1. Who we are
inBelarus Go ("we", "us", "our") is an online platform that helps international students apply to Belarusian universities. We operate at go.in-belarus.com and can be contacted at join@in-belarus.com.
2. What data we collect
Depending on how you use the platform, we may collect:
- Contact information — email address used to authenticate your account.
- Personal details — first name, last name, date of birth, gender, nationality, country of residence, phone number.
- Passport data — passport number, issue date, expiry date, issuing country.
- Documents — scanned copies of passports, certificates, diplomas, and other application documents you upload.
- Payment information — transaction records for fees paid through the platform (we do not store card numbers; payments are processed by bePaid).
- Device data — device tokens stored for the "remember this device" feature (30-day sessions).
- Usage data — server logs, application status changes, timestamps.
3. Why we collect it
- To verify your identity and authenticate your account (OTP login).
- To process and track your university application.
- To share your application data with the university you applied to.
- To process payments for application and commitment fees.
- To send you important notifications about your application status.
- To comply with legal requirements.
4. Who we share your data with
- Universities — your profile, documents, and application details are shared with the university you apply to.
- Agents — if you work with an admission agent, they can view your application.
- bePaid — our payment processor. See bepaid.by for their privacy practices.
- Document storage — uploaded files are stored on our secure server infrastructure.
We do not sell your personal data to third parties.
5. Data storage and security
Your data is stored on servers located in Belarus. We use encrypted connections (HTTPS), hashed tokens, and access controls to protect your information. Documents are stored on a separate certified storage service.
6. How long we keep your data
We retain your account and application data for as long as your account is active and for a reasonable period afterward as required by applicable law. OTP codes expire after 15 minutes. Session tokens expire within 60 minutes; refresh tokens after 7 days unless extended by the "remember this device" option.
7. Your rights
You have the right to:
- Access the personal data we hold about you.
- Request correction of inaccurate data.
- Request deletion of your account and associated data.
- Withdraw consent at any time (where processing is based on consent).
To exercise any of these rights, contact us at join@in-belarus.com.
8. Cookies and sessions
We use HTTP-only cookies to store your authentication tokens (access token, refresh token, device token). These cookies are strictly necessary for the platform to function and are not used for tracking or advertising.
9. Changes to this policy
We may update this Privacy Policy from time to time. Significant changes will be communicated via the email address on your account. Continued use of the platform after changes constitutes acceptance of the updated policy.