YAOLYAhome booking
Submit request RU
YAOLYA — home booking

Personal Data Policy

This Personal Data Policy explains what personal data may be processed when using the YAOLYA site and service, why it is processed, who may receive it, and what rights the user has.

YAOLYA · home booking · edition 10.05.2026

This English version is provided for convenience. In case of discrepancies, the Russian version prevails.

  • Controller: Индивидуальный предприниматель Ягирская Ольга Валентиновна
  • INN: 780622378983
  • OGRNIP: 319784700226367
  • Contacts: +79219526128; oyagirsky@gmail.com

1. Controller and scope

1.1. Personal data controller: Индивидуальный предприниматель Ягирская Ольга Валентиновна, INN 780622378983, OGRNIP 319784700226367.

1.2. Contact for personal data requests: +79219526128, oyagirsky@gmail.com.

1.3. This Policy applies to the site, booking request forms, payment forms if online payment is available, user messages, and other YAOLYA services related to accommodation booking.

1.4. Use of the site and form submission mean acceptance of this Policy where such acceptance is required by law.

2. Data categories

2.1. When submitting a request, the following data may be processed: full name, phone number, e-mail address, stay dates, number of guests, selected apartment, comments, and wishes.

2.2. If online payment is available on the site and used, payment-related information may be processed: amount, currency, payment status, order or operation number, and information needed for fiscal receipt processing.

2.3. Card data is processed by the payment provider. The site operator does not store the full card number, CVV/CVC, or other sensitive card credentials.

2.4. Technical data may be processed automatically: IP address, cookies, browser and device data, visit time, site actions, and referral source.

2.5. When a user contacts the operator by messenger, phone, or e-mail, message content and contact details needed to handle the request may be processed.

3. Purposes of processing

3.1. Receiving and processing booking requests.

3.2. Communicating with the guest about dates, apartment, stay terms, payment, check-in, and check-out.

3.3. If online payment is available on the site, receiving prepayments, processing payments and refunds, and forming fiscal receipts where applicable.

3.4. Confirming a booking only after availability check and operator or service confirmation.

3.5. Compliance with legal, accounting, and tax obligations.

3.6. Support, claims handling, security, abuse prevention, diagnostics, and site improvement.

4. Legal basis and necessary data

4.1. Processing may be based on user consent, conclusion or performance of an agreement, legal requirements, and the controller's legitimate interest in operating and securing the service.

4.2. If the user does not provide necessary data, request processing, check-in, receipt issuance, or, if online payment is available, payment processing may be impossible.

5. Processors and third parties

5.1. Data may be transferred only to the extent needed for the processing purposes.

5.2. If online payment is available and used, data may be transferred to payment providers, banks, fiscal receipt providers, fiscal data operators, and other payment participants for payment, receipt, and refund processing.

5.3. Data may be transferred to booking management systems, calendar services, CRM, communication services, messengers, and technical contractors if needed to process the request and support the guest.

5.4. Data may be transferred to public authorities where required by law.

5.5. Marketing use is allowed only when the required consent exists.

6. Cookies and technical data

6.1. The site may use cookies and similar technologies for booking session operation, security, user preferences, analytics, and service improvement.

6.2. The user may restrict cookies in browser settings, but this may affect correct site and booking flow operation.

6.3. The site must not expose protected session identifiers used for secure cookie-session operation.

7. Storage and security

7.1. The controller takes organizational and technical measures to protect personal data from unauthorized access, alteration, disclosure, destruction, and other unlawful actions.

7.2. Access is provided only to people and services that need it for their functions.

7.3. Storage periods are determined by processing purposes, legal, accounting, and tax requirements, and possible claims or inquiries.

7.4. When processing purposes are achieved or legal grounds require it, data is deleted, anonymized, or archived according to the applicable procedure.

8. User rights

8.1. The user has the right to receive information about processing of personal data.

8.2. The user may request correction, blocking, or deletion of personal data where provided by law.

8.3. The user may withdraw consent if processing is based on consent.

8.4. Requests regarding personal data may be sent to oyagirsky@gmail.com.

9. Minors

9.1. The service is not intended for independent use by minors without participation of their legal representatives.

9.2. If data of minor guests is included in a request, such data is provided by an adult user who has the right to act as a legal representative or accompanying person.

10. Changes and language

10.1. The controller may update this Policy. The new version applies from publication unless stated otherwise.

10.2. Users are advised to check the current Policy periodically.

10.3. This English version is provided for convenience. In case of discrepancies, the Russian version prevails.