Privacy Policy

PRIVACY POLICY AND KVKK INFORMATION NOTICE
Last Updated: [28.02.2026]
Data Controller: (“MEDPOV”)
Address: [27 Boyce's St, Gurranabraher, Cork, Ireland]
E-mail: [iletisim@medpov.com]
Phone: [+353 87 708 2241]

Article 1 — Purpose and Scope
This text has been prepared in order to inform data subjects pursuant to Turkish Personal Data Protection Law No. 6698 (“KVKK”) regarding the processing of personal data within online processes conducted by MEDPOV, including but not limited to the website operating under the domain medpov.com, mobile-compatible web applications, membership/purchase modules, support and communication channels, quotation (quote) forms, and live chat services.

Article 2 — Definitions
Terms such as “personal data”, “special categories of personal data”, “data controller”, “data processor”, and “explicit consent” used in this text shall have the meanings attributed to them under KVKK.

Article 3 — Categories of Personal Data Processed
MEDPOV may process the following categories of personal data depending on service/product processes:

  • Identity and contact data: Name-surname, e-mail address, phone number.
  • Customer/transaction data: Purchased product information, license code/right, order-invoice records, support requests, membership information.
  • Invoice and regulatory data: Turkish ID number and address information that may be required for invoice issuance (only when the customer requests an invoice or when legally necessary for the transaction).
  • Transaction security data: IP address, access records, device/browser information, logs, session records.
  • Communication and request data: Quote form contents (project type, description, platform, budget range) and attached files (ZIP format only).
  • Cookie data: Online identifiers that may be processed within the scope of mandatory cookies and preference-based analytics/marketing cookies.
  • Live chat data: Information shared while initiating the chat, chat messages (content entered by the user), and chat records.

Warning (special categories of data): Users are kindly requested not to share special categories of personal data (health, biometric data, etc.) through live chat, quotation forms, or support areas. MEDPOV does not request such data; if transmitted accidentally, it will be processed by taking necessary administrative and technical measures within the scope of KVKK. KVKK subjects the processing of special categories of personal data to strict conditions.

Article 4 — Method of Personal Data Collection
Personal data may be collected automatically or partially automatically through membership/purchase screens on the website, quotation forms, live chat modules, communication via e-mail/phone, cookies, and system logs. Pre-information and order confirmation processes are carried out electronically.

Article 5 — Purposes of Processing Personal Data
Personal data may be processed within the principles of purpose limitation and proportionality for the following purposes:

a) Creating memberships, identity verification, and user account management.
b) Conducting digital product sales, license generation/delivery, and digital delivery processes.
c) Performing invoicing and financial/accounting operations.
ç) Evaluating quotation (quote) requests, establishing communication, and conducting preliminary project discussions.
d) Managing customer support processes (initial 6-month support, paid packages thereafter, etc.) and resolution management.
e) Ensuring site security, preventing fraud/spam, detecting attacks, and maintaining records.
f) Improving user experience, performing analytics measurement, and (where consent is provided) marketing targeting in line with cookie preferences.
g) Fulfilling legal obligations and responding to requests from official authorities.

Article 6 — Legal Grounds
Data processing activities are carried out in compliance with the general principles set forth under KVKK, based on explicit consent and/or the legal grounds specified under Article 5/2 of KVKK (performance of a contract, legal obligation, legitimate interest, etc.).

  • Cookies: Mandatory cookies rely on legal processing grounds other than explicit consent; analytics/marketing cookies are generally processed based on explicit consent (category-based preference).
  • Commercial electronic communications: Marketing communications such as campaigns and announcements are sent only upon prior consent within the framework of Law No. 6563; recipients may exercise their right to opt-out at any time.

Article 7 — Transfer of Personal Data
MEDPOV may transfer personal data, limited to what is necessary and proportionate to the purpose:

  • To banks/payment institutions for payment collection and financial transactions,
  • To technical service providers such as hosting services, e-mail/SMS delivery services, live chat infrastructure providers, domain registration services, and analytics measurement providers,
  • To authorized authorities in case of legal disputes and official requests.

International transfer: Where servers, e-mail/analytics/chat infrastructures, or business partners are located abroad, transfers shall be carried out through mechanisms such as “adequacy decisions” or “appropriate safeguards” (e.g., standard contractual clauses) provided under Article 9 of KVKK; where standard contractual mechanisms are used, relevant notification obligations shall be fulfilled.

Article 8 — Retention Periods
Personal data shall be retained for the period required by the processing purpose and for minimum periods stipulated by applicable legislation; at the end of such periods, data shall be deleted, destroyed, or anonymized. Retention obligations regarding distance contracts and transaction records are regulated under the relevant Regulation.

Article 9 — Data Security
MEDPOV takes necessary technical and administrative measures to prevent unlawful processing/access to personal data and to ensure secure storage, as required under Article 12 of KVKK. Such measures may include access authorization, logging, encryption, network security, backups, audits, and personnel awareness practices.

Article 10 — Rights of the Data Subject and Application
Data subjects may exercise their rights under Article 11 of KVKK (learning whether data is processed, requesting correction, deletion, objection, etc.). Applications shall be submitted to the data controller pursuant to Article 13 of KVKK, and requests shall be finalized within a maximum of 30 days.

Application channels:

Article 11 — Cookies
MEDPOV uses cookies for site functionality and user experience. Cookie types, purposes, retention periods, and preference management are separately explained in the “Cookie Policy”. The KVKK cookie guideline includes best practices regarding proper disclosure and explicit consent design.

Article 12 — Amendments
MEDPOV may update this text in accordance with legislative and operational changes; the current version shall be published on the website.

01. Name & Email
02. Detail
* Only zip file is allowed

We will get back to you shortly

Get in Touch

Contact us for product questions, pre-sales information, or support related to our ready-made digital products.

Contact Us
Install Application

Install our app for a faster and better experience on your device.

01. Name & Email
02. Detail
* Only zip file is allowed

We will get back to you shortly