Privacy policy
1. DEFINITION OF TERMS

1.1 The following terms are used in this Privacy Policy:

1.1.1. "Websites Administration" of https://vodblisk.northernlightsff.com and https://online.northernlightsff.com (hereinafter referred to as the "Websites Administration") - the employees authorized to manage websites acting on behalf of https://vodblisk.northernlightsff.com and https://online.northernlightsff.com (hereinafter - the "Websites"), which organize and (or) carry out the processing of personal data, as well as determine the purposes of processing personal data, the composition of personal data to be processed, actions (operations) performed with personal data.

1.1.2. "Personal data" is any information that directly or indirectly concerns a specific natural person (the subject of personal information).

1.1.3. "Processing of personal data" means any action (operation) or set of actions (operations) performed with or without the use of automation tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, use, transfer (distribution, access), anonymization, blocking, deletion, as well as destruction of personal data.

1.1.4. "Confidentiality of personal data" is a mandatory requirement for the operator or others who have gained access to a user's personal data to prevent its distribution without the consent of the subject of personal data or without other legal grounds.

1.1.5. "User of the Websites" (hereinafter referred to as "the User) is a person who has access to the Websites via the Internet and uses the Websites.

1.1.6. "Cookies" are small pieces of data sent by the web server, stored on the User's computer, and sent by the web client or web browser in an HTTP request each time an attempt is made to open a page on the corresponding Websites.

1.1.7. "IP address" is the unique network address of a node in a computer network built on the IP protocol.
2. GENERAL PROVISIONS

2.1. The User's utilization of the Websites means agreement with the current Privacy Policy and the terms of processing the User's personal data.

2.2. In case of disagreement with the terms of the Privacy Policy, the User must stop using the Websites.

2.3. This Privacy Policy applies to the Websites only. The Websites do not control and are not responsible for third-party sites to which the User may go through links available on the Websites.

2.4 The Websites Administration does not verify the accuracy of the personal data provided by the Users of the Websites.
3. SUBJECT MATTER OF THE PRIVACY POLICY

3.1. This Privacy Policy defines the responsibilities of the Websites Administration regarding non-disclosure and ensuring privacy protection of personal data that the User provides at the request of the Websites Administration upon registering on the Websites.

3.2. Personal information permitted for processing under this Privacy Policy is provided by the User by filling out the user's profile on the Websites.
4. PURPOSES OF COLLECTING USERS’ PERSONAL INFORMATION

4.1. The Websites Administration may utilize the User's personal data for the following purposes:

4.1.1. Identification of the User who filled out their profile on the Websites.​

4.1.2. Establishing feedback with the User, including sending notifications and requests regarding the use of the Websites, processing requests and applications from the User.

4.1.3. Use of information for marketing campaigns: email newsletters, targeted and contextual advertising, etc.

4 .4. Confirmation of the accuracy and completeness of personal data provided by the User.
5. METHODS AND TERMS OF PERSONAL INFORMATION PROCESSING

5.1. The processing of the User's personal data is carried out without a time limitation, by any lawful means, including in personal data information systems with the use of automation tools or without the use of such tools.

5.2. The User's personal data may be transmitted to the authorized bodies of the Estonian government only on the grounds and in accordance with the procedure established by Estonian law.

5.3. In case of loss or disclosure of personal data, the Websites Administration informs the User about the loss or disclosure of personal data.

5.4. The Websites Administration takes the necessary organizational and technical measures to protect the User's personal information from unauthorized or accidental access, destruction, modification, blocking, copying, and distribution, as well as from other illegal actions of third parties.

5.5. The Websites Administration, together with the User, takes all necessary measures to prevent losses or other negative consequences caused by the loss or disclosure of the User's personal data.
6. OBLIGATIONS OF THE PARTIES

6.1. The User is obliged to:

6.1.1. Provide information about personal data necessary for the use of the Websites.

6.1.2. Update and supplement the provided information about personal data in case of changes to this information.

6.2. The Websites Administration is obliged to:

6.2.1. Use the received information exclusively for the purposes specified in paragraph 4 of this Privacy Policy.

6.2.2. Ensure that confidential information is kept guarded and not to disclose it without the prior written permission of the User, as well as not to sell, exchange, publish, or otherwise disclose the transferred personal data of the User, with the exception of paragraph 5.2. of this Privacy Policy.

6.2.3. Take precautions to protect the confidentiality of the User's personal data in accordance with the procedure generally used to protect this type of information in the existing business turnover.

6.2.4. To block personal information concerning the relevant User, from the moment of the appeal or request of the User or their legal representative or the authorized body for the protection of the rights of personal data subjects for the period of inspection, in case of detection of inaccurate personal data or illegal actions.
7. RESOLUTION OF DISPUTES

7.1. Before filing a lawsuit in court regarding any disputes arising out of relations between the Website User and the Website Administration, it will be mandatory to submit a claim (a written proposal for voluntary settlement/resolution of the dispute).

7.2. The recipient of the claim shall, within 30 calendar days from the date of receiving the claim, inform the claimant in writing about the results of the consideration of the claim.

7.3. If an agreement is not reached, the dispute will be referred to a judicial authority in accordance with the current legislation of Estonia.​

7.4. The current legislation of Estonia applies to this Privacy Policy and the relationship between the User and the Website Administration.
8. ADDITIONAL CONDITIONS

8.1. The Website Administration has the right to make changes to this Privacy Policy without the User's consent.

8.2. The new Privacy Policy comes into effect at the moment of its posting on the Websites, unless otherwise provided by the new version of the Privacy Policy.

8.3. All suggestions or questions regarding this Privacy Policy should be directed to tech@northernlightsff.com.