General Provisions

This personal data processing policy has been drawn up in in accordance with the Law of the Republic of Kazakhstan dated June 19, 2024 No. 94- V "On personal data and their protection" and determines the procedure for processing personal data and measures to ensure the security of personal data, and applies to all information that sigmasolutions.kz may receive about the User during the use of the site.

1.1 Using the WebSite, the User agrees to the terms of this Privacy Policy. If the User does not agree to the terms of this Privacy Policy, the use of the Site must be immediately terminated.

2.1. This Privacy Policy applies only to the sigmasolutions . kz website , does not control and is not responsible for third-party websites that the User may access via links available on the Website.

3.1. sigmasolutions.kz does not verify the accuracy of personal data provided by the User. However, sigmasolutions.kz assumes that the User provides accurate personal data and keeps this data up to date. The User bears all responsibility, as well as possible consequences for providing inaccurate or outdated personal data.

Subject of the privacy policy

3.1. This Privacy Policy sets forth the obligations of the Site Administration to maintain confidentiality and ensure the protection of the privacy of personal data that the User provides at the request of the Site Administration when registering on the Site, or when placing an order for the use of any of the Site Services.

3.2. Personal data permitted to be processed within the framework of this Privacy Policy may include the following information:

3.2.1. the User’s first and last name;

3.2.2. User’s contact telephone numbers;

3.2.3. e - mail address ;

- IP address;

- information from cookies ;

- information about the browser (or other program that provides access to display advertising);

- access time;

- referrer (address of the previous page).

3.3.2. The site collects statistics on the IP addresses of its visitors. This information is used to identify and resolve technical problems.

3.4. Any other personal information not specified above (purchase history, browsers and operating systems used, etc. ) is subject to secure storage and non-dissemination, except for cases provided in paragraphs 5.2. and 5.3. of this Privacy Policy.

Purposes of collecting and processing personal data of users

sigmasolutions.kz uses the User’s personal data for the following purposes:

4.1.1. identification of the User for placing an order and/or concluding a Contract for the sale and purchase of goods;

4.1.2. providing the User with effective customer support;

4.1.3. communications with the User, including sending notifications, requests and information regarding the use of the Services of the site for processing requests and applications from the User;

4.1.4. improving the quality of the website Services, the convenience of their use, developing new Services and services;

Methods and terms of processing personal data

5.1. The processing of the User’s personal data is carried out without time limitation, in any legal manner, including in personal data information systems using automation tools or without using such tools.

5.2. The User agrees that the Site Administration has the right to transfer personal data to third parties, in particular, postal service organizations, mobile operators, solely for the purpose of fulfilling the User's order and informing about the progress of its fulfillment.

5.3. The User’s personal data may be transferred to authorized state authorities of the Republic of Kazakhstan only on the grounds and in the manner established by the legislation of the Republic of Kazakhstan.

5.5. The Site Administration takes the necessary organizational and technical measures to protect the User’s personal data from unauthorized or accidental access, destruction, modification, blocking, copying, distribution, as well as from other illegal actions of third parties.

5.6. The Site Administration, together with the User, takes all necessary measures to prevent losses or other negative consequences caused by the loss or disclosure of the User’s personal data.

Obligations of the parties

6.1. The User is obliged to:

6.1.1. Provide up-to-date information about personal data requested by the Site at the time of its use.

6.2. The User has the right:

6.2.1. To access and edit information about personal data at any time through the web interface of the Site.

6.3. The site administration is obliged to:

6.3.1. Use the information received solely for the purposes specified in paragraph 4 of this Privacy Policy.

6.3.2. Ensure that confidential information is kept secret, not disclosed without the prior written permission of the User, and not sell, exchange, publish, or disclose in any other possible way the transferred personal data of the User, with the exception of paragraphs 5.2 and 5.3 of this Privacy Policy.

6.3.3. Take precautions to protect the confidentiality of the User's personal data in accordance with the procedure usually used to protect such information in existing business practices.

6.3.4. Block personal data related to the relevant User from the moment of the User’s request or appeal or their legal representative or authorized body for the protection of the rights of personal data subjects for the period of verification, in the event of detection of inaccurate personal data or illegal actions.

6.4. The site administration has the right to:

6.4.1. Provide access for collection and analysis of the User's non-personal data to third parties for the purposes of statistics and website optimization. The use of non-personal data by third parties is governed by their own privacy policies, and the Site Administration is not responsible for their use.

Procedure for implementing measures to protect personal data

7.1. The Administration ensures the protection of personal data, which is guaranteed by the state, and takes the necessary measures to protect personal data, ensuring:

7.1. preventing unauthorized access to personal data;

7.2. timely detection of facts of unauthorized access to personal data, if such unauthorized access could not be prevented;

7.3. minimizing the adverse consequences of unauthorized access to personal data.

The obligations of the Administration, as well as a third party, to protect personal data arise from the moment of collection of personal data and are valid until the moment of their destruction or depersonalization.

7.4 Collection and processing of personal data is carried out only in cases where their protection is ensured.

7.5. The protection of personal data is carried out by applying a set of measures, including legal, organizational and technical ones, for the purposes of:

7.5.1. implementation of the rights to privacy, personal and family secrets;

7.5.2. ensuring their integrity and safety;

7.5.3. maintaining their confidentiality;

7.5.4. implementation of the right to access them;

7.5.5. preventing their illegal collection and processing.

Responsibilities of the parties

8.1. The Site Administration that has failed to fulfill its obligations shall be liable for losses incurred by the User in connection with the illegal use of personal data, in accordance with the legislation of the Republic of Kazakhstan, except for the cases provided for in paragraph 5.2, paragraph 5.3 and paragraph 7.2 of this Privacy Policy.

8.2. In case of loss or disclosure of Confidential information, the Site Administration shall not be held liable if this confidential information:

8.2.1. Became publicly known prior to its loss or disclosure.

8.2.2. Was received from a third party prior to its receipt by the Site Administration.

8.2.3. Was disclosed with the consent of the User.

Dispute resolution

9.1. Before filing a claim in court regarding disputes arising from the relationship between the User of the site and the Site Administration, it is mandatory to file a claim (a written proposal for a voluntary settlement of the dispute).

9.2. The site administration shall notify the claimant in writing of the results of the consideration of the claim within the timeframes established by the current legislation of the Republic of Kazakhstan.

9.3. If no agreement is reached, the dispute will be referred to a judicial body in accordance with the current legislation of the Republic of Kazakhstan.

9.4. The current legislation of the Republic of Kazakhstan shall apply to this Privacy Policy and the relationship between the User and the Site Administration.

Additional terms

10.1. The Site Administration has the right to make changes to this Privacy Policy without the User’s consent.

10.2. The new Privacy Policy comes into force from the moment it is posted on the Site, unless otherwise provided by the new version of the Privacy Policy.

10.3. Users have the right to send their requests to the Site Administration, including requests regarding the use of their personal data in writing to the email address: sales@sigmasolutions.kz

10.4. The request sent by the User must comply with the requirements for submitting requests to the Service and Support Service, namely, contain:

- Full name;

- information confirming the user’s participation in relations with the Administration (in particular, the email address that was used to register on the site);

- phone number.