Personal Data Processing Policy

1. General provisions

This personal data processing policy is made in compliance with the requirements of Regulation (EU) 2016/679 concerning personal data processing (General Data Protection Regulation, GDPR) and defines the procedure for personal data processing as well as measures to ensure personal data safety by SIA Caviar House, Reg. No.: 40003816617 (hereinafter referred to as the Operator).

  1. The Operator sets as its most important goal and condition for the implementation of its activities the observance of human and civil rights and freedoms in the processing of personal data, including the protection of rights to privacy, personal and family secrets.
  2. The present policy of the Operator regarding the processing of personal data (hereinafter referred to as the Policy) shall apply to all information that the Operator may obtain about visitors to the website

2. Basic concepts used in the Policy

Caviar House processes cookie files in accordance with the specified goals:

  1. Automated processing of personal data - processing of personal data using computer technology;
  2. Blocking of personal data – temporary termination of personal data processing (except for cases when processing is necessary to clarify personal data);
  3. Website – a set of graphic and information materials, as well as computer programs and databases that ensure their availability on the Internet at the network address;
  4. Personal data information system — a set of personal data contained in databases as well as information technologies and technical means ensuring their processing;
  5. Depersonalisation of personal data — actions making it impossible to determine the ownership of personal data by a specific User or another personal data subject without the use of additional information;
  6. Personal data processing – any action (operation) or a set of actions (operations) performed with personal data using automation means or without the use of such means, including collection, recording, systematisation, accumulation, storage, clarification (update, change), extraction, use, transfer (distribution, provision, access), depersonalisation, blocking, deletion, destruction of personal data;
  7. Operator – a state body, a municipal body, a legal or natural person, independently or jointly with other persons organising and (or) carrying out personal data processing, as well as determining the purposes of personal data processing, the composition of personal data to be processed, actions (operations) performed with personal data;
  8. Personal data – any information relating directly or indirectly to an identified or identifiable User of the website;
  9. User – any visitor to the website;
  10. Provision of personal data – actions aimed at disclosure of personal data to a certain person or a certain scope of persons;
  11. Distribution of personal data – any actions aimed at disclosure of personal data to an indefinite scope of persons (transfer of personal data) or at acquaintance with personal data of an unlimited scope of persons, including disclosure of personal data in the media, publishing in information and telecommunication networks or provision of access to personal data in any other way;
  12. Cross-border transfer of personal data – transfer of personal data into the territory of a foreign state to the authority of a foreign state, a foreign natural or a foreign legal person;
  13. Destruction of personal data – any actions resulting in irrevocable destruction of personal data with the inability to subsequently restore the content of personal data in the information system of personal data and (or) resulting in the material carriers of personal data being destroyed.

3. The Operator may process the following personal data of the User

4. Purposes of personal data processing

5. Legal basis of personal data processing

The security of personal data processed by the Operator is ensured by the implementation of legal, organisational and technical measures necessary to fully comply with the requirements of the current legislation in the field of personal data protection.

7. Cross-border transfer of personal data

8. Final provisions

The User can get any clarifications on issues of interest relating to the processing of their personal data by contacting the Operator via e-mail current version of the Policy is available for public access on the Internet at