Teamfluencer
Request DemoContactBrand LoginTry now
Teamfluencer

Personal Data Protection Notice

Prepared under Article 10 of the Turkish Personal Data Protection Law No. 6698.

  • Last updated: 2025

This English version is provided for clarity for international users. Where Turkish mandatory law applies, the Turkish original and applicable legislation prevail.

1- Data Controller

Your personal data may be processed by Teamfluencer Teknoloji A.S., Kazlicesme Mah. 245. Sk. No: 5 Zeytinburnu/Istanbul, tax no. 8331030686, acting as data controller, for the purposes and legal grounds described in this notice.

Phone: +90 535 717 22 79. Email: ilgim@teamfluencer.co. Website: https://teamfluencer.co

2- Purposes and Legal Grounds

Your personal data may be processed when you visit teamfluencer.co or app.teamfluencer.co, create an account, create or join campaigns, connect social media accounts, produce content, make payments, contact support or submit written requests.

Processing is carried out for membership and account security, campaign matching and collaboration management, brief creation, offer and approval workflows, reporting, payment, invoicing, accounting, customer support, marketing communications where permitted, service security, business analysis, legal reporting and responding to authorized public authorities.

The legal grounds include explicit consent where required, establishment or performance of a contract, compliance with legal obligations, establishment or protection of a right, legitimate interests of the data controller, and data made public by the data subject where applicable.

3- Retention and Destruction

Personal data is retained for the period required by the processing purpose and applicable legislation. Unless a longer period is required by law, records connected with the legal relationship may be retained for 10 years after the relationship ends.

Data whose retention period has expired is deleted, destroyed or anonymized during periodic destruction processes. Electronic records are made inaccessible and unusable; physical records are destroyed securely.

4- Personal Data Categories

  • Identity data such as name, surname, national ID where legally required, date of birth, gender, title or profession.
  • Contact data such as address, email address and phone number.
  • Customer and user transaction data such as campaign history, offers, approvals, purchased services, invoices, support records and communication permissions.
  • Financial data such as IBAN, bank information, payment amounts, invoice details and tax information.
  • Transaction security data such as IP address, device information, login logs, hashed password, username and two-factor authentication records.
  • Marketing data such as cookie records, usage habits, interests, preferred language and targeting data.
  • Social media and media data where relevant, including connected accounts, public metrics, uploaded content, profile images, brand assets and portfolio materials.

5- Transfers

Personal data may be transferred, limited to what is necessary for the service, to campaign counterparties, payment providers, banks, cloud and hosting providers, e-invoice and accounting providers, customer support tools, analytics and error monitoring providers, CRM and marketing automation providers, official social media API providers where authorized, and legally authorized public institutions or judicial authorities.

6- Collection Method

Personal data is collected automatically or partly automatically through website and mobile app actions, forms, social media account authorization processes, customer support communications and written applications.

7- Security Measures

  • Personal data security policies and procedures are applied.
  • Encrypted TLS/HTTPS connections are used for data transfers.
  • Employees receive regular data security training and are bound by confidentiality and discipline rules.
  • Access rights are removed promptly when roles change or employment ends.
  • Anti-virus, intrusion detection/prevention, role-based access control, multi-factor authentication, encryption and regular backups are used where appropriate.
  • Internal and external security reviews are carried out, and personal data is processed in line with the data minimization principle.

8- Your Rights

Under Article 11 of the Turkish Personal Data Protection Law No. 6698 (KVKK), you may contact the data controller and exercise the following rights:

  • learn whether your personal data is processed;
  • request information if your personal data has been processed;
  • learn the purpose of processing and whether data is used in line with that purpose;
  • learn the third parties to whom data is transferred in Turkey or abroad;
  • request correction of incomplete or inaccurate data;
  • request deletion or destruction of personal data within the conditions set out by law;
  • request notification of correction, deletion or destruction to third parties to whom data was transferred;
  • object to a result against you that arises from analysis exclusively through automated systems;
  • claim compensation if you suffer damage due to unlawful processing.

9- Application

You may deliver your requests in person or via notary to Kazlicesme Mah. 245. Sk. No: 5 Zeytinburnu/Istanbul, or send them from your registered email address to ilgim@teamfluencer.co.

Requests are concluded free of charge as soon as possible and no later than 30 days, unless an additional cost requires the fee set by the Turkish Personal Data Protection Board.