This is the privacy policy for SMART MEDICINE NGO, our site such as medsmart.biz and our associated travel assistant app for healthcare professionals – smartMedicine.
Personal data and information from your device (cookies, unique identifiers and other device data) may be processed, used and stored by this application to provide better services by SMART MEDICINE NGO.
You acknowledge that you are a healthcare professional/pharmaceutical worker/medical device manufacturer/medical solution supplier/medical startup/healthcare investor and agree to the medsmart.biz Visitors and smartMedicine App Users Privacy Policy.
- General Provisions
1.1. This Privacy Policy has been developed in accordance with the provisions of the Constitution of the Russian Federation, the Federal Law No. 149 “On Information, information technologies and information protection” of July 27, 2006, the Federal Law No. 152 “On Personal Data” of July 27, 2006 and other regulatory legal acts.
The privacy policy defines the principles, procedure and conditions for the processing of personal data of those who visit the website of SMART MEDICINE NGO and use the smartMedicine app. At the same time, it is mandatory to ensure the protection of human rights and freedoms in the processing of personal data, including, but not limited to, the rights to privacy, personal and family secrets, and other secrets protected by law.
1.2. For this Privacy Policy the following terms are used:
Site – the website of SMART MEDICINE NGO, located at https://medsmart.biz.
Mobile application – smartMedicine mobile software app designed to run on smartphones, tablets and other mobile devices with iOS and Android platforms, and used by SMART MEDICINE NGO for organizing better training/educational trips for healthcare workers.
The PD operator is SMART MEDICINE NGO.
Site Administration – qualified persons authorized to manage the site of SMART MEDICINE NGO who determine the composition of the personal data of site visitors, the purposes of collecting personal data, their processing and storage.
Site Visitors – individuals, users of the SMART MEDICINE NGO website (including those registered on the website) and / or of the Mobile application, the subject of personal data.
Personal data (PD) – any information related directly or indirectly to a specific or identifiable natural person (subject of personal data), which alone or in combination with other information available to the PD Operator allows to ascertain the identity of the Site Visitor.
Processing of personal data – any action (operation) or a set of actions (operations) performed with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, changing), retrieval, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, and destruction of personal data.
Blocking of personal data is a temporary suspension of the processing of personal data (unless the processing is necessary to clarify personal data).
CME is a continuing medical education.
1.3. This Privacy Policy establishes the procedure for obtaining, protecting, storing, processing and transferring personal data of Site Visitors, and applies to all information that the PD Operator can receive about Site Visitors while they use the Site or Mobile Application.
The privacy policy does not apply to other sites and mobile applications and does not apply to third party sites and mobile applications. The Site Administration is not responsible for the websites and mobile applications of third parties, to which the Site Visitors can follow the links available on the Site and in the Mobile Application.
1.4. The personal data of the Site Visitors may include:
- surname, first name, patronymic (if any);
- date of birth;
- passport data;
- residential address;
- place of work;
- specialty;
- professional interests;
- cellphone number;
- email address.
The data that is transmitted automatically, depending on the settings of the software, includes data about the IP address, cookie data, information about the browser of the Site Visitor (or other program that accesses sections of the Site), and other similar information.
All personal data about Site Visitors can be obtained by the Site Administration only from them.
The personal data of Site Visitors are confidential information and cannot be used by the Site Administration or any other person for personal purposes.
1.5. Purposes of processing personal data of Site Visitors are as follows:
identification of Site Visitors for registration for events presented on the Site;
providing Site Visitors with personalized access to sections of the Site;
identification of Site Visitors to provide access to video conferencing services provided for by the CME rules;
communication of the Site Administration with Site Visitors, including sending notifications and information regarding sections and materials on the site;
notification of Site Visitors about the events, posted on the Site;
improving the quality of sections on the Site and the convenience of their use;
organization of training/educational trips for Site Visitors (flight, car and hotel bookings, meals, etc.);
providing Site Visitors with effective technical support in case of problems related to the use of the Website or the Mobile Application;
conducting statistical and other research based on depersonalized data.
For these specified purposes of processing personal data, all personal data mentioned in clause 1.4 of this Privacy Policy are processed.
1.6. The Site Administration provides Site Visitors with free access to their personal data, except as otherwise provided by law.
1.7. The Site Administration develops measures to protect the personal data of Site Visitors.
- Storage, processing and transfer of the Site Visitors’ personal data
2.1. The processing of the Site Visitors’ personal data is carried out solely for the purposes specified in clause 1.5 of this Privacy Policy.
2.2. The processing of the Site Visitors’ personal data is carried out for the period necessary to achieve the purposes of processing personal data specified in clause 1.5 of this Privacy Policy.
2.3. The Site Visitors’ personal data is stored electronically in the Site's personal data information system, as well as in archived copies of the Site's databases.
When storing personal data of Site Visitors, organizational and technical measures are taken to ensure their safety and exclude unauthorized access to them.
The list of persons having access to the personal data of Site Visitors is approved by the order of the CEO of SMART MEDICINE NGO.
2.4. The Site Administration has the right to transfer personal information of the Site Visitors to third parties in the following cases:
2.4.1. The Site Visitors have given their consent to such actions;
2.4.2. The transfer is necessary for the Site Visitors to use certain services of the Site;
2.4.3. The transfer is necessary for organizing a training/educational trip for the Site Visitors;
2.4.4. The personal data of the Site Visitors may be transferred to the authorized state authorities of the Russian Federation only on the grounds and in the manner established by the legislation of the Russian Federation.
2.5. When transferring personal data of Site Visitors, SMART MEDICINE NGO warns persons receiving this information that it can be used only for the purposes for which it is provided/reported.
2.6. All information about the transfer of the Site Visitors’ personal data is taken into account to control its legal use by the persons who received it.
2.7. In order to improve the quality of the service and ensure the possibility of legal protection, the Site Administration has the right to store log files on the actions performed by the Site Visitors as part of their use of the Site and the Mobile Application.
2.8. The processing of Site Visitors’ personal data is carried out on the basis of compliance with the following principles:
legality of the purposes and methods of processing personal data;
compliance of the purposes of processing personal data with the purposes predetermined and declared when collecting personal data;
compliance of the volume, nature and methods of processing personal data with the purposes of processing personal data;
the reliability of personal data, their sufficiency for the purposes of processing, and the inadmissibility of processing personal data that is excessive in reference to the purposes stated when collecting personal data;
the inadmissibility of combining databases, containing personal data, that have been created for conflicting purposes;
storage of personal data in a form that allows identifying the subject of personal data no longer than the purpose of their processing requires;
destruction of personal data after the purposes of their processing are achieved or in case the need to achieve them is no longer valid.
- Rights and obligations of the PD Operator
3.1. The PD Operator has the right to establish requirements for the composition of the Site Visitors’ personal data, which must be provided in order to use the Site, whilst the PD Operator is guided by the Privacy Policy, the Constitution of the Russian Federation, and other federal laws.
3.2. The PD Operator does not verify the accuracy of the personal data provided by the Site Visitors, believing that they act in good faith and keep information about their personal data up to date.
3.3. The PD Operator is not responsible for the voluntary transfer by Site Visitors of their contact details, passwords or logins to third parties.
3.4. The PD operator is not entitled to receive and process the personal data of Site Visitors about their political, religious and other views, and private lives.
3.5. The PD Operator is obliged to ensure the protection of the personal data of Site Visitors from misuse or loss in the manner prescribed by the legislation of the Russian Federation.
- The rights of Site Visitors to protect their personal data
4.1. Website visitors, in order to ensure the protection of their personal data stored on the website, have the right to:
4.1.1. receive full information about their personal data, their processing, storage and transfer;
4.1.2. designate their representatives to protect their personal data;
4.1.3. demand the exclusion or correction of incorrect or incomplete personal data, as well as data processed in violation of this Regulation and the legislation of the Russian Federation;
4.1.4. If the Site Administration refuses to exclude or correct the personal data of the Site Visitor, the latter has the right to declare to the Site Administration in writing their disagreement with the appropriate justification.
4.2. Website visitors have the right to change, delete or supplement their personal data. For these purposes, the Site Visitor must write a request to the e-mail address: This email address is being protected from spambots. You need JavaScript enabled to view it..
4.3. Site Visitors registered on the Site have the right at any time to independently edit the personal data provided by them during registration or authorization in their Personal Account.
4.4. Website visitors should not waive their rights to privacy and security.
- Procedure for destruction and blocking of personal data
5.1. If the illegal processing of personal data is detected and the Site Visitors reported the case, the Site Administration is obliged to block the illegally processed personal data related to these Site Visitors from the moment such request is received and until the period of verification is over.
5.2. In case inaccurate personal data is revealed and the Site Visitors reported the case, the Site Administration is obliged to block personal data related to these Site Visitors from the moment such request is received and until the period of verification is over, if this blocking of personal data does not violate the rights and legitimate interests of these Site Visitors or third parties.
5.3. In case the fact of inaccuracy of personal data is confirmed, the Site Administration is obliged to clarify personal data within 10 working days from the date of reporting of such a case, based on information or documents provided by Site Visitors, and to cancel the blocking of personal data.
5.4. In case illegal processing of personal data by the Site is detected, the Site Administration, within a period not exceeding 10 working days from the date of this detection, is obliged to stop the illegal processing of personal data.
5.5. If it is impossible to ensure the legality of the processing of personal data, the Site Administration, within a period not exceeding 15 working days from the date of detection of illegal processing of personal data, is obliged to destroy such personal data.
5.6. The Site Administration is obliged to notify the relevant Site Visitors about the elimination of the violations committed and/or about the destruction of related personal data.
5.7. If the purpose of processing personal data is achieved, the Site Administration is obliged to stop processing personal data and destroy them within a period not exceeding 30 days from the date the mentioned purpose is achieved.
5.8. If the Site Visitors withdraw their consent to the processing of their personal data, the Site Administration is obliged to stop processing them and, if the storage of personal data is no longer required for the purposes of processing personal data, to destroy personal data within a period not exceeding 30 days from the date of receipt of the said withdrawal.
5.9. If it is not possible to destroy personal data within the period specified in clauses 5.4–5.8 of this Privacy Policy, the Site Administration blocks such personal data and ensures their destruction within a period of no more than 2 months, unless another period is established by federal laws.
- Changing the Privacy Policy
6.1. The Privacy Policy may be changed or terminated by the PD Operator unilaterally without prior notice to the Site Visitors. The new version of the Privacy Policy comes into force from the moment it is posted on the site, unless otherwise provided by the new version of the Privacy Policy.
6.2. The current version of the Privacy Policy is located on the website at https://medsmart.biz/ru/legal-ru page.
6.3. All suggestions or questions about the Privacy Policy can be sent to: This email address is being protected from spambots. You need JavaScript enabled to view it..