Last updated: March 13, 2024
Webbsite. They are processed to identify possible information security incidents that are necessary to satisfy the legitimate interests of the Website - including ensuring the integrity of the Website’s electronic systems and maintaining continuity of operations.
Disclosure of Data to Third Parties
Personal data collected by the Website is confidential. The Website does not transfer user’s data to third parties, except in cases prescribed by the law of Georgia.
Data Processing by an Authorized Person
The data are processed only for the purposes defined by the Website, taking into account the rules and prohibitions established by the Law of Georgia on Personal Data Protection. The Website processes the data independently and currently does not use the services of other authorized (third) persons in this process. However, if needed, in the process of providing services to the Website, information containing the data may be disclosed to the person(s) authorized by the Service or/and granted access (for example, as part of technical updating of the website). In such a case, the disclosure/access to the data will be granted only based on a written agreement between the Website and the relevant authorized person, which stipulates the authorized person's obligation to process the data only for the purposes defined by the Website and in consideration with the rules and prohibitions established by the law of Georgia.
Data Storage and Security
In the process of receiving an application regarding the alleged fact of processing of personal data in violation of the requirements of the Law of Georgia on Personal Data Protection, the data collected by the website regarding the user is stored for a period of 3 years or: For the period essential to provide with the appropriate activity or services; For the period defined by law; Until the end of the window during which a legal issue might develop or an investigation concerning service might start.
Data security is ensured in accordance with the information security policy of the Website. Appropriate organizational and technical measures have been taken to ensure data security on the website (for example, evasion testing is underway, data access levels are defined taking into account the relevant job functions, pseudonymisation and encryption of personal data.).
The website may pass your information to associated parties, such as partners and agents. The mentioned parties are also obligated to maintain user data confidentiality.
The company may transfer an information to state authorities or any other person, who acts according to current legislation, regulations, court rulings, official demands, and goals based on current legislation.
Personal data can also be transferred in the case of a company reorganization or merging.
The website is not responsible for any kind of harm that took place because of unauthorized access to the device (the device used for services) in possession of a user and resulted in losing or stealing data.
The Company is not responsible for violations of security which is beyond the control limits of the website. For example, hacker infiltration of the personal computer, unauthorized access to computer data or the storage device, device malfunctioning or failure, etc.
User’s Rights
User has the right to:
Request information about data processing - the user can request the following information: what data is processed about him/her; the purpose of data processing; the legal basis for data processing; in what way the data was collected; to whom the data about him/her was issued, the basis and purpose of the data issuance (the provision of the latter information is not mandatory if the data is public according to the law).
At the same time, the user has the right to be acquainted with the personal data about him/her in the Website and receive copies of thereof free of charge, except for the data for the issuance of which a fee is defined by the legislation of Georgia;
Request correction, updating, addition, blocking, deletion, or destruction of data ― the user has the right to request a correction, updating, addition, blocking, deletion, or destruction of existing data in case it is incomplete, inaccurate, not updated, or their collection and processing was carried out against the law;
Refusal of consent ― the user has the right, at any time without explanation, to refuse his/her consent and request termination of data processing and/or destruction of processed data (unless there are other grounds for data processing);
Right to appeal ― If the user considers that the processing of data by the Website does not comply with the rules established by the Law of Georgia on Personal Data Protection, he/she can apply to the Tbilisi City Court (the address: Tbilisi, Davit Aghmashenebeli Alley № 64).
Restricting User Rights
According to the Georgian legislation, the above-mentioned rights of the user may be restricted, if the exercise of those may endanger:
State security or defense interests;
Public safety interests;
Detecting, investigating, and preventing crime;
Significant financial or economic (including monetary, budgetary, and tax) interests of the country; The rights and freedoms of the data subject (user) and others.
The relevant restrictions may be used only to the extent necessary to achieve the purpose of the restriction.
In the presence of the grounds mentioned above, the decision of the Website shall be notified to the user in such a way as not to prejudice the purpose of the restriction.
To delete personal data provided via the website, please email the Website: info@georgiacb.ge.