Privacy Policy

General Privacy Policy of Mail.Ru Services

1. General Provisions

1.1. The subject of regulation of this Privacy Policy (hereinafter, the “Policy”) is relationship between Mail.Ru Limited Liability Company (OGRN (Primary State Registration Number) 1027739850962, 39, bldg. 79, Leningradskiy prospect, Moscow, Russia, 125167) hereinafter referred to as “Mail.Ru” or the “Company”, which is the owner of websites, services, programs and/or other products, including of informational, communication, advertising, educational, entertainment and other nature (hereinafter, the “Services” and each separately — the “Service”) located on the Internet at https://mail.ru/ (hereinafter, the “Site”), as well as on other domains operated by Mail.Ru, and you (an individual Internet user), hereinafter, the “User”, regarding processing of information about the User, including personal data, in the course of using Mail.Ru Services by such person (hereinafter, the “Information”). This Policy is posted at: https://help.mail.ru/engmail-help/privacy.

1.2. Relationship connected with processing of the Information, including, but not limited to collection, recording, systematization, accumulation, storage, refinement (updating, modification), retrieval, use, transfer, depersonalization, blocking, deletion, destruction of the Information about Users of Mail.Ru Services, is governed by this Policy, Privacy Policies of individual Services (which specify, in relation to a particular Service, the list of information processed, purposes of processing and other terms and conditions) and terms and conditions of other agreements, provisions and rules of the Services used that are posted on pages (in sections) of the respective Mail.Ru Services, as well as by the applicable legislation of the Russian Federation.

1.3. When registering and each time accessing and/or actually using any of the Services the User accepts the terms and conditions of this Policy, the Privacy Policies of individual Services, as well as the terms and conditions of agreements, provisions and rules of the Services used by him/her that are posted on the pages (in the sections) of the respective Services as in effect at the time of actual use of such Services.

1.4. This Privacy Policy applies only to Non-Russia-based users. If you are a Russia-based user, please refer to the Privacy Policy applicable in the relevant jurisdiction.

2. Composition of Information

2.1. The Information processed by the Company includes:

2.1.1. Account data, which should be understood as data on the Users provided by such persons in the course of using the Services (including data that can be classified as personal data in accordance with the law), specifically, name, surname, date of birth, sex, mobile phone number, etc.

2.1.2. Other data, which should be understood to mean data associated with the Users and collected by the Services for the purposes specified in this Policy and/or the Privacy Policies of individual Services, in the course of using Mail.Ru Services by the specified persons, specifically, data on the User’s hardware (devices), technological interaction of the User’s device with the Services (including host IP address, type of the User’s operating system, browser type, location information, Internet service provider), information automatic obtained at the time of accessing the Service with the use of cookies and other similar technologies, other information required for operation of certain Services and/or their individual functions, detailed list of which in relation to a particular Service is provided in the Privacy Policy of such Service.

2.2. Functionality and rules for the use of individual Services allow for posting in the Services of any information (if applicable) that does not contradict requirements of the applicable legislation, including information that is not specified in clauses 2.1 and 2.2 hereof. By posting personal information the User understands and agrees that it can be accessible to indefinite range of Internet users subject to the privacy settings selected by the User. However, such information may contain data classified as special categories of personal data (for example, data relating to race, ethnical identity, political views, religious or philosophical beliefs, state of health of the User). The Company has no purpose to process such data and does not process them.

2.3. The Company does not verify the Account data provided by the User and cannot judge their reliability or whether the User has sufficient legal capacity to provide such Account data. However, the Company proceeds from the fact that the User provides reliable and sufficient Account data and timely updates them. By registering in the respective Service or accessing it without registration the User confirms that he/she has attained the permissible age for using such Service in accordance with the applicable legislation.

2.4. If the functionality of the Mail.Ru Service used allows to indicate the User information in his/her profile, which is accessible for viewing by other users of such Service or Internet users, then the User consents to indication of his/her information in such profile, as well as to the fact that the information indicated in the profile will be considered publicly available, unless another mode of access thereto has been selected by the User within the scope of the Service functionality. The User agrees that the information, including the Account data and Other Data, as well as other information may be available to other Internet users subject to the existing Service functionality (as may be modified by the Company from time to time).

3. Processing of Information

3.1. Processing of the User Information is performed by the Company in accordance with the following principles:

3.1.1. legality of purposes and methods of processing of the Information;

3.1.2. good faith of the Company;

3.1.3. conformity of the purposes of processing of the Information to the purposes pre-determined and declared upon collection thereof, as well as to the powers and authority of the Company;

3.1.4. conformity of the volume and nature of the Information processed, methods of its processing to the purposes of processing of the Information;

3.1.5. inadmissibility of integration of databases containing the User Information created for incompatible purpose.

3.2. Collection of Information

User’s Account data are collected at the time of his/her registration in the respective Service by filling in by the User of a registration form and subsequently when editing the previously provided information or completing the Account data on his/her own initiative (if applicable) with the use of the tools of the respective Service.

Collection of Other Data is performed by the Company itself in the course of the User’s use of the Service. In some cases collection of Other Data of the User commences upon gaining access to the Service by the User (for example, when loading a webpage or launching an application) up to the moment of his/her registration in the respective Service.

In some cases the certain functionality of the Services may be provided not by the Company, but by the third parties that operate independently of the Company and do not act for or on behalf of the Company. In this case the Users shall, on their own, familiarize themselves with the code of service and information/personal data security policy of such third parties prior to using the respective Service functionality.

3.3. Storage of Information

The Users’ Account data and Other Data are stored in the territory of the Russian Federation on electronic media only and processing is performed with the use of automated systems, unless non-automated processing of the Account data and Other Data is required in furtherance of requirements of the applicable legislation.

3.4. Transmission of Information

The Users’ Account data and Other Data are not transferred to any third parties, except as expressly provided for in this Policy, the Privacy Policies of individual Services, as well as the applicable legislation. In particular, the User’s Account data and Other Data may be transferred to the government authorities (local government institutions) by their requests in the manner prescribed by the applicable legislation.

For the purpose of performance of the agreement with the User for provision of the Service selected by the User and for granting access to the User to the functionality of the Service selected by him/her, the Company develops, improves, optimizes and implements new functionality of the Services (including services and products of informational, communication, advertising, educational, entertainment and other nature), including with the participation of affiliates and/or partners. In order to ensure achievement of the specified purposes the User agrees and instructs the Company to carry out, in compliance with the applicable legislation, processing (including collection, recording, systematization, accumulation, storage, refinement (updating, modification), comparison, retrieval, use, depersonalization, blocking, deletion and destruction) of the Users' Account data and Other data, including results of automated processing of such data, and specifically in the form of whole-number and/or text values and identifiers, transfer of the above data to the affiliates and/or partners in pursuance of such instruction for processing, as well as to collect (receive) the Users' Account data and Other data from the affiliates and/or partners.

These companies may use information (not including name, address, email address or telephone number) about User’s visits to this and other Web sites in order to provide advertisements about goods and services of interest to User. If you would like more information about this practice and to know your choices about not having this information used by these companies, click here https://target.my.com/optout/, http://www.networkadvertising.org/managing/opt_out.asp.

The Company is entitled to provide the User with the opportunity to transfer the Account data and Other Data to the third parties by means of the special technologies (Open ID, etc.), subject to the User’s consent to such transfer. In this regard Mail.Ru does not guarantee to the User completeness and correctness of transfer of the Account data and Other Data and assumes no responsibility for security of such data during transfer.

It is not allowed to extract and use Users' Account data and Other data, including for commercial purposes, without the permission of the Company.

3.5. Destruction of Information

The User’s Account data and Other Data will be destroyed in case of:

    • deletion by the User himself/herself of the data contained in the User’s Account of the respective Service;
    • deletion by the User himself/herself of his/her Account in the respective Service (if provided for by the functionality of the respective Service);
    • deletion by the Company of the information posted by the User or the User’s Account in the respective Service at the request of the User or where there are legal reasons for doing it.

3.6. Storage of Information, Term of Storage of Information

Account data and Other Data are stored by the Company during the term of the agreement between the User and the Company on the use of the respective Service and after termination of such agreement — during the period required and established by the applicable legislation of the Russian Federation.

4. Rights and obligations of Users in the processing of their Information

The Users are entitled to:

4.1. access their information without restrictions and free of charge by viewing the User Account in the respective Service;

4.2. by using tools of the Service set with respect to their personal information the desired confidentiality level (terms of access to the information) subject to the functionality of the respective Service (if applicable);

4.3. on their own introduce changes and corrections in their personal information by editing the information in the User Account, provided that such changes and corrections contain up-to-date and reliable information;

4.4. delete their personal information by editing the information in the Account of the respective Service (if applicable); however, deletion by the User of certain information about himself/herself from the User Account in some Services may result in impossibility of granting access to the User to such Services. 

4.6. require the Company to refine, block or destroy the User information, if such information is incomplete, outdated, inaccurate, improperly obtained or is not necessary for the declared purpose of processing and if the functionality of the Service does not allow the User to delete such information on his/her own;

4.7. on the basis of a request receive from the Company the information regarding processing of the User information.

4.8. refuse to have their Information processed by sending a proper request to the Company in the manner provided for in Section 7 hereof. 

5. Information Protection Measures

5.1. The Company takes technical, organizational and legal measures to ensure protection of the User Information against unauthorized or accidental access thereto, destruction, modification, blocking, copying, distribution, as well as other illegal actions.

5.2. Technical security measures are implemented by the Company in accordance with the requirements of the applicable legislation, current level of technology, nature of the information processed and risks associated with its processing.

The Information for the most part is processed automatically without access thereto by employees and/or contractors of the Company. If such access is granted to employees or contractors of the Company, only to the extent necessary for such persons to perform their official duties or obligations under the contract with the Company, and such persons shall be obliged to comply with security requirements in the implementation of access to Information. To protect and ensure confidentiality of the data all employees/contractors observe internal regulations and procedures regarding processing of information. The said persons also comply with all technical and organizational security measures provided for by the applicable legislation and required to protect the User information.

6. Limitation of the Company’s Liability

6.1. The Company assumes no liability for disclosure and dissemination of the User’s personal information by other users of the Services, in case if the latter gained access to the said information in accordance with the level of confidentiality of the respective Service selected by the User or in case of violation by the User of the safety of his/her login and / or password or other data necessary for authorization.

7. Users’ Requests

7.1. In order to protect the Users’ rights related to processing of the Information, when such persons use the Company’s Services, the User has the right to send his/her requests to the Company regarding processing and use of the User Information in writing to the address: 39, bldg. 79, Leningradskiy prospect, Moscow, Russia, 125167.

7.2. The Users also have the right to send their requests to the support service of the respective Company’s Service to the e-mail address or via the contact form.  Detailed information on the ways of contacting the support service of individual Company Services is contained in the Privacy Policies of such Services and/or Agreements on the use of such Services.

7.3. All correspondence received by the Company from the Users (requests in the written or electronic form) is classified as the restricted access information and is not disclosed without the written consent of the Users, except for cases stipulated by the applicable legislation. Personal data and other information on the User who sent the request may not be used without the User’s special consent for any purpose other than responding on the subject of the received request or except as expressly provided by law.

8. Alteration and Modification of this Policy

8.1. This Policy and the Privacy Policies of individual Services may be amended by the Company with notification of the User by posting a new revision of the policy amended on the Site. Alterations in the Policy introduced by Mail.Ru become effective from the time the new revision of such Policy is posted on the Site. The User undertakes to independently check this Policy and the Privacy Policies of individual Services for any alterations made. Failure by the User to familiarize oneself shall not exclude application of this Policy and the Privacy Policies of individual Services to such User.

8.2. The User may refuse to accept amendments and modifications to this Policy and/or the Privacy Policies of individual Services, which means the User’s refusal to use all and/or any individual Mail.Ru Services and waiver of all rights previously granted to him/her.

8.3. This Policy shall be governed by and construed in accordance with the legislation of the Russian Federation. Issues not covered by this Policy, the Privacy Policies of individual Services and the terms and conditions of other agreements, provisions and rules of the Services used that are posted on the pages (in sections) of the respective Mail.Ru Services are subject to resolution in accordance with the legislation of the Russian Federation 

Revision of 01.03.2019