Personal Data Processing Policy

1. General Provisions

This Personal Data Processing Policy is developed in accordance with the Law of 13 June 2019 “On Personal Data” and defines the procedures for processing personal data and the measures taken by the Belarusian Council for Culture (hereinafter — the Operator) to ensure the security of personal data.

1.1. The Operator considers the protection of human and civil rights and freedoms in the processing of personal data — including the right to privacy, personal and family secrets — as a primary goal and essential condition of its activities.

1.2. This Policy applies to all personal data that the Operator may collect from visitors of the website: https://byculture.org.

2. Key Terms Used in the Policy

2.1. Automated processing of personal data — processing of personal data using computer technology.

2.2. Blocking of personal data — temporary suspension of personal data processing (except when processing is necessary for clarification of personal data).

2.3. Website — a set of graphic and informational materials, software, and databases made available online at https://byculture.org.

2.4. Personal data information system — a set of personal data stored in databases and processed using information technologies and technical means.

2.5. Depersonalization of personal data — actions that make it impossible to identify a specific user without the use of additional information.

2.6. Processing of personal data — any operation or set of operations performed with or without automation, including collection, recording, systematization, accumulation, storage, updating (modification), retrieval, use, transfer (distribution, provision, access), depersonalization, blocking, deletion, and destruction of personal data.

2.7. Operator — a public authority, municipal body, legal or natural person that organizes and/or carries out personal data processing independently or jointly with others, and determines the purposes of processing, scope of personal data, and actions (operations) performed.

2.8. Personal data — any information relating directly or indirectly to an identified or identifiable user of the website https://byculture.org.

2.9. User — any visitor of the website https://byculture.org.
2.10. Provision of personal data — actions aimed at disclosing personal data to a specific person or group.

2.11. Dissemination of personal data — any actions aimed at disclosing personal data to an indefinite group, including publishing in the media, posting online, or otherwise making data accessible.

2.12. Cross-border transfer of personal data — transfer of personal data to a foreign country’s territory, foreign authority, or foreign individual/legal entity.

2.13. Destruction of personal data — any actions that result in the irreversible elimination of personal data from the information system and/or the destruction of physical data carriers, making it impossible to restore the content.

3. Types of Personal Data Processed

3.1. Surname, first name, patronymic (if applicable);

3.2. Phone number;

3.3. Email address;

3.4. The website also collects and processes anonymized visitor data (including cookies) via web analytics services (Yandex Metrica, Google Analytics, etc.).

3.5. All the above is hereinafter collectively referred to as Personal Data.

4. Purposes of Personal Data Processing

4.1. The purpose of processing User personal data is to provide the User with access to services, information, and/or materials available on https://byculture.org.

4.2. The Operator may also send the User notifications about new products, services, special offers, and events. The User may opt out at any time by emailing info@byculture.org with the subject line “Unsubscribe from notifications about new products, services, and special offers.”

4.3. Anonymized data collected via analytics services is used to improve the quality and content of the website and to analyze user behavior.

5. Legal Basis for Personal Data Processing

5.1. The Operator processes personal data only when the User independently provides it by filling in forms on the website https://byculture.org. By submitting their data, the User consents to this Policy.

5.2. The Operator processes anonymized data if permitted by the User’s browser settings (e.g. cookies and JavaScript enabled).

6. Procedure for Collection, Storage, Transfer, and Other Processing

Personal data security is ensured through legal, organizational, and technical measures compliant with applicable legislation.

6.1. The Operator ensures the confidentiality of personal data and prevents unauthorized access.

6.2. User personal data is never shared with third parties, except as required by law.

6.3. If personal data is inaccurate, the User may update it by emailing info@byculture.org with the subject “Update of personal data.”

6.4. Personal data is processed for an unlimited period. The User may withdraw their consent at any time by emailing info@byculture.org with the subject “Withdrawal of consent for personal data processing.”

7. Cross-Border Data Transfers

7.1. Before transferring personal data to another country, the Operator ensures that the country provides adequate protection of data subject rights.

7.2. Transfers to countries that do not meet these requirements are only permitted with the data subject’s written consent or under a contract to which the subject is a party.