Privacy Policy on Personal Data Processing
1 General Provisions
1.1. This Personal Data Processing Policy (hereinafter referred to as the "Policy") is developed in accordance with the requirements of the current legislation on personal data protection and defines the procedures for processing and protecting personal data by [Company Name] (hereinafter referred to as the "Operator").
1.2. The Operator ensures the security and confidentiality of personal data when processing them, as well as the compliance of such processing with the principles and rules established by law.

2 Basic Terms and Definitions
2.1. Personal data – any information related directly or indirectly to an identified or identifiable natural person (subject of personal data).
2.2. Processing of personal data – any action (operation) or a set of actions (operations) performed with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, provision, access), anonymization, blocking, deletion, destruction.
2.3. Operator – a legal or natural person who independently or jointly with others organizes and (or) processes personal data and determines the purposes and scope of such processing.
2.4. Subject of personal data – a natural person whose personal data is processed by the Operator.

3 Purposes of Personal Data Processing
3.1. The Operator processes personal data for the following purposes:

• Ensuring compliance with legislative requirements;
• Entering into and executing agreements with personal data subjects;
• Providing services and fulfilling contractual obligations;
• Communicating with personal data subjects, including sending notifications and information materials;
• Improving the quality of services provided.

4 Legal Grounds for Personal Data Processing
4.1. The processing of personal data is carried out on a lawful basis, including:

• Consent of the personal data subject;
• Fulfillment of contractual obligations;
• Compliance with legislative requirements.

5 Categories of Personal Data Processed
5.1. The Operator processes the following categories of personal data:

• Full name;
• Contact details (phone number, email address, postal address);
• Other data necessary for fulfilling contractual and legal obligations.

6 Personal Data Processing and Storage Terms
6.1. The Operator processes and stores personal data for the period necessary to achieve the processing purposes, unless a different retention period is established by law.
6.2. Upon the expiration of the retention period, personal data is destroyed or anonymized unless further processing is required by law.

7 Transfer of Personal Data to Third Parties
7.1. The Operator has the right to transfer personal data to third parties only in the following cases:

• When required by law;
• With the consent of the personal data subject;
• For the fulfillment of contractual obligations to the personal data subject.

8 Security of Personal Data
8.1. The Operator takes necessary legal, organizational, and technical measures to protect personal data from unauthorized access, modification, disclosure, or destruction.

9 Rights of Personal Data Subjects
9.1. The personal data subject has the right to:

• Access their personal data and receive information about its processing;
• Request correction or deletion of their personal data;
• Withdraw consent for data processing;
• Appeal to the authorized body in case of violations of personal data legislation.

10 Procedure for Collection, Storage, Transfer, and Other Types of Personal Data Processing
The security of personal data processed by the Operator is ensured by the implementation of legal, organizational, and technical measures necessary to fully comply with the requirements of the current legislation on personal data protection.
10.1. The Operator ensures the protection of personal data and takes all possible measures to prevent unauthorized access to personal data.
10.2. The User's personal data will never, under any circumstances, be transferred to third parties, except in cases related to the enforcement of applicable laws or if the data subject has given consent to the Operator to transfer the data to a third party for the fulfillment of obligations under a civil contract.
10.3. In case of inaccuracies in personal data, the User may update them independently by sending a notification to the Operator’s email address info@aziafood.com with the subject “Personal Data Update.”
10.4. The processing period for personal data is determined by the achievement of the goals for which the personal data was collected, unless a different period is specified by the contract or applicable law.
The User may revoke their consent to the processing of personal data at any time by sending a notification to the Operator's email address info@aziafood.com with the subject “Withdrawal of Consent to Personal Data Processing.”
10.5. All information collected by third-party services, including payment systems, communication means, and other service providers, is stored and processed by these entities (Operators) in accordance with their User Agreement and Privacy Policy. The data subject and/or User must independently familiarize themselves with these documents in a timely manner. The Operator is not responsible for the actions of third parties, including those mentioned in this paragraph.
10.6. Restrictions set by the data subject on the transfer (except for access provision) or processing conditions (except for obtaining access) of personal data allowed for distribution do not apply in cases of processing personal data in the interests of the state, society, or other public interests defined by the laws of the Russian Federation.
10.7. The Operator ensures the confidentiality of personal data during processing.
10.8. The Operator stores personal data in a form that allows identification of the data subject for no longer than required by the purposes of personal data processing, unless a different retention period is set by federal law, contract, or the data subject’s role in the contract.
10.9. The cessation of personal data processing may occur upon achieving the processing goals, expiration of the consent period, withdrawal of consent by the data subject, or detection of unlawful processing of personal data.

11 List of Actions Performed by the Operator with Received Personal Data
11.1. The Operator performs the collection, recording, systematization, accumulation, storage, updating (modifying, changing), extraction, usage, transfer (distribution, provision, access), anonymization, blocking, deletion, and destruction of personal data.
11.2. The Operator performs automated processing of personal data with the receipt and/or transfer of the received information through telecommunications networks or without such transfer.

12 Cross-Border Transfer of Personal Data
12.1. Before initiating a cross-border transfer of personal data, the Operator must ensure that the foreign country to which personal data is intended for transfer guarantees reliable protection of the rights of data subjects.
12.2. Cross-border transfer of personal data to foreign countries that do not meet the above requirements can only occur if there is written consent from the data subject for the cross-border transfer of their personal data and/or the performance of a contract to which the data subject is a party.

13 Confidentiality of Personal Data
The Operator and other individuals who have access to personal data must not disclose or distribute personal data to third parties without the consent of the data subject, unless otherwise provided by federal law.

14 Final Provisions
14.1. The User can obtain any clarification on issues related to the processing of their personal data by contacting the Operator via email at info@aziafood.com.
14.2. This document will reflect any changes to the Operator’s personal data processing policy. The policy is valid indefinitely until replaced by a new version.
14.3. The current version of the Policy is available online at: https://aziafood.com/