Summary
We only collect what's needed to deliver a service, send a reply, or meet a legal obligation. We don't sell data. Third-party access is limited to service providers strictly required to run the service.
Data controller
ORSEN Software acts as 'data controller' under KVKK and GDPR. Contact: orsenyazilim@gmail.com
Data we collect
Name, email, company and message submitted via the contact form. Pseudonymous site usage analytics (browser, country, page views — IP is anonymized). Contract + invoicing data when working together.
Purpose and legal basis
To respond to your request (consent), performance of contract, legitimate interest (analytics, fraud prevention), and legal obligation (invoicing, tax law).
Retention
Contact data is deleted or anonymized after 24 months. Contract data is retained for 10 years per tax law. Analytics data is deleted after 13 months.
Your rights
Under KVKK Article 11 and GDPR Articles 15-22: access, rectification, erasure, processing restriction, portability and objection. Email orsenyazilim@gmail.com and you'll get a reply within 30 days.
Security
TLS, encrypted backups, least-privilege access, audit logs. In case of a breach, we notify the KVKK Authority and affected individuals within 72 hours.
Changes to this policy
Changes are published here. For material changes, active users get an email notification.
This page is derived from a standard template. Consult legal counsel before contractual use.