KVKK Disclosure Notice

Under Law No. 6698 on the Protection of Personal Data ("KVKK"), your personal data is processed by the data controller identified below.

This notice applies to personal data processed through our website (digitalkernelsoftware.com), quote/contact forms, client communications, and service delivery workflows.

We process only the personal data required to deliver services and respond to requests:

We do not process special categories of personal data (such as health, biometric, or political data).

Your personal data is processed for the following purposes:

• Responding to quote requests and project inquiries
• Scoping, delivering, and documenting services
• Issuing invoices and tracking payments
• Sending service updates, scheduled maintenance, or outage notifications
• Maintaining records required by Turkish tax and commercial regulations
• Complying with legal obligations

Your personal data is not used for third-party marketing, is not sold or rented, and is not used for automated profiling or decision-making.

Your personal data is processed under Articles 5 and 6 of KVKK based on the following legal grounds:

• Contract necessity: Data required for preparing service agreements, delivering projects, and billing operations.
• Legal obligation: Records and documents required by Turkish tax and commercial law.
• Legitimate interest: Anonymized analytics used to improve service quality and reliability.
• Explicit consent: Where none of the above legal grounds apply, processing is based on your prior explicit consent.

Your data may be shared with a limited set of trusted providers only to the extent strictly required for service delivery:

• AnchorUptime: Site URLs and alert emails for Kernel Uptime subscribers (uptime monitoring purpose only).
• Email service providers: Infrastructure used for notifications and invoicing emails.
• cPanel / Plesk / LiteSpeed: Infrastructure tools used for server operations.

No data sharing is made with advertising networks, marketing platforms, or social-media trackers.

Personal data is retained only for the period required by processing purpose and legal obligations:

• Inquiries without contract: Deleted within 6 months after last communication.
• Active client data: Retained during the service relationship.
• Invoice/accounting records: Retained for 5 years under Turkish tax law.
• Server credentials shared for migration: Deleted immediately after delivery and handover confirmation.

Under Article 11 of KVKK, you have the right to:

• Learn whether your personal data is processed
• Request information on processed data
• Learn processing purpose and whether data is used in line with that purpose
• Know third parties to whom data is transferred in Turkey or abroad
• Request correction of incomplete or inaccurate data
• Request deletion or destruction under KVKK Article 7 conditions
• Request notification of correction/deletion to third parties receiving data
• Object to adverse outcomes from exclusively automated analysis
• Claim compensation for damages due to unlawful processing

To exercise your rights under KVKK Article 11, please use the following channel:

• Email: [email protected]
• Subject line: Please include "KVKK Request"
• Response period: Within 30 days from receipt

Your request should include your full name, contact information, and a clear statement of the right you want to exercise. We may ask for additional details to verify identity.