Data Handling Policy for Visitors to
in Accordance with EU Regulation 2016/679 (GDPR)

Purpose of Providing This Information
In strict adherence to European Union Regulation 2016/679, commonly referred to as the General Data Protection Regulation (GDPR), this document delineates the procedures for processing personal data of individuals who visit electronically accessible websites at the following web address: 

This policy exclusively pertains to these websites and does not extend to other sites, pages, or online services accessible through hyperlinks published on this site, which may lead to resources beyond the realm of Na CHASI Agency.

Data Controller
When visitors consult the aforementioned websites, data related to identified or identifiable natural persons may undergo processing. The data controller is Na CHASI Agency, a single-shareholder company, headquartered at Lobanovskogo 16 street, Kyivo – Svyatoshinskiy region, Chajki, Kyiv area, reachable via email at [email protected]

Legal Grounds for Data Processing
The personal data discussed in this document are processed solely as required for the operation of the website and, where applicable, in compliance with specific policies and based on consent, for the provision and execution of the services offered by the site.


Browsing Data
During standard use, computer systems and software procedures crucial for the operation of this site collect certain personal data. The transmission of this data is inherent in the utilization of internet communication protocols. This category encompasses IP addresses or domain names of the computers and terminals used by users accessing the site, URI/URL (Uniform Resource Identifier/Locator) addresses of requested resources, request time, the method used to submit the request to the server, the size of the file received in response, the numerical code indicating the server’s response status (e.g., success, error), and other parameters related to the user’s operating system and software environment. These data, necessary for providing web services, are also processed for the following purposes:

  • Compiling statistical information about service usage (e.g., most-visited pages, number of visitors by day or time, geographic location).
  • Ensuring the proper functioning of the services offered.

Browsing data is retained no longer than necessary to ensure the proper functioning of the site and is promptly deleted after aggregation, unless required for verification of criminal activity by judicial authorities.

User-Provided Data
The optional, explicit, and voluntary submission of messages to the contact addresses and the completion and submission of forms on the sites result in the acquisition of the sender’s contact data, essential for response, as well as all personal data included in the messages. Specific policies will be published on pages dedicated to the provision of specific services.

Cookies and Other Tracking Systems
For information concerning the utilization of cookies on the website, please refer to the Cookie Policy.

Data Recipients
Recipients of data collected from visits to the above-mentioned sites may include subjects designated as data processors in accordance with Article 28 of the Regulation. These entities are responsible for developing, providing, and managing the technology platforms used. The personal data collected are also processed by the staff of the Data Controller, who act based on specific instructions regarding the purposes and methods of processing.

Rights of the Data Subject
Data subjects have the unassailable right to access their personal data and request the rectification or erasure of those data, or the restriction of their processing. Moreover, they have the right to object to their processing as per Articles 15 and following of the Regulation. Such requests may be submitted using the provided contact details.

The Right to File a Complaint
Data subjects who assert that the processing of their personal data by this site violates the provisions of the Regulation possess the right to lodge a complaint with the Privacy Authority, as articulated in Article 77 of the Regulation, or to seek judicial remedies as stipulated in Article 79 of the Regulation.