1. Basic provisions 1.1. Terms In this Privacy Policy, any reference to "Legarithm", "we", "us" and "our" means: Legarithm OÜ, a limited liability company registered under the laws of Estonia, registered at: Harju maakond, Tallinn, Kesklinna linnaosa , Tuukri tn 19-315, 10152, registered in the Register of Enterprises of Estonia under number 16009397. In this Policy, any information relating to an identified or identifiable individual ("data subject") is referred to as "personal data". A natural person who can be directly or indirectly identified is considered identified. This can be done, for example, by an identifier such as a name, an identification number, location information, an online identifier, or one or more characteristics unique to a physical, physiological, genetic, mental, economic, cultural or social identity. 1.2. Principles Legarithm is a leading law firm that values ​​its reputation, which is why we attach great importance and care to protecting the privacy and personal data of the data subjects with whom we interact, as well as complying with relevant applicable legal provisions, by taking the following actions: a description of "why" and "how" we use your personal data; training and instructing our employees and regulating their access to your data; delete or limit the data because it is no longer needed for the purposes listed below; and prompt response to your comments and requests. We process your personal information in accordance with the following legal grounds: Your consent to relevant processing that applies in some situations (e.g. direct marketing). We obtain your consent to process certain information and rely on that consent (which you can always withdraw). Without your permission, we will only use your personal information where necessary, such as when we need to perform a contract to which you are a party or when we need to take action at your request to complete a contract; to fulfill our legal obligations; to protect our legitimate interests or the interests of another party, only if these interests do not conflict with your interests or fundamental freedoms and rights that require the protection of personal data; to protect the public interest or in the exercise of our official powers; to enforce legal claims, in particular if we need your data to verify your identity; to protect our interests. 1.3. Goals The purpose of this privacy policy (the "Policy") is to offer straightforward, transparent, and comprehensive information to individuals ("you," "your") regarding the processing of your personal data and the practices employed by Legarithm as a data controller. We do not collect information that is not necessary to achieve the purposes outlined in this policy. Your personal information may be collected and used by us exclusively for the following purposes maintaining our website, giving you access to all its features and performing internal tasks, including testing, data analysis, troubleshooting, research, analytics and surveys improving our website and your experience of using it by providing the most effective display of content for you and your device; providing you with legal advice; send you information, including promotional materials (by telephone, email and messages on our website); and customizing our communications, such as sending you invitations to events, articles, publications and legal news analysis with your permission; 1.4. Scope of use This policy applies to data processing activities carried out as part of: Management of the website (Site) Requests sent through feedback forms are posted on the site. Data received through online chat is posted on the website Sending the Legarithm newsletter Legarithm recruitment Interactions with Legarithm's customers, service providers and partners Management of training courses organized by Legarithm 1.5. Our status For the data processing activities described above, Legarithm is the person who determines the means and purposes and thus acts as the data controller in accordance with the applicable rules on personal data and, in particular, the EU Regulation 2016/679 on the protection of natural persons with regard to the processing of personal data and on free movement of such data (hereinafter "GDPR"). 1.6. Changes This Policy may change from time to time due to changes in relevant regulations or in connection with changes in our business activities to pursue our legitimate interest. You should check this page regularly to see our most current policy. We will notify you of any changes to this privacy policy by indicating the change date above. 1.7. The Site may contain links to platforms and other sites that Legarithm does not control. Legarithm is in no way responsible for how your data will be stored or used on such third party websites. We encourage you to read the privacy policy of each third-party website you access through our website to assess how your personal data will be used. 2. General provisions, which apply to all transactions with personal data carried out by Legatihm. 2.1. Data minimization Each contact form on the website is limited to the collection of only that personal data that is strictly necessary and specifies the purpose(s) for which the data is collected, the recipient of the data in all cases being Legarithm itself. Please note that the information required to process your request is marked with an asterisk on each form. If you do not fill in these mandatory fields, Legarithm will not be able to respond to your inquiries and provide you with the requested services. Other information is optional and allows us to better process your request and improve our communications and services for you. 2.2. Transfer of your data to third parties 2.2.1. We do not share your personal information with other companies for direct marketing purposes. 2.2.2. In each section dedicated to the processing of personal data, the external recipients responsible for accessing and processing the relevant data are described in detail. Data may be transferred to technical service providers selected for their experience and reliability who act on our behalf and in accordance with our instructions (IT subcontractor, hosting providers of our servers, etc.). We allow these providers to use your personal data only to the extent necessary to provide services on our behalf or to comply with legal requirements, and we are committed to ensuring that your personal data is always protected. Information about these companies and their privacy policies: Google Inc. (USA) Address: Google, Google Data Protection Office, 1600 Amphitheater Pkwy, Mountain View, California 94043, USA, Google Privacy Policy. We provide data to Google for marketing and analytics purposes. Unfortunately, the USA is not recognized by the EU as a country that provides a sufficient level of personal data protection, so for our customers from the EU, we have concluded a DPA (Data Processing Agreement) with Google, so that your data is always safe. Individual entrepreneur Serhii Skurukhin, working under the trade mark "Hostiq" (Ukraine). Our site is hosted by hostiq.ua (Individual entrepreneur Serhii Skurukhin). The data that you leave in the web forms of the site are available to this company. Address: Ukraine, 61016, Kharkiv, ave. Donbasivskyi, 17, sq. 59. Unfortunately, Ukraine is not recognized by the EU as a country that provides a sufficient level of protection of personal data, therefore, for our customers from the EU, we have concluded a DPA (Data Processing Agreement) with the Individual Entrepreneur Serhiy Skurukhin, so that your data is always safe. Facebook, Inc (USA), located at 1601 Willow Road, Menlo Park, CA 94025, USA (ATTN: Privacy Operations). We provide data to Google for marketing and analytics purposes. Unfortunately, the USA is not recognized by the EU as a country that provides a sufficient level of personal data protection, which is why we have entered into a DPA (Data Processing Agreement) with Facebook so that your data is always safe. 2.2.3. Legarithm may also disclose your information to third parties when such disclosure is required by law, government order or court order, or if such disclosure is necessary to protect our rights. 2.3. Security of your data Legarithm is committed to protecting your personal data from loss, destruction, alteration, unauthorized access or disclosure. To this end, Legarithm will take appropriate technical and organizational measures regarding the nature of the data and the risks associated with its processing, to ensure the security and confidentiality of your personal data and, in particular, to prevent their distortion, damage or access by unauthorized third parties. These measures include, but are not limited to, safeguards such as restricting access to data to only authorized employees in relation to their functions, contractual safeguards in the case of outsourcing to an external provider, conducting privacy impact assessments, regularly reviewing our privacy practices and policies, and /or physical security measures (secure access, authentication process, backup, anti-virus software, etc.). We use state-of-the-art infrastructure and security measures to ensure the privacy of your data. If we share your information with third parties, we will only do so if they provide the necessary assurances that they maintain the same level of security and privacy as we do. We store the information you provide for as long as necessary to fulfill the purposes for which it was collected, after which it is either deleted or archived, unless further processing is necessary to fulfill our legal obligations or for other justified and lawful purposes. We will process your personal data for a maximum of three years from the date of their collection, unless the purpose of their processing requires a different period. You can submit request to delete your personal data at any time. In addition, you have the option to unsubscribe from marketing messages or withdraw your consent to the processing of personal data. When you provide us with your personal data for processing, you retain certain rights: the right to know who we are, what we do, how we collect, use and process your personal data; the right to access your personal data and the right to receive a copy of the personal data we hold about you upon request (please contact us in any way convenient for you); the right to withdraw your consent to the processing of your personal data, if it is based on consent; the right to have your personal data deleted 2.4. Processing of personal data of minors Legarithm Services are not intended for minors. Therefore, we do not knowingly collect and process personal data of minors. In the event that we become aware of the collection of personal data of minors without the prior consent of a person with parental responsibility, we will take appropriate measures to delete such personal data from our servers and/or the servers of our contractors.