Privacy policy

Back

Privacy and Cookie Policy

of the website domain www.vilniauspetropovilo.lt

of the Vilnius Sts. Apostles Peter and Paul Parish

PRIVACY POLICY

This Privacy Policy (hereinafter – the “Policy”) regulates the principles of collection, processing, and storage of personal data of visitors to the Vilnius Sts. Apostles Peter and Paul Parish (hereinafter – the “Parish”) website www.vilniauspetropovilo.lt, as well as visitors to its social media accounts and newsletter subscribers. It also defines the purposes and means of processing personal data.

This Policy is prepared in accordance with the provisions of Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, repealing Directive 95/46/EC (General Data Protection Regulation, hereinafter – the “Regulation” or “GDPR”).

This Policy informs the visitors of the Parish’s website and social media accounts, as well as newsletter recipients, about the processing of their personal data.

DEFINITIONS

Personal data – any information relating to an identified or identifiable natural person (data subject); an identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, identification number, location data, online identifier, or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural, or social identity of that person.

Data subject – a natural person (visitor of the Parish’s website, social media accounts, and/or newsletter recipient) whose personal data are collected and processed by the Parish.

Consent of the data subject – any freely given, specific, informed, and unambiguous indication of the data subject’s wishes by which they, by a statement or by a clear affirmative action, signify agreement to the processing of personal data relating to them.

Data subject’s rights – the rights of the individual to participate in and control the activities of the data controller and/or processor when their personal data are processed, including the right to:

be informed about data processing;

access their data;

request correction, deletion, or restriction of processing;

object to processing;

request erasure (“the right to be forgotten”);

receive data in a structured, commonly used, machine-readable format;

and lodge a complaint with the supervisory authority (State Data Protection Inspectorate of Lithuania).

Processing of personal data – any operation or set of operations performed on personal data or sets of personal data, whether or not by automated means, such as collection, recording, organisation, structuring, storage, adaptation, alteration, retrieval, consultation, use, disclosure by transmission, dissemination, or otherwise making available, alignment or combination, restriction, erasure, or destruction.

Automated data processing – processing operations carried out in whole or in part by automated means, using information and communication technologies (such as computers, networks, etc.).

Data controllerVilnius Sts. Apostles Peter and Paul Parish, legal entity code 191309922, registered address Antakalnio g. 1, Vilnius, tel. +370 (698) 00 738, email: info@vilniauspetropovilo.lt.

Data processor – a natural or legal person, public authority, agency, or other body which processes personal data on behalf of the data controller.

Data recipient – a natural or legal person, public authority, agency, or another body, to whom the personal data are disclosed, whether a third party or not. Public authorities that may receive personal data under EU or national law in the course of a specific inquiry shall not be regarded as recipients.

Cookie – a small text file placed on the user’s computer or mobile device when visiting a website.

Personal data breach – a security breach leading to the accidental or unlawful destruction, loss, alteration, unauthorised disclosure of, or access to, personal data transmitted, stored, or otherwise processed.

All other terms used in this Policy shall have the same meaning as defined in the Regulation (GDPR) and applicable data protection legislation.

I. PRINCIPLES OF PERSONAL DATA PROCESSING

  1. When processing your personal data, the Parish adheres to the following principles:

    1.1. Purpose limitation: personal data shall be collected for specified, explicit, and legitimate purposes and not further processed in a manner that is incompatible with those purposes;

    1.2. Lawfulness, fairness, and transparency: personal data shall be processed lawfully, fairly, and in a transparent manner;

    1.3. Accuracy: personal data shall be accurate and, where necessary, kept up to date;

    1.4. Data minimisation: personal data shall be adequate, relevant, and limited to what is necessary in relation to the purposes for which they are processed;

    1.5. Storage limitation: personal data shall be kept in a form which permits identification of data subjects for no longer than is necessary for the purposes for which the personal data are processed;

    1.6. Integrity and confidentiality: personal data shall be processed in a manner that ensures appropriate security, including protection against unauthorised or unlawful processing and against accidental loss, destruction, or damage, using appropriate technical or organisational measures;

    1.7. Accountability: the Parish shall be responsible for, and able to demonstrate, compliance with these principles.

II. PURPOSES OF PERSONAL DATA PROCESSING

  1. The Parish processes your personal data for the following purposes:

    2.1. To ensure the legitimate interests of the Parish, including the proper management and administration of the website, monitoring its traffic, ensuring its security, improving its performance, facilitating the search for information, responding to data subject inquiries, and—where consent has been given—sending newsletters for informational or marketing purposes.

  2. For the purposes specified in paragraph 2, the Parish collects and processes the following personal data:

    3.1. Personal information: name or full name (if provided by you);

    3.2. Contact details: email address, telephone number, postal address (if provided by you);

    3.3. Any other personal data or information voluntarily submitted through inquiries or requests;

    3.4. Newsletter subscription data (if provided by you).

III. COLLECTION AND PROCESSING OF PERSONAL DATA

  1. Personal data are obtained from you when such data are required by law or when you voluntarily provide them.

  2. The Parish also processes your personal data in cases where you contact it by email, submit an inquiry through the website, subscribe to newsletters, or send information using the contact details provided on the Parish’s website or social media accounts.

    In such cases, the Parish processes your data for the purposes of managing and responding to inquiries and/or sending newsletters, ensuring the quality of provided services, and protecting its legitimate interests.

  3. Regardless of how the data are collected, they are stored only to the extent and for as long as necessary to achieve the purposes for which they were collected. However, the retention period shall not exceed the terms established by the General Document Retention Schedule approved by the Chief Archivist of Lithuania (Order No. V-100 of 9 March 2011) or other applicable legal acts.

    Data submitted through website inquiries are retained for no longer than one year after a response is provided and are then securely destroyed.

IV. RIGHTS OF THE DATA SUBJECT

  1. As a data subject, you have the following rights:

7.1. Right to be informed about the processing of your personal data;

7.2. Right of access – you have the right to obtain confirmation as to whether or not personal data concerning you are being processed, and, where that is the case, access to the data and information about the processing;

7.3. Right to rectification – if your personal data processed by the Parish are inaccurate or incomplete, you have the right to request their correction or completion;

7.4. Right to erasure (“right to be forgotten”) – you may request that your personal data be erased if:

  • the data are no longer necessary for the purposes for which they were collected;

  • you withdraw your consent and there is no other legal ground for processing;

  • you object to the processing and there are no overriding legitimate grounds;

  • the data have been processed unlawfully.

7.5. Right to restriction of processing – you may request restriction of processing in the following cases:

  • you contest the accuracy of the personal data, for a period enabling the Parish to verify their accuracy;

  • the processing is unlawful and you oppose the erasure of the data and request restriction instead;

  • the Parish no longer needs the data for processing purposes, but they are required by you for the establishment, exercise, or defence of legal claims;

  • you have objected to processing, pending verification of whether the Parish’s legitimate grounds override yours.

7.6. Right to object – you may object to the processing of your personal data that is not mandatory. Such objection may be expressed by not filling in certain optional fields or later by submitting a written request to terminate the processing of optional data. Upon receiving such a request, the Parish shall stop the processing unless required by law to continue and shall inform you accordingly.

7.7. Right to data portability – you have the right to receive personal data concerning you, which you have provided to the Parish, in a structured, commonly used, and machine-readable format, and to transmit those data to another controller without hindrance from the Parish.

V. MEASURES TO ENSURE THE SECURITY OF PERSONAL DATA

  1. The Parish implements appropriate organisational and technical measures to protect personal data against accidental or unlawful destruction, alteration, disclosure, or any other unlawful processing.

  2. Access to the personal data collected and processed by the Parish is granted only to authorised persons who require such access for the purposes defined in this Policy.

  3. The Parish ensures proper network management, information system maintenance, and implementation of other necessary technical measures to safeguard your personal data.

VI. TRANSFER OF PERSONAL DATA TO THIRD PARTIES

  1. Your personal data may be disclosed to third parties providing services to the Parish, such as IT system maintenance and support providers. In such cases, personal data are disclosed only to the extent necessary for the proper provision of their services.

  2. Your personal data may also be disclosed to law enforcement authorities in accordance with the legislation of the Republic of Lithuania.

  3. In all other cases, your personal data shall be disclosed to third parties only with your consent.

VII. USE OF COOKIES

  1. Information collected through cookies enables the Parish to improve the functionality of its website, ensuring a convenient and efficient browsing experience for visitors.

  2. The main cookies used on the Parish’s website are as follows:

Cookie Name

Purpose

Type

Expiry Period

_GA

This cookie is installed by Google Analytics. It is used to distinguish users, calculate visitor, session, and campaign data, and track site usage for analytical purposes. The cookie stores information anonymously and assigns a randomly generated number to identify unique visitors.

Statistical cookie

2 years

  1. Consent to the use of cookies is expressed by clicking the “I AGREE” button when the following message appears on the website:

“To improve your browsing experience and for statistical and marketing purposes, this website uses cookies, which you may revoke at any time by changing your browser settings and deleting stored cookies.”

  1. You may withdraw your consent to the use of cookies at any time by changing your browser settings and deleting stored cookies. The procedure for doing so depends on your operating system and internet browser.

  2. Please note that deleting cookies may affect the functionality of some features of the Parish’s website.

VIII. SENDING OF NEWSLETTERS

  1. With the data subject’s consent, the Parish may send newsletters for informational or marketing purposes, including details about goods, services, events, seminars, or other direct marketing content.

  2. The Parish sends newsletters to data subjects no more than once per week, and only with prior consent given electronically and confirmed by an active action — by completing the relevant form on the Parish’s website and providing the email address to which newsletters should be sent.

  3. The Parish continues to send newsletters until the recipient withdraws their consent.

  4. Data subjects may easily unsubscribe from receiving newsletters or withdraw their consent to further direct marketing communications by clicking the unsubscribe link provided in each email.

  5. Once a data subject unsubscribes, the Parish shall cease sending newsletters containing direct marketing content.

IX. AMENDMENTS TO THE PRIVACY POLICY

  1. This Policy is subject to regular review and updates. Any changes shall be published on the Parish’s website:

    www.vilniauspetropovilo.lt

X. CONTACT INFORMATION

  1. If you have any questions, comments, or complaints regarding the collection, use, or storage of your personal data by the Parish, please contact us at:

    info@vilniauspetropovilo.lt