×
Policy on the processing and protection of personal data of website users www.original-soft.pro
  1. General provisions
    1. This document defines the policy of Original Soft LLC (hereinafter referred to as the Company) in the field of processing and confidentiality of personal data of Website Visitors www.original-soft.pro (hereinafter referred to as the Site).
    2. This Policy has been developed in accordance with the current legislation of the Russian Federation on personal data.
    3. The Policy applies to all processes carried out by the Company and related to the processing of personal data, both with the use of automation tools, including on the Internet, and without the use of such tools. Such processes may include collection, recording, systematization, accumulation, storage, clarification (updating, modification), extraction, use, transfer (distribution, provision, access), depersonalization, blocking, deletion and destruction of personal data.
    4. By voluntarily submitting the requested personal data on the Site, the Visitor agrees to their collection and processing for the purposes and in the ways provided for in this Policy. The visitor can use the Site without providing any personal information.
    5. The company automatically receives and stores non-personal information obtained using the browser in the server logs. These may include the IP address, browser type, cookie information, and the address of the requested page. The Company may use this data to collect information about the actions of Visitors on the Site, to improve the quality of its content and features. The Company does not associate these non-personal data in any way with any personal information received from Visitors.
    6. The Company does not verify the accuracy of the personal data provided by the Visitor, relying on the good faith and reasonableness of the Visitor.
  2. Information processing purposes
    1. The main purpose of this Policy is to ensure the protection of information about Site Visitors, including personal data, from unauthorized access and disclosure.Also, the purpose of the Policy is the proper fulfillment of the Company's obligations to Visitors.
    2. The Company carries out processes related to the processing of personal data for the following purposes:
      1. When providing services – in order to properly fulfill the Company's obligations to Visitors, properly provide services, accept and process orders for the provision of such services, as well as in any other cases related to this action.
      2. When communicating with Visitors, in order to communicate with Visitors in a timely manner and provide them with any necessary reliable and complete information related to the Company's activities.
      3. When receiving feedback from Visitors – in order to obtain information about the loyalty and satisfaction of Visitors, further research and processing, as well as for the purpose of conducting research of any categories.
  3. The composition of the processed information
    1. Personal information: the Visitor's first and last name, phone number, e-mail; messages and requests from the Visitor.
    2. Non-personal information: IP address, browser type, cookie information, address of the requested page.
  4. Principles of personal data processing

    The processing of personal data is carried out on the basis of the following principles:

    1. A legitimate and fair basis for the processing of personal data.
    2. Processing of personal data in accordance with specific, predetermined and legitimate purposes.
    3. Preventing the consolidation of databases containing personal data, the processing of which is carried out for purposes incompatible with each other.
    4. Compliance of the content and volume of personal data with the stated purposes of processing.
    5. Accuracy, sufficiency, relevance and reliability of personal data.
    6. The legality of technical measures aimed at processing personal data.
    7. Reasonableness and expediency of personal data processing.
    8. A legitimate and reasonable period of storage of personal data.
  5. Terms of personal data processing
    1. Processing of personal data is allowed in the following cases:
      1. The processing of personal data is carried out with the consent of the Visitor to the processing of his personal data.
      2. The processing of personal data is necessary for the administration of justice, the execution of a judicial act, an act of another body or official subject to execution in accordance with the legislation of the Russian Federation on enforcement proceedings.
      3. The processing of personal data is necessary for the fulfillment of the Agreements to which the Visitor is a party.
      4. The processing of personal data is necessary to protect the life, health or other vital interests of the Visitor, if obtaining the consent of the Visitor is impossible.
      5. The processing of personal data is necessary to exercise the rights and legitimate interests of the Company or third parties, or to achieve socially significant goals, provided that the rights and freedoms of the Visitor are not violated.
      6. The processing of personal data is carried out for statistical or other research purposes, subject to mandatory depersonalization of personal data. The exception is the processing of personal data in order to promote goods, works, and services on the market by making direct contacts with a potential consumer through means of communication and within the framework of the Company's activities.
      7. The processing of personal data is carried out, access to which is provided to an unlimited number of persons by the Visitor, or at his request.
      8. Personal data subject to publication or mandatory disclosure is processed in accordance with the legislation of the Russian Federation.
    2. The Company processes personal data on its own. If the Company transfers the processing of personal data to third parties, the Company is responsible to the Visitor for the actions of such third parties. Third parties process personal data in accordance with this Policy and are responsible to the Company.
  6. Processing of personal data
    1. Collection of personal data.
      Automated collection of personal data is carried out when a Visitor sends a request through the Site. The composition of the information required to send a request is specified in clause 3.1. of this Policy.
    2. Storage and use of personal data.
      Personal data of Visitors is stored exclusively on properly protected electronic media and processed using automated systems, except in cases where non-automated processing of personal data is necessary in accordance with the legislation of the Russian Federation.
    3. Transfer of personal data.
      The Company guarantees that the personal data of Visitors is transferred to third parties only in accordance with the procedure provided for in this Policy.
      In other cases, the Visitor's personal data is not distributed or transferred to third parties.
      If the Visitor agrees or if the Visitor indicates, it is possible to transfer the User's personal data to third parties, but representing only the Company's counterparties.
      It is possible to provide personal data of Visitors at the request of government agencies, which is carried out in accordance with the procedure provided for by the legislation of the Russian Federation.
  7. Protection of personal information
    1. Security measures.
      To protect the personal data of Visitors from illegal or accidental access, collection, storage, use, transfer, blocking or destruction, as well as from other similar actions, the Company takes technical and organizational and legal measures, part of which is this Policy.
    2. Confidentiality of the information provided.
      The Company undertakes and obliges third parties, in case they transfer the right to process the Visitor's personal data, to respect the confidentiality regime with respect to the Visitor's personal data and not to use personal data without the Visitor's consent, except as provided for in this Policy.
  8. User rights
    1. The visitor always has the right to receive information about the processing of personal data about him, including information containing:
      1. confirmation of the processing of personal data;
      2. legal grounds for processing personal data;
      3. purposes and methods of personal data processing used by the Company;
      4. the name and location of the Company, information about persons (with the exception of employees of the Company) who have access to personal data or to whom personal data may be disclosed on the basis of an agreement with the Company or in accordance with the legislation of the Russian Federation;
      5. the processed personal data related to the relevant Visitor, the source of their receipt, unless another procedure for submitting such data is provided for by the legislation of the Russian Federation;
      6. terms of processing of personal data, including the terms of their storage;
      7. the procedure for the User to exercise the rights provided for by the legislation of the Russian Federation;
      8. information on the transborder data transfer that has been carried out or is expected to be carried out;
      9. the name or surname, first name, patronymic and address of the person who processes personal data on behalf of the Company, if processing is entrusted or will be entrusted to such a person;
      10. other information provided for by the legislation of the Russian Federation.
    2. The Visitor has the right to receive the information specified in Article 8.1. of this Policy an unlimited number of times.
    3. If a Visitor believes that the Company processes his personal data in violation of the requirements of the Federal Law "On Personal Data" or otherwise violates his rights and freedoms, the Visitor has the right to appeal the actions or omissions of the Company to the authorized body for the protection of the rights of personal data subjects or in court.
  9. Responsibilities of the Company

    In accordance with the requirements of the Federal Law "On Personal Data", the Company is obliged to:

    1. to provide the Visitor, at his request, with information related to the processing of his personal data and specified in clause 8.1. of this Policy, or to provide the Visitor with a reasonable refusal;
    2. if the Visitor's personal data is not received by the Company from the Visitor, the Company is obliged to notify the Visitor in any way before processing such data and provide him with information about the person who provided such personal data;
    3. to take measures necessary and sufficient to ensure the fulfillment of the obligations provided for in this Policy and the Federal Law "On Personal Data";
    4. when processing personal data, take the necessary legal, organizational and technical measures or ensure that they are taken to protect personal data from unlawful or accidental access to them, destruction, modification, blocking, copying, provision, dissemination of personal data, as well as from other unlawful actions with respect to personal data;
    5. at the request of the Visitor, clarify the personal data being processed, block or delete if the personal data is incomplete, outdated, inaccurate, illegally obtained or is not necessary for the stated purpose of processing;
    6. keep a Register of Visitors' requests, which should record Visitors' requests for personal data, as well as the facts of providing personal data on these requests;
    7. to ensure the legality of the processing of personal data. If it is impossible to ensure the legality of the processing of personal data, the Company is obliged to destroy such personal data or ensure their destruction within a period not exceeding ten working days from the date of detection of unlawful processing of personal data;
    8. if the Visitor withdraws consent to the processing of his personal data, stop processing personal data and destroy personal data within a period not exceeding thirty days from the date of receipt of the specified recall. The Company is obliged to notify the Visitor about the destruction of personal data.
  10. Foreign users
    1. The Company is obliged to ensure that the foreign state into whose territory the transfer of personal data is carried out ensures adequate protection of the rights of the Visitor before the start of the cross-border transfer of personal data.
    2. Cross-border transfer of personal data on the territory of foreign states that do not adequately protect the rights of personal data subjects may be carried out in the following cases:
      1. the written consent of the Visitor to the cross-border transfer of his personal data;
      2. provided for by international treaties of the Russian Federation;
      3. provided for by federal laws, if necessary in order to protect the foundations of the constitutional order of the Russian Federation, ensure the defense of the country and the security of the state, as well as ensure the safety of the stable and safe functioning of the transport complex, protect the interests of the individual, society and the state in the field of transport complex from acts of unlawful interference;
      4. execution of the agreement to which the Visitor is a party;
      5. protection of the life, health, and other vital interests of the Visitor or other persons if it is impossible to obtain written consent from the Visitor.
  11. Limitation of the Policy
    1. The actions of this Policy relate exclusively to the Site and do not apply to the actions, mobile applications and Internet sites of third parties.
  12. The procedure for putting into effect and changing the Policy
    1. The Policy comes into force from the moment of its approval by the CEO of the Company and is valid indefinitely, until it is replaced by a new Policy.
    2. This version of the Policy is the current version and is a public document. The Company has the right to make any changes to the Policy at any time. In case of changes to the Policy, the Company is obliged to notify Users about this by posting a new version at the same address, but no later than 10 days before the relevant changes take effect.
TraceWay
TraceWay

India Dietary Supplements Import Automation

Interaction of Russian importer with three foreign manufacturers and sending reports to GIS MT in single window mode

GIS MT Importer requirements

Importer, as the holder of the registration certificate, is obliged to order marking codes (MC) in “Chestny Znak” and transfer them to the foreign Dietary Supplement manufacturing plant. Then, within 30 days, LC application report must be made. Following this, the product must pass through customs procedures and be accepted before a report is made to the GIS MT on the introduction of the Dietary Supplements batch into circulation.

These processes were previously unknown to our customer.

Project realization peculiarities

Customer required a one-stop solution that would connect it with the Manufacturing plant and the GIS MT system.

Project Features:

  • This was the first time the customer had to label dietary supplements. Before this, it had not worked directly with GIS MT.
  • Production and marking of Dietary Supplements at three Indian manufacturing plants with different software and equipment. Therefore, it is near impossible to implement a “Universal Integration Solution”.

What Original Soft team did

  1. We have conducted a preliminary analysis of integration for each Indian plant.
  2. Two of the three plants have integrated with TraceWay using API. Now Importer only needs to order codes in TraceWay. The order is automatically forwarded from our system to the plant software. At the end of production, information about application and aggregation results is automatically transferred to TraceWay, without the need to send or upload anything manually. TraceWay generates necessary reports for GIS MT based on the data received.
  3. The existing software on one plant was not compatible with API integration.. Therefore, manual data transfer from TraceWay to the plant software and back was suggested. Due to the fact that TraceWay allows uploading the array of marking codes in different formats, it was possible to quickly find a suitable variant of file format. As soon as production of a batch is completed, the plant sends a file with a report of the applied and aggregated codes. This file is then loaded into TraceWay, which further generates reports for GIS MT.
  4. As part of Solution for imports to Russia, we have developed an “import acceptance” function. When importing products to Russia, Importer enters data of customs clearance results and scans the accepted codes. Then, TraceWay reports to GIS MT about the entry of products into circulation. After acceptance, codes can be used for any logistical operations. For example, boxes can be removed from pallets and new pallets can be assembled for further shipment to the customer. Data on these operations is stored in TraceWay operation history and gets sent to GIS MT if necessary.

Thus, one more participant of trade flow joined the process of marking and traceability of Dietary Supplements in the Russian Federation.

We accompanied the customer at every stage, from ordering the codes to putting the products into circulation. We helped to deploy the system on the customer’s server and instructed everyone involved. We now provide round-the-clock support services.