nProt understands that your privacy is important to you and protects the confidentiality of personal data and guarantees its necessary protection against any event that may put it at risk of violation.
1. Our approach to personal data
We respect and value the privacy of our visitors and will only collect and use personal data for only providing a better service. The use of information collected through our service shall be limited to the purpose of providing the service for which our clients have engaged us.
2. What data we collect
nProt collects and/or receives information relating to you, such as:
- Business/company name
- Contact information such as email addresses and telephone numbers
- Demographic information such as contry
- Financial information such as IBAN number
- Billing address
- IP address
- Web browser type and version
- Operating system
- A list of URLs starting with a referring site, your activity on nprot.com
- Server logs
3. What data we do not collect
nProt does not collect your credit card data. The data is processed by iyzico, Turkey’s leading payment service provider, is licensed by Banking Regulation And Supervision Agency.
nProt does not require you to supply so-called “private” data, that is, according to the provisions of the GDPR (Art. 9), personal data that identifies race or ethnicity, political opinions, religion or philosophy, or any union affiliation, nor any genetic or biometric information used to uniquely identify a physical person, data associated with health or one’s sex life, or sexual orientation.
In the event the services requested from nProt require the processing of this data, you will first receive specific notification with a request for your consent.
4. Data security
The security of your personal information and our Clients’ information is important to us. When you enter sensitive information, such as login credentials and credit card information, we encrypt the transmission of that information using secure socket layer technology (SSL).
We follow generally accepted standards to protect the personal information submitted to us, both during transmission and once we receive it.
5. Your rights
5.1 As a data subject, you have the following rights under the GDPR, which this Policy and Our use of personal data have been designed to uphold:
5.1.1 The right to be informed about Our collection and use of personal data;
5.1.2 The right of access to the personal data We hold about you (see section 12);
5.1.3 The right to rectification if any personal data We hold about you is inaccurate or incomplete (please contact Us using the details in section 14);
5.1.4 The right to be forgotten – i.e. the right to ask Us to delete any personal data We hold about you (We only hold your personal data for a limited time, as explained in section 6 but if you would like Us to delete it sooner, please contact Us using the details in section 14);
5.1.5 The right to restrict (i.e. prevent) the processing of your personal data;
5.1.6 The right to data portability (obtaining a copy of your personal data to re-use with another service or organisation);
5.1.7 The right to object to Us using your personal data for particular purposes; and
5.1.8 Rights with respect to automated decision making and profiling.
5.2 If you have any cause for complaint about Our use of your personal data, please contact us using the details provided in section 14 and We will do Our best to solve the problem for you.
6. Do we share your data?
No. We do not share your data with any third-parties.
7. How do we use your data?
7.1 All personal data is processed and stored securely, for no longer than is necessary in light of the reason(s) for which it was first collected. We will comply with Our obligations and safeguard your rights under the GDPR at all times. For more details on security see section 7, below.
7.2 Our use of your personal data will always have a lawful basis, either because it is necessary for Our performance of a contract with you, because you have consented to Our use of your personal data (e.g. by subscribing to emails), or because it is in Our legitimate interests. Specifically, We may use your data for the following purposes:
7.2.1 Providing and managing your Account;
7.2.2 Providing and managing your access to Our Site;
7.2.3 Personalising and tailoring your experience on Our Site;
7.2.4 Supplying Our products and services to you (please note that We require your personal data in order to enter into a contract with you);
7.2.5 Personalising and tailoring Our products and services for you;
7.2.6 Replying to emails from you;
7.2.7 Supplying you with emails that you have opted into (you may unsubscribe or opt-out at any time by emailing to [email protected];
7.2.8 Market research;
7.2.9 Analysing your use of Our Site and gathering feedback to enable Us to continually improve Our Site and your user experience.
7.3 With your permission and/or where permitted by law, We may also use your data for marketing purposes which may include contacting you by email and telephone with information, news and offers on Our products and services. We will not, however, send you any unsolicited marketing or spam and will take all reasonable steps to ensure that We fully protect your rights and comply with Our obligations under the GDPR and the Privacy and Electronic Communications (EC Directive) Regulations 2003.
7.4 Third parties (including iyzico, Google Analytics and Hotjar) whose content appears on Our Site may use third party Cookies. Please note that We do not control the activities of such third parties, nor the data they collect and use and advise you to check the privacy policies of any such third parties.
7.5 You have the right to withdraw your consent to Us using your personal data at any time, and to request that We delete it.
7.6 We do not keep your personal data for any longer than is necessary in light of the reason(s) for which it was first collected. Data will therefore be retained for the following periods (or its retention will be determined on the following bases):
7.6.1 We determined the data retention as 10 years for each type of personal data of an Account.
8. Third party websites and services
8.1 We only keep your personal data for as long as We need to in order to use it as described above in section 6, and/or for as long as We have your permission to keep it.
8.2 Some or all of your data may be stored outside of the European Economic Area (“the EEA”) (The EEA consists of all EU member states, plus Norway, Iceland, and Liechtenstein). You are deemed to accept and agree to this by using Our Site and submitting information to Us. If We do store data outside the EEA, We will take all reasonable steps to ensure that your data is treated as safely and securely as it would be under the GDPR.
8.3 Data security is very important to Us, and to protect your data We have taken suitable measures to safeguard and secure data collected through Our Site.
8.4 Steps We take to secure and protect your data include:
8.4.1 Using encryption and/or pseudonymisation where it is appropriate to do so.
8.4.2 Understanding the requirements of confidentiality, integrity and availability for the personal data We process.
8.4.3 Ensuring that any data processor We use also implements appropriate technical and organisational measures.
8.4.4 Collecting the minimum amount of data needed.
8.4.5 Identifying responsible person/people within Our company and have restricted access to personal data.
9. How can you control your data?
In addition to your rights under the GDPR, set out in section 4, when you submit personal data via Our Site, you may be given options to restrict Our use of your data. In particular, We aim to give you strong controls on Our use of your data for direct marketing purposes (including the ability to opt-out of receiving emails from Us which you may do by unsubscribing using the links provided in Our emails and at the point of providing your details and by managing your Account).
10. Your right to withhold information
You may access certain areas of Our Site without providing any data at all. However, to use all features and functions available on Our Site you may be required to submit or allow for the collection of certain data.
11. How can you access your data?
You have the right to ask for a copy of any of your personal data held by Us (where such data is held). Under the GDPR, no fee is payable and We will provide any and all information in response to your request in 30 days. Please contact Us for more details at [email protected]
12. Contacting us