Non-Disclosure Regulations of the Mobile Application of MFI "KMF" LLC (hereinafter “the Regulations”) is valid for and is applied to the information provided by the Users personally during downloading, registering and using the Mobile Application of MFI KMF” LLC (hereinafter “the Mobile Application”). MFI “KMF” LLC (hereinafter “MFI”) has the right to amend or supplement the Regulations unilaterally, with publication of amendments or supplements, or new version of the Regulations on the MFI’s website www.kmf.kz. All terms and definitions used in the Regulations are understood and interpreted in accordance with the terms posted on the MFI’s website www.kmf.kz The Mobile Application and its content are not intended for the persons under 21 years old. When carrying out all the activities aimed at using the Mobile Application (its downloading, installing, registering, using), the User accepts all the terms and conditions of the Regulations and expresses his/her voluntary consent to processing of data provided according to the procedure and for the purposes described in the Regulations. If the User does not agree with the Regulations, he/she shall not download the Mobile Application. The Mobile Application is the software that provides the User with access to online services designed for the Client to carry out operations in the Personal Account via mobile phone or other device, which supports installation of the Mobile Application with the Internet access. 1. Collection and/or Processing of the User’s Privacy Information The User’s Privacy Information is collected by MFI to ensure security of electronic services provided through the Mobile Application solely for the following purposes: • User identification under the agreements; • Provision of customized services to the Mobile Application’s User through the access to the Mobile Application services; • Communication with the Client, including sending of notifications, offers and information regarding the use of MFI products, provision of services, and processing of the User’s requests. The User's Privacy Information is important for MFI, and MFI has taken measures to get the User’s Privacy Information only in the volume that is required for providing the services by MFI and protecting the User's personal account. When using the Mobile Application, MFI can collect and process the following data, including but not limited to: User’s IIN, full name, mobile phone number, date and/or year of birth, information about incomes, email address, IP address, information about the mobile device from which the access to the Mobile Application is made, date and time of visits to the Mobile Application, version of the operating system, unique identifiers of the device, geolocation data, GPS data, bank details, information on completed transactions, including data on the time and amount of the completed transactions, method of payment, data on the recipient and/or service provider, description of the reason of the transaction (if any) and other (heretofore and hereinafter “Privacy Information”). As soon as the User gives his/her consent, the Mobile Application gets access to geolocation (identification of location), for the Android System User also access to SMS messages for automatic enter of the confirmation code from SMS message sent by MFI. 2. Provision of the User’s Privacy Information to the Third Parties The User agrees that MFI shall not disclose and communicate to the third parties the User’s Privacy Information, including information on the transactions made with the use of the Mobile Application, however, MFI can disclose or communicate the Privacy Information, including information on the transactions, to the extent permitted by the laws and regulations, as well as the terms and conditions of the executed agreements. 3. Security Measures Used to Keep Confidentiality of the Privacy Information MFI uses high technologies and internal procedures and implements all the procedures aimed at protecting the User’s Privacy Information from outside interference, unauthorized attempts of access to the information, changes, detection of distortion and/or changes in the content of electronic documents, disclosure or destruction. The Mobile Application ensures protection of the transferred data between the Client and MFI on the Internet using the secure HTTPS protocol with TLS v1.2 cryptographic protocol. User passwords in the MFI’s system are not displayed, and are stored and transmitted exclusively in the encrypted form. However, security also depends on the User’s compliance with the recommendations that are available on the MFI’s website www.kmf.kz. The User shall not make available the phone (including SIM card) (on which the Mobile Application is installed and the User is registered) for the use of the third parties, shall not disclose and communicate and shall hide from the third parties information on the Personal Account, such as login and password. It is recommended to use and timely update antivirus software to ensure maximum protection. The User shall immediately inform MFI of any suspicion of unauthorized use of his/her account. Compliance of the User with the MFI’s recommendations will ensure maximum protection of information provided to MFI, including information on the User’s credit products and other data, as well as mitigation of possible risks when making the transactions with the use of bank card details (or other electronic means of payment) for cashless payment of goods and services, including via the Internet. All rights to the Mobile Application, including implemented and developed services, are reserved by MFI “KMF” LLC The use of confidential information is governed by the Law “On Privacy Information and its Protection”, as well as applicable legislation of the Republic of Kazakhstan. For other questions on the Regulations, the User can call 7474 (free for mobile calls).