PRIVACY POLICY
Last Updated: 18.06.2025
At Acedigate (“Acedigate”, “the Company”, “we”),
protecting the privacy and security of our users’ personal data is a core priority.
This Privacy Policy has been prepared in accordance with the Law on the Protection of Personal Data No. 6698 (KVKK)
and the General Data Protection Regulation (GDPR) of the European Union.
Personal Data Processed
We may process the following categories of data:
- Identity Information (name, surname, national ID/passport number)
- Contact Information (email address, telephone number, physical address)
- Account Data (username, session data)
- Financial Data (payment history, invoicing details)
- Technical Data (IP address, cookies, browser info)
- Usage Data (service activity, transaction history)
- Marketing Data (communication preferences, campaign engagement)
Collection Methods and Legal Basis
Data is collected via:
- Digital channels (websites, applications, forms)
- Manual methods (contracts, emails, support interactions)
Under
KVKK:
- With explicit consent (Art. 5/1)
- For performance of a contract (Art. 5/2-c)
- To fulfill a legal obligation (Art. 5/2-ç)
- Based on legitimate interest (Art. 5/2-f)
Under GDPR:
- Consent (Art. 6/1-a)
- Performance of a contract (Art. 6/1-b)
- Legal obligation (Art. 6/1-c)
- Legitimate interests (Art. 6/1-f)
Purpose of Processing
- Managing user accounts and subscriptions
- Handling payments and invoicing
- Providing customer support
- Ensuring legal compliance
- Improving service quality and experience
- Conducting marketing activities based on consent
Data Sharing and International Transfers
We may share data with:
- Public authorities when legally required
- Infrastructure providers (cloud, hosting, communication tools)
- Authorized business partners and service providers
International transfers (e.g., outside the EU) occur only if:
- There’s an adequacy decision by the European Commission
- Standard Contractual Clauses (SCCs) are implemented
- The user has given explicit consent
Data Retention
Personal data is retained only for the duration necessary to fulfill the purposes outlined in this policy, or as required by law. Upon expiry, data is securely deleted, destroyed, or anonymized.
Data Security Measures
Acedigate implements both technical and administrative security measures—including encryption, access control, firewalls, and regular system updates—to protect your data from unauthorized access, loss, or misuse.
Your Rights Under KVKK and GDPR
KVKK Rights (Article 11):
- Learn whether your data is processed
- Request access or corrections
- Request deletion or destruction
- Learn third parties with whom your data is shared
- Object to data processing
- Seek compensation for damages
Additional GDPR Rights:
- Right to be forgotten
- Right to data portability
- Right to object to automated processing
- Right to lodge a complaint with a Data Protection Authority (DPA)
To exercise any of your rights, contact us at:
Email
Cookies
Our website uses cookies to improve functionality and personalization. For details, please refer to our separate Cookie Policy.
Updates to This Policy
This policy may be updated to reflect legal, technical, or operational changes. Updates will be published on our website and become effective upon posting
acedigate | Legal