Privacy Policy

This policy complies with Russian Federal Law 152-FZ «On Personal Data» and governs the processing of personal data of users of card-center.ru.

1. Data operator

Sole Proprietor «[name pending FNS registration]», TIN [—]. Contact: support@mbank-card.ru.

2. Data collected

• Order data: name, phone, email, optional comment;
• Account data: email, password hash (scrypt);
• Technical data: session cookie, referral code, UTM tags, CPA click_id, server-log IP (30 days);
• Order and referral records.

The site never collects passports, payment card numbers, or document scans.

3. Purpose

• Providing the consultation service;
• Authenticating users;
• Fulfilling the public offer;
• Referral accounting;
• Compliance with law (tax reporting, authority requests).

4. Data sharing

We do not sell data or pass it to marketing third parties. Technical processors: T-Bank (payment), hosting provider (backups). Data is shared only to the extent necessary. No cross-border transfer.

5. Retention

Data is kept until the order is fulfilled plus 3 years for accounting and tax purposes, then irrevocably erased or anonymized. Inactive accounts are deleted after 3 years.

6. Security

• TLS for transport;
• scrypt password hashes;
• HMAC-SHA256 signed referral cookies;
• admin sessions separated from user sessions;
• access limited to authorized staff.

7. Your rights

• Access your data;
• Request correction, blocking, or deletion;
• Withdraw consent.

Requests to support@mbank-card.ru are processed within 30 days. You may also contact Roskomnadzor.

8. Cookies

We use technical cookies (session, theme, referral code, CPA attribution). No advertising or third-party social trackers.

9. Changes

The current version is available here. Last updated: 2026-04-17.