+7-938-409-88-88 г. Сочи, Эсто-Садок, ул. Переселенческая 2-а
MainPrivacy Policy

Privacy Policy

1. General provisions

1.1. This Policy defines the procedure for processing and protecting personal data of clients and website visitors. myshmyla.ru (hereinafter referred to as the Website).
1.2. The Operator guarantees the observance of human rights and freedoms when processing personal data, including the protection of the rights to privacy, personal and family secrets.
1.3. The Policy is publicly available on the Website and must be reviewed before providing personal data.

2. Basic concepts

  • Personal data — any information related directly or indirectly to a specific individual (subject of personal data).
  • Personal data processing — any actions (operations) with personal data, including collection, recording, systematization, accumulation, storage, clarification, extraction, use, transfer, depersonalization, blocking, deletion, destruction.
  • Operator is a legal entity that independently or jointly with other persons organizes and/or processes personal data.
  • Personal data information system — a set of personal data contained in databases and information technologies and technical means that ensure their processing.

3. Purposes of personal data processing

Personal data is processed for the following purposes:

  • reservation of tables in a restaurant;
  • informing about the order status and new products/promotions;
  • analyzing customer preferences to improve the service;
  • conducting marketing research and surveys;
  • Ensuring transaction security and fraud prevention;
  • maintaining the customer base and sales statistics;
  • compliance with the requirements of the legislation of the Russian Federation.

4. Categories of personal data processed

The operator processes the following categories of personal data:

  • last name, first name, patronymic;
  • Phone number;
  • Email address;
  • IP address and cookie data (anonymized);
  • other information voluntarily provided by the user.

5. Legal grounds for processing

The processing is carried out on the following grounds:

  • consent of the personal data subject (art. 6 FZ 152);
  • the need to fulfill the contract (art. 6 FZ 152);
  • requirements of the legislation of the Russian Federation (tax, accounting, and other obligations).

6. Procedure and conditions of processing

6.1. Personal data is collected:

  • when filling out forms on the Website;
  • when making a booking;
  • when contacting customer support;
  • through cookies and attendance counters.
    6.2. Personal data retention period:
  • during the term of the agreement and after its execution — in accordance with the requirements of the legislation of the Russian Federation (tax, accounting);
  • before the withdrawal of consent by the personal data subject (if the processing is based on consent).
    6.3. Transfer of data to third parties is allowed only:
  • courier and logistics services — for the delivery of orders;
  • payment systems — for conducting transactions;
  • government agencies — upon legal request;
  • to other persons — with the written consent of the personal data subject.

7. Rights of the personal data subject

The personal data subject has the right to:

  • receive information about the availability of their data and their processing;
  • require clarification, blocking, or destruction of data;
  • revoke consent to processing;
  • appeal the Operator’s actions to Roskomnadzor or the court;
  • Appoint a representative to protect their rights.
    To exercise your rights, you must send a request indicating your full name, contact details, and the nature of the request.

8. Duties of the Operator

The Operator undertakes to:

  • process data only for the stated purposes;
  • ensure confidentiality and protection against unauthorized access;
  • take measures to prevent data leaks;
  • notify data subjects of Policy changes;
  • terminate processing at the request of the subject or upon achievement of goals.

9. Measures to protect personal data

The operator applies the following security measures:

  • using certified cryptographic protection tools;
  • differentiation of access rights to data;
  • Regular backups;
  • Antivirus protection and threat monitoring;
  • training of employees in data processing rules.

Policy Changes
The Operator has the right to make changes to the Policy. The current version is always available on the Website. Last revision date: 11/08/2025.
Familiarization with the Policy and the provision of personal data means that the subject agrees to its terms.

Cross-border data transfer
There is no cross-border transfer of personal data.