Privacy Policy

Privacy Policy
1. General Provisions
  1. This personal data processing policy has been drafted in accordance with the requirements of the Law "On Personal Data Protection" (hereinafter referred to as the Law on Personal Data) and defines the procedure for processing personal data and measures to ensure the security of personal data implemented by the modular house manufacturing company LLC "SMB West" (hereinafter referred to as the Operator).
1.1. The Operator's primary goal and condition for its activity is to respect the rights and freedoms of individuals and citizens in the processing of their personal data, including the protection of the right to privacy, personal, and family confidentiality.
1.2. This policy of the Operator regarding personal data processing (hereinafter referred to as the Policy) applies to all information the Operator may receive about visitors to the website https://www.modulhouse.com.ua.

2. Key Terms Used in the Policy
2.1. Automated processing of personal data – processing of personal data using computer technology.
2.2. Blocking of personal data – temporary suspension of personal data processing (except when processing is necessary for data clarification).
2.3. Website – a set of graphic and informational materials, as well as software and databases, providing accessibility on the Internet at https://www.modulhouse.com.ua.
2.4. Information system of personal data – a set of personal data contained in databases and the information technologies and technical means ensuring its processing.
2.5. Anonymization of personal data – actions that make it impossible to determine, without additional information, the association of personal data with a specific User or other subject of personal data.
2.6. Processing of personal data – any action (operation) or set of actions (operations) performed with or without the use of automation tools involving personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, modification), retrieval, usage, transfer (distribution, provision, access), anonymization, blocking, deletion, destruction of personal data.
2.7. Operator – a legal entity or individual who, independently or jointly with others, organizes and (or) carries out the processing of personal data, as well as determines the purposes of personal data processing, the composition of personal data to be processed, and the actions (operations) performed with personal data.
2.8. Personal data – any information related directly or indirectly to a specified or identifiable User of the website https://www.modulhouse.com.ua.
2.9. Personal data permitted by the subject of personal data for dissemination – personal data that the subject of personal data allows an unlimited circle of persons to access based on their consent in accordance with the Law on Personal Data (hereinafter referred to as personal data permitted for dissemination).
2.10. User – any visitor to the website https://www.modulhouse.com.ua.
2.11. Provision of personal data – actions aimed at disclosing personal data to a specific person or a specific group of persons.
2.12. Dissemination of personal data – any actions aimed at disclosing personal data to an indefinite number of persons or making personal data available to an unlimited number of persons.
2.13. Cross-border transfer of personal data – the transfer of personal data to the territory of a foreign state, to a foreign state authority, a foreign individual, or a foreign legal entity.
2.14. Destruction of personal data – actions resulting in the permanent destruction of personal data with no possibility of recovery, and removal of the data from the personal data information system.

3. Basic Rights and Obligations of the Operator
3.1. The Operator has the right to:
– Receive accurate information and/or documents containing personal data from the subject of personal data.
– Continue processing personal data without the subject's consent if there are legal grounds, even after the subject has withdrawn consent.
– Independently determine the composition and list of measures necessary for ensuring compliance with obligations provided by the Law on Personal Data and other laws.
3.2. The Operator is obliged to:
– Provide the subject of personal data with information regarding the processing of their personal data.
– Organize the processing of personal data in accordance with applicable legislation.
– Respond to inquiries and requests from subjects of personal data.
– Notify the authorized body on the protection of personal data subjects' rights about any requested information.
– Publish or otherwise ensure access to this Policy.
– Take necessary measures to protect personal data.
– Cease processing and destroy personal data if consent is withdrawn or in other justified cases.

4. Basic Rights and Obligations of Personal Data Subjects
4.1. Personal data subjects have the right to:
– Receive information about the processing of their personal data.
– Request the correction, blocking, or deletion of their personal data if it is incomplete, outdated, inaccurate, illegally obtained, or no longer necessary for the stated purpose of processing.
– Withdraw their consent to the processing of personal data.
– File complaints regarding the Operator's actions to the authorized body or take legal action.
– Exercise other rights provided by law.
4.2. Personal data subjects are obliged to:
– Provide accurate data about themselves.
– Inform the Operator about changes in their personal data.

5. The Operator May Process the Following Personal Data of the User:
5.1. Last name, first name, and patronymic (if applicable).
5.2. Phone number.
5.3. Email address.
5.4. Data on website visits (cookies, statistical data about user actions).
5.5. The processing of special categories of personal data related to race, ethnicity, political views, religious or philosophical beliefs, or intimate life is not carried out.

6. Principles of Personal Data Processing
6.1. Processing of personal data is carried out on a lawful and fair basis.
6.2. The processing of personal data is limited to achieving specific, predetermined, and legitimate purposes.
6.3. Combining databases containing personal data, the processing of which is carried out for purposes incompatible with each other, is not allowed.
6.4. Only personal data that meet the purposes of their processing shall be processed.
6.5. The content and volume of processed personal data must comply with the stated processing purposes.
6.6. The accuracy of personal data must be ensured, and data should be sufficient and up-to-date.
6.7. Personal data shall be stored in a form that permits the identification of the data subject, no longer than required for the purposes of the processing.

7. Purposes of Personal Data Processing of the User
7.1. Informing the User by sending notifications.
7.2. Providing the User with access to the resources, products, and services of the website.
7.3. Sending updates about new products and services, special offers, and other relevant information.

8. Conditions for Processing Personal Data
8.1. The processing of personal data is carried out with the consent of the subject of personal data to the processing of their personal data.
8.2. The processing of personal data is necessary for the execution of an agreement, to which the User is a party.
8.3. Processing is necessary for the fulfillment of legal obligations to which the Operator is subject.
8.4. The processing of personal data is necessary for the establishment, exercise, or defense of legal claims or in cases provided by the law.

9. Final Provisions
9.1. This Policy comes into force upon its publication on the website.
9.2. The Operator reserves the right to amend this Policy. Changes to the Policy become effective upon their publication on the website.
9.3. Users may direct all questions related to the processing of their personal data to the Operator through the contact details specified on the website.