This Privacy Policy (hereinafter referred to as the "Policy"):

• applies to Technical Center of Telephones LLS;
• is fully integrated into the terms of the online sales agreement via this link;
• defines what information can be attributed to the user, directly or indirectly identified, and for what purposes it is used;
• establishes the principles of processing Personal data.

The following terms are used in the Policy:

• Operator — a state, municipal body, legal entity or individual that organizes and/or carries out the processing of personal data independently or jointly with others; defines the purposes of processing, the composition of data and actions with personal data.
• Personal data — any information related to an individual (subject of personal data) directly or indirectly.
• Processing of personal data — any action with personal data, including collection, recording, systematization, accumulation and other operations with or without the use of automation tools.
• Confidentiality of personal data is the obligation of Technical Center of Telephones LLS or another data owner not to disclose them without the consent of the subject, unless there are other legal grounds.
• Cookie is a small amount of data sent by a web server and stored on the user’s computer; it is sent back each time an attempt is made to open a resource.
• Technical Center of Telephones LLS considers security to be the basis of its activities. Their policy is aimed at the proper and legal handling of personal data, ensuring its confidentiality, integrity and availability. Personal data of users is processed on the territory of the Russian Federation (RF) in accordance with Federal Law No. 152-FZ "On Personal Data". The company complies with the principles of the Regulation and invites users to send questions and complaints to the address: 7 031, Moscow, Kuznetsky Most St., Building 3, Building 2, Floor 1, Room 7, Room 1

2. Purposes of processing the user’s personal data
Technical Center of Telephones LLS collects the user’s personal data related to trips through mobile applications:
2.1. To fulfill the agreement, one of the parties to which is the user, as well as to provide additional services during the trip (e.g. meals, special conditions, hotel accommodation in case of forced return of the ticket for medical reasons).
Full name, date of birth, gender, details of the identity document (e.g. passport, birth certificate), expiration date, place of residence, contact details, routes, dates of travel and food preferences.
Information about the visa for international trips, including the number, country of issue and expiration date, is provided by the user independently in the personal account.
2.2. To promote goods and services on the market, the following are also processed:
Full name, gender, date of birth, contact details, information about trips and participation in the loyalty program.
Some pages of websites and applications use cookies. The cookie policy describes this in more detail.

3. Processing of personal data of users
Actions with user data include collection, storage, updating, use, transfer and deletion with or without the use of automation tools. Transfer of data to third parties is permitted only for the performance of the contract of carriage and is not used to advertise third-party products.
Technical Center of Telephones LLC provides data to government agencies upon legal requests and to partners to ensure security and improve the quality of service. Data is stored for 3 years after the end of the air carriage contract and may be processed longer if required by law.

4. Destruction of personal data

• Data is destroyed upon achieving the purposes of their processing or if there are legal grounds, in compliance with the internal regulations. If unlawful processing is detected, the data is blocked for the verification period.
• If inaccurate data is detected, it is blocked for the verification period, and if the inaccuracy is confirmed, it is corrected. In case of unlawful processing, the company stops it within three working days. If it is impossible to ensure the legality of processing, the data is destroyed within ten working days.
• Users and authorized bodies are notified of incidents of rights violations within twenty-four hours. Upon completion of the processing purposes, the data is destroyed within thirty days.
• In case of withdrawal of the user’s consent to data processing, Technical Center of Telephones LLS stops it and destroys the data, if their storage is no longer required, within thirty days. Requirements to terminate processing are also fulfilled within ten working days with a possible extension of five days if the reason is indicated in the notification.
• If it is impossible to destroy the data in time, they are blocked and destroyed within six months. Documents containing data are destroyed after the expiration of the standard storage period or upon the occurrence of other grounds, through an expert commission:
• Paper documents are destroyed in a shredder.
• Electronic documents are erased or destroyed together with the media.

5. Data Processing Security
Technical Center of Telephones LLS guarantees the reliable processing of users' personal data, using appropriate technical and organizational measures to protect against accidental or unauthorized destruction, loss, modification, unauthorized disclosure or access. Data security questions can be sent to the specified contact information.
The company conducts internal control and audit of compliance with data processing in accordance with the law on personal data and security requirements. Data security is ensured by:
defining threats;
using the necessary organizational and technical measures;
checking the effectiveness of security measures;
accounting for data carriers;
detecting unauthorized access and eliminating it;
restoring data after unauthorized access;
establishing access rules and accounting for actions in information systems;
monitoring the level of data security.
Personal account password requirements: uppercase and lowercase letters, at least 6 characters, a number and a special character. It is not recommended to use passwords from other accounts.

6. Access to, modification or deletion of personal data
Users may request access to, modification or deletion of their data if it is incomplete, outdated, inaccurate or illegally obtained. The company recommends informing about any changes to data.
For questions about viewing, changing, accessing, storage periods and other questions about data processing, please contact us using the specified contact information.

7. Responsibility
The company monitors compliance with the law and can confirm this. Data processing activities are recorded. In the event of loss or disclosure of data, the company is not liable if the information:
became public before the loss or disclosure;
was received from a third party;
was disclosed with the consent of the user.
Questions about the Regulation can be sent to the contact information.

8. Complaints
Users have the right to send complaints regarding the processing of their data. All complaints are considered in a timely manner. They can be sent to the specified contact information.

9. Amendments to the Regulations
The Company reserves the right to change the Regulations and warns of the need to check the terms with each new purchase. The new version of the policy comes into force from the moment it is posted on the website, unless otherwise provided.