, within the framework of the above operations and actions;
• forwarding of personal data to third parties (subcontractors of REG.RU) within the framework of rendering services.

You have the right at any time to refuse to provide us your personal data. REG.RU does not provide your personal data to third parties and does not use this information in any other way than to provide services by companies of our group, subsidiaries, affiliates and partners, in the purposes known by you in advance

Exceptions are cases where collection, storage and processing are performed:

• to protect legal rights;
• to protect against lawsuits;
• for preparation, negotiation and implementation of business operations;
• at the request of the public authority, by order of the court or on other legal grounds;
• for purposes directly related to the assignment that you have already been informed about.

We keep your personal data within:

• the term necessary to fulfill contractual obligations for the provision of services and ordered services by the customer;
• the period, legally established for the storage of certain types of information;
• legally established period of responsibility of the manufacturer for the safety of goods;
• the term necessary for settling disputes and implementing any agreements reached;
• the period when your account on REG.RU sites (www.reg.ru; www.reg.com) remains active, i.e. you do not make such a deletion, though you can delete this information at any time.

We can use the data you provided to:

• contact you if you will send a request;
• send you emails about products, services and offers that we think may interest you;
• send you advertising messages or make calls about products, services and offers that we think may interest you.

What is this policy about?

For the purposes of current Policy:

• personal data – any information, directly or indirectly related to determined or being determined individual (subject of personal data);
• processing of personal data – any action (operation) or a set of actions (operations) with personal data, performed with the use of automation tools or without their use. Processing of personal data includes: collection; record; systematization; accumulation; storage; clarification (update, change); extraction; usage; transfer (distribution, provision, access); depersonalization; blocking; removal; destruction;
• automated processing of personal data – processing of personal data by means of computer facilities;
• provision of personal data – actions aimed at disclosing personal data to a specific person or a certain circle of persons;
• destruction of personal data – actions that make it impossible to restore the contents of personal data in the personal data information system and (or) as a result of which material data carriers of personal data are destroyed;
• personal data subject — a natural person, directly or indirectly determined or being determined on the basis of Personal data relating to him;
• controller – means a natural or legal person, a public authority, an agency or other authority that independently or jointly with others determines the purposes and means of personal data processing;
• person processing personal data – means a natural or legal person, a public authority, an agency or other authority that processes personal data in the name and on behalf of the controller;
• “recipient” – means a natural or legal person, a public authority, an agency or other authority to whom personal data is being disclosed, whether they are third parties or not;
• “consent” – of the data subject means any freely given, specific, conscious and unambiguously identifiable desire of the data subject by which he / she by application or clear affirmative action consents to the processing of personal data relating to him / her.

Processing of personal data of minors.

REG.RU does not intentionally collect personal data from persons under 14 years old. In case you are a person under the age of 14, please do not provide any data within the framework of REG.RU services and the Company sites (www.reg.ru; www.reg.com). We strongly recommend parents and legal representatives of minors, closely monitor children's admittance to the use of REG.RU services.

Cookies

We collect information about visitors of our sites on the Internet to improve our service and online offerings. This allows REG.RU to better meet customer needs. The information received is completely depersonalized so that the identification of individual people is impossible. With the policy of the usage of cookies, you can familiarize at the following link: reg.com/docs/policy_of_cookie_files_use_en.pdf

What information do we collect?

With the help of REG.RU services, we collect information solely for the purpose of providing full and high-quality services, as well as for interacting with our customers on the issues of provided services, as well as the continuous improvement of the quality of the services provided.'

Your information is collected in the following cases and for the following purposes:

Data protection

REG.RU undertakes technical and organizational security measures to protect your personal data from accidental, illegal change, removal or loss, as well as from unauthorized access or disclosure. More details about the measures being implemented are available here.

We understand that the security of personal information is important. Therefore, we use reasonable administrative, technical and physical means of protection the personal information of users. Nevertheless, in spite of all efforts, no protection is absolutely effective, therefore REG.RU can not guarantee the full safety of your personal information.

The right for deletion and modification of data, as well as for withdrawal of consent to the processing of personal data

You can at any time to contact us using REG.RU contact details from your e-mail address (or other means permitted on REG.RU sites), with the requirement:

• in the statutory period, to delete the personal data provided (in the event of revocation of permission by the subject of personal data);
• to change or update the data to more authentic;
• to provide information about the purposes, conditions of processing of the personal data provided, and also to send back the personal data provided by you in a structured form.

REG.RU — use and reception of information related to social networking environments

REG.RU uses modules of social networks and service to use and retrieve information. These plug-ins and other platforms can be recognized by the logo or text corresponding to the platform. If you use these plug-ins, they can establish a direct connection of used browser to the corresponding social network sites. Since such data transfer is done directly between your browser and the corresponding network, REG.RU can not receive any information about the data being transferred.

When clicking to activate (for example, when you click a button to confirm) or when entering comments in the chat window, transfer of various data is possible, the list of which depends on the operator of the social network. For example, the following data can be transmitted:

• IP-address;
• information about the browser and operating system;
• screen resolution;
• installed browser plug-ins, for example, Adobe Flash Player;
• the starting address of the visitor, if he passed by reference (address of reference source);
• URL of the current website.

REG.RU does not control the use of any data in any social networks

Please familiarize yourself with the list of social networks and sites through which you can leave messages on the REG.RU websites (www.reg.ru, www.reg.com), as well as with links to their privacy policies concerning personal information. You can get acquainted with your rights and responsibilities in each social computerized platform.

Upon receiving information (intellectual analysis and data profiling), REG.RU will regularly analyze data in social computerized environments for marketing purposes on the basis of existing contacts. Herewith REG.RU can receive personal data or information from publicly available sources, permission to access to which was confirmed by you earlier or for which a separate permission to collect, store and process data is not required.

REG.RU company takes seriously the rights for confidentiality and personal rights and will inform you about the source and category of data collected if it is necessary to obtain your consent for the collection, storage and processing of such information. At any time, you can revoke the consent granted to REG.RU without giving a reason.

Is the change of this privacy policy possible?

From time to time, we may change or update this privacy policy. In this case, in references to the Policy (usually placed in the footer of the website) on our website and in information services it will be indicated that this Policy has been amended or updated. For new users, the specified changes or updates come into effect from the moment of the publication of such notice. For existing users, changes or updates take effect in 30 days after publication of the notice. We recommend to look through REG.RU websites from time to time to get acquainted with the up-to-date data on the principles of compliance with confidentiality maintained by the Company.

List of third parties to whom personal data can be transferred