PRIVACY POLICY

1.1. This Privacy Policy (hereinafter — Policy) defines the procedure for processing and protecting personal data of VisioBrand service users (hereinafter — Service).

1.2. The personal data operator is IE Arkhipov Sergey Viktorovich (Tax ID 616613837472, OGRNIP 326619600005671), address: 344065, Russia, Rostov Region, Rostov-on-Don, Dneprovsky Lane, 124/6, apt. 92 (hereinafter — Operator).

1.3. The Policy is developed in accordance with Federal Law No. 152-FZ dated July 27, 2006 "On Personal Data".

1.4. Use of the Service means unconditional consent of the User to this Policy and terms of processing their personal data.

Personal data — any information relating directly or indirectly to an identified or identifiable natural person (personal data subject).

Personal data processing — any action (operation) or set of actions with personal data, performed with or without automation tools.

Operator — a person organizing and carrying out personal data processing.

User — a natural person using the Service.

Website — a set of web pages located at visiobrand.io and platform.visiobrand.io.

Cookies — small text files sent by the web server and stored on the User's device.

3.1. The Operator has the right to:

• receive accurate personal data from the User;
• continue processing in cases provided by law if consent is withdrawn;
• independently determine the composition and list of measures necessary to protect personal data.

3.2. The Operator is obliged to:

• provide the User with information about processing their personal data upon request;
• organize personal data processing in accordance with RF legislation;
• take measures to protect personal data from unauthorized access;
• stop processing and destroy personal data in cases provided by law;
• notify the User about changes to this Policy.

4.1. The User has the right to:

• receive information about processing of their personal data;
• request clarification, blocking or destruction of personal data;
• withdraw consent to personal data processing;
• appeal the Operator's actions to the authorized body for protection of personal data subjects' rights;
• claim damages and moral harm compensation in court.

4.2. To exercise their rights, the User may send a request to hello@visiobrand.io.

5.1. The Operator processes the following categories of personal data:

Data provided by the User:

• first name, last name;
• email address;
• company name (if applicable);
• password (encrypted).

Service usage data:

• tracked brand names;
• prompts for testing;
• analytics data and settings.

Technical data:

• IP address;
• browser and OS type;
• device information;
• cookies;
• website activity data.

6.1. Personal data is processed for the following purposes:

• registration and identification of the User in the Service;
• providing access to Service features;
• payment processing and invoicing;
• technical support for Users;
• sending Service notifications;
• improving Service quality and developing new features;
• conducting statistical research;
• ensuring security and fraud prevention;
• compliance with legal requirements.

7.1. Personal data processing is carried out on the following grounds:

• User consent to personal data processing;
• performance of a contract to which the User is a party;
• compliance with RF legislation requirements.

8.1. The Operator takes the following measures to protect personal data:

• data encryption during transmission (SSL/TLS);
• data encryption at rest;
• access control to personal data;
• regular backups;
• security monitoring of systems;
• personnel training on personal data processing rules.

9.1. The Operator does not sell or transfer personal data to third parties, except in the following cases:

• transfer to service providers necessary for Service operation (hosting, payment systems);
• compliance with legal requirements upon request from authorized bodies;
• with written consent of the User.

9.2. When engaging third parties, the Operator ensures their compliance with personal data protection requirements.

10.1. Personal data is stored:

• during the validity period of the User's account;
• 30 days after account deletion (for possible recovery);
• longer — if required by law.

10.2. Upon expiration of retention periods, personal data is destroyed.

11.1. The Service uses cookies for:

• authentication and maintaining User session;
• saving settings and preferences;
• collecting analytics data about Service usage.

11.2. The User can manage cookies through browser settings. Disabling cookies may affect Service functionality.

11.3. Detailed information is provided in the Cookie Policy.

12.1. The Operator has the right to make changes to this Policy. The new version takes effect upon publication on the website.

12.2. The User is obliged to independently monitor changes to the Policy.

12.3. Continued use of the Service after Policy changes means acceptance of the new version.