Privacy Policy
Last updated: 8 July 2026
This Privacy Policy explains how Siberson ("we", "us") collects, uses, discloses and safeguards personal data when you visit our website, request a demo, or otherwise interact with us. We are committed to processing personal data lawfully, fairly and transparently in line with the GDPR and Türkiye's KVKK (Law No. 6698).
Data we collect
We collect information you provide directly — such as your name, business email, company, phone number and the content of your enquiries — as well as limited technical data collected automatically, including IP address, browser type and pages visited, primarily to keep the site secure and functional.
How we use your data
We use personal data to respond to your requests and provide demos, to deliver and improve our products and services, to communicate with you where you have asked us to, to meet legal and regulatory obligations, and to protect the security of our systems and yours.
Legal bases
Depending on the activity, we rely on your consent, the performance of a contract or steps taken at your request, compliance with a legal obligation, or our legitimate interests in operating and securing our business — balanced against your rights and freedoms.
Sharing
We do not sell personal data. We share it only with service providers who process it on our behalf under appropriate safeguards, with authorities where legally required, and with partners you have explicitly asked us to involve. Any transfer is subject to appropriate contractual and technical protections.
Retention
We keep personal data only for as long as necessary for the purposes described here or as required by law, after which it is securely deleted or anonymised.
Your rights
Subject to applicable law, you may request access to your data, correction, deletion, restriction or objection to processing, and data portability. Under KVKK Article 11 you have equivalent rights, including learning whether your data is processed and requesting its correction or erasure.
Security
We apply the technical and organisational measures expected of an ISO 27001-certified organisation — including access control, encryption, monitoring and integrity controls — to protect personal data against loss, misuse and unauthorised access.
Contact
To exercise your rights or ask questions about this policy, contact us at [email protected] or through our contact page. This policy may be updated from time to time; the date above reflects the latest revision.