Privacy Policy

Privacy Policy

Last Updated Date: September 23, 2025

At Analyticsal (operating as Analyticsal.com, hereinafter referred to as “we,” “us,” “our,” or the “Company”), we are committed to protecting your privacy and ensuring the security of your personal information. This Privacy Policy (the “Policy”) explains how we collect, use, disclose, and safeguard your information when you visit our website (the “Site”), use our services (the “Services”), or interact with us in any other way. The Services include data analytics, machine learning, and business intelligence tools designed to help businesses and individuals derive insights from their data.

By accessing the Site, registering for an account, or using the Services, you consent to the practices described in this Policy. If you do not agree with this Policy, please do not use the Site or Services. This Policy is incorporated into and forms part of our Membership Agreement and any other agreements you may have with us.

We comply with applicable data protection laws, including the Turkish Personal Data Protection Law No. 6698 (KVKK) and the General Data Protection Regulation (GDPR) where relevant. Our data processing activities are based on legitimate interests, contractual necessity, legal obligations, or your explicit consent.

1. Information We Collect

We collect information to provide, improve, and personalize our Services. The types of information we collect fall into the following categories:

1.1 Personal Information

This is information that identifies you as an individual, such as:

  • Contact Details: Name, email address, phone number, and mailing address (if provided during registration or inquiries).
  • Account Information: Username, password (hashed for security), and profile details you provide when creating or updating your account.
  • Payment Information: If you subscribe to premium Services, we may collect billing details such as credit card numbers or bank account information (processed via secure third-party payment processors; we do not store full card details).
  • Communication Data: Information you provide when contacting us, such as messages, attachments, or feedback submitted via email or the Site’s contact forms.

1.2 Usage and Technical Information

This is non-personal information collected automatically as you interact with the Site and Services:

  • Device and Browser Data: IP address, browser type, operating system, device identifiers, screen resolution, and language preferences.
  • Log Data: Access times, pages viewed, time spent on pages, user interactions (e.g., clicks, searches), and referral sources.
  • Location Data: Approximate location based on IP address (not precise geolocation unless you explicitly enable it for specific features).
  • Analytics Data: Aggregated usage metrics, such as session duration and feature usage, to improve Service performance.

1.3 User-Generated Content and Uploaded Data

  • Service Inputs: Any data, files, datasets, or analyses you upload or input into the Services (e.g., spreadsheets, databases, or raw data for analytics processing). This may include personal data of third parties if you upload it.
  • Outputs: Generated reports, visualizations, or insights derived from your inputs, which remain under your control.

1.4 Marketing and Third-Party Data

  • Newsletter Subscriptions: Email address and preferences for marketing communications.
  • Third-Party Sources: Information from business directories, social media, or partners (e.g., if you link your account to LinkedIn), but only with your consent.

We do not collect sensitive personal information (e.g., health data, racial or ethnic origin, political opinions, religious beliefs, or biometric data) unless it is voluntarily provided in the context of your uploaded data for processing, in which case you are responsible for ensuring compliance with applicable laws.

2. How We Collect Information

We collect information through various methods:

  • Directly from You: When you register, subscribe, upload data, submit forms, or communicate with us.
  • Automatically: Via cookies, web beacons, server logs, and analytics tools (e.g., Google Analytics) as you navigate the Site.
  • From Third Parties: Service providers (e.g., payment processors like Stripe), analytics partners, or integrations you authorize (e.g., API connections to your data sources).
  • Public Sources: Aggregated business data from public domains to enhance our analytics features.

3. How We Use Your Information

We use the collected information for the following purposes:

  • Providing and Maintaining Services: To create and manage your account, process your data uploads, generate analytics reports, and deliver personalized insights.
  • Improving and Developing Services: To analyze usage patterns, debug issues, conduct research, and develop new features (e.g., machine learning model training on anonymized data).
  • Communication: To send transactional emails (e.g., account confirmations, service updates), respond to inquiries, and provide customer support.
  • Marketing: With your consent, to send promotional materials, newsletters, or targeted ads about our Services or related offerings.
  • Security and Compliance: To detect fraud, unauthorized access, or abuse; to comply with legal obligations (e.g., responding to subpoenas); and to enforce our terms.
  • Analytics and Insights: To produce aggregated, anonymized reports on industry trends, which may be shared publicly or with partners without identifying individuals.
  • Legal and Business Operations: For internal audits, mergers/acquisitions, or dispute resolution.

Under GDPR/KVKK, our legal bases include:

  • Contract performance (e.g., delivering Services).
  • Legitimate interests (e.g., fraud prevention).
  • Consent (e.g., marketing emails).
  • Legal obligations.

4. Sharing Your Information

We do not sell your personal information. We may share it in limited circumstances:

  • Service Providers: With trusted third parties who assist us, such as cloud hosting (e.g., AWS), analytics tools (e.g., Google), or email services (e.g., SendGrid). These providers are contractually obligated to protect your data and use it only for specified purposes.
  • Business Transfers: In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the transaction.
  • Legal Requirements: If required by law, court order, or government authority; to protect our rights, safety, or property; or to enforce agreements.
  • With Your Consent: For example, if you authorize sharing with integrated partners (e.g., exporting reports to third-party tools).
  • Aggregated/Anonymized Data: We may share non-identifiable insights derived from your data for research or benchmarking purposes.

We ensure that any international transfers (e.g., to servers in the EU or US) comply with adequacy decisions, standard contractual clauses, or your explicit consent.

5. Data Security

We prioritize the security of your information and implement appropriate technical and organizational measures, including:

  • Encryption (e.g., HTTPS for data in transit, AES-256 for data at rest).
  • Access controls (e.g., role-based permissions, multi-factor authentication).
  • Regular security audits, vulnerability scans, and employee training.
  • Data anonymization or pseudonymization where possible.

Despite these efforts, no system is completely secure. We cannot guarantee absolute security, and you acknowledge the inherent risks of data transmission over the internet. In the event of a data breach, we will notify affected users and authorities as required by law.

6. Your Rights and Choices

Depending on your location and applicable laws, you have the following rights regarding your personal information:

  • Access: Request a copy of your data we hold.
  • Rectification: Correct inaccurate or incomplete information.
  • Erasure (“Right to be Forgotten”): Request deletion of your data (subject to legal retention obligations).
  • Restriction: Limit processing in certain cases (e.g., while contesting accuracy).
  • Portability: Receive your data in a structured, machine-readable format.
  • Objection: Object to processing based on legitimate interests or for direct marketing.
  • Withdraw Consent: At any time, where processing is consent-based.

To exercise these rights, contact us at info@analyticsal.com. We will respond within one month (extendable under law). For GDPR purposes, our Data Protection Officer can be reached at the same email.

You can also:

  • Opt out of marketing emails via the unsubscribe link.
  • Manage cookies via browser settings or our cookie consent banner.
  • Delete your account through the Site settings, which will trigger data erasure (except for backups retained for legal reasons).

7. Cookies and Tracking Technologies

We use cookies and similar technologies (e.g., pixels, local storage) to enhance your experience:

  • Essential Cookies: Necessary for Site functionality (e.g., session management).
  • Performance Cookies: To analyze traffic and usage (e.g., Google Analytics).
  • Functional Cookies: To remember preferences (e.g., language settings).
  • Targeting Cookies: For personalized ads (with consent).

You can control cookies through your browser settings. Disabling them may limit Site features. For more details, see our Cookie Policy (linked on the Site).

We do not participate in behavioral advertising networks that track you across unaffiliated sites without consent.

8. Children’s Privacy

Our Services are not intended for children under 16 (or 13 in some jurisdictions). We do not knowingly collect personal information from children. If we become aware of such collection, we will delete it promptly. Parents/guardians should contact us if they believe their child has provided information.

9. International Data Transfers

As a Turkey-based company, we primarily process data within the EEA and Turkey. Transfers outside these regions (e.g., to US-based providers) use safeguards like EU Standard Contractual Clauses or Binding Corporate Rules to ensure equivalent protection.

10. Data Retention

We retain your information only as long as necessary:

  • Account data: While your account is active, plus 30 days post-deletion for backups.
  • Usage logs: Up to 12 months for analytics.
  • Uploaded data: Until you delete it or your account is terminated.
  • Legal/compliance data: As required by law (e.g., 7 years for financial records).

11. Changes to This Policy

We may update this Policy to reflect changes in our practices or legal requirements. We will notify you via email or Site notice for material changes. Continued use after updates constitutes acceptance.

12. Contact Us

If you have questions, concerns, or complaints about this Policy or our data practices, please contact:

  • Email: info@analyticsal.com
  • Data Protection Officer: Available at the above email for GDPR/KVKK inquiries.

For complaints under GDPR, you may also contact the Turkish Personal Data Protection Authority (KVKK Board) or your local data protection authority.

Thank you for trusting Analyticsal with your data. We are dedicated to handling it responsibly to empower your analytics journey.