Effective date: June 4, 2026. Version: v3.0
1. General Principles and Data Minimization
1.1. This Privacy Policy (hereinafter — "Policy") is drafted in accordance with Federal Law No. 152-FZ of July 27, 2006 "On Personal Data" (as amended effective July 1, 2025) and sets out how data is handled on the btg.ivsofte.biz website (hereinafter — "Website").
1.2. The Website is built on a data-minimization principle: the Operator strives not to collect or store Users' personal data. The Website has no registration, no user accounts, and no forms that collect personal data.
1.3. No personal data is required or requested for ordinary browsing of pages.
2. Data Localization and 152-FZ Compliance
2.1. The Operator does not collect, record, systematize, accumulate, store, update, or extract Users' personal data using any databases of its own (personal-data information systems).
2.2. Because the Operator maintains no database containing Users' personal data, the requirement to store the personal data of Russian citizens in databases located within the Russian Federation (Art. 18(5) of Law No. 152-FZ, in force since July 1, 2025) creates no localization obligation for this Website — no such database exists, whether inside or outside Russia.
2.3. The Website does not place Russian citizens' personal data into databases located outside the Russian Federation, since the Operator performs no primary collection or storage of such data.
3. What Information May Be Processed
3.1. Technical web-server data. IP address, user-agent, date and time of the request, and referer may be transiently recorded in server service logs solely for security and abuse prevention. These logs are used in an anonymized manner, are not aggregated into a personal-data database, are not used to identify individuals, and are periodically overwritten.
3.2. Voluntary contact. If the User contacts support, they do so through third-party services (email, Telegram, Discord, VKontakte). Those services act as the operators of such data; the Operator merely reads the message within the respective service and does not transfer it into any database of its own.
3.3. Payment. Ordering and payment take place on the payment provider's side (Digiseller / oplata.info). The Operator may see, in the seller's panel, service data about the order (the fact, amount, time, order ID, and the email the buyer provided) — this data is stored within the payment platform's infrastructure as the operator of such data; the Operator keeps no order database of its own.
3.4. The Operator does not request full name, passport data, residential address, phone number, biometric, or special categories of personal data.
4. Payments
4.1. Services are paid for through third-party payment providers (Digiseller and others).
4.2. The Operator does not receive or store the User's bank card details or other payment credentials — they are processed by the payment provider in accordance with its own policy.
5. Purposes of Processing
- responding to User inquiries;
- providing Services and technical support (installation, launch, configuration of software);
- ensuring the security and stability of the Website and preventing abuse;
- complying with legal requirements upon a lawful request.
6. Cookies and Analytics
6.1. The Website uses technical cookies necessary for its operation. Yandex.Metrica collects anonymized traffic statistics; its operator is Yandex LLC, which processes and stores this data on servers located within the Russian Federation, and Users' personal data is not passed to the Website. See the "Cookie Policy" for details.
7. Transfer of Data
7.1. The Operator does not sell or transfer personal data to third parties for marketing or other commercial purposes.
7.2. Data may be disclosed solely in response to a lawful request from authorized state authorities in cases provided by the laws of the Russian Federation.
8. Rights of the Personal Data Subject
In accordance with Federal Law 152-FZ, the User has the right to:
- obtain information about the processing of their personal data;
- require the data to be clarified, blocked or destroyed;
- withdraw consent to the processing of personal data;
- appeal the Operator's actions to the authorized body for the protection of personal data subjects' rights (Roskomnadzor) or in court.
A request shall be sent to the Operator's email. The response time is up to 30 days.
9. Security and Retention
The Operator applies connection encryption (HTTPS), access restriction, logging, and monitoring to prevent abuse. As the Operator maintains no personal-data database, information is not kept longer than technically necessary to operate the Website and ensure security.
10. Changes to the Policy
The Operator may amend this Policy. A new version takes effect from the moment of its publication on the Website. It is recommended to periodically check the current version.
11. Contacts
For privacy questions:
- Email: ivsofte@gmail.com
- Telegram administrator: @undetect
Other ways to contact us are listed on the "Contacts" page.