CertisTalk Privacy Policy

1. Definitions

Certain terms used in this Privacy Policy have the following meanings, unless otherwise stated:

Company / CertisTalk / We: Refers to the legal entity providing the CertisTalk services.

Service(s): Refers to all software, platforms, tools, features, websites, and related services offered by CertisTalk.

User / You: Refers to any natural or legal person who accesses or uses the CertisTalk Services.

Personal Data: Refers to any information relating to an identified or identifiable natural person.

Data Processing: Refers to any operation performed on personal data.

2. What Personal Data Do We Collect?

We may collect various personal data directly or indirectly when you use our Services or interact with us:

Data You Provide Directly:

Account Information: Information you provide during registration or when updating your account profile, such as your name, surname, email address, phone number, company name, and title.

Contact Information: Information you provide when contacting customer support, participating in surveys, or subscribing to our email newsletters.

Payment Information: Information required for payment processing but not directly stored on CertisTalk servers (processed through third-party payment processors like PayTR). Your credit card data is not stored by us.

Data We Collect from Your Use of the Services:

Device and Connection Information: Data about the device and software you use to access our Services, such as IP address, device type, operating system, browser type and version, and mobile network information.

Usage Data: Information about how you use our Services, such as the pages you visit, the time you spend, the links you click, the actions you perform, and chat session information (if our service includes chat management).

Live Support and Messaging Content: Messaging content created or sent through our live support service or integrated chat features, and metadata related to this content. This data is processed for the purpose of providing, improving, and ensuring the security of the service.

Location Information: Approximate location information depending on your device settings (such as derived from your IP address).

Cookies and Similar Technologies:

We use cookies, web beacons, and similar technologies to ensure the functionality of our Services, analyze your usage habits, and personalize your experience. For more information about cookies, you can review our Cookie Policy.

Essential Cookies: Necessary for the basic functions of the Service (e.g., session management).

Analytical Cookies: Used to understand Service usage and improve performance.

Functional Cookies: Personalize your experience by remembering your preferences.

Marketing Cookies: Used to deliver ads that are relevant to you.

3. Why and How Do We Use Your Personal Data?

We use the personal data we collect for the following purposes, in accordance with the KVKK and based on legal grounds:

Performance of a Contract: To provide and manage the Services (Account creation, access, payment processing, technical support, providing live support and messaging services).

Compliance with Legal Obligations: To comply with applicable laws, regulations, court orders, or government requests.

Legitimate Interests: To improve the Services (improving performance, functionality, and user experience), for security and fraud prevention (preventing unauthorized access, detecting illegal activities), to communicate (service announcements, updates, security alerts, responding to customer inquiries), and for research/analysis (on anonymized or aggregated data).

Explicit Consent: In cases such as sending marketing materials with your consent, your data is processed based on your explicit consent.

4. Third-Party Services and APIs We Share Your Personal Data With

The CertisTalk platform utilizes the third-party services and APIs listed below for certain functions and Services. The data shared with these services is used only for the purpose of providing the relevant service, ensuring platform functionality, and complying with regulations.

OpenAI: For AI-powered chat and automated response systems. Your user messages may be transmitted to and processed on OpenAI's servers abroad momentarily, solely for service delivery purposes; they are not stored permanently. For detailed information, you can review the OpenAI Privacy Policy.

Google Analytics: For visitor statistics and usage analysis. This service collects information about your website usage and helps us understand how our website is used. For detailed information, you can review the Google Privacy Policy.

Findip: For general location (country/city) detection from your IP address and security checks. This service supports our security and fraud prevention efforts by providing geographic IP information. For detailed information, you can review Findip's relevant privacy policy document.

Mysoft: For e-invoicing, e-archive, and legal document creation services. Data related to your payment and billing processes may be shared with Mysoft to fulfill our legal obligations. For detailed information, you can review Mysoft's relevant privacy policy document.

PayTR: For payment processing and subscription management. The collection of your subscription fees and your payment security are provided by PayTR. Your credit card information is processed in PayTR's systems and is not directly stored by CertisTalk. For detailed information, you can review the PayTR Privacy Policy.

5. Who Do We Share Your Personal Data With?

We may share your personal data with third parties in accordance with the KVKK and based on legal grounds, limited to the following situations:

Service Providers: With trusted third-party service providers who perform functions such as data hosting, payment processing (like PayTR), sending emails, and customer support. These service providers can only process your data in accordance with our instructions, this Privacy Policy, and relevant data protection agreements.

Legal Obligations and Legal Processes: When required by a legal obligation (court order, legal process, etc.) or when we believe in good faith that it is necessary to protect our rights, property, or safety, we may share it with authorized public institutions and organizations.

Business Transfers: In a merger, acquisition, asset sale, or similar transaction, your personal data may be transferred to the relevant third party. In this case, steps will be taken to ensure that your data is protected in accordance with this Privacy Policy.

With Your Explicit Consent: We may share your data if we have your explicit consent.

6. Data Retention and Security

We retain your personal data for as long as necessary for the purposes for which it was collected and for the retention periods stipulated by the relevant legal legislation. We may need to retain it for longer periods to fulfill our legal obligations (e.g., retention of commercial books and documents, chat histories that may be requested by authorized authorities), resolve disputes, and enforce our agreements.

We implement technical, administrative, and physical security measures to ensure the security of your data. These measures include encryption, firewalls, access controls, regular security audits, and staff training. In the event of a data breach or unauthorized access, we will inform the relevant persons and authorities in accordance with our legal obligations. However, no data transmission or storage system is 100% secure.

7. Your Rights

In accordance with Article 11 of the KVKK, you have the following rights regarding your personal data:

To learn whether your personal data is being processed,

To request information if your personal data has been processed,

To learn the purpose of processing your personal data and whether it is used in accordance with its purpose,

To know the third parties to whom your personal data is transferred, at home or abroad,

To request the correction of your personal data if it is incomplete or incorrectly processed,

To request the deletion or destruction of your personal data within the framework of the conditions stipulated in Article 7 of the KVKK,

To request that the operations carried out in accordance with subparagraphs (d) and (e) be notified to third parties to whom your personal data has been transferred,

To object to the occurrence of a result against you by analyzing the processed data exclusively through automated systems,

To request compensation for damages in case you suffer damage due to the unlawful processing of your personal data.

To exercise these rights, please contact us using the contact information provided in section 8 of this policy.

8. Third-Party Links

Our Services may contain links to third-party websites or services that are not operated by us. We are not responsible for the privacy practices or content of these third-party sites. We recommend that you read the privacy policies of every site you visit.

9. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or the processing of your personal data, please contact us at:

CertisTalk

Email: info@certistalk.com

Phone: 0850 302 7526

Address: Yenigün Mah. Mevlana Cad. Özpınarlar Midtown Plaza B Block Kat 2 D 3 Muratpaşa Antalya

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we make any changes, we will post the updated policy on our Services and revise the "Last Updated" date. We will notify you of significant changes through our Services or by email.