Privacy Policy
The document describes the categories of personal data, purposes and legal grounds for processing, storage periods and rights of data subjects.
1. General provisions
This Policy applies to personal data that ArentDA receives when using the website, application, personal account and related support channels.
2. Categories of processed data
We only process data necessary to provide the service, fulfill legal obligations and ensure security.
- Identification and contact information: name, email, telephone, messenger data.
- Account data: user role, login history, profile settings, technical session identifiers.
- Interaction data: requests, reservations, correspondence within the service, support requests.
- Technical data: IP address, device, browser, interface settings, event and error logs.
- Payment metadata: payment status, transaction and provider identifiers, without storing full card details.
3. Purposes and legal grounds of processing
Data processing is carried out on the basis of consent, performance of a contract, legitimate interest and/or legal obligation depending on the specific transaction.
- Account creation and maintenance, authentication and protection against unauthorized access.
- Processing applications, reservations, notifications and communications between parties.
- Technical support and security incident investigation.
- Prevent fraud, abuse and circumvention.
- Compliance with applicable laws and regulatory requests.
4. Transfer of data to third parties
Data transfer is carried out according to the principle of necessity and minimization.
- Service partners - to process requests and fulfill reservations.
- Infrastructure providers - hosting, analytics, support, communication services.
- Payment providers - to process payments and refunds.
- To authorized bodies - if there is a legal basis or a mandatory request.
5. Cross-border data transfer
If processing or storage takes place in another jurisdiction, we apply reasonable contractual, organizational and technical measures to protect the data at a level comparable to the applicable requirements.
6. Shelf life
Data is stored for no longer than necessary for the purposes of processing, fulfillment of contractual obligations and compliance with the law.
- Account data - while the account is active and for a reasonable period after deletion to protect the rights of the parties.
- Financial and tax records - within the time limits established by applicable law.
- Security logs - within the time frame necessary to investigate and prevent incidents.
7. Security
We use encryption of communication channels, access control, logging of critical actions, backup and data integrity monitoring.
No transmission or storage method is completely secure, so we continually update security measures to address risks.
8. Rights of the data subject
Subject to applicable law, the user may request access to data, correction, restriction of processing, erasure, portability and withdrawal of consent.
To exercise your rights, send a request to the I.E. operator. Vadim Pavlenko on [email protected]. We may request proof of identity.
10. Policy changes
The current edition is published on this page. In case of significant changes, we may additionally notify users through the service interface.