What we do
PreVis
Indie
Immersive
ProjectsAboutTeamCareers
Summon us
Policy
Regarding
The personal data

GENERAL PROVISIONS

Policy regarding the processing of personal data

The Policy defines the rules of the Arcanum Works (hereinafter referred to as the Operator) in relation to the processing of personal data.

Operator shall keep sensitive information secure and has created this privacy and security stat share and explain the current information management practices.

Operator

Arcanum Works

“We” in this Policy shall mean Arcanum Works.

Address: _______________

Identification Number № ___________.

The requests of personal data subjects regarding the processing of their personal data may be sent to the:

- Operator's address;

- to the Operator's e-mail address: [email protected].
Website

The official Internet website of the Operator is https://arcanum.works/.

The Policy is published on the Website and available to everybody.

Automated processing of personal data

processing of personal data by computer.
Blocking of personal data

temporary termination of personal data processing (except situations when processing is necessary to clarify personal data).

Personal Data Information System

the assemblage of personal data contained in databases and information technologies and technical means that ensure their processing.

Depersonalization of personal data

Actions, resulted in impossibility to determine the ownership of personal data to a specific personal data subject without the use of additional information.

Processing of personal data

any action (operation) or set of actions (operations) with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of personal data, performed with or without the use of automation tools.

Personal data

any information relating directly or indirectly to a specific or identifiable person (subject of personal data).

Personal data authorized by the subject of personal data for distribution

personal data, which the subject of personal data allowed to disturb to an unlimited number of persons.

Personal data provision

actions aimed at disclosing personal data to a certain person or a certain circle of persons.

Dissemination of personal data

actions aimed at disclosure of personal data to an indefinite circle of persons (transfer of personal data) or giving the access to the personal data to an unlimited circle of persons, including the publication of personal data in the media, placement in information and telecommunications networks or providing access to personal data in any other way.

Cross-border transfer of personal data

transfer of personal data to the territory of a foreign state to the authority of a foreign state, a foreign individual or a foreign legal entity.

Destruction of personal data

Actions, resulted in impossibility to restore the content of personal data in the personal data information system and (or) destroying the material carriers of personal data.

PRINCIPLES AND TERMS OF PERSONAL DATA PROCESSING

  1. Principles of Personal Data processing:
    1. We shall process your personal data in a lawful and transparent manner, ensuring fairness towards the individuals whose personal data is being processed (“lawfulness, fairness and transparency”);
    2. We shall indicate specific purposes for processing the data to you when collecting your personal data. We won’t simply collect your personal data for undefined purposes (“purpose limitation”);
    3. We shall collect and process only the personal data that is necessary to fulfil that purpose (“data minimization”);
    4. We shall ensure the personal data is accurate and up-to-date, having regard to the purposes for which it is processed, and correct it if not (“accuracy”);
    5. We shall not further use the personal data for other purposes that aren’t compatible with the original purpose;
    6. We shall ensure that personal data is stored for no longer than necessary for the purposes for which it was collected (“storage limitation”);
    7. We shall install appropriate technical and organizational safeguards that ensure the security of the personal data, including protection against unauthorized or unlawful processing and against accidental loss, destruction or damage, using appropriate technology (“integrity and confidentiality”).
  2. Terms of Personal Data processing
    We shall process personal data in at least one of the following circumstances:
    1. the personal data subject has provided the consent to the processing of his personal data;
    2. the processing of personal data is necessary to achieve the goals stipulated by an international agreement or applicable law, for the implementation and fulfillment of the functions, powers and duties assigned to the Operator by the applicable law;
    3. the processing of personal data is necessary for justice, the execution of a judicial act, an act of another body or official subject in accordance with the applicable law;
    4. the processing of personal data is necessary for the execution of a contract, in which the subject of personal data is either the beneficiary or the guarantor, as well as for the conclusion of a contract on the initiative of the subject of personal data or a contract under which the subject of personal data will be the beneficiary or guarantor;
    5. the processing of personal data is necessary to exercise the rights and legitimate interests of the Operator or third parties or to achieve socially significant goals, provided that the rights and freedoms of the personal data subject are not violated;
    6. processing of publicly available personal data, that is, personal data, to which the subject of personal data provide access to an unlimited number of persons;
    7. processing of personal data subject to publication or mandatory disclosure in accordance with the applicable law.
  3. Confidentiality of personal data
    We and other persons who have gained access to personal data shall not disclose or distribute your personal data to third parties without your consent, unless otherwise provided by applicable law.
  4. Special categories of personal data
    We shall not process the special categories of personal data concerning race, nationality, political views, religious or philosophical beliefs, health status, intimate life.
  5. Biometric personal data
    We shall not process the biometric personal data – any information that characterizes the physiological and biological characteristics of a person, on the basis of which it is possible to establish his identity.
  6. Assignment of personal data processing to another person
    Unless otherwise provided by applicable law, we may entrust the processing of personal data to another person (Processor) on the basis of a contract concluded with this person, with the consent of the subject of personal data. The person processing personal data on behalf of us shall be obliged to comply with the principles and rules of personal data processing provided for by the applicable law and the Policy.
  7. Cross-border transfer of personal data
    1. We shall make sure that the foreign state to whose territory the transfer of personal data is supposed to be carried out ensures adequate protection of the rights of personal data subjects, or takes measures to ensure proper protection of personal data during their cross-border transfer by his own, before the start of such transfer.

    2. Cross-border transfer of personal data on the territory of foreign states that do not provide adequate protection of the rights of personal data subjects may be carried out in the following cases:

      - you have given us your written consent to the cross-border transfer of personal data;

      - execution of the contract, if you are a party of such contract.

LEGAL STATUS

  1. You as the subject of personal data shall have the right to:
    1. receive information concerning the processing of your personal data in the manner, form and terms established by the applicable law;
    2. demand for clarification of personal data, their blocking or destruction;
    3. take legal measures to protect your rights;
    4. withdraw your consent to the processing of personal data;
    5. exercise other rights provided for by the applicable law.
  2. We shall have the right to:
    1. process the personal data in accordance with the stated purpose. The purpose of personal data processing shall be established in the consent of the personal data subject to the processing of his personal data;
    2. require the subject of personal data to provide reliable personal data necessary for the performance of the contract, identification of the subject of personal data, as well as in other cases provided for by the applicable law;
    3. restrict the access of the personal data subject to his personal data if the access of the personal data subject to his personal data violates the rights and legitimate interests of third parties, as well as in other cases provided for by the applicable law;
    4. process publicly available personal data;
    5. process personal data subject to publication or mandatory disclosure in accordance with the applicable law;
    6. entrust the processing of personal data to another person / entity with the consent of the personal data subject on the need-to-know basis;
    7. exercise other rights provided for by the applicable law.

PURPOSES OF PERSONAL DATA PROCESSING AND LIST OF PROCESSES PERSONAL DATA

  1. We shall process personal data of subjects (including, but not limited to, users of our website, our potential and actual clients) in order to conduct its activities.
Purpose of Processing List of Personal Data

Providing an answer for the request at the site https://arcanum.works/

full name; company; contact phone numbers; email addresses

Technical support of website https://arcanum.works/ and its users, improvement of website navigation and analysis of its use, informing the subject of personal data about the activities by various means of communication

data that is automatically transmitted when visiting the pages of the Website (including cookies, IP address, access time information, location information, type and version of the operating system, browser type and version, device type and screen resolution, referrer (the source (website and / or link), from which the User comes to the website, the language of the operating system and browser, data about the pages opened by the user and other similar data). The User shall have the right to determine by his own the list of personal data for the processing by changing the settings of cookies.

MEASURES FOR THE PROTECTION OF PERSONAL DATA

  1. The security of personal data processed by the Operator shall be ensured by the implementation of legal, organizational and technical measures necessary to meet the requirements of applicable law, concerning the personal data protection.
  2. We shall apply the following organizational and technical measures are to prevent unauthorized access to personal data:
    1. appointment of the person responsible for the organization of personal data processing in the cases provided for by applicable law;
    2. appointment of the person responsible for ensuring the security of personal data and the exclusion of unauthorized access to personal data in the cases provided for by applicable law;
    3. appointment of a person responsible for ensuring the security of personal data in information systems;
    4. limitation of the number of persons allowed to process personal data on need-to-know basis;
    5. providing access to the requirements of regulatory documents of the Operator, concerning the processing and protection of personal data;
    6. arranging of accounting, storage and handling of media containing information with personal data;
    7. identification of threats to the security of personal data during their processing, the formation of threat models based on them;
    8. development of a personal data protection system based on the threat model;
    9. checking the readiness and effectiveness of the information security tools;
    10. differentiation of users' access to information resources, hardware and software for information processing;
    11. registration and accounting of actions of users in personal data information systems;
    12. use of anti-virus tools and personal data protection system recovery tools;
    13. the use of means of inter-network shielding, intrusion detection, security analysis and cryptographic protection of information (if necessary);
    14. arranging the access control to the Operator's territory, protection of premises with technical means of personal data processing.

TERMINATION OF PERSONAL DATA PROCESSING

Time limits for Personal Data processing during the period for which you have provided us a consent to the processing of personal data
Revocation of consent to the processing of personal data You may revoke your consent by sending us a corresponding written application to [email protected]. The application must contain your full name, phone number and e-mail address, as well as the date of the application and your handwritten signature.
Updating of personal data Your request to exclude or correct (improve) incorrect or incomplete personal data may be sent in the form of a corresponding written application to [email protected]. The application must contain your full name, phone number and e-mail address, as well as the date of the application and your handwritten signature

FINAL PROVISIONS

  1. Other rights and obligations of the Operator in connection with the processing of personal data are determined by applicable law.
  2. The Policy shall be valid from the moment of its approval by the Director of Arcanum Works.
  3. The person responsible for monitoring the implementation of the Policy shall be the Director of Arcanum Works.
  4. The possessing of all personal date by the Operator is governed by the laws of ________.