1. General provisions.This personal data processing policy is drawn up in accordance with the requirements of the law ‘On Personal Data’ and determines the procedure for processing personal data and measures to ensure the security of personal data taken by Gemini bakery (hereinafter referred to as the Operator).

1.1. The Operator sets as its most important goal and condition for carrying out its activities the observance of human and civil rights and freedoms during the processing of personal data, including the protection of the rights to privacy, personal and family secrets.
1.2. This Operator's policy on the processing of personal data (hereinafter referred to as the Policy) applies to all information that the Operator may receive about the website visitors https://gemini-bakery.webflow.io/.

2. Basic concepts used in the Policy
2.1. Automated processing of personal data - processing of personal data by means of computer technology; 2.2. Blocking of personal data - temporary suspension of the processing of personal data (except when the processing is necessary to clarify personal data);
2.3 Website - a set of graphic and informational materials, as well as computer programs and databases that ensure their availability on the Internet at the network address https://gemini-bakery.webflow.io/.
2.4. Personal data information system - a set of personal data contained in databases, and information technologies and technical means that ensure their processing;
2.5. Depersonalisation of personal data - actions as a result of which it is impossible to determine, without the use of additional information, the ownership of personal data to a particular User or other subject of personal data;
2.6 Personal data processing - any action (operation) or set of actions (operations) performed with the use of automation tools or without the use of such tools with personal data, including collection, recording, systematisation, accumulation, storage, clarification (updating, modification), extraction, use, transfer (distribution, provision, access), depersonalisation, blocking, deletion, destruction of personal data;
2.7. Operator - a state body, municipal body, legal entity or individual that, independently or jointly with other persons, organises and (or) processes personal data, as well as determines the purposes of processing personal data, the composition of personal data to be processed, actions (operations) performed with personal data;
2.8. Personal data - any information that directly or indirectly relates to a particular User of the Website https://gemini-bakery.webflow.io/.
2.9. User - any visitor to the Website https://gemini-bakery.webflow.io/;
2.10. Provision of personal data - actions aimed at disclosing personal data to a certain person or a certain circle of persons;
2.11. Dissemination of personal data - any actions aimed at disclosing personal data to an indefinite circle of persons (transfer of personal data) or at familiarising an unlimited circle of persons with personal data, including disclosure of personal data in the media, posting in information and telecommunication networks or providing access to personal data in any other way;
2.12. Cross-border transfer of personal data - transfer of personal data to the territory of a foreign state, a foreign state authority, a foreign individual or a foreign legal entity;
2.13. Destruction of personal data - any actions as a result of which personal data is destroyed irrevocably with the impossibility of further restoring the content of personal data in the information system, or destruction of material carriers of personal data.

3. The Operator may process the following personal data of the User:
3.1. Surname, name, patronymic;
3.2. Email address;
3.3. Phone numbers;
3.4. The site also collects and processes impersonal data about visitors (including cookies) using the Google Analytics Internet statistics service.
3.5. The above data are further in the text of the Policy united by the general concept of Personal Data.

4. The purpose of processing personal data
4.1 The purpose of processing the User's personal data is to inform the User by sending e-mails.
4.2 The Operator also has the right to send the User notifications about new products and services, special offers and various events. The User can always refuse to receive information messages by sending a letter to the Operator to the following email address v.dudar@gemini.ua marked ‘Refusal of notifications about new products and services, special offers’.
4.3. Anonymised user data collected through Internet statistics services is used to collect information about user actions on the website, improve the quality of the website and its content.

5. Legal grounds for processing personal data
5.1. The Operator processes the User's personal data only if they are filled in and/or sent by the User independently through special forms located on the website https://gemini-bakery.webflow.io/. By filling out the appropriate forms and/or sending his/her personal data to the Operator, the User agrees to this Policy.
5.2. The Operator processes impersonal data about the User if it is allowed in the settings of the User's browser (the storage of cookies and the use of JavaScript technology are enabled).

6. The procedure for collecting, storing, transferring and other types of processing of personal data, the security of personal data processed by the Operator is ensured by implementing legal, organisational and technical measures necessary to fully comply with the requirements of the current legislation in the field of personal data protection.
6.1. The Operator ensures the safety of personal data and takes all possible measures to exclude access to personal data of unauthorised persons.
6.2. The User's personal data will never, under any circumstances, be transferred to third parties, except in cases related to the implementation of applicable law. In case of inaccuracies in the personal data, the User may update them independently by sending a notification to the Operator to the email address v.dudar@gemini.ua marked ‘Updating personal data’.
6.3. The period of processing of personal data is unlimited. The User may at any time withdraw his/her consent to the processing of personal data by sending a notification to the Operator to the Operator's e-mail address v.dudar@gemini.ua marked ‘Withdrawal of consent to the processing of personal data’.

7. Cross-border transfer of personal data
7.1. Before starting the cross-border transfer of personal data, the Operator is obliged to make sure that the foreign state to whose territory the transfer of personal data is supposed to be carried out ensures reliable protection of the rights of personal data subjects.
7.2. Cross-border transfer of personal data on the territory of foreign states that do not meet the above requirements may be carried out only if the personal data subject consents to the cross-border transfer of his or her personal data in writing and/or the execution of an agreement to which the personal data subject is a party.

8. Final provisions8.1. The User may receive any clarifications on issues related to the processing of his personal data by contacting the Operator by e-mail v.dudar@gemini.ua.
8.2. This document will reflect any changes to the Operator's personal data processing policy. The Policy is valid indefinitely until replaced by a new version.
8.3. The current version of the Policy is freely available on the Internet at https://ecopan.webflow.io/policy.