icon
globe picture
Personal Data Regulation

1. General Provisions

1.1. This Regulation establishes the procedure for processing and protecting personal data of clients (and other individuals) of BRAINWAVES ENGINEERING LLC (hereinafter – the Company).

1.2. This Regulation is governed by the Constitution of the Russian Federation, Federal Law No. 149-FZ of July 27, 2006 "On Information, Information Technologies and Information Protection," Federal Law No. 152-FZ of July 27, 2006 "On Personal Data" (hereinafter – the Federal Law), Decree of the Government of the Russian Federation No. 1119 of November 1, 2012 "On Approval of Requirements for Personal Data Protection During Their Processing in Personal Data Information Systems," Decree of the Government of the Russian Federation No. 687 of September 15, 2008 "On Approval of the Regulation on the Specifics of Personal Data Processing Carried Out Without the Use of Automation Tools," and other regulatory legal acts.

1.3. Basic concepts used in the Regulation:

- Personal Data — any information relating directly or indirectly to a specific or identifiable individual (personal data subject (hereinafter – PD Subject));

- Operator — Brainwaves Engineering Limited Liability Company;

- Processing of Personal Data — any action (operation) or set of actions (operations) performed with or without the use of automation tools with personal data, including collection, recording, systematization, accumulation, storage, updating (refreshing, changing), extraction, use, transfer (distribution, provision, access), anonymization, blocking, deletion, destruction of personal data;

- Automated Processing of Personal Data — processing of personal data using computer technology;

- Protection of Personal Data — the Company's activities to ensure the confidentiality of information through local regulation of the personal data processing procedure and organizational and technical measures;

- Distribution of Personal Data — actions aimed at disclosing personal data to an indefinite circle of persons;

- Provision of Personal Data — actions aimed at disclosing personal data to a specific person or a specific circle of persons;

- Blocking of Personal Data — temporary cessation of personal data processing (except for cases where processing is necessary to clarify personal data);

- Destruction of Personal Data — actions that make it impossible to restore the content of personal data in the personal data information system and/or as a result of which the physical media of personal data are destroyed;

- Anonymization of Personal Data — actions that make it impossible, without the use of additional information, to determine the ownership of personal data to a specific personal data subject;

- Personal Data Information System — a set of personal data contained in databases and information technologies and technical means ensuring their processing;

- Cross-border Transfer of Personal Data — transfer of personal data to the territory of a foreign state to a foreign government authority, a foreign individual, or a foreign legal entity.

1.4. The purpose of this Regulation is to ensure the protection of human and civil rights and freedoms when processing their personal data. This Regulation establishes mandatory general requirements and rules for all Company employees regarding work with all types of information media containing personal data of PD Subjects.

1.5. This Regulation is approved by the Head of the Company and is mandatory for all employees who have access to personal data of PD Subjects.

2. Principles of Personal Data Processing

2.1. Personal data processing is carried out in compliance with the principles and rules stipulated by this Regulation and the legislation of the Russian Federation.

2.2. To ensure human and civil rights and freedoms, the Operator, when processing personal data of a PD Subject, must comply with the following general requirements:

2.2.1. Processing of personal data of a PD Subject must be carried out on a legal and fair basis.

2.2.2. When determining the scope and content of processed personal data, the Operator must be guided by the Constitution of the Russian Federation and other regulatory legal acts.

2.2.3. Personal data processing must be limited to achieving specific, predetermined, and legitimate purposes. Processing of personal data incompatible with the purposes of collecting personal data is not allowed.

2.2.4. Merging databases containing personal data processed for purposes incompatible with each other is not allowed.

2.2.5. Only personal data that meets the purposes of their processing is subject to processing.

2.2.6. The content and scope of processed personal data must correspond to the stated purposes of processing. Processed personal data must not be excessive in relation to the stated purposes of their processing.

2.2.7. When processing personal data, the accuracy of personal data, their sufficiency, and, where necessary, their relevance in relation to the purposes of personal data processing must be ensured. The Operator must take necessary measures or ensure they are taken to delete or clarify incomplete or inaccurate data.

2.2.8. Personal data should be obtained directly from the PD Subject.

2.2.9. It is prohibited to obtain and process personal data of a PD Subject concerning their political, religious, and other beliefs, private life, membership in public associations, or trade union activities, except for cases provided for by the legislation of the Russian Federation.

2.3. Personal data processing is carried out with the consent of personal data subjects to the processing of their personal data, as well as without such consent in cases provided for by the legislation of the Russian Federation.

3. Purposes of Collection, Scope, and Categories of Processed Personal Data

3.1. Processing of personal data in the Company is carried out through collection, recording, systematization, accumulation, storage, updating (refreshing, changing), extraction, use, transfer (provision, access), blocking, deletion, destruction of personal data solely to ensure compliance with federal legislation and other regulatory legal acts, aligning with the purposes predetermined and stated during the collection of personal data.

3.2. The Operator processes personal data for the following purposes:

3.2.1. Provision of services under contracts with clients (counterparties) in the field of scientific research and development in biotechnology.

3.2.2. Ensuring timely and comprehensive consideration of oral and written requests from the personal data subject.

3.2.3. Fulfilling requests from authorized state and municipal bodies, including operational-investigative bodies.

3.2.4. Maintaining personnel and accounting records.

3.2.5. Recruiting personnel (candidates) for vacant positions of the PD Operator.

3.2.6. Ensuring compliance with labor, tax, and pension legislation.

3.2.7. Creation and operation of a social network.

3.3. For the purposes specified in clause 3.2.1, the Operator processes the following categories of PD Subjects:

- Counterparties;

- Representatives of counterparties;

- Clients, including users and visitors of information platforms, devices, and other information spaces created by the Operator;

- Legal representatives;

- Users of the information platform, including bloggers, content authors;

- Persons in civil-law relations with the Operator;

- Persons whose personal data is processed in connection with the performance of functions, powers, and duties assigned to the Operator by the legislation of the Russian Federation.

For this category of PD Subjects, the Operator processes the following categories of personal data:

General categories of personal data:

- Last name, first name, patronymic;

- Year, month, date of birth;

- Place of birth;

- Marital status;

- Income;

- Gender;

- Residential address;

- Registration address;

- Phone number;

- Email address;

- SNILS (individual insurance account number);

- INN (taxpayer identification number);

- Citizenship;

- Identity document data;

- Data of an identity document for travel outside the Russian Federation;

- Driver's license data;

- Data from a birth certificate;

- Bank card details;

- Bank account number;

- Personal account number;

- Profession;

- Position;

- Employment history information;

- Attitude to military service, military registration information;

- Data collected via metric programs;

- Education information;

Special categories of personal data:

- Health status information;

Other categories of personal data:

- Information about marriage (dissolution);

- Information from title documents for real estate.

3.4. The legal basis for processing personal data for the purposes specified in clause 3.2.1 is:

- The Constitution of the Russian Federation, the Civil Code of the Russian Federation, the Tax Code of the Russian Federation, Federal Law No. 402-FZ of December 6, 2011 "On Accounting," Federal Law No. 115-FZ of August 7, 2001 "On Counteracting the Legalization (Laundering) of Proceeds from Crime and the Financing of Terrorism," and other regulatory legal acts regulating relations related to the Company's activities;

- Founding documents of the Company;

- Contracts concluded between the Company and the PD Subject;

- Consent to the processing of personal data (in cases not directly provided for by the legislation of the Russian Federation but consistent with the Operator's powers).

3.5. For the purposes specified in clause 3.2.2, the Operator processes the following categories of PD Subjects: Persons who have contacted the Operator with an appeal or complaint.

For this category of PD Subjects, the Operator processes the following categories of personal data:

- Last name, first name, patronymic;

- Other personal data specified in the appeal, as well as those that became known during the consideration of the appeal.

3.6. The legal basis for processing personal data for the purposes specified in clause 3.2.2 is that the processing of personal data is necessary for the implementation and performance of the functions, powers, and duties assigned to the Operator by the legislation of the Russian Federation.

3.7. For the purposes specified in clause 3.2.3, the Operator processes the following categories of PD Subjects: Persons whose personal data is processed in connection with the execution of a request.

For this category of PD Subjects, the Operator processes the following categories of personal data:

- Personal data specified in the request of an authorized state or municipal body, including operational-investigative bodies, as well as those that became known during the execution of the request.

3.8. The legal basis for processing personal data for the purposes specified in clause 3.2.3 is that the processing of personal data is necessary for the implementation and performance of the functions, powers, and duties assigned to the Operator by the legislation of the Russian Federation.

3.9. For the purposes specified in clauses 3.2.4–3.2.6, the Operator processes the following categories of PD Subjects:

- Last name, first name, patronymic;

- Year of birth;

- Month of birth;

- Date of birth;

- Place of birth;

- Social status;

- Income;

- Gender;

- Email address;

- Registration address;

- SNILS;

- INN;

- Citizenship;

- Identity document data.

3.9.1. Within the scope of the purpose specified in clause 3.2.7 (social network), the Operator processes the following special categories of personal data:

1. Data provided by the User:

- Name (not necessarily real, not unique), Username (not necessarily real, unique);

- Contact details: Email address;

- Account password;

- Date of birth;

- Images: photos (avatar, feed photos), video recordings with a person's facial image, voice messages;

- Country of residence;

- User's profession;

- List of interests;

- Links to other social networks;

- Additional data that is not identifying and reflects the user's interests (work experience, salary, position).

2. Automatically generated data (Technical):

- Cookies: (Technical, analytical, advertising);

- Device data: IP address, browser type and version, operating system, device model, unique identifiers (IDFA, GAID);

- Location data.

3. Activity data (Behavioral):

- User content (post texts, comments, private messages);

- Information about subscriptions, likes, reposts;

- Search query history;

- List of friends, subscriptions, and followers.

3.10. The Operator processes personal data for the purposes specified in clauses 3.2.1–3.2.7 using a mixed method (using automation tools and without using them).

3.11. The Operator does not carry out cross-border transfer of personal data of PD Subjects.

3.12. Terms of processing and storage of personal data:

3.12.1. Processing of personal data in the Company ceases in the following cases:

- When a fact of unlawful processing of personal data is identified;

- When the purposes of their processing are achieved;

- Upon expiration of the validity period or upon withdrawal by the PD Subject of consent to the processing of their personal data, subject to the conditions provided for in Article 21 of the Federal Law;

- When the PD Subject requests the Operator to cease processing personal data, except for the cases provided for in Part 5.1 of Article 21 of the Federal Law.

3.12.2. Personal data is stored in a form that allows identifying the personal data subject no longer than required by the purposes of their processing, except for cases where the storage period for personal data is established by federal law or a contract to which the personal data subject is a party.

3.12.3. Personal data of PD Subjects on paper is stored in the Company for the storage periods of documents for which these periods are stipulated by the legislation on archiving in the Russian Federation (Federal Law No. 125-FZ of October 22, 2004 "On Archiving in the Russian Federation," the List of standard managerial archival documents generated in the activities of state bodies, local self-government bodies, and organizations, indicating their storage periods (approved by Order of the Federal Archive Agency No. 236 of December 20, 2019)).

3.12.4. The storage period for personal data of a PD Subject processed in personal data information systems corresponds to the storage period for personal data on paper.

4. Organization of Personal Data Protection

4.1. Protection of personal data of a PD Subject from unlawful use or loss is ensured by the Operator in accordance with the procedure established by the legislation of the Russian Federation.

4.2. When processing personal data, the Operator:

- Ensures a security regime for premises where the information system is located, preventing the possibility of uncontrolled entry or stay of persons without access rights in these premises;

- Ensures the safety of personal data media;

- Approves the list of employees whose access to personal data processed in the information system is necessary for them to perform their official (labor) duties;

- Uses information security means that have passed the conformity assessment procedure to the requirements of the legislation of the Russian Federation in the field of information security assurance;

- Appoints an official (employee) responsible for ensuring the security of personal data in the information system.

4.3. Information about PD Subjects is stored on paper in the Company's premises. Specially equipped cabinets and safes are used to store media, which are locked, sealed, and handed over for security.

4.4. Personal data of a PD Subject in electronic form is stored in the Operator's local computer network, in electronic folders and files on the personal computers of the Operator and employees authorized to process personal data of PD Subjects and protected by an individual password. Disclosure of the access password to an Operator employee's personal computer is not allowed.

4.5. All confidentiality measures during the collection, processing, and storage of personal data apply to both paper and electronic (automated) information media.

4.6. Only Operator employees who are authorized to work with personal data of PD Subjects and have signed a non-disclosure agreement regarding personal data of PD Subjects may have access to the processing of personal data of a PD Subject.

4.7. Operator employees who have access to personal data of PD Subjects perform actions related to the processing of personal data according to business necessity and their assigned functions within the framework of their job descriptions.

4.8. The following are subject to protection:

4.8.1. Information about personal data of the PD Subject.

4.8.2. Paper documents containing personal data of the PD Subject.

4.8.3. Personal data contained on electronic media.

4.9. The Operator takes necessary legal, organizational, and technical measures or ensures their adoption to protect personal data of a PD Subject from unlawful or accidental access, destruction, alteration, blocking, copying, provision, distribution of personal data, as well as from other unlawful actions regarding personal data in accordance with Article 19 of the Federal Law, in particular:

1) Identifies threats to the security of personal data during their processing in personal data information systems;

2) Applies organizational and technical measures to ensure the security of personal data during their processing in personal data information systems, necessary to meet the requirements for the protection of personal data, the implementation of which ensures the levels of personal data protection established by the Government of the Russian Federation;

3) Applies information security tools that have undergone the conformity assessment procedure in the established manner;

3.1) Applies information security tools for the destruction of personal data that have undergone the conformity assessment procedure in the established manner, in which the information destruction function is implemented;

4) Assesses the effectiveness of measures taken to ensure the security of personal data before putting the personal data information system into operation;

5) Maintains records of machine-readable personal data media;

6) Searches for facts of unauthorized access to personal data and takes measures, including measures to detect, prevent, and eliminate the consequences of computer attacks on personal data information systems and to respond to computer incidents in them;

7) Restores personal data modified or destroyed due to unauthorized access;

8) Establishes rules for access to personal data processed in the personal data information system, and also ensures registration and recording of all actions performed with personal data in the personal data information system;

9) Monitors the measures taken to ensure the security of personal data and the level of protection of personal data information systems.

4.10. The Operator carries out internal control and/or audit of the compliance of personal data processing with the Federal Law and regulatory legal acts adopted in accordance with it, personal data protection requirements, the Operator's policy regarding personal data processing, and the Operator's local acts.

4.11. Responsible persons of the relevant departments storing personal data of PD Subjects on paper and machine-readable information media ensure their protection from unauthorized access and copying in accordance with the "Regulation on the Specifics of Personal Data Processing Carried Out Without the Use of Automation Tools," approved by Decree of the Government of the Russian Federation No. 687 of September 15, 2008.

4.12. Responsible persons of structural divisions processing personal data of PD Subjects in personal data information systems and on machine-readable information media ensure protection in accordance with the Requirements for the Protection of Personal Data during their Processing in Personal Data Information Systems, approved by Decree of the Government of the Russian Federation No. 1119 of November 1, 2012.

5. Transfer of Personal Data

5.1. When transferring personal data of a PD Subject, the Company complies with the following requirements:

- Does not disclose personal data of the PD Subject to a third party without their written consent, except when necessary to prevent a threat to the life and health of the PD Subject, as well as in other cases established by federal laws;

- Does not disclose personal data of the PD Subject for commercial purposes without their written consent;

- Warns persons receiving personal data of the PD Subject that this data may only be used for the purposes for which it was disclosed, and requires these persons to confirm that this rule is observed;

- Persons receiving personal data of the PD Subject must maintain confidentiality;

- Allows access to personal data of the PD Subject only to specifically authorized persons, and these persons must have the right to receive only that personal data of the PD Subject necessary to perform specific functions;

- Does not request information about the health status of the PD Subject.

5.2. All information about the transfer of personal data of a PD Subject is recorded to monitor the legality of the use of this information by the persons who received it.

5.3. Transfer of personal data upon requests from third parties, if such transfer is not directly provided for by the legislation of the Russian Federation, is permitted only with the consent of the PD Subject to the processing of their personal data in terms of their provision or consent to the distribution of personal data.

5.4. Transfer of information containing personal data of a PD Subject by phone, due to the impossibility of identifying the person requesting the information, is prohibited.

6. Obligations of the Operator and the PD Subject

6.1. The Operator undertakes to:

6.1.1. Ensure at its own expense the protection of personal data of the PD Subject from unlawful use or loss in accordance with the procedure established by the legislation of the Russian Federation.

6.1.2. Process personal data of the PD Subject solely for the purpose of providing lawful services to the PD Subject.

6.1.3. Take measures necessary and sufficient to ensure the fulfillment of duties provided for by the Federal Law and regulatory legal acts adopted in accordance with it. Such measures include, in particular: 1) Appointment by the Operator of a person responsible for organizing the processing of personal data; 2) Issuance by the Operator of documents defining its policy regarding the processing of personal data, local acts on the processing of personal data; 3) Application of legal, organizational, and technical measures to ensure the security of personal data; 4) Implementation of internal control and/or audit of compliance of personal data processing with the Federal Law; 5) Assessment of harm that may be caused to personal data subjects; 6) Familiarization of the Operator's employees directly involved in the processing of personal data with the provisions of the legislation of the Russian Federation on personal data.

6.1.4. Obtain personal data of the PD Subject directly from themselves. If personal data of the PD Subject can only be obtained from a third party, the PD Subject must be notified of this in advance and their written consent must be obtained.

6.1.5. Explain to the PD Subject the legal consequences of refusing to provide their personal data and/or give consent to their processing, if, in accordance with the Federal Law, the provision of personal data and/or obtaining the Operator's consent to the processing of personal data is mandatory.

6.1.6. Not receive or process personal data of the PD Subject concerning their racial or national origin, political views, religious or philosophical beliefs, health status, intimate life, except for cases provided for by law.

6.1.7. In the event of termination of the Operator's activities, ensure the recording and safety of documents, the procedure for their transfer to state storage in accordance with the rules provided for by the current legislation of the Russian Federation.

6.1.8. Upon request of the PD Subject or their legal representative, provide complete information about their personal data and the processing of this data.

6.2. To ensure the accuracy of personal data, the PD Subject undertakes to: When concluding a contract with the Company, provide the Company with complete and accurate data about themselves; In case of changes in the information constituting the PD Subject's personal data, provide this information to the Company within 14 calendar days.

7. Rights of the PD Subject to Protect Their Personal Data

7.1. The PD Subject, in order to protect their personal data stored by the Operator, has the right to:

- Full information about their personal data and the processing of this data, including: confirmation of the fact of personal data processing; legal grounds and purposes of personal data processing; purposes and methods of personal data processing used by the Operator; terms of personal data processing, including storage periods; information about the carried out or intended cross-border data transfer; the name or last name, first name, patronymic, and address of the person processing personal data on behalf of the Operator;

- Free access to their personal data, including the right to receive copies of any record containing the PD Subject's personal data, except for cases provided for by federal law;

- Determine their representatives to protect their personal data;

- Demand the exclusion or correction of incorrect or incomplete personal data, as well as data processed in violation of the requirements of the Federal Law;

- Demand that the organization notify all persons to whom incorrect or incomplete personal data of the PD Subject was previously communicated of all exclusions, corrections, or additions made to them;

- Appeal in court any unlawful actions or inaction of the Operator during the processing and protection of personal data.

7.2. The PD Subject has the right to protect their rights and legitimate interests, including compensation for losses and/or compensation for moral damage in court.

8. Procedure for Destruction and Blocking of Personal Data

8.1. In the event of unlawful processing of personal data being identified upon a request from the PD Subject, the Operator is obliged to block the unlawfully processed personal data relating to this PD Subject, or ensure their blocking, from the moment of such request for the period of verification.

8.2. In the event of inaccurate personal data being identified upon a request from the PD Subject, the Operator is obliged to block the personal data relating to this PD Subject, or ensure their blocking, from the moment of such request for the period of verification, if blocking the personal data does not violate the rights and legitimate interests of the PD Subject or third parties.

8.3. Upon confirmation of the fact of inaccuracy of personal data, the Operator, based on information provided by the PD Subject or other necessary documents, is obliged to clarify the personal data, or ensure their clarification, within seven working days from the date of submission of such information, and unblock the personal data.

8.4. In the event of unlawful processing of personal data being identified, carried out by the Operator, the Operator is obliged to cease the unlawful processing of personal data within a period not exceeding three working days from the date of this identification.

8.5. If it is impossible to ensure the lawfulness of personal data processing, the Operator is obliged to destroy such personal data within a period not exceeding ten working days from the date of identification of the unlawful processing of personal data. The Operator is obliged to notify the PD Subject of the elimination of the violations or the destruction of the personal data.

8.6. In the event of an established fact of unlawful or accidental transfer (provision, distribution, access) of personal data resulting in a violation of the rights of the PD Subject, the Operator is obliged to notify the authorized body for the protection of the rights of personal data subjects of the incident within 24 hours, and within 72 hours, report the results of the internal investigation of the identified incident.

8.7. Upon achieving the purpose of processing personal data, the Operator is obliged to cease processing the personal data and destroy the personal data within a period not exceeding thirty days from the date of achieving the purpose of processing personal data, unless otherwise provided by the contract to which the PD Subject is a party, beneficiary, or guarantor.

8.8. Upon withdrawal by the PD Subject of consent to the processing of their personal data, the Operator is obliged to cease their processing, or ensure the cessation of such processing, and if the retention of personal data is no longer required for the purposes of personal data processing, destroy the personal data within a period not exceeding thirty days from the date of receipt of said withdrawal, unless otherwise provided by the contract to which the PD Subject is a party, beneficiary, or guarantor, by another agreement between the Operator and the PD Subject, or if the Operator is not entitled to process personal data without the consent of the PD Subject on the grounds provided for by the Federal Law.

8.9. In the event of a request from the PD Subject to the Operator to cease processing personal data, the Operator is obliged, within a period not exceeding ten working days from the date of receipt of the relevant request, to cease their processing, or ensure the cessation of such processing, except for cases provided for by the Federal Law. This period may be extended, but by no more than five working days, if the Operator sends a reasoned notification to the PD Subject indicating the reasons for extending the period for providing the requested information.

8.10. If it is impossible to destroy personal data within the period specified in clauses 8.4–8.9 of this Regulation, the Operator blocks such personal data and ensures the destruction of personal data within a period not exceeding six months, unless a different period is established by federal laws.

8.11. After the expiration of the standard storage period for documents containing personal data of a PD Subject, or upon the occurrence of other legal grounds, the documents are subject to destruction.

8.12. For these purposes, the Operator creates an expert commission, the composition of which is determined by the Head of the Company.

8.13. The commission draws up a list indicating the documents, other physical media, and/or information in information systems containing personal data that are subject to destruction.

8.14. The destruction of personal data must be carried out in a manner that excludes the possibility of restoring these personal data on the medium: Personal data on paper is destroyed by shredding; Personal data on electronic media is destroyed by mechanically breaking the integrity of the medium, preventing the reading or restoration of personal data, as well as by deleting data from electronic media using methods and means of guaranteed deletion of residual information.

8.15. The fact of destruction of personal data, according to the Requirements for Confirmation of Destruction of Personal Data, approved by Order of Roskomnadzor No. 179 of October 28, 2022, is confirmed by an act of destruction of personal data and an extract from the event log in the personal data information system.

8.16. The act may be drawn up on paper or in electronic form signed with an electronic signature.

8.17. The act of destruction of personal data and the extract from the log are subject to storage for 3 years from the date of destruction of the personal data.

8.18. The form of the act and the extract from the log, taking into account the information that must be contained in these documents, is approved by order of the Head of the Company.

9. Responsibility for Violation of Norms Regulating Personal Data Processing

9.1. The Company is responsible for the personal information in its possession and establishes personal responsibility of employees for compliance with the established confidentiality regime.

9.2. Each employee who receives a document containing personal data of a PD Subject for work bears sole responsibility for the safety of the medium and the confidentiality of the information.

9.3. Any person may contact the Operator with a complaint about a violation of the norms of this Regulation and applicable legislation on personal data protection. Complaints and statements regarding compliance with data processing requirements are considered within ten days from the date of their receipt.

9.4. Persons guilty of violating the norms regulating the receipt, processing, and protection of personal data of a PD Subject bear disciplinary, administrative, civil, or criminal liability in accordance with federal laws.

10. Final Provisions

10.1. This Regulation comes into force from the moment of its approval.

10.2. This Regulation is subject to adjustment in case of changes in the legislation of the Russian Federation, regulatory bodies in the field of personal data protection, or internal documents of the Company in the field of confidential information protection.

10.3. In case of changes in the legislation of the Russian Federation in the field of personal data protection, the provisions of the Regulation that contradict the legislation shall not apply until they are brought into compliance.

10.4. The Company ensures unlimited access to this document.

10.5. This Regulation is communicated to all employees of the Company who have access to personal data of PD Subjects, personally against signature.

Privacy Policy

1. General Provisions

1.1. This Policy has been developed in accordance with the provisions of Federal Law No. 152-FZ of July 27, 2006 "On Personal Data" (hereinafter – the Federal Law), Federal Law No. 149-FZ of July 27, 2006 "On Information, Information Technologies and Information Protection" in order to ensure the protection of the rights and freedoms of the personal data subject during the processing of their personal data, including the protection of the rights to privacy, personal, and family secrets.

1.2. This Policy defines the main issues related to the processing of personal data in BRAINWAVES ENGINEERING LLC (hereinafter – the Company or Operator) using automation tools, including in information and telecommunication networks, or without using such means.

1.3. Information constituting personal data is any information relating directly or indirectly to a specific or identifiable individual (personal data subject).

1.4. The Operator who has gained access to personal data must maintain the confidentiality of personal data – not disclose it to third parties or distribute personal data without the consent of the personal data subject, unless otherwise provided by the Federal Law.

1.5. The personal data subject has the right to receive information concerning the processing of their personal data, including information containing:

- Confirmation of the fact of personal data processing by the operator;

- Legal grounds and purposes of personal data processing;

- Purposes and methods of personal data processing used by the operator;

- Name and location of the Operator, information about persons (except for the operator's employees) who have access to personal data or to whom personal data may be disclosed on the basis of a contract with the operator or on the basis of the Federal Law;

- Processed personal data relating to the relevant personal data subject, the source of their receipt, unless a different procedure for providing such data is provided for by the Federal Law;

- Terms of personal data processing, including storage periods;

- The procedure for exercising by the personal data subject the rights provided for by the Federal Law;

- Information about the carried out or intended cross-border data transfer;

- The name or last name, first name, patronymic, and address of the person processing personal data on behalf of the Operator, if processing is or will be entrusted to such a person;

- Information on how the Operator fulfills the duties established by Article 19 of Federal Law No. 152-FZ;

- Other information provided for by the Federal Law or other federal laws.

1.6. The personal data subject has the right to demand that the Operator clarify their personal data, block or destroy it if the personal data is incomplete, outdated, inaccurate, illegally obtained, or not necessary for the stated purpose of processing, as well as take measures provided by law to protect their rights.

1.7. The personal data subject has the right to protect their rights and legitimate interests, including compensation for losses and/or compensation for moral damage in court.

1.8. The Operator has the right to:

- Defend its interests in court;

- Provide personal data of subjects to third parties, if this is provided for by applicable law (tax, law enforcement agencies, etc.);

- Refuse to provide personal data in cases provided for by law;

- Use the personal data of the subject without their consent in cases provided for by law.

1.9. When collecting personal data, the Operator is obliged to provide the personal data subject, upon their request, with the information provided for in Part 7 of Article 14 of Federal Law No. 152-FZ.

1.10. When collecting personal data, including via the information and telecommunication network "Internet," the Operator is obliged to ensure the recording, systematization, accumulation, storage, updating (refreshing, changing), and retrieval of personal data of citizens of the Russian Federation using databases located on the territory of the Russian Federation, except for cases provided for by the Federal Law.

2. Purposes of Personal Data Collection

2.1. The Company processes personal data for the following purposes:

2.1.1. Provision of services under contracts with clients (counterparties) in the field of scientific research and development in biotechnology.

2.1.2. Ensuring timely and comprehensive consideration of oral and written requests from the personal data subject.

2.1.3. Fulfilling requests from authorized state and municipal bodies, including operational-investigative bodies.

2.1.4. Maintaining personnel and accounting records.

2.1.5. Recruiting personnel (candidates) for vacant positions of the PD Operator.

2.1.6. Ensuring compliance with labor, tax, and pension legislation.

2.1.7. Creation and operation of a social network.

2.2. Processing of personal data is permitted in cases where:

- Processing is carried out with the consent of the personal data subject;

- Processing is necessary for the implementation and performance of functions, powers, and duties assigned by the legislation of the Russian Federation to the operator;

- Processing is necessary for the execution of a contract to which the personal data subject is a party, beneficiary, or guarantor, as well as for concluding a contract on the initiative of the personal data subject;

- Processing is necessary to protect the life, health, or other vital interests of the personal data subject, if obtaining the consent of the personal data subject is impossible;

- Processing is necessary for the exercise of the rights and legitimate interests of the Company or third parties, or for achieving socially significant goals, provided that the rights and freedoms of the personal data subject are not violated;

- Processing is necessary for scientific, literary, or other creative activities, provided that the rights and legitimate interests of the personal data subject are not violated;

- Processing is carried out for statistical or other research purposes, subject to the mandatory anonymization of personal data;

- Processing of personal data subject to publication or mandatory disclosure in accordance with law is carried out.

3. Scope and Categories of Processed Personal Data, Categories of Personal Data Subjects

3.1. For the purposes specified in clause 2.1.1, the Operator processes the following categories of PD Subjects:

- Counterparties;

- Representatives of counterparties;

- Clients, including users and visitors of information platforms, devices, and other information spaces created by the Operator;

- Legal representatives;

- Users of the information platform, including bloggers, content authors;

- Persons in civil-law relations with the Operator;

- Persons whose personal data is processed in connection with the performance of functions, powers, and duties assigned to the Operator by the legislation of the Russian Federation.

For this category of PD Subjects, the Operator processes the following categories of personal data:

General categories of personal data:

- Last name, first name, patronymic;

- Year, month, date of birth;

- Place of birth;

- Marital status;

- Income;

- Gender;

- Residential address;

- Registration address;

- Phone number;

- Email address;

- SNILS;

- INN;

- Citizenship;

- Identity document data;

- Data of an identity document for travel outside the Russian Federation;

- Driver's license data;

- Data from a birth certificate;

- Bank card details;

- Bank account number;

- Personal account number;

- Profession;

- Position;

- Employment history information;

- Attitude to military service, military registration information;

- Data collected via metric programs;

- Education information;

Special categories of personal data:

- Health status information;

Other categories of personal data:

- Information about marriage (dissolution);

- Information from title documents for real estate.

3.2. The legal basis for processing personal data for the purposes specified in clause 2.1.1 is:

- The Constitution of the Russian Federation, the Civil Code of the Russian Federation, the Tax Code of the Russian Federation, Federal Law No. 402-FZ of December 6, 2011 "On Accounting," Federal Law No. 115-FZ of August 7, 2001 "On Counteracting the Legalization (Laundering) of Proceeds from Crime and the Financing of Terrorism," and other regulatory legal acts regulating relations related to the Company's activities;

- Founding documents of the Company;

- Contracts concluded between the Company and the PD Subject;

- Consent to the processing of personal data (in cases not directly provided for by the legislation of the Russian Federation but consistent with the Operator's powers).

3.3. For the purposes specified in clause 2.1.2, the Operator processes the following categories of PD Subjects: Persons who have contacted the Operator with an appeal or complaint.

For this category of PD Subjects, the Operator processes the following categories of personal data:

- Last name, first name, patronymic;

- Other personal data specified in the appeal, as well as those that became known during the consideration of the appeal.

3.4. The legal basis for processing personal data for the purposes specified in clause 2.1.2 is that the processing of personal data is necessary for the implementation and performance of the functions, powers, and duties assigned to the Operator by the legislation of the Russian Federation.

3.5. For the purposes specified in clause 2.1.3, the Operator processes the following categories of PD Subjects: Persons whose personal data is processed in connection with the execution of a request.

For this category of PD Subjects, the Operator processes the following categories of personal data:

- Personal data specified in the request of an authorized state or municipal body, including operational-investigative bodies, as well as those that became known during the execution of the request.

3.6. The legal basis for processing personal data for the purposes specified in clause 2.1.3 is that the processing of personal data is necessary for the implementation and performance of the functions, powers, and duties assigned to the Operator by the legislation of the Russian Federation.

3.7. For the purposes specified in clauses 2.1.4–2.1.6, the Operator processes the following categories of PD Subjects:

- Last name, first name, patronymic;

- Year of birth;

- Month of birth;

- Date of birth;

- Place of birth;

- Social status;

- Income;

- Gender;

- Email address;

- Registration address;

- SNILS;

- INN;

- Citizenship;

- Identity document data.

3.8. Within the scope of the purpose specified in clause 2.1.7 (social network), the Operator processes the following special categories of personal data:

1. Data provided by the User:

- Name (not necessarily real, not unique), Username (not necessarily real, unique);

- Contact details: Email address;

- Account password;

- Date of birth;

- Images: photos (avatar, feed photos), video recordings with a person's facial image, voice messages;

- Country of residence;

- User's profession;

- List of interests;

- Links to other social networks;

- Additional data that is not identifying and reflects the user's interests (work experience, salary, position).

2. Automatically generated data (Technical):

- Cookies: (Technical, analytical, advertising);

- Device data: IP address, browser type and version, operating system, device model, unique identifiers (IDFA, GAID);

- Location data.

3. Activity data (Behavioral):

- User content (post texts, comments, private messages);

- Information about subscriptions, likes, reposts;

- Search query history;

- List of friends, subscriptions, and followers.

3.9. The Operator processes personal data for the purposes specified in clauses 2.1.1–2.1.7 using a mixed method (using automation tools and without using them).

4. Procedure and Conditions for Processing Personal Data

4.1. The Operator processes personal data – operations performed with or without the use of automation tools with personal data, including collection, recording, systematization, accumulation, storage, updating (refreshing, changing), extraction, use, transfer (provision, access), anonymization, blocking, deletion, destruction of personal data.

4.2. Processing of personal data in accordance with the purposes specified in clauses 2.1.1–2.1.7 of this Policy is carried out in the Company using a mixed method (using automation tools and without using them).

4.3. The Operator does not carry out cross-border transfer of personal data.

4.4. Personal data processing is carried out in compliance with the principles and rules stipulated by this Policy and the legislation of the Russian Federation.

4.5. Processing of personal data by the operator is limited to achieving specific, predetermined, and legitimate purposes. Only personal data that meets the purposes of their processing is subject to processing.

4.6. The content and scope of processed personal data must correspond to the stated purposes of processing. Processed personal data must not be excessive in relation to the stated purposes of their processing.

4.7. Merging databases containing personal data processed for purposes incompatible with each other is not allowed.

4.8. The right of access for processing personal data is granted to Company employees in accordance with their assigned functional duties.

4.9. When processing personal data, the accuracy of personal data, their sufficiency, and, where necessary, their relevance in relation to the stated purposes of processing are ensured.

4.10. Processing of personal data by the Operator ceases in the following cases: When a fact of unlawful processing of personal data is identified; When the purposes of their processing are achieved; Upon expiration of the validity period or upon withdrawal by the personal data subject of consent to the processing of their personal data, subject to the conditions provided for in Article 21 of the Federal Law; When the personal data subject requests the Operator to cease processing personal data, except for the cases provided for in Part 5.1 of Article 21 of the Federal Law.

4.11. Personal data is stored in a form that allows identifying the personal data subject no longer than required by the purposes of processing personal data, unless the storage period for personal data is established by federal law or a contract to which the personal data subject is a party, beneficiary, or guarantor.

4.12. The storage periods for personal data are determined in accordance with the term of civil-law relations between the personal data subject and the Company, the statute of limitations, the storage periods for documents on paper and documents in electronic databases, other requirements of the legislation of the Russian Federation, as well as the validity period of the subject's consent to the processing of their personal data.

4.13. The Operator and other persons who have gained access to personal data are obliged not to disclose them to third parties or distribute personal data without the consent of the personal data subject, unless otherwise provided by federal law.

5. Measures to Ensure the Security of Personal Data

5.1. When processing personal data, the Operator takes necessary legal, organizational, and technical measures to protect personal data from unlawful or accidental access, destruction, alteration, blocking, copying, provision, distribution of personal data, as well as from other unlawful actions regarding personal data.

5.2. Ensuring the security of personal data is achieved, in particular, by:

- Identifying threats to the security of personal data during their processing in personal data information systems;

- Applying organizational and technical measures to ensure the security of personal data during their processing in personal data information systems, necessary to meet the requirements for the protection of personal data;

- Detecting facts of unauthorized access to personal data and taking necessary measures;

- Keeping records of machine-readable personal data media;

- Applying information security tools that have undergone the conformity assessment procedure in the established manner;

- Assessing the effectiveness of measures taken to ensure the security of personal data before putting the personal data information system into operation;

- Restoring personal data modified or destroyed due to unauthorized access;

- Establishing rules for access to personal data processed in the personal data information system, as well as ensuring registration and recording of all actions performed with personal data in the personal data information system;

- Monitoring the measures taken to ensure the security of personal data and the level of protection of the personal data information system.

6. Obligations of the Operator

The Operator undertakes to:

6.1. Process personal data of the personal data subject solely for the purpose of providing lawful services to the personal data subject.

6.2. Take necessary and sufficient legal, organizational, and technical measures to protect personal data from unlawful or accidental access, destruction, alteration, blocking, copying, provision, distribution of personal data, as well as from other unlawful actions regarding personal data.

6.3. Carry out measures for the organizational and technical protection of personal data in accordance with the requirements of the legislation of the Russian Federation on personal data processing.

6.4. In order to ensure the protection of personal data, assess the harm that may be caused to personal data subjects in the event of a breach of the security of their personal data, as well as identify current threats to the security of personal data during their processing in personal data information systems.

6.5. Transfer personal data of subjects only in accordance with this Policy and the legislation of the Russian Federation.

6.6. Provide personal data of subjects only to authorized persons and only to the extent necessary for them to perform their job duties, in accordance with this regulation and the legislation of the Russian Federation.

6.7. Not receive or process personal data of the personal data subject concerning their racial or national origin, political views, religious or philosophical beliefs, health status, intimate life, except for cases provided for by the legislation of the Russian Federation.

6.8. Restrict the right of the personal data subject to access their personal data if the provision of personal data violates the constitutional rights and freedoms of others.

6.9. Explain to the personal data subject the legal consequences of refusing to provide their personal data and/or give consent to their processing, if, in accordance with the Federal Law, the provision of personal data and/or obtaining the Operator's consent to the processing of personal data is mandatory.

7. Updating, Correcting, Deleting, and Destroying Personal Data, Responding to Subject Requests for Access to Personal Data

7.1. The Operator is obliged to inform, in the manner prescribed by Article 14 of the Federal Law, the personal data subject of the existence of personal data relating to the relevant personal data subject, and also provide an opportunity to familiarize themselves with this personal data upon request from the personal data subject within ten working days from the date of receipt of the request. This period may be extended, but by no more than five working days, if the Operator sends a reasoned notification to the personal data subject indicating the reasons for extending the period for providing the requested information.

7.2. The Operator is obliged to provide the personal data subject with the opportunity to familiarize themselves with the personal data relating to this personal data subject free of charge. Within a period not exceeding seven working days from the date the personal data subject provides information confirming that the personal data is incomplete, inaccurate, or outdated, the Operator is obliged to make the necessary changes to it. Within a period not exceeding seven working days from the date the personal data subject provides information confirming that such personal data was illegally obtained or is not necessary for the stated purpose of processing, the operator is obliged to destroy such personal data. The Operator is obliged to notify the personal data subject of the changes made and the measures taken, and take reasonable measures to notify third parties to whom the personal data of this subject was transferred.

7.3. Upon confirmation of the fact of inaccuracy of personal data, the Operator, based on information provided by the personal data subject or the authorized body for the protection of the rights of personal data subjects, is obliged to clarify the personal data, or ensure their clarification, within seven working days from the date of submission of such information, and unblock the personal data.

7.4. The Operator is obliged to cease processing personal data, or ensure the cessation of processing of personal data by a person acting on behalf of the Operator: In the event of unlawful processing of personal data being identified, within a period not exceeding three working days; In the event of withdrawal by the personal data subject of consent to the processing of their personal data; In the event of achieving the purpose of processing personal data, and destroy the personal data within a period not exceeding thirty days. If it is impossible to destroy personal data within the specified period, the Operator blocks such personal data and ensures their destruction within a period not exceeding six months.

7.5. In the event of an established fact of unlawful or accidental transfer (provision, distribution, access) of personal data resulting in a violation of the rights of personal data subjects, the Operator is obliged to notify the authorized body for the protection of the rights of personal data subjects, provide information on the measures taken to eliminate the consequences of the relevant incident, and provide information about the results of the internal investigation.

7.6. In the event of a request from the personal data subject to the Operator to cease processing personal data, the operator is obliged, within a period not exceeding ten working days from the date of receipt of the relevant request, to cease their processing, or ensure the cessation of such processing, except for cases provided for by the Federal Law.

7.7. After the expiration of the standard storage period for documents containing personal data of the subject, or upon the occurrence of other legal grounds, the documents are subject to destruction.

8. Final Provisions

8.1. This Policy comes into force from the moment of its approval.

8.2. This Policy is subject to adjustment in case of changes in the legislation of the Russian Federation, regulatory bodies in the field of personal data protection, or internal documents of the Company in the field of confidential information protection.

8.3. In case of changes in the legislation of the Russian Federation in the field of personal data protection, the provisions of the Policy that contradict the legislation shall not apply until they are brought into compliance.

8.4. The Company ensures unlimited access to this document.

Terms of Service

PLEASE READ THIS DOCUMENT CAREFULLY BEFORE STARTING TO USE THE SITE. USE OF THE SITE IS PERMITTED ONLY IF YOU COMPLY WITH THE TERMS OF THIS AGREEMENT. BY ACCEPTING THIS AGREEMENT, YOU UNDERTAKE TO COMPLY WITH THE AGREEMENT SET FORTH BELOW.

1. General Provisions

1.1. This User Agreement (hereinafter – the Agreement) is addressed by BRAINWAVES ENGINEERING LLC, OGRN 1255000090465, INN/KPP 5042167804 / 772001001, location: 111675, Moscow, Tatyana Makarova St., bldg. 3, apt. 456, hereinafter referred to as the "Site Administration," to any person using the site located on the Internet at https://earths.network (hereinafter – the Site), hereinafter referred to as the "User," with an offer to conclude a contract under the terms set out below.

1.2. In accordance with paragraph 2 of Article 437 of the Civil Code of the Russian Federation, this Agreement is recognized as an offer (public offer). In accordance with Article 438 of the Civil Code of the Russian Federation, the acceptance of the terms of this Agreement is the performance of the actions specified in the Agreement. The contract concluded by accepting this offer does not require bilateral signing and is valid in electronic form.

1.3. The User is not entitled to enter into this Agreement if they have not reached the age sufficient to conclude it, according to applicable law.

2. Terms and Definitions

2.1. The terms used in this section of the Agreement, unless otherwise specified, shall have the following meanings:

2.1.1. Site Administration — BRAINWAVES ENGINEERING LLC, OGRN 1255000090465, INN/KPP 5042167804 / 772001001, location: 111675, Moscow, Tatyana Makarova St., bldg. 3, apt. 456, possessing all rights to the Site.

2.1.2. Site — a set of computer programs and other information contained in an information system, access to which is provided via the Internet information and telecommunication network and located at https://earths.network.

2.1.3. Offer — a proposal to any person to conclude a contract on the terms set forth in this Agreement.

2.1.4. Acceptance — full and unconditional consent of a person to conclude a contract on the terms set forth in this Agreement. For the purposes of this Agreement, acceptance is deemed to be the moment from which the User actually started using the Site.

2.1.5. Content — any textual, graphic, audio, video, and other materials posted on the Site.

3. Subject of the Agreement

3.1. The Site Administration grants the User a simple (non-exclusive) license to use the Site and the Content posted on the Site, under the terms set out in the Agreement.

3.2. The Site Administration confirms that it owns all exclusive rights to the Site.

3.3. The User confirms that by performing the acceptance, they have read the terms of this Agreement and the terms of the Agreement are clear to them.

3.4. The text of this Agreement is posted on the Site. The Site Administration has the right to change the Agreement at any time. The terms of the Agreement cannot be changed except by publishing the amended document on the Site.

4. Rights and Obligations

4.1. The User has the right to:

4.1.1. Access the Site 24/7, except during scheduled maintenance.

4.1.2. Use the Site within the limits defined by the Agreement.

4.2. The User undertakes to:

4.2.1. Comply with the terms of the Agreement.

4.2.2. Not distribute malicious software that damages, interferes with, intercepts, expropriates, or otherwise violates the integrity of software or hardware systems associated with the Site, as well as the personal information of other Users.

4.2.3. Not copy, reproduce, republish, engage in transactions with the content of the Site, nor use the Site to participate in activities similar to those of the Site Administration.

4.2.4. Perform other duties provided for by the Agreement, as well as comply with all norms of the current legislation of the Russian Federation when using the Site.

4.3. The Site Administration has the right to:

4.3.1. Establish restrictions on the use of the Site for certain categories of Users, which depend, in particular, on the User's location, the language in which the Site is provided.

4.3.2. Terminate the Agreement with the User and refuse to perform it in case of non-fulfillment of the terms of the Agreement by the User.

4.3.3. Change the text of the Agreement unilaterally at any time.

4.4. The Site Administration undertakes to:

4.4.1. Ensure the availability of the Site 24/7, except during scheduled maintenance.

4.4.2. Not take actions that could make it impossible for the User to use the Site.

5. Terms of Site Use

5.1. The Site Administration grants the User a personal, worldwide, royalty-free, non-exclusive, limited, and non-transferable license to use the Site under the terms set out in the Agreement.

5.2. The Site Administration grants the User the right to use the Site exclusively for purposes that do not contradict applicable law. Unless otherwise provided by the Agreement, the User does not have the right to: collect, copy, distribute, display, modify, use automatic devices, programs, algorithms that perform functions in the field of gaining access to or copying any part of the Site, download any part of the Site, except for brief loading (caching) for the purposes of using the Site.

5.3. Upon termination of the Agreement, all licenses and rights to use the Site immediately cease. Termination of the Agreement does not affect the User's obligations imposed by the terms of the Agreement to the Site Administration, which should reasonably be maintained even after termination of the Agreement.

6. Liability

6.1. The Site Administration makes every possible effort to ensure the operability of the Site, but does not guarantee its constant availability, uninterrupted and timely provision, security, accuracy, absence of errors in the operation of the Site. The only option available to the User in connection with the above-mentioned problems is to immediately cease using the Site.

6.2. The use of the Site is provided to the User "as is" and is carried out at their own risk and without any guarantees from the Site Administration, whether express or implied guarantees, including, without limitation, guarantees or conditions of quality assurance, performance characteristics, commercial suitability, or suitability for use of the Site for other purposes. The Site Administration is liable for guilty non-performance or improper performance of its obligations.

6.3. The Site Administration bears no responsibility, whether contractual liability or liability for causing harm, regardless of whether the Site Administration was notified of the possibility of the occurrence of the specified violations or damage associated with or resulting from the User's use of the Site, including, but not limited to, damage resulting from:

6.3.1. The User downloading or otherwise receiving data through the Site. No recommendations received by the User in oral or written form from the Site Administration create any guarantees.

6.3.2. The Site Administration conducting maintenance on the Site with simultaneous cessation of use of the Site by the User.

6.3.3. The occurrence of circumstances provided for in Section 7 of the Agreement.

6.3.4. Actions (inactions) of other Users.

6.4. The User is responsible for non-performance or improper performance of their obligations. If any person brings a claim against the Site Administration that is a consequence of the User's violation of this Agreement and/or the rights of such a person, including violation of exclusive rights, then the User is obliged to join the legal proceedings as a third party, provide appropriate compensation and shield the Site Administration from compensating damage to such a third party.

7. Force Majeure

7.1. If the Site Administration is unable to provide the use of the Site due to force majeure circumstances, under the terms of this Agreement this should not be considered as a violation by the Site Administration of obligations to the User.

7.2. Force majeure circumstances that directly or indirectly affect the performance by the Site Administration of this Agreement include natural disasters, impacts of forces or causes beyond our reasonable control, including but not limited to: Internet outages, computer, telecommunications or any other equipment failures, power outages or failure of obligations by third parties.

8. Claims and Notices

8.1. In the event of disputes between the Site Administration and the User arising from the Agreement, a pre-trial dispute resolution procedure is mandatory.

8.2. The User has the right to send a written reasoned claim to the Site Administration if they believe that the Site Administration violates the terms of this Agreement. Claims that do not allow identification of the User are not considered by the Site Administration.

8.3. The Site Administration has the right to send a written reasoned claim to the User who, in the opinion of the Site Administration, violates the terms of this Agreement.

8.4. The period for considering a claim is 30 (thirty) days from the date of its receipt by the addressee.

8.5. If a resolution of the dispute arising from this Agreement is not achieved in the pre-trial procedure, the dispute shall be considered in court at the location of the Site Administration.

9. Confidentiality and Security

9.1. The Site Administration takes the preservation of privacy and confidential information seriously. The Site Administration stores and processes the information provided by the User, strictly adhering to the Privacy Policy posted on the Site, in accordance with the requirements of the Federal Law "On Personal Data" of July 27, 2006 No. 152-FZ.

10. Mailing

10.1. The Site Administration respects the right of each User to receive only those informational messages to which they have given their consent. The Site Administration, when sending such informational messages, adheres to this User Agreement posted on the Site.

10.2. The Site Administration sends informational messages exclusively on a voluntary basis, and also makes every effort to ensure that the interaction between the User and the Site is as convenient and trustworthy as possible.

10.3. The Site Administration pays great attention to the problem of unsolicited mass advertising messages (hereinafter – Spam). The Site Administration makes every effort to combat Spam. In this regard, the Site Administration has taken the following measures to combat Spam:

10.3.1. Providing the User with the ability to opt out of informational mailings carried out by the Site Administration.

11. Final Provisions

11.1. The Agreement between the Site Administration and the User exhaustively regulates the User's use of the Site, including all functions and services of the Site, replacing any previous written or oral agreements regarding the content of this document. Given the gratuitous nature of the actions for using the Site, the Law of the Russian Federation of February 7, 1992 No. 2300-I "On the Protection of Consumer Rights" does not apply to relations between the Site Administration and the User.

11.2. Taking into account the principle of equality and independence of the parties, no labor, agency, partnership relations other than relations for using the Site between the Site Administration and the User can be established by this Agreement.

11.3. If any provision of the Agreement or part thereof is declared legally invalid by any judicial or administrative body with appropriate jurisdiction, such provision or part thereof shall be removed from this Agreement without any prejudice to the validity, effectiveness, enforceability of the remaining provisions of the Agreement.

11.4. Inaction or delay by the Site Administration in exercising its legal rights or claims for damages provided for by the Agreement does not mean a waiver by the Site Administration of its legal rights.

11.5. The Site Administration reserves the right to make changes to the Agreement. Changes take effect from the moment of their publication on the Site. The User hereby acknowledges and agrees that their use of the Site after changes to the Agreement are made automatically means the User's consent to the changes made.

11.6. The titles of the sections of the Agreement are established exclusively for reference purposes and in no way define, limit, or interpret the content of the corresponding section.

11.7. The Agreement is governed by the legislation of the Russian Federation.

11.8. The Agreement is drawn up in Russian.

Help Center

If you have any questions or issues related to the use of Earth'sNetwork, you can contact our support service by sending an email to support@earths.network. Whether you need help navigating the platform, understanding or managing your privacy settings, or have inquiries about partnerships and collaboration — our support team is always ready to help.

We encourage users to reach out to us regarding any technical issues, feedback, or requests for consultation. Your satisfaction and the smooth operation of Earth'sNetwork are our priorities, and our team strives to provide timely and effective responses to all inquiries.

For privacy-related questions or concerns, rest assured that our support service follows strict protocols to ensure the confidentiality and proper handling of your personal data. Our specialists will help you understand our data policies, your rights, and information protection measures.

Regarding collaborative efforts, business opportunities, or partnership proposals, your messages will be directed to the appropriate department. We value cooperation and are open to exploring ways in which partners and participants can interact with Earth'sNetwork for mutual benefit and to strengthen our community.

Feel free to send detailed descriptions of your questions or issues to support@earths.network. The clearer the information, the more accurate and useful our support will be. We appreciate your engagement and look forward to assisting you in working with Earth'sNetwork.

Rights Protection

All rights associated with BRAINWAVES ENGINEERING LLC and all affiliated services, including Earth'sNetwork, are protected and reserved. This protection extends to, but is not limited to, the complete codebase, user databases, design elements, visual identity, names, logos, creative content, and any other intellectual property associated with these services.

The source code of the software forming the foundation of Earth'sNetwork and related platforms is the exclusive property of BRAINWAVES ENGINEERING LLC and is protected by applicable intellectual property legislation. Unauthorized copying, modification, distribution, or use of this code without explicit permission is strictly prohibited.

User databases containing important personal and account information are confidential and protected by data privacy regulations. These databases are maintained under strict security protocols to prevent unauthorized access or misuse.

All design components and visual branding, including logos, color schemes, and user interface elements, are registered as trademarks or otherwise legally protected to maintain the integrity and uniqueness of the Earth'sNetwork brand and user experience.

Creative content produced or commissioned by BRAINWAVES ENGINEERING LLC, whether in the form of graphics, multimedia, written materials, or interactive elements, is also protected by copyright and related rights laws.

The comprehensive protection of these assets ensures that BRAINWAVES ENGINEERING LLC and its affiliated services maintain full control over their use, distribution, and representation. Any unauthorized use, reproduction, or distribution of these intellectual rights constitutes a violation and may entail legal consequences.

This protection is essential for stimulating innovation, ensuring the quality of services, and maintaining the trust and safety of the Earth'sNetwork user community and business partners.

BRAINWAVES ENGINEERING LLC actively defends its intellectual property rights to prevent violations and preserve the unique value and safety of its services and ecosystem.

FAQ

What is Earth'sNetwork?

Earth'sNetwork is a project-oriented social network for inventors, specialists, researchers, and teams. The platform helps find strong participants, develop projects, publish updates, communicate, and promote initiatives within the professional community.

Who is the platform designed for?

The platform is suitable for:

- inventors and idea authors;

- specialists who want to join promising projects;

- teams that need participants, expertise, and audience attention;

- users who want to follow project development, communicate, and find professional opportunities.

How is Earth'sNetwork different from a regular social network?

The main difference is that the center of the platform is not entertainment content, but projects, professional connections, and practical collaboration. Here, users do not just publish posts, but create projects, gather teams, post job vacancies, submit applications, and interact around real tasks and developments.

What is Wall?

Wall is a common feed of user and project posts. It displays publications selected based on recommendation algorithms, audience interests, and activity within the platform.

What is Listing?

Listing is two separate catalogs:

- project catalog;

- user catalog.

They help quickly find the right teams, initiatives, experts, and potential partners based on given parameters.

What features are available in the Social section?

The Social section combines the main communication tools:

- private chats between users;

- project group chats;

- interview chats for reviewing user applications to projects.

This allows communication in one place: from first contact to discussing participation in the team.

What does the Project Page contain?

Project's Page is a full-fledged project page, which includes:

- project presentation;

- detailed description;

- project news feed;

- team composition;

- job vacancies;

- application submission block for the project;

- additional attributes, including specialization tags, rating, followers, and other metrics.

What does the User Profile contain?

Profile is a personal user page where the following is displayed:

- description and professional information;

- projects the user participates in;

- news feed;

- presentation;

- additional attributes, such as profession, interest tags, rating, followers, and other data.

How does the user rating system work?

The platform has a user rating system. The rating helps better evaluate platform participants and increases transparency in professional interaction.

What is Project XP?

XP is a multi-criteria project metric. It shows the level of activity and development of the project within the platform. XP is used for:

- increasing the frequency of project post recommendations in the common feed;

- enhancing project promotion in ranking;

- more visible presence of the project on the platform.

How does XP differ from user rating?

The rating applies to users and reflects their personal reputation and activity. XP applies only to projects and affects their visibility, promotion, and recommendation mechanisms of the platform.

What does a project get XP for?

A project earns XP for key activity signals:

- posts — 5 XP per post;

- views — 1 XP per 100 views;

- likes — 1 XP per 10 likes;

- comments — 1 XP per 5 comments;

- participants — 100 XP per participant;

- followers — 1 XP per 5 followers;

- project existence time — 10 XP per week of existence.

Why is the XP system needed?

The XP system motivates projects not just to create a page, but to truly develop it: publish news, gather an audience, build a team, and maintain constant activity. The more active and useful the project, the higher its chances of being noticed.

Can a new project promote itself without a large audience?

Yes. XP takes into account not only followers and views, but also other parameters: publications, comments, team development, and project duration. This gives new projects the opportunity to grow through systematic activity, not just through accumulated popularity.

How can a user join a project?

A user can go to the page of an interesting project, study the description, team, job vacancies, and submit an application through the special "Join Project" application block. After that, interaction can continue in the interview chat.

WallListingSocial