Mamatov Health Club («we,» «our,» or «us») is committed to protecting your privacy. This Privacy Policy explains how your personal information is collected, used, and disclosed by Mamatov Health Club.

This Privacy Policy applies to our website, and its associated subdomains (collectively, our «Service») alongside our application, Mamatov Health Club. By accessing or using our Service, you signify that you have read, understood, and agree to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy and our Terms of Service

— personal data — any information relating to a directly or indirectly identified or identifiable individual (subject of personal data);

— Cookies are data that are automatically transferred to the Operator during the use of the Site using the software installed on the User’s device, including IP address, geographic location, information about the browser and type of operating system of the User’s device, technical characteristics of equipment and software, used by the User, date and time of access to the Site.

— processing of personal data — any action (operation) or set of actions (operations) performed using automation tools or without the use of such tools with personal data, including collection, recording, systematization, accumulation, storage, clarification (updating, changing), extraction , use, transfer (distribution, provision, access), depersonalization, blocking, deletion, destruction of personal data;

— Company — when this policy mentions «Company,» «we,» «us,» or «our,» it refers to Mamatov Club Limited, (Office room 77, 7/F, Woon Lee Commercial Building, 7-9 Austin Ave, Tsim Sha Tsui, Kowloon, Hong Kong 999077), that is responsible for your information under this Privacy Policy.

— Country — where Mamatov Health Club or the owners/founders of Mamatov Health Club are based, in this case is Hong Kong

— Customer — refers to the company, organization or person that signs up to use the Mamatov Health Club Service to manage the relationships with your consumers or service users.

— Device — any internet connected device such as a phone, tablet, computer or any other device that can be used to visit Mamatov Health Club and use the services.

IP address: Every device connected to the Internet is assigned a number known as an Internet protocol (IP) address. These numbers are usually assigned in geographic blocks. An IP address can often be used to identify the location from which a device is connecting to the Internet.

— automated processing of personal data — processing of personal data using computer technology;

— dissemination of personal data — actions aimed at disclosing personal data to an indefinite number of persons;

— provision of personal data — actions aimed at disclosing personal data to a certain person or a certain circle of persons;

— blocking of personal data — temporary cessation of processing of personal data (except for cases where processing is necessary to clarify personal data);

— destruction of personal data — actions as a result of which it becomes impossible to restore the content of personal data in the personal data information system and (or) as a result of which material media of personal data are destroyed;

— depersonalization of personal data — actions as a result of which it becomes impossible, without the use of additional information, to determine the ownership of personal data to a specific subject of personal data.

1.1. The Policy applies to all personal data processed by the Operator.

1.2. This Policy is published in the public domain on the Internet information and telecommunications network at: https://mamatov.club/privacy-policy and on the Operator’s website.

1.3. Control over compliance with the requirements of this Policy is carried out by an authorized person responsible for organizing the processing of personal data by the Operator

1.4. The Operator’s liability for violation of the requirements of the legislation of the Russian Federation and regulations in the field of processing and protection of personal data is determined in accordance with the legislation of the Russian Federation.

2.1. The operator has the right:

a) independently determine the composition and list of measures necessary and sufficient to ensure the fulfillment of the obligations provided for by the Law on Personal Data and regulations adopted in accordance with it;

b) entrust the processing of personal data to another person with the consent of the subject of personal data.

c) has the right to continue processing personal data without the consent of the subject of personal data if there are grounds specified in the Law, if the subject of personal data withdraws consent to the processing of personal data.

2.2. The operator is obliged:

a) organize the processing of personal data in accordance with the requirements of the Law on Personal Data;

b) when collecting personal data, provide the subject of personal data, at his request, with information regarding the processing of his personal data;

c) not disclose to third parties or distribute personal data without the consent of the subject of personal data;

d) respond to requests and requests from personal data subjects and their legal representatives in accordance with the requirements of the Law on Personal Data;

e) report to the authorized body for the protection of the rights of personal data subjects, at the request of this body, the necessary information within ten working days from the date of receipt of such a request. This period may be extended, but not more than five working days. To do this, the Operator must send a motivated notification to the authorized body for the protection of the rights of personal data subjects indicating the reasons for extending the period for providing the requested information;

2.3. The subject of personal data has the right:

a) receive information regarding the processing of his personal data. The information is provided to the subject of personal data by the Operator in an accessible form, and it should not contain personal data relating to other subjects of personal data, except in cases where there are legal grounds for the disclosure of such personal data;

b) require the operator to clarify his personal data, block it or destroy it if the personal data is incomplete, outdated, inaccurate, illegally obtained or not necessary for the stated purpose of processing, and also take measures provided by law to protect their rights;

c) to protect their rights and legitimate interests, including compensation for losses and (or) compensation for moral damage in court.

3.1. The processing of personal data is limited to the achievement of specific, pre-defined and legitimate purposes. Processing of personal data that is incompatible with the purposes of collecting personal data is not permitted.

3.2. Only personal data that meets the purposes of their processing are subject to processing.

3.3. The processing of personal data by the Operator is carried out for the following purposes:

— carrying out activities provided for by the Operator’s constituent documents;

— ensuring compliance with laws and other regulatory legal acts within the framework of labor and directly related relations, assisting workers in employment, education and career advancement, ensuring the personal safety of workers, monitoring the quantity and quality of work performed and ensuring the safety of property;

— promotion of the Operator’s goods, works, and services on the market through direct contacts with potential counterparties and clients using communication means;

— provision of medical services, including identification of patients (customers), reflection of information in medical documentation, provision of information to insurance companies, provision of reporting established by law in relation to medical services provided;

the processing of personal data is carried out for medical and preventive purposes, in order to establish a medical diagnosis, provide medical and medical and social services, provided that the processing of personal data is carried out by a person professionally engaged in medical activities and obliged to maintain medical confidentiality;

— interaction with users of the Operator’s websites and processing of requests and applications from website users;

The operator may process personal data of the following categories of personal data subjects for the following purposes:

4.1. Candidates for vacant positions. In this category of subjects, the Operator processes personal data received by the Operator in order to consider the issue of hiring candidates (assessing the professional qualities of a potential employee, information about his work experience, etc.), implementing access control, ensuring the safety of the property of employees, the Operator and other persons located on the territory of the Operator:

— Full Name;

— gender;

— citizenship;

— Date and place of birth;

— Contact details;

— information about education, work experience, qualifications;

— other personal data provided by candidates in resumes and cover letters.

4.2. Employees and former employees of the Operator. In this category of subjects, the Operator processes personal data received by the Operator for the purpose of implementing legislation within the framework of labor and other directly related relations, assisting employees in obtaining education and career advancement, ensuring the personal safety of employees, implementing access control, quantity and quality control work performed and ensuring the safety of the property of employees, the Operator and other persons located on the territory of the Operator:

— Full Name;

— gender;

— citizenship;

— Date and place of birth;

— passport data;

— registration address at the place of residence;

— address of the actual residence;

— Contact details;

— individual taxpayer number;

— individual personal account insurance number;

— information about education, qualifications, professional training and advanced training;

— marital status, presence of children, family ties;

— information about work activity, including the presence of incentives, awards and (or) disciplinary sanctions;

— information about military registration;

— information about disability;

— information about the withholding of alimony and other payments;

— information about income from the previous place of work;

— other personal data provided by employees in accordance with legal requirements.

4.3. Contractors and clients of the Operator (individuals). In this category of subjects, the Operator processes personal data received by the Operator for the purposes of concluding, amending, terminating, executing an agreement to which the subject of personal data is a party, and carrying out its activities in accordance with the Charter of the Operator, implementing access control, ensuring the safety of the property of employees, the Operator and other persons located on the territory of the Operator:

— Full Name;

— Date and place of birth;

— passport data;

— registration address at the place of residence;

— address of the actual residence;

— Contact details;

— individual taxpayer number;

— individual personal account insurance number (SNILS);

— data on individuals carrying out activities as self-employed (payers of professional income tax);

— Bank details;

— health information;

— other personal data provided by clients and counterparties (individuals) necessary for concluding, amending, terminating and executing contracts.

4.4. Representatives (employees) of the Operator’s clients and counterparties (legal entities, individual entrepreneurs, individuals). In this category of entities, the Operator processes personal data received by the Operator for the purpose of concluding, amending, terminating, executing an agreement to which the client or counterparty is a party (legal entity, individual entrepreneur, individual), and carrying out its activities in accordance with the Operator’s Charter, implementation of access control, ensuring the safety of the property of employees, the Operator and other persons located on the territory of the Operator:

— Full Name;

— passport data;

— Contact details;

— position to be filled;

— other personal data provided by representatives (employees) of clients and counterparties necessary for concluding, amending, terminating and executing contracts.

4.5. Users of the Operator’s websites. In this category of subjects, the Operator processes personal data received by the Operator in order to process requests and applications received from persons using the Operator’s websites: only general personal data:

— Full Name;

— E-mail address;

— contact phone number;

— other personal data provided by users of the Operator’s websites for the purpose of processing requests and applications received from specified persons using the Operator’s websites.

4.6. The operator does not process special categories of personal data relating to race, nationality, political views, religious or philosophical beliefs, intimate life.

We keep your information only so long as we need it to provide Mamatov Health Club to you and fulfill the purposes described in this policy. This is also the case for anyone that we share your information with and who carries out services on our behalf. When we no longer need to use your information and there is no need for us to keep it to comply with our legal or regulatory obligations, we’ll either remove it from our systems or depersonalize it so that we can’t identify you.

We implement a variety of security measures to maintain the safety of your personal information when you place an order or enter, submit, or access your personal information. We offer the use of a secure server. All supplied sensitive/credit information is transmitted via Secure Socket Layer (SSL) technology and then encrypted into our Payment gateway providers database only to be accessible by those authorized with special access rights to such systems, and are required to keep the information confidential. After a transaction, your private information (credit cards, social security numbers, financials, etc.) is never kept on file. We cannot, however, ensure or warrant the absolute security of any information you transmit to Mamatov Health Club or guarantee that your information on the Service may not be accessed, disclosed, altered, or destroyed by a breach of any of our physical, technical, or managerial safeguards.

7.1. The processing of personal data is carried out by the Operator in compliance with the principles and rules provided for by the Law on Personal Data. The processing of personal data is carried out by the Operator on a legal and fair basis.

7.2. Processing of personal data is carried out with the consent of the subjects of personal data for the processing of their personal data, as well as without it in cases provided for by law.

7.3. The processing of personal data by the Operator is limited to the achievement of specific, predetermined and legitimate purposes. Processing of personal data that is incompatible with the purposes of collecting personal data is not permitted. It is not allowed to combine databases containing personal data, the processing of which is carried out for purposes that are incompatible with each other. Only personal data that meets the purposes of their processing are subject to processing. The content and volume of personal data processed must correspond to the stated purposes of processing.

7.4. When processing personal data, the Operator ensures the accuracy of personal data, its sufficiency, and, if necessary, relevance in relation to the purposes of processing personal data. The operator takes the necessary measures to delete or clarify incomplete or inaccurate data.

7.5. The method of processing personal data for each purpose of their processing is mixed processing of personal data: with the use of automation tools and without the use of automation tools.

7.6. The condition for terminating the processing of personal data may be the achievement of the purposes of processing personal data, the expiration of the consent period or the withdrawal of the consent of the subject of personal data to the processing of his personal data, as well as the identification of unlawful processing of personal data.

7.7. Employees of the Operator whose job responsibilities include the processing of personal data are allowed to process personal data.

7.8. The processing of personal data for each processing purpose is carried out by:

— receiving personal data in oral and written form directly from the subjects of personal data;

— entering personal data into journals, registers and information systems of the Operator;

— use of other methods of processing personal data.

7.9. The operator takes the necessary legal, organizational and technical measures to protect personal data from unauthorized or accidental access, destruction, modification, blocking, copying, provision, distribution and other unlawful actions, including:

— identifies threats to the security of personal data during their processing in personal data information systems;

— adopts local regulations and other documents regulating relations in the field of processing and protection of personal data;

— appoints persons responsible for processing and ensuring the security of personal data in the structural divisions and information systems of the Operator;

— creates the necessary conditions for working with personal data;

— organizes recording of documents containing personal data;

— organizes work with information systems in which personal data is processed;

— stores personal data under conditions that ensure their safety and prevent unauthorized access to them;

— organizes training for the Operator’s employees processing personal data.

7.10. The operator stores personal data in a form that makes it possible to identify the subject of personal data for no longer than required by the purposes of processing personal data.

7.11. The storage period of personal data is determined by the achievement of the specific purpose of their processing, the moment of withdrawal of consent to the processing of personal data by the subject of personal data, as well as the requirements of current legislation.

7.12. The storage period for personal data processed in personal data information systems corresponds to the storage period for personal data on paper.

7.13. When storing personal data, the Operator uses databases located on the territory of the Russian Federation.

8.1 Disclosure to third parties and dissemination of personal data without the consent of the subject of personal data is not permitted. Consent to the processing of personal data authorized by the subject of personal data for distribution is issued separately from other consents of the subject of personal data to the processing of his personal data.

8.2. The operator provides the personal data subject with the opportunity to determine the list of personal data for each category of personal data specified in the consent to the processing of personal data authorized by the personal data subject for distribution.

8.3. The transfer (distribution, provision, access) of personal data authorized by the subject of personal data for distribution is terminated by the Operator at any time at the request of the subject of personal data.

Mamatov Health Club is incorporated in Hong Kong. Information collected via our website, through direct interactions with you, or from use of our help services may be transferred from time to time to our offices or personnel, or to third parties, located throughout the world, and may be viewed and hosted anywhere in the world, including countries that may not have laws of general applicability regulating the use and transfer of such data. To the fullest extent allowed by applicable law, by using any of the above, you voluntarily consent to the trans-border transfer and hosting of such information.

10.1 The rights you have to request updates or corrections to the information Mamatov Health Club collects depend on your relationship with Mamatov Health Club. Personnel may update or correct their information as detailed in our internal company employment policies.

10.2. Customers have the right to request the restriction of certain uses and disclosures of personally identifiable information as follows. You can contact us in order to (1) update or correct your personally identifiable information, (2) change your preferences with respect to communications and other information you receive from us, or (3) delete the personally identifiable information maintained about you on our systems (subject to the following paragraph), by cancelling your account. Such updates, corrections, changes and deletions will have no effect on other information that we maintain, or information that we have provided to third parties in accordance with this Privacy Policy prior to such update, correction, change or deletion. To protect your privacy and security, we may take reasonable steps (such as requesting a unique password) to verify your identity before granting you profile access or making corrections. You are responsible for maintaining the secrecy of your unique password and account information at all times.

10.3. You should be aware that it is not technologically possible to remove each and every record of the information you have provided to us from our system. The need to back up our systems to protect information from inadvertent loss means that a copy of your information may exist in a non-erasable form that will be difficult or impossible for us to locate. Promptly after receiving your request, all personal information stored in databases we actively use, and other readily searchable media will be updated, corrected, changed or deleted, as appropriate, as soon as and to the extent reasonably and technically practicable. If you are an end user and wish to update, delete, or receive any information we have about you, you may do so by contacting the organization of which you are a customer.

— the fact of their unlawful processing was discovered within a period not exceeding three working days from the date of this discovery;

— the purpose of their processing has been achieved, within a period not exceeding thirty days from the date of achieving the purpose of processing personal data;

— the consent of the personal data subject to the processing of the specified data has expired or been revoked, when, according to the Law on Personal Data, the processing of this data is permitted only with consent, within a period not exceeding thirty days from the date of receipt of the said revocation, unless otherwise provided in paragraph 7.17 of this Policy .

11.1. When the goals of processing personal data are achieved, as well as in the event that the subject of personal data withdraws consent to their processing, the Operator stops processing this data if:

— otherwise not provided for by the agreement to which the subject of personal data is a party, beneficiary or guarantor;

— otherwise not provided for in another agreement between the Operator and the subject of personal data;

We’ve updated our Privacy Policy to provide you with complete transparency into what is being set when you visit our site and how it’s being used. By using our Mamatov Health Club, registering an account, or making a purchase, you hereby consent to our Privacy Policy and agree to its terms.

13.1. The operator informs the subject of personal data or his representative information about the availability of personal data relating to the relevant subject of personal data, and also provides the opportunity to familiarize himself with these personal data when contacting the subject of personal data or his representative or within ten working days from the date of receipt of the request of the subject of personal data or his representative. This period may be extended, but not more than by five working days, if the Operator sends a motivated notification to the personal data subject indicating the reasons for extending the period for providing the requested information.

13.2. The operator provides free of charge to the subject of personal data or his representative the opportunity to familiarize himself with personal data relating to this subject of personal data.

Within a period not exceeding seven working days from the date the subject of personal data or his representative provides information confirming that the personal data is incomplete, inaccurate or irrelevant, the Operator makes the necessary changes to them.

Within a period not exceeding seven working days from the date the subject of personal data or his representative provided information confirming that such personal data was illegally obtained or is not necessary for the stated purpose of processing, the Operator destroys such personal data.

The operator notifies the subject of personal data or his representative about the changes made and measures taken and takes reasonable measures to notify third parties to whom the personal data of this subject have been transferred.

13.3. If the fact of inaccuracy of personal data is confirmed, the Operator, based on the information provided by the subject of personal data or his representative or the authorized body for the protection of the rights of personal data subjects, or other necessary documents, clarifies the personal data within seven working days from the date of submission of such information and removes the blocking of personal data. data.

13.4. In case of establishing the fact of unlawful or accidental transfer (provision, distribution, access) of personal data, resulting in a violation of the rights of personal data subjects, the Operator, from the moment such an incident is identified by the Operator, the authorized body for the protection of the rights of personal data subjects or other interested party, notifies the authorized body for the protection rights of personal data subjects:

— within twenty-four hours about the incident that occurred, about the alleged reasons that led to the violation of the rights of personal data subjects, and the alleged harm caused to the rights of personal data subjects, about the measures taken to eliminate the consequences of the relevant incident, and also provides information about the person authorized by the Operator to interaction with the authorized body for the protection of the rights of personal data subjects on issues related to the identified incident;

— within seventy-two hours about the results of the internal investigation of the identified incident, and also provides information about the persons whose actions caused the identified incident (if any).

13.5. After the expiration of the regulatory storage period for documents containing the subject’s personal data, or upon the occurrence of other legal grounds, the documents must be destroyed.

13.6. For these purposes, the operator creates an expert commission and conducts an examination of the value of the documents.

13.7. Based on the results of the examination, documents containing personal data of the subject and subject to destruction:

— on paper — destroyed by shredding in a shredder;

— in electronic form — erased from information media or the media on which the information is stored are physically destroyed.

13.8. The document confirming the destruction of personal data of subjects processed by the Operator without the use of automation tools is the act of destruction of personal data.

13.9. Documents confirming the destruction of personal data of subjects processed by the Operator using automation tools are an act on the destruction of personal data and a download from the event log in the personal data information system.

14.1. Cookies can be divided into two main groups: «technical» cookies and «profile» cookies.

14.1.1. Technical cookies:

• are used solely to better run the site from a technical point of view, to carry out the transmission of messages over an electronic communications network, or to the extent strictly necessary to provide the services that have been requested by the user. Technical cookies may be grouped into persistent or session cookies, which enable users to move around and use the site (for example, authenticate themselves to access certain areas); analytical cookies, which can be compared to technical cookies, since they are used directly by the site administrator to collect aggregate information about the number of visitors and visits to the site; functional cookies that allow users to navigate within predefined settings, such as, for example, language or products, in order to improve the quality of service.

14.1.2. Profiling and marketing cookies:

• are used to send commercial offers after visiting the site. Profiling cookies are used to create user profiles, to send messages and advertisements during navigation in accordance with user preferences.

14.3. Use of cookies

The operator may use cookies to operate the site, including:

— to maintain statistics and track the total number of visitors to the Operator’s website on an anonymous basis;

— to improve the site and provide the user with the opportunity to individually customize the services and functions of the Operator’s sites;

• to recognize new and old users;

• to store a password if the user is registered on the Operator’s website;

• to provide targeted advertising to users;

• for dynamic monitoring of your actions and work in browsers when visiting various sites or using other platforms;

• in order to better understand the interests of site users;

• to achieve other purposes provided for in the Operator’s Policy regarding the processing of personal data.;

14.4. Tracking technologies can be either persistent (meaning they remain on your computer or device until you delete them) or temporary (meaning they only last until you close your browser).

15.1. The Operator reserves the right to make changes to the Policy. The User is obliged to read the text of the Policy each time he uses the Site.

15.2. The new version of the Policy comes into force from the moment it is posted in the appropriate section of the Operator’s website. Continued use of the Site or its services after the publication of a new version of the Policy means acceptance of the Policy and its terms by the User. In case of disagreement with the terms of the Policy, the User must immediately stop using the Site and its services.

16.1. We may display, include or make available third-party content (including data, information, applications and other products services) or provide links to third-party websites or services ("Third- Party Services").

16.2. You acknowledge and agree that Mamatov Health Club shall not be responsible for any Third-Party Services, including their accuracy, completeness, timeliness, validity, copyright compliance, legality, decency, quality or any other aspect thereof. Mamatov Health Club does not assume and shall not have any liability or responsibility to you or any other person or entity for any Third-Party Services. Third-Party Services and links thereto are provided solely as a convenience to you and you access and use them entirely at your own risk and subject to such third parties' terms and conditions.

Don't hesitate to contact us if you have any questions.

Via Email: alexey@mamatov.club

Via Phone Number: 88003016502