Terms, Privacy & Cookie Policy

Last updated: 2025-12-19

1. Nature of the project

Lietuvis.org is a civic information and coordination platform. It is not a political party, not an election campaign, and does not replace state institutions.

1.1 Initiative submission and decision-making process

Civic initiatives submitted on the platform follow a clear and transparent process that separates public support, community decision-making, and lawful implementation.

1.1.1 Initiative submission

An initiative may be submitted by a registered user. Once submitted, the initiative becomes publicly visible and open for community support.

1.1.2 Collection of support votes

An initiative is considered to have reached the support stage when it collects at least 1,000 support votes. This confirms public interest and relevance.

1.1.3 Transition to voting

After reaching the required number of support votes, the initiative is transferred to a voting stage, where platform users vote on whether to approve the initiative.

1.1.4 Decision outcome

If the voting stage reaches the required number of votes, the initiative is considered approved by community decision.

1.1.5 Lawful implementation

An approved initiative is forwarded for lawful implementation to relevant institutions, organizations, or processes in accordance with applicable laws. The platform itself does not perform legislative or administrative functions but ensures transparency and documentation of the process.

2. Platform administration (technical service provider)

The platform is technically administered and operated by:

• Technical service provider: CRCpro GbR (Germany)
• Address: Heese Lauensteinstraße 4, 29225 Celle, Deutschland
• Phone: +49 (174) 6607869
• VAT ID: DE366682946

3. Subscription

Platform support is provided through a voluntary subscription (monthly recurring fee). This is a service purchase, not a donation.

4. Payments

Payments are processed via Stripe. The subscription renews automatically each month until cancelled. If a payment fails, access to subscription benefits may be suspended until payment succeeds.

5. Cancellation and refunds

The subscription can be cancelled at any time. Payments already made for the current billing period are non-refundable, except where required by law.

6. Acceptable use

You agree not to misuse the platform, attempt unauthorized access, disrupt services, or use the platform for unlawful actions. We may suspend access if we reasonably believe there is abuse or security risk.

7. Limitation of liability

The platform provides information and coordination services on an "as is" basis to the extent permitted by law. We are not liable for third-party actions or decisions.

8. Privacy (GDPR)

We process personal data in accordance with the GDPR. This section explains what we collect, why we collect it, how long we keep it, and your rights.

8.1 Data controller / contact

• Controller / operator (for platform operations): CRCpro GbR
• Privacy requests: [email protected]
• General contact: Contact page

8.2 What data we collect

• Account data: email, username, password hash, account status, consent timestamps
• Content data: posts/comments you submit and related metadata
• Technical data: IP address, device/browser info, logs for security and fraud prevention
• Subscription data: subscription status and billing identifiers (payments handled by Stripe; we do not store full card data)

8.3 Purposes and legal bases

• Provide the platform and accounts (contract/performance)
• Security, abuse prevention, system integrity (legitimate interests)
• Payments and accounting (contract + legal obligation)
• Optional cookies/analytics (consent, where required)

8.4 Recipients / processors

• Stripe – payment processing
• Hosting/IT providers – infrastructure needed to operate the service

8.5 Retention

• Account data is kept while the account is active and for a reasonable period after deletion (unless legal obligations require longer).
• Payment-related records may be retained for statutory accounting/tax requirements.
• Security logs are retained for a limited period necessary for security and investigations.

8.6 Your rights

You may request access, rectification, deletion, restriction, portability, or object to processing where applicable. You may also withdraw consent for optional processing (e.g., analytics cookies) at any time.

8.7 Data security

Personal data is not stored in the database in plain text. Data is stored in encrypted form and can only be read using the appropriate encryption key during application operation.

8.8 Security vulnerability reporting (Responsible Disclosure)

We take the security of our systems and user data seriously. If you believe you have found a security vulnerability affecting lietuvis.org, please report it responsibly.

• Security contact: [email protected]
• Preferred languages: EN, LT

When reporting, please include a clear description, affected URLs, steps to reproduce (if applicable), and any relevant logs.

Please do not access or modify user data, do not perform denial-of-service testing, and do not publicly disclose the issue before we have had a reasonable opportunity to investigate.

9. Cookies

Cookies are small text files stored on your device. We use:

• Essential cookies – required for login, security, and basic site functionality.
• Preference cookies – remember settings.
• Analytics/marketing cookies – only if you consent (where required by law).

10. Digital Services Act (DSA): notices & complaints

If you believe content is illegal, you can report it via the contact page with a link/screenshot and explanation. We review reports and may restrict or remove content and/or accounts where required.

If you disagree with a moderation decision affecting you, you can submit an internal complaint via the contact page. We aim to respond within a reasonable time.

11. Changes to this policy

We may update these Terms/Policies. The “Last updated” date indicates when changes took effect.

12. Contact

Questions? Please use the contact page.