Data retention policy
The personal data is processed and preserved in the cloud environment and all kinds of technical security measures are taken to fulfill the purposes of this policy and to protect the data securely.
Depending on the User's location, data transfers may involve transferring the User's Data to a country other than their own. To find out more about the place of processing of such transferred Data, Users can check the section containing details about the processing of Personal Data.
If broader protection standards are applicable, Users are also entitled to learn about the legal basis of Data transfers to a country outside the European Union or to any international organization governed by public international law or set up by two or more countries, such as the UN, and about the security measures taken by the Owner to safeguard their Data.
If any such transfer takes place, Users can find out more by checking the relevant sections of this document or inquire with the Owner using the information provided in the contact section.
Retention time
Personal Data shall be processed and stored for as long as required by the purpose they have been collected for.
Therefore:
Personal Data collected for purposes related to the performance of a contract between the Owner and the User shall be retained until such contract has been fully performed.
Personal Data collected for the purposes of the Owner’s legitimate interests shall be retained as long as needed to fulfill such purposes. Users may find specific information regarding the legitimate interests pursued by the Owner within the relevant sections of this document or by contacting the Owner.
The Owner may be allowed to retain Personal Data for a longer period whenever the User has given consent to such processing, as long as such consent is not withdrawn (where the data processing is subject to the Owner’s consent). Furthermore, the Owner may be obliged to retain Personal Data for a longer period whenever required to do so for the performance of a legal obligation or upon order of an authority.
Once the retention period expires, Personal Data shall be deleted. Therefore, the right of access, the right to erasure, the right to rectification and the right to data portability cannot be enforced after the expiration of the retention period.
Data archiving and removal policy
If you indicate that you do not want your personal data to be kept by applying to Botgate, we delete your personal data which is not mandatory for the continuation of the contractual relationship, which we do not have to keep due to our legal obligation, or the deadlines for storage in the regulation have expired. The deletion, destruction, or anonymization of your personal data is carried out only with your explicit request or where it is deemed necessary by us under the following conditions.
Deleting your personal data by Botgate means that your personal data is inaccessible and unavailable to users in any way. Botgate takes the necessary measures to perform the deletion in its database.
Destruction of personal data by Botgate means that personal data cannot be accessed, restored or reused by anyone in any way.
Anonymization of personal data by Botgate means that personal data can never be associated/matched up with a specific or identifiable real person, even if personal data is matched up with other data.
Botgate describes in detail the methods and technical and administrative measures for deleting, destruction, and anonymizing within the scope of general data protection regulations and the period of regular (periodic) destruction to be carried out is determined as 6 months in this Privacy Policy.
Data storage policy
Botgate takes all of the necessary technical and administrative measures to ensure the confidentiality, integrity, and security of your personal data and shows the utmost care.
In this context, the following measures are taken to prevent unauthorized access to your personal data, misuse, unlawful processing, disclosure, modification, or destruction of your data:
All fields where your personal data is received are protected by generally recognized security technologies such as firewall and Secure Socket Layer (SSL) encryption.
Your personal data is transferred by using SSL.
Botgate employees’ rights to access your personal data are checked regularly.
In order to prevent unauthorized access to your personal data, penetration tests are performed regularly and the system’s resistance to unauthorized access is measured.
Cryptology methods are used in systems where your personal data is held and serious control and authorization methods are applied by providing a limited and necessary number of persons access to such data.
Your personal data is not kept as physically (on paper) as possible. However, when necessary, it is stored in locked and secure places and only authorized persons are allowed to access it.
Personal or behavioral data processed through third-party cookies are deleted from third-party systems as soon as membership ends.
If your personal data falls into the hands of third parties due to the attacks on Botgate website, mobile applications, or information systems, this situation will be notified to you and the competent authority, and all necessary technical and administrative measures are taken by Botgate.
Data center location(s)
Germany, Turkey
App/service has sub-processors
no