Updated: 10.05.2025
PERSONAL DATA PRIVACY POLICY
This Personal Data Privacy Policy (hereinafter referred to as the Privacy Policy) applies to all personal data that the Personal Data Processing Operator (hereinafter referred to as the PDPO) may receive about the Personal Data subject while using the Website with the domain name https://www.bmjour.ru, including subdomains. The PDPO asks you to carefully read the Privacy Policy and, in case of disagreement with any provisions, stop using the Website and immediately leave it.
1. BASIC CONCEPTS
1. Basic concepts used in the Privacy Policy:
1.1. Automated processing of personal data - processing of personal data using computer technology.
1.2. Blocking of personal data - temporary cessation of processing of personal data (except for cases where processing is necessary to clarify personal data).
1.3. Personal data information system - a set of personal data contained in databases and the information technologies and technical means that ensure their processing.
1.4. Confidentiality of personal data - a mandatory requirement for the OODP or another person who has gained access to Personal data to prevent their dissemination without the consent of the subject of Personal data or the presence of another legal basis.
1.5. Depersonalization of personal data - actions that make it impossible to determine the ownership of personal data by a specific subject of personal data without the use of additional information.
1.6. Processing of personal data - any action (operation) or set of actions (operations) performed by the OODP with the use of automation tools or without the use of such tools with Personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of Personal data.
1.7. Personal data processing operator (PDPO) is the Federal State Budgetary Educational Institution of Higher Education Irkutsk State Medical University of the Ministry of Health of the Russian Federation (OGRN 1023801539673, INN: 3811022096), which independently or jointly with other persons organizes and (or) carries out the processing of Personal data, and also determines the purposes of processing Personal data, the composition of Personal data subject to processing, actions (operations) performed with Personal data.
1.8. Personal data – any information related to a directly or indirectly defined or determinable individual (subject of Personal data).
1.9. Personal data permitted by the subject of personal data for distribution – personal data, access to which by an unlimited number of persons is provided by the User (subject of personal data) by giving consent to the processing of personal data permitted by the subject of personal data for distribution in the manner prescribed by the current Russian legislation.
1.10. Privacy Policy – this document with all amendments and additions, located on the Internet at https://www.bmjour.ru/jour/jour/about/privacyPolicy
1.11. User – subject of Personal data, a legally capable individual using the Site in their own interests. In the text of this Privacy Policy, the User is also indicated as the subject of Personal data.
1.12. Provision of personal data – actions aimed at disclosing personal data to a specific person or a specific circle of persons.
1.13. Website – a collection of graphic and information materials, as well as computer programs and databases that ensure their availability on the Internet at the network address bmjour.ru, including subdomains.
1.14. Dissemination of personal data – actions aimed at disclosing personal data to an indefinite number of persons.
1.15. Cross-border transfer of personal data – transfer of personal data to the territory of a foreign state to a government body of a foreign state, a foreign individual or a foreign legal entity.
1.16. Destruction of personal data – actions that make it impossible to restore the content of personal data in the personal data information system and (or) as a result of which the tangible media of personal data are destroyed.
1.17. Cookies are a small piece of data sent by a web server and stored on the User's device used to access the Site, which the web client or web browser sends to the web server in an HTTPS request each time an attempt is made to open a page of the corresponding site.
1.18. Subject of Personal Data is a legally capable individual using the Site in their own interests.
1.19. IP address is a unique network address of a node in a computer network built using the IP protocol.
2. GENERAL PROVISIONS
2.1. The Privacy Policy defines the purposes, content and procedure for processing Personal Data, measures aimed at protecting Personal Data, as well as procedures aimed at identifying and preventing violations of the legislation of the Russian Federation in the field of Personal Data.
This Privacy Policy sets forth the obligations of the OOPD to process Personal data, protect it, including ensuring the protection of the privacy of Personal data provided to the OOPD.
2.2. This Privacy Policy defines the policy of the OOPD as an operator processing Personal data with respect to the processing and protection of Personal data. The processing of Personal data by the OOPD is carried out in compliance with the principles and conditions stipulated by this Privacy Policy and the legislation of the Russian Federation in the field of Personal data. The Operator sets as its most important goal and condition for carrying out its activities the observance of the rights and freedoms of man and citizen when processing his Personal data, including the protection of the rights to privacy, personal and family secrets.
2.3. This Privacy Policy applies only to information obtained in the process of using the Site and within the framework of fulfilling the contractual obligations of the OOPD.
2.4. The User decides to provide his Personal data and gives consent to their processing freely, of his own free will and in his own interests. Consent to the processing of Personal data must be specific, objective, informed, conscious and unambiguous. The OOPD does not check the accuracy of the Personal data provided by the User.
2.5. Using the Site means consent to this Privacy Policy and the terms of processing Personal data.
2.6. By accepting this Privacy Policy, the User thereby gives his consent to the OOPD to process his Personal data specified in Section 3 of this Privacy Policy, including collection, recording, accumulation, storage, clarification (updating, modification), retrieval, use, transfer to third parties (distribution, provision, access), depersonalization, blocking, deletion, destruction of Personal data for the purposes specified in Section 3.
2.7. The subject of personal data, refusing to give consent to the processing of his Personal data by the OOPD for the purposes specified in Section 3, understands that he will not be able to use all the features of the Site and its services, and the use of the Site will be available in a limited mode.
2.8. A personal data subject who has provided Personal Data that is not in full from the requirements of the relevant section of the Site or that does not correspond to reality will not be able to use all the capabilities of the Site and its services, including receiving individual services provided through the Site, and the use of the Site will be available in a limited mode
2.9. Rights of the OOPD:
- collect Personal Data through forms on the Site
- provide access to the Site
- collect, record, accumulate, store, clarify (update, change), extract, use, transfer (disseminate, provide, access), depersonalize, block, delete, destroy Personal Data
- transfer Personal Data to third parties on the basis of agreements concluded to achieve the goals specified in Section 3 of the Privacy Policy
- assign the processing of Personal data to another person with the consent of the User, unless otherwise provided by federal law, on the basis of an agreement concluded with this person (hereinafter referred to as the assignment of the OOPD). The person processing Personal data on behalf of the OOPD is obliged to comply with the principles and rules for processing Personal data stipulated by the current Russian legislation, maintain the confidentiality of Personal data, and take the necessary measures aimed at ensuring the fulfillment of obligations stipulated by the current Russian legislation. The order of the OOPD must define the list of Personal data, the list of actions (operations) with Personal data that will be performed by the person processing the Personal data, the purposes of their processing, the obligation of such person to maintain the confidentiality of Personal data, the requirements of the current Russian legislation must be established
- in the event of the User's withdrawal of consent to the processing of Personal data, the OOPD has the right to continue processing Personal data without the User's consent if there are grounds specified in the current legislation
- refuse the User in fulfilling a repeated request for information regarding his Personal data that is processed by the OOPD in accordance with the terms of the federal law upon provision of a reasoned response
- carry out the Distribution of Personal data if there is separate consent to the distribution of personal data.
2.10. Duties of the OOPD:
- Use the received Personal data exclusively for the purposes specified in Section 3 of this Privacy Policy.
- Provide the User with information regarding his Personal data upon receipt of a corresponding request or appeal.
- In case of loss or disclosure of confidential information, the OOPD shall not be liable if this confidential information:
- became publicly known prior to its loss or disclosure;
- was received from a third party prior to its receipt by the OOPD;
- was disclosed with the consent of the User.
- Notify the Subject of Personal Data or his/her representative of information on the processing of Personal Data of such Subject of Personal Data carried out by the OOPD upon his/her request.
- Do not disclose to third parties or distribute Personal Data without the consent of the User, unless otherwise provided by law.
- Upon receipt of a request or appeal from the User, provide him/her with the information and data specified in the request/appeal in an accessible form and without specifying Personal Data related to other subjects of personal data.
data, except in cases where there are legal grounds for disclosing such Personal data.
- Explain to the User the procedure for making a decision based solely on the Automated Processing of his/her Personal Data and the possible legal consequences of such a decision, provide the User with the opportunity to file an objection against such a decision, and also explain the procedure for protecting the User's rights and legitimate interests. The OOPD is obliged to consider the objection specified in this paragraph within thirty days from the date of its receipt and notify the subject of personal data of the results of the consideration of such an objection.
- Explain to the User the legal consequences of refusing to provide his/her Personal Data and (or) give consent to their processing, if, in accordance with federal law, the provision of Personal Data and (or) the receipt of consent by the OOPD to process Personal Data are mandatory.
- When collecting Personal data, including via the Internet, the OOPD is obliged to ensure the recording, systematization, accumulation, storage, clarification (updating, modification), extraction of Personal data of citizens of the Russian Federation using databases located on the territory of the Russian Federation, except for cases specified in the current Russian legislation.
- The OOPD is obliged to ensure reliable protection of Personal data, protection of their confidentiality.
2.11. User Rights:
- Has the right to demand that the OOPD clarify his Personal data, block or destroy them if the Personal data is incomplete, outdated, inaccurate, illegally obtained or is not necessary for the stated purpose of processing, by sending an application to the e-mail address editor@bmjour.ru (Appendices No. 1, 2, 3 to this Privacy Policy).
- Has the right to request information about the measures taken by the OOPD to protect Personal data.
- Has the right to send a request to the OOPD regarding their Personal Data processed by the OOPD by sending a request (Appendix No. 4 to this Privacy Policy) to the OOPD by e-mail razumova@neicon.ru.
- Has the right to send a repeated request to the OOPD regarding their Personal Data processed by the OOPD no earlier than 30 (thirty) days after the initial request or sending of the initial request, unless a shorter period is established by federal law.
- Has the right to contact the OOPD again or send it a repeated request in order to obtain information regarding their Personal Data processed by the OOPD, as well as in order to familiarize themselves with the Personal Data being processed before the expiration of the 30 (thirty) day period if such information and (or) the Personal Data being processed were not provided to them for familiarization in full following the consideration of the initial request. The repeated request must contain a justification for sending the repeated request.
- Has the right to send the OOPD a revocation of the consent given to the processing of Personal Data, consent to the Distribution of Personal Data.
- Has the right to protect their rights and legitimate interests, including compensation for damages and (or) compensation for moral damage in court.
- Has the right to appeal the actions or inaction of the OOPD to the authorized body for the protection of the rights of personal data subjects or in court.
2.12. User Obligations:
- Comply with the requirements specified in paragraph 1.11 of this Privacy Policy;
- provide their accurate Personal Data.
2.13. Databases of information containing Personal Data of citizens of the Russian Federation are located on the territory of the Russian Federation.
2.14. The OOPD processes Personal Data on a legal and fair basis to perform the functions, powers and duties imposed by law, to exercise the rights and legitimate interests of the OOPD and other persons. Transfer (distribution, provision) and use of Personal data is carried out only in cases and in the manner stipulated by federal laws, with the consent of the Personal data subject, if this is determined by the current legislation.
2.15. The OOPD receives Personal data directly from the Personal data subject, except for cases when Personal data are transferred within the framework of contractual relations.
2.16. The OOPD processes the User's Personal data with his consent, provided either in writing (if necessary in accordance with the current legislation of the Russian Federation), or when performing implicit actions.
2.17. The principles of processing Personal data established by this Privacy Policy:
2.17.1. The processing of Personal data must be carried out on a legal and fair basis.
2.17.2. The processing of Personal Data shall be limited to achieving specific, predetermined and legitimate purposes. Processing of Personal Data incompatible with the purposes of collecting Personal Data shall not be permitted. Processing of Personal Data that is excessive in relation to the stated purposes of their processing shall not be permitted.
2.17.3. Combining databases containing Personal Data that are processed for purposes that are incompatible with each other shall not be permitted.
2.17.4. Only Personal Data that meet the purposes of their processing shall be processed.
2.17.5. The content and volume of the Personal Data being processed shall correspond to the stated purposes of their processing. The Personal Data being processed shall not be excessive in relation to the stated purposes of their processing.
2.17.6. When processing Personal Data, the accuracy of the Personal Data, their sufficiency and, where necessary, relevance in relation to the purposes of processing the Personal Data shall be ensured. The OOPD shall take the necessary measures or ensure their adoption to delete or clarify incomplete or inaccurate data.
2.17.7. Personal data must be stored in a form that allows identifying the subject of Personal data, for no longer than required for the purposes of processing the Personal data, unless the storage period for Personal data is established by federal law, an agreement to which the subject of Personal data is a party, beneficiary or guarantor. The processed Personal data are subject to destruction or depersonalization upon achieving the processing purposes or in the event of loss of need to achieve these purposes, unless otherwise provided by federal law.
2.17.8. The OOPD is obliged to ensure that the foreign state to whose territory the Cross-border transfer of personal data is carried out ensures adequate protection of the rights of subjects of Personal data, before the start of the cross-border transfer of Personal data.
2.17.9. The OOPD does not control and is not responsible for the processing of information by third-party websites that can be accessed via links available on the Site.
3. PURPOSES OF COLLECTING AND PROCESSING PERSONAL DATA. VOLUME AND CATEGORIES OF PROCESSED PERSONAL DATA, CATEGORIES OF PERSONAL DATA SUBJECTS
3.1. OOPD collects and processes Personal data for the following purposes:
3.1.1. Providing the User with the opportunity to create a personal account on the Site. To do this, the User fills out the registration form on the Site and provides the following Personal data:
- email address;
- last name, first name, patronymic (if any).
3.1.2. Sending newsletters to those Users who filled out the subscription form on the Site and expressed their consent to receive information about the news of the Site, about OOPD and its partners, including advertising. In the subscription form on the Site, the User indicates their email address.
The mailing is carried out using the Site software.
To receive the newsletter, the User provides the following personal data:
- email address;
- name.
3.1.3. Providing the User with feedback, including: sending notifications, requests and information regarding the use of the Site, execution of agreements and contracts, as well as processing requests and applications from the User, responding to the User's comments on the Site, responding to the User's messages, calls, letters, considering the User's claims - the OOPD collects the following Personal Data:
- email address - upon receipt of a letter from the User to the OOPD address;
- telephone - upon receipt of a message or call from the User by the OOPD;
- last name, first name, patronymic (if any);
- passport details (in cases stipulated by law);
- address for sending a response to a letter, request;
- other Personal Data that the User leaves or communicates to the OOPD in the process of communication at his own discretion.
3.1.4. In order to provide the User with the opportunity to publish works (articles, materials, content) on the Site, OOPD collects the following personal data:
- last name, first name, patronymic (if any),
- email address,
- telephone,
- gender,
- place of work,
3.1.5. For the purpose of conducting marketing research, for targeting using the Site software, OOPD collects statistical anonymized data that does not identify the User as a subject of personal data.
3.1.6. In order to achieve the goals specified in paragraphs 3.1.1-3.1.5 of the Privacy Policy, OOPD enters into an agreement with Neikon LLC providing Site hosting services, according to which OOPD, among other things, instructs Neikon LLC to collect and process the Personal data specified in paragraphs 3.1.1-3.1.5. This Personal data is processed in accordance with the Policy on the processing and protection of personal data (Privacy Policy) of Neikon LLC, for the period specified in Sections 7 and 8 of this Privacy Policy.
The address of storage of Personal data in the Neikon LLC database: ______.
3.2. The OOPD processes the Personal data of the following categories of subjects of Personal data: Users of the Site, Authors and reviewers of scientific articles of the media of the online publication “Baikal Medical Journal” (Baikal Medical Journal) EL No. FS77-83228, date of registration 12.05.2022.
4. PROCEDURE AND CONDITIONS FOR PROCESSING PERSONAL DATA
4.1. The OOPD collects and processes the following types of information:
- information that the User has knowingly provided to the OOPD during the use of the Site
- technical information automatically collected by the Site software during the User's visit.
4.2. Technical information automatically collected by the Site software during the User's visit includes:
- IP address;
- information from cookies;
- browser information;
- information about the device type (mobile or PC);
- access time;
- other technical and statistical information collected by the Site software.
Technical information also includes analytical data without identification of the subject of Personal Data, obtained as a result of the Site's use of web analytics services. This information is used exclusively for the purposes of internal and external marketing - to analyze Site visit trends and improve the Site service.
4.3. The Site implements a technology for identifying Users based on the use of cookies. Cookies may be saved on the device used by the User to access the Site, which will later be used to collect statistical data, in particular on Site traffic, to automatically fill in fields in forms on the Site. OOPD may use and disclose information about the use of the Site, for example, to determine the extent to which the Site is used, to improve its content, to explain the usefulness of the Site, and to expand the functionality of the Site. By accepting this Privacy Policy, the User gives OOPD their consent that the technical data specified in clause 4.2 collected from the Site are transmitted over the Internet. Anonymized User data collected using Internet statistics services is used to collect information about the actions of Users on the site, to improve the quality of the Site and its content.
4.4. OOPD does not save Personal data in cookies. The OOPD uses information recorded in cookies that does not identify individual Users to analyze trends, administer the Site, determine Users' movements on the Site, and collect demographic information about the base contingent of Users as a whole.
4.5. If the User does not want the OOPD to collect technical information about him/her using cookies, the User must stop using the Site or prohibit the saving of cookies on his/her device used to access the Site by configuring his/her browser accordingly. It should be borne in mind that the Site services that use this technology may be unavailable.
4.6. The User confirms his/her consent to the collection and processing of Personal Data when filling out the newsletter subscription form on the Site, when filling out the registration form on the Site, when filling out the comment form under an article on the Site by checking the box located after the relevant form and clicking the button under this form on the Site. The User confirms his/her consent to the Distribution of Personal Data by providing the OOPD with written consent to the distribution of personal data.
4.7. Consent to the processing of Personal Data provided when sending a claim or application to the OOPD is given by filling in the form provided by the OOPD. The User is obliged to send the completed and signed consent form together with the text of the claim or application.
4.8. The OOPD carries out the following actions (operations) or a set of actions (operations) with Personal Data using automation tools or without using such tools: collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of Personal Data.
4.9. The OOPD processes Personal data in the following ways:
- using automated means of processing Personal data (the Site software (hosting OOO "Neikon");
- without using automated means of processing Personal data (Personal data is processed manually by the OOPD). The storage address of Personal data is the actual location of the OOPD.
4.10. The transfer of the User's Personal data to third parties (if necessary) is carried out with the consent of the User for the purposes specified in Section 3.
4.11. The OOPD guarantees that it never provides Personal data to third parties, except in cases where:
- this is directly required by law (for example, at the written request of a court, law enforcement agencies);
- the User has consented to the transfer of Personal data;
- the transfer is necessary for the conclusion of contracts and / or within the framework of contracts between the OOPD and the User;
- the transfer occurs as part of the sale or other transfer of the Site, business;
- the transfer occurs as part of the transfer of the Personal data base from one service to another in accordance with the contractual relations of the OOPD;
- this is required to provide support for servicing Users or to assist in the protection and security of the OOPD systems.
4.12. The User's personal data may be transferred to authorized state authorities of the Russian Federation, inquiry and investigation bodies, and other authorized bodies only on the basis of and in the manner established by the current legislation of the Russian Federation.
5. LEGAL BASIS FOR PROCESSING PERSONAL DATA
5.1. The OOPD processes Personal Data on the basis of the following legal grounds:
- Constitution of the Russian Federation;
- Civil Code of the Russian Federation;
- Law of 07.02.1992 No. 2300-1 "On Protection of Consumer Rights";
- Federal Law of 02.05.2006 No. 59-FZ "On the Procedure for Considering Appeals of Citizens of the Russian Federation";
- Federal Law of 27.07.2006 No. 149-FZ "On Information, Information Technologies and the Protection of Information";
- Federal Law of 06.04.2011 No. 63-FZ "On Electronic Signature";
- Federal Law of 27.07.2006 No. 152-FZ "On Personal Data";
- RF Government Resolution No. 1119 of 01.11.2012 "On Approval of Requirements for the Protection of Personal Data When Processing Them in Personal Data Information Systems";
- RF Government Resolution No. 687 of 15.09.2008 "On Approval of the Regulation on the Peculiarities of Personal Data Processing Carried Out Without the Use of Automation Tools";
- Agreements concluded between the OOPD and third parties for the purposes specified in Section 3;
- Internal local documents of the OOPD;
- Consent to the processing of Personal Data (in cases not expressly provided for by the legislation of the Russian Federation, but corresponding to the powers of the OOPD), consent to the Distribution of Personal Data.
6. MEASURES TO ENSURING THE SECURITY OF PERSONAL DATA WHEN PROCESSING THEM
6.1. The OOPD protects the User's Personal Data using generally accepted security methods to ensure protection of information from loss, unauthorized or accidental access, distortion and unauthorized distribution, destruction, modification, blocking, copying, as well as any other illegal actions with the Personal Data of third parties. Security is implemented by software network protection, access verification procedures, the use of cryptographic means of information protection, compliance with the Privacy Policy, as well as other internal documents regulating the rules for processing the Personal Data of the OOPD.
6.2. If the Personal Data has been lost or disclosed, the OOPD is obliged to inform the User about it.
6.3. The OOPD, together with the User, takes all necessary legal, organizational and technical measures to prevent losses or other negative consequences caused by the loss or disclosure of the User's Personal Data.
6.4. Personal data is kept confidential by the OOPD except in cases where the User voluntarily posts information for public access in messages or comments on the Site.
6.5. Ensuring the security of Personal Data processed in the Personal Data information systems of the OOPD is achieved by eliminating unauthorized, including accidental, access to Personal Data, as well as by taking the following measures to ensure security:
6.5.1. identifying threats to the security of Personal Data when processing them in the Personal Data information systems of the OOPD;
6.5.2. applying organizational and technical measures to ensure the security of Personal Data when processing them in the Personal Data information systems of the OOPD, necessary to meet the requirements for the protection of Personal Data, the implementation of which ensures the levels of protection of Personal Data established by the Government of the Russian Federation;
6.5.3. applying procedures for assessing the conformity of information security tools that have been completed in accordance with the established procedure;
6.5.4. assessing the effectiveness of measures taken to ensure the security of Personal Data before putting the Personal Data information system into operation;
6.5.5. accounting for machine-readable media of Personal Data;
6.5.6. detecting facts of unauthorized access to Personal Data and taking measures;
6.5.7. restoration of Personal data modified or deleted, destroyed due to unauthorized access to them;
6.5.8. establishment of rules for access to Personal data processed in the Personal data information systems of the OOPD, as well as ensuring the registration and accounting of all actions performed with Personal data in the Personal data information systems of the OOPD;
6.5.9. control over the measures taken to ensure the security of Personal data and the levels of protection of the Personal data information systems.
6.6. Measures aimed at ensuring the fulfillment by the OOPD of the duties stipulated by the current legislation in the field of Personal data. The OOPD is obliged to take measures necessary and sufficient to ensure the fulfillment of the duties stipulated by the current Russian legislation. The OOPD independently determines the composition and list of measures necessary and sufficient to ensure the fulfillment of these duties. Such measures include, in particular:
1) appointment by the head of the OOPD of a person responsible for organizing the processing of Personal data. 2) publication of documents by the OOPD defining the OOPD policy regarding the processing of Personal data, the Privacy Policy, local acts on the processing of Personal data defining for each purpose of processing Personal data the categories and list of Personal data being processed, the categories of subjects whose Personal data are being processed, the methods and terms of their processing and storage, the procedure for the destruction of Personal data upon achieving the purposes of their processing or upon the occurrence of other legal grounds, as well as local acts establishing procedures aimed at preventing and identifying violations of the legislation of the Russian Federation, eliminating the consequences of such violations. 3) application of legal, organizational and technical measures to ensure the security of Personal data.
4) implementation of internal control and (or) audit of compliance of Personal Data processing with the legislation and regulatory legal acts adopted in accordance with it, requirements for the protection of Personal Data, the OOPD policy regarding the processing of personal data, the Privacy Policy, local acts of the OOPD;
5) assessment of the harm that may be caused to subjects of Personal Data in the event of a violation of the law, the ratio of the said harm and the measures taken by the OOPD aimed at ensuring the fulfillment of obligations stipulated by law;
6) familiarization of the OOPD employees directly involved in the processing of Personal Data with the provisions of the legislation of the Russian Federation on personal data, including requirements for the protection of Personal Data, documents defining the OOPD policy regarding the processing of personal data, the Privacy Policy, local acts on the processing of Personal Data, and (or) training of the said employees.
7) publication of the Privacy Policy on the Website to ensure unlimited access to it.
7. PERSONAL DATA PROCESSING PERIODS
7.1. The processing of Personal Data provided by the User on the Site is carried out from the moment of sending the completed form on the Site until the moment of termination of the Site, until the moment of revocation of the consent sent to the OOPD, until the moment of deletion of the personal account on the Site.
7.2. Unless otherwise provided by other clauses of this Privacy Policy or current Russian legislation, the condition for termination of the processing of Personal Data is the achievement of the purposes of processing Personal Data, expiration of the consent or revocation of consent to the processing of Personal Data, detection of illegal processing of Personal Data, receipt by the OOPD of a request to destroy Personal Data.
7.3. The transfer (distribution, provision, access) of Personal Data permitted for distribution must be terminated at any time at the request of the User.
7.4. The User has the right to contact the OOPD with a request to stop the transfer (distribution, provision, access) of their Personal Data, previously permitted for distribution, in the event of non-compliance with the provisions of the current legislation or to apply to the court with such a request. The OOPD is obliged to stop the transfer (distribution, provision, access) of Personal Data within 3 (three) business days from the date of receipt of the request or within the period specified in the court decision that has entered into legal force, and if such period is not specified in the court decision, then within 3 (three) business days from the date the court decision enters into legal force.
7.5. The User independently determines the subscription period for the mailing list and unsubscribes from the mailing list by clicking on the unsubscribe link, which is in each received letter, or by sending a request to the OOPD in free form to the email address editor@bmjour.ru with the subject line "Unsubscribe".
8. UPDATING, CORRECTION, DELETION AND DESTRUCTION OF PERSONAL DATA, RESPONSES TO USER REQUESTS FOR ACCESS TO PERSONAL DATA
8.1. In the event of confirmation of the fact of inaccuracy of Personal data or illegality of their processing, Personal data are subject to their updating by the OOPD, and the processing must be accordingly terminated.
8.2. The User's personal data provided by them on the Site, which are stored by the OOPD and processed by them, can be deleted/anonymized by contacting the OOPD. To do this, you must send a letter (Appendix No. 3 to this Privacy Policy) to the OOPD at razumova@neicon.ru. In this case, the User will not be able to use some of the functionality of the Site. The request will be considered within 10 (ten) business days.
8.3. Upon achieving the goals of processing Personal Data, the OOPD shall stop processing Personal Data (or ensure its termination, if the processing of Personal Data is carried out by another person acting on behalf of the OOPD) and destroy the Personal Data (or ensure their destruction, if the processing of Personal Data is carried out by another person acting on behalf of the OOPD) within a period not exceeding 30 (thirty) days from the date of achieving the goal of processing, unless:
- otherwise provided by the agreement to which the User is a party, beneficiary or guarantor;
- the OOPD shall not have the right to process Personal Data without the consent of the User on the grounds provided for by the Federal Law "On Personal Data" or other federal laws;
- unless otherwise provided by another agreement between the OOPD and the User.
If it is impossible to destroy Personal Data within the period specified in this clause, the OOPD shall block such Personal Data or ensure their blocking (if the Personal Data is processed by another person acting on behalf of the OOPD) and ensure the destruction of Personal Data within a period of no more than 6 (six) months, unless another period is established by federal laws.
8.4. Upon receipt by the OOPD of a revocation of consent to the processing of Personal Data, the OOPD shall stop processing the Personal Data (or ensure its termination, if the Personal Data is processed by another person acting on behalf of the OOPD) and, if the storage of Personal Data is no longer required for the purposes of processing Personal Data, shall destroy the Personal Data (or ensure their destruction, if the Personal Data is processed by another person acting on behalf of the OOPD) within a period not exceeding 30 (thirty) days from the date of receipt of the said revocation, if:
- unless otherwise provided by the agreement to which the User is a party, beneficiary or guarantor;
- the OOPD shall not have the right to process Personal data without the consent of the User on the grounds stipulated by the Federal Law "On Personal Data" or other federal laws;
- unless otherwise provided by another agreement between the OOPD and the User.
If it is impossible to destroy Personal data within the period specified in this clause, the OOPD shall block such Personal data or ensure their blocking (if the processing of Personal data is carried out by another person acting on behalf of the OOPD) and ensure the destruction of Personal data within a period of no more than 6 (six) months, unless another period is established by federal laws.
8.5. In the event that the OOPD receives an appeal with a request to stop processing Personal Data, the OOPD is obliged, within a period not exceeding 10 (ten) business days from the date of receipt of the relevant request, to stop processing them or ensure the termination of such processing (if such processing is carried out by the person processing the personal data), except for cases stipulated by the current Russian legislation. The specified period may be extended, but not more than by 5 (five) business days if the OOPD sends a reasoned notice to the subject of the Personal Data indicating the reasons for extending the period for providing the requested information. If it is impossible to destroy the Personal Data within the period specified in this clause, the OOPD blocks such Personal Data or ensures their blocking (if the Personal Data is processed by another person acting on behalf of the OOPD) and ensures the destruction of the Personal Data within a period not exceeding 6 (six) months, unless another period is established by federal laws.
8.6. The OOPD blocks Personal Data in the event of detection of unlawful processing of Personal Data, detection of inaccurate Personal Data from the moment of the User's request or appeal (Appendix No. 1 to this Privacy Policy) or his legal representative or authorized body for the protection of the rights of Personal Data subjects during the verification period. If it is impossible to destroy Personal Data within the period specified in this clause, the OOPD blocks such Personal Data or ensures their blocking (if the processing of Personal Data is carried out by another person acting on behalf of the OOPD) and ensures the destruction of Personal Data within a period of no more than 6 (six) months, unless another period is established by federal laws.
8.7. The OOPD updates, corrects, and clarifies Personal Data within 7 (seven) business days from the date of the request or appeal of the personal data subject (Appendix No. 2 to this Privacy Policy) or his legal representative or authorized body for the protection of the rights of personal data subjects, in the event of detection of incomplete, inaccurate, or outdated Personal Data.
8.8. The OOPD deletes and destroys the User's Personal Data within 7 (seven) business days from the date of the request or appeal of the personal data subject (Appendix No. 3 to this Privacy Policy) or his legal representative or authorized body for the protection of the rights of personal data subjects, in the event of receiving information confirming that the Personal Data was illegally obtained or is not necessary for the stated purpose of processing. In this case, the OOPD notifies the personal data subject or his representative of the changes made and the measures taken and takes reasonable measures to notify third parties to whom the personal data of this subject were transferred. 8.9. In the event of detection of unlawful processing of Personal Data carried out by the OOPD or a person acting on behalf of the OOPD, the OOPD, within a period not exceeding 3 (three) business days from the date of such detection, is obliged to stop the unlawful processing of Personal Data or ensure the cessation of the unlawful processing of Personal Data by a person acting on behalf of the OOPD. If it is impossible to ensure the legality of the processing of Personal Data, the OOPD is obliged to destroy such Personal Data or ensure their destruction within a period not exceeding 10 (ten) business days from the date of detection of the illegal processing of Personal Data. The OOPD is obliged to notify the subject of Personal Data or his representative, or the authorized body for the protection of the rights of subjects of Personal Data about the elimination of the violations committed or the destruction of personal data.
8.10. The OOPD responds to requests from Users, their representatives, the authorized body for the protection of the rights of subjects of personal data regarding Personal Data within 10 (ten) business days from the date of the request or receipt by the OOPD of the request. The specified period may be extended, but not more than by 5 (five) business days if the OOPD sends a reasoned notice to the subject of Personal Data indicating the reasons for extending the period for providing the requested information.
8.11. In the event of establishing the fact of illegal or accidental transfer (provision, distribution, access) of Personal Data, which resulted in the violation of the User's rights, the OOPD is obliged, from the moment of detection of such an incident, to notify the authorized body for the protection of the rights of personal data subjects:
1) within 24 (twenty-four) hours of the incident that occurred, of the alleged causes that resulted in the violation of the rights of personal data subjects, and the alleged harm caused to the rights of personal data subjects, of the measures taken to eliminate the consequences of the relevant incident, and also provide information about the person authorized by the OOPD to interact with the authorized body for the protection of the rights of personal data subjects on issues related to the identified incident;
2) within 72 (seventy-two) hours of the results of the internal investigation of the identified incident, and also provide information about the persons whose actions caused the identified incident (if any).
9. FINAL PROVISIONS
9.1. The OOPD has the right to make any changes and additions to the Privacy Policy at any time at its own discretion.
9.2. Changes and additions come into force from the moment of posting the Privacy Policy with changes and additions on the Site. By continuing to use the Site after the publication of the new version of the Privacy Policy, the User thereby confirms that he/she accepts it.
Appendix No. 1
User application form for blocking his/her personal data
To the Head ____
Full name
mail@mail.ru
from Full name
passport series number
issued date of issue
Application
I ask you to block my personal data processed by you in accordance with the information: ___________________________________________;
(specify the applicant's personal data to be blocked)
for a period of: _____________________ (specify the blocking period)
due to the fact that _________________________________________________________
(specify the reason for clarifying personal data)
_____________/________________/
signature/decryption
«___» _________20 _ y.
Appendix No. 2
User's application form for clarifying his personal data
To the Manager ____
Full name
mail@mail.ru
from Full name
passport series number
issued date of issue
Application
I request that you clarify my personal data being processed by you in accordance with the information: ___________________________________________;
(specify the clarified personal data of the applicant)
due to the fact that _________________________________________________________
(specify the reason for clarifying personal data)
_____________/________________/
signature/decryption
«___» _________20 _ y.
Appendix No. 3
User's application form for destruction of his personal data
To the Head ____
Full name
mail@mail.ru
from Full name
passport series number
issued date of issue
Application
I request that you destroy my personal data being processed by you in accordance with the information: ___________________________________________;
(indicate the applicant's personal data to be destroyed)
Due to the fact that _________________________________________________________
(indicate the reason for destruction of personal data)
_____________/________________/
signature/decryption
«___»_________20 _
Appendix No. 4
Form of a subject's request for access to his personal data
To the Head ____
Full name
mail@mail.ru
from Full name
passport series number
issued date of issue
Request
I request that you provide me with the information you are processing concerning my personal data for review (select from the list below);
1) confirmation of the fact that the personal data is being processed by the operator;
2) legal grounds and purposes for processing the personal data;
3) the purposes and methods you use to process the personal data;
4) your name and location, information about persons (except for employees) who have access to the personal data or to whom the personal data may be disclosed on the basis of an agreement with you or on the basis of federal law;
5) the personal data being processed that directly relate to me, the source of their receipt, unless another procedure for submitting such data is provided for by federal law;
6) the terms for processing the personal data, including the terms for storing them;
7) the procedure for exercising my rights provided for by applicable law;
8) information about the completed or proposed cross-border transfer of data;
9) the name or surname, first name, patronymic and address of the person processing the personal data on your behalf, if the processing is or will be entrusted to such a person;
10) information about the methods of fulfilling your obligations established by Art. 18.1 of Federal Law No. 152-FZ "On Personal Data"
11) information about the legal consequences that the processing of such information may entail for me.
If such information is not available, please notify me of this.
The request must contain information confirming the participation of the personal data subject in relations with the operator (contract number, date of conclusion of the contract, conventional verbal designation and (or) other information), or information otherwise confirming the fact of processing of personal data by the operator.
Please send the answer to the email address _________.
_____________/________________/ signature/decryption
"___" _________ 20 _
Appendix No. 5
Form for revocation of consent to the processing of his personal data
To the Director ____
Full name
mail@mail.ru
from Full name
passport series number
issued date of issue
Statement
I, ________________ (Full name), hereby revoke my consent to the processing of my personal data, previously issued to the Association "NEICON". Please send a response to this request to the address ________________________________________________________________________
within the timeframes established by law.
_____________/________________/
signature/transcript
«___»_________20 _ g.
Consent to the processing of personal data
In accordance with the requirements of the Federal Law of July 27, 2006 "On Personal Data" No. 152-FZ, I hereby confirm my consent to the processing by the Federal State Budgetary Educational Institution of Higher Education Irkutsk State Medical University of the Ministry of Health of the Russian Federation (OGRN 1023801539673, INN: 3811022096) (hereinafter referred to as the Operator) of my personal data, including:
- first name, last name, patronymic (if any);
- gender;
- email address;
- telephone;
- photograph;
- place of work
- login and password (if they contain personal data);
- personal data that I specify in any form, in my personal account on the website https://www.bmjour.ru, in a claim or application sent to the Operator or in the process of communication with the Operator at my own discretion;
- technical information automatically collected by the software of the website https://www.bmjour.ru, including subdomains, during their visit.
I grant the Operator the right to perform all actions (operations) with my personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), use, extraction, transfer (provision, access), depersonalization, blocking, deletion, destruction. The Operator has the right to process my personal data by entering them into an electronic database (a database using the software of the Website https://www.bmjour.ru, including subdomains), inclusion in lists (registers) and reporting forms.
I authorize the Operator to process my personal data for the following purposes:
- to contact me back, including for the purpose of further concluding an agreement or contract;
- to send me, with my consent, information about news from the Site https://www.bmjour.ru, including subdomains, about the Operator or the Operator's partners, including advertising information;
- to provide me with the opportunity to use the services of the Site https://www.bmjour.ru, including subdomains, to create my account and personal account;
- to provide me with services, to fulfill the Operator's contractual obligations;
- to review and publish scientific articles written by me in the media;
- to receive and publish reviews and comments on the Operator's services;
- to send me a response to a claim or application;
- for marketing research, for targeting, conducted by the Operator;
- for the Operator to comply with the current legislation of the Russian Federation.
- to provide me with access to my personal account as part of the provision of services.
The operator has the right to exchange (receive and transmit) my personal data with the bibliographic database of scientific publications of Russian scientists and the scientific article citation index (RISC) - Scientific Electronic Library LLC (NEB LLC), OGRN: 1037739270678, Russia, 117246, Moscow, Nauchnyy proezd, 14A, building 3, floor 1, premises I, room 1 using machine media or via communication channels, subject to measures to ensure their protection from unauthorized access, provided that their reception and processing is carried out by a person obliged to maintain the confidentiality of the data.
My personal data may be transferred to other persons or otherwise disclosed only with my separate consent. This consent is given by me at the time of filling out the form on the Site https://www.bmjour.ru, including subdomains, and is valid until one of the following events occurs:
- while the Site https://www.bmjour.ru, including subdomains, is operating and I have not deleted my personal account
- until the goals of collecting and processing personal data are achieved
- until I send a revocation of consent to the Operator.
I reserve the right to revoke my consent by drawing up a corresponding written document, which can be sent by me to the Operator by registered mail with a receipt of delivery or delivered personally against signature to the Operator's representative, or sent as a signed scanned copy to the Operator's email address editor@bmjour.ru.
In the event of receipt of my written statement on the revocation of this consent to the processing of personal data, the Operator is obliged to stop processing them within 10 (ten) business days.
Cookie Policy
The website https://www.bmjour.ru/jour, including subdomains, does not automatically collect any information, except for the information contained in cookies.
Cookies are files installed on the user's computer, phone, tablet or any other device in order to record his actions while browsing the Website https://www.bmjour.ru/jour, including subdomains. With the help of cookies, the server on which the website is located recognizes the browser used by the user, for example, by remembering his preferences (language, font size, etc.) for future visits, so there is no need to re-configure them on repeat visits to the website or when switching between pages of the website.
Cookies can be used to:
1) customize the content of the web pages of the Website https://www.bmjour.ru/jour, including subdomains, in accordance with the preferences of users, as well as to recognize the user;
2) creating statistics that help understand how users use the Site https://www.bmjour.ru/jour, including subdomains;
3) maintaining a user session on the site. Some operations on the site pages cannot be performed without the use of cookies, which are technically necessary for the site to function.
Cookies are also used to calculate the audience and traffic parameters, track progress and the number of visits to the Site https://www.bmjour.ru/jour, including subdomains.
Cookies contain data in an anonymous form without identifying a specific user.
The information stored in cookies is used by the Name of the organization, and may also be transferred to third parties specified in the Privacy Policy for the purposes specified therein.
In many cases, browsers allow the storage of cookies by default. The user has the right and opportunity to, at his own discretion, at any time, configure his browser so that the function of installing cookies is disabled, and the user can also delete cookies previously installed on his device used to visit the Site https://www.bmjour.ru/jour including subdomains at any time. By deleting and (or) disabling the saving of cookies, the user loses access to some functions of the Site https://www.bmjour.ru/jour including subdomains, and his impressions of the functionality of these sites may be less satisfactory. The name of the organization reserves the right to update this Cookie Policy without prior notice to the user, therefore, we recommend that the user regularly review this Cookie Policy for updates. By continuing to use the Site https://www.bmjour.ru/jour, including subdomains, the user thereby agrees to the new terms of the Cookie Policy.
