Privacy Policy

This Privacy Policy (hereinafter referred to as the "Policy") defines the procedure for processing and protecting the personal data of users of the Caterizi platform in accordance with the General Data Protection Regulation (GDPR) of the EU and the legislation of the EU on personal data protection. We comply with the principles of lawfulness, fairness, and transparency in data processing and take necessary measures to protect the confidentiality of your data.

Data Controller: Caterizi is the controller of your personal data collected through the platform. For any questions related to the processing of personal data, you can contact us by email at press@caterizi.com.

We collect and process the following categories of users' personal data:

• Identification data: user's first and last name.
• Contact data: postal address (delivery address), phone number, email address.
• Payment information: data required for processing payment (e.g., information about a bank card or other payment method). Note: payment credentials may be processed directly by our payment provider, and we do not store your full bank card data on our servers for security reasons.
• Order data: history of orders made through the platform (ordered goods or services, transaction dates and amounts, order statuses, etc.).
• Technical data: IP address, cookies, data on activity on the website (e.g., viewed pages, clicks, visit time), and other online identifiers. These data allow us to analyze the use of the platform and ensure the correct functioning of services.

We do not request or collect special categories of personal data (such as data on health, political views, religious beliefs, etc.), as such information is not required for the operation of Caterizi. Please refrain from providing us with such information through the platform.

Personal data is provided by users directly and collected by us automatically when interacting with the platform:

• Account registration: when creating an account on Caterizi, you provide us with your first name, last name, email address, phone number, and (if necessary) home or delivery address. These data are required to identify the user and ensure the functionality of the platform.
• Placing an order: when ordering goods or services through Caterizi, you enter data necessary to fulfill the order – for example, name and delivery address, contact phone number, payment details. We also retain information about the order itself and its history.
• Using the website: during your use of the platform, we automatically receive some technical data. For example, when visiting the site, your IP address and cookies are recorded, which allow us to recognize you upon subsequent visits.
• Support requests: if you contact us for support, we may receive additional data that you provide in your request (e.g., information about the issue, attached screenshots, etc.). These data will be used exclusively to resolve your request.

We process the personal data of Caterizi users for specific and lawful purposes. Each data operation is carried out on a relevant legal basis in accordance with the GDPR (Art. 6 GDPR). Below are the purposes of processing and justifications:

• Order processing and fulfillment: Your data is used to process, confirm, and deliver your order, as well as to issue invoices and receive payment.
• User communication: We use contact data to inform you about the order status, clarify details, provide service communications, and respond to your support requests.
• Payment processing: Payment information is transferred to our payment provider to process order payments.
• Compliance with legal obligations: We may process and store some of your data to comply with legal requirements.
• Analytics and service improvement: Data about your interaction with the platform is used for analytical purposes to understand user needs and improve our site and services.
• Feedback and notifications: We may use your data to send important notifications about platform operation and request feedback about service quality.

We treat the confidentiality of your data with respect and do not sell or disclose personal data to third-party organizations, except in cases expressly stated in this Policy or provided by law. The transfer of data to third parties is limited to the minimally necessary amount and is carried out in the following cases:

• Payment providers: To process payment, your payment data is securely transferred to our external payment provider.
• Order fulfillment partners: In some cases, to fulfill your order, we engage third-party partners.
• Disclosure required by law: We may disclose your personal data to government bodies, supervisory authorities, or other third parties if required by law.

All collected personal data is stored on a secure server located in the territory of the Russian Federation.

We understand the responsibility for the security of your data and take the necessary organizational and technical measures to protect it from unauthorized access, alteration, disclosure, or destruction.

Security measures: We use modern security tools, including data encryption, secure networks, firewalls, and intrusion detection systems. Access to personal data is restricted to employees and authorized persons who need these data to perform their duties.

We retain users' personal data no longer than necessary for the purposes for which they are processed, unless a longer retention period is required or permitted by law.

• Account data: Stored for the entire duration of your use of the Caterizi platform.
• Order and payment history: Retained as required by accounting and tax legislation (typically 5 years).
• Correspondence and requests: Stored for 1–2 years after resolving your issue.
• Technical and analytical data: Stored for up to 1 year unless longer retention is necessary.

In accordance with the GDPR and applicable legislation, you, as the data subject, have a number of key rights to control your information:

• Right of access – request confirmation and copies of your personal data.
• Right to rectification – request correction of inaccurate or incomplete data.
• Right to erasure – request deletion of your personal data.
• Right to restriction – temporarily restrict processing of your data.
• Right to data portability – obtain your data in a machine-readable format.
• Right to withdraw consent – withdraw previously given consent.
• Right to object – object to processing based on legitimate interest.
• Right to lodge a complaint – file a complaint with supervisory authorities.

The Caterizi platform is not intended for use by individuals under the age of 18. We do not knowingly collect or process the personal data of children.

If we discover that we have received personal data from a minor user without proper parental consent, such data will be deleted.

For all questions related to this Privacy Policy and the processing of your personal data, you can contact us as follows:

Email:press@caterizi.com

We will review your inquiry and respond to you as quickly as possible (usually within 10–15 business days).

We reserve the right to periodically make changes to this Privacy Policy to reflect changes in our activities, legal requirements, or new security measures.

If we make significant changes, we will notify users by posting a prominent notice on the website or via email.

The current version of the Policy is always available on our website.