Privacy Policy
The security and transparency of your data is the foundation of my work.
Last Update:
I, Tuğrul Yıldırım, place the utmost importance on the privacy and security of your personal data in the context of the bespoke software development services I provide via tugrulyildirim.com (including Laravel and Flutter projects), the client project management portal, and the sale of digital products (such as ready‑made websites and mobile templates). This policy explains what data I collect and why, and your rights regarding this data, in line with Türkiye’s Personal Data Protection Law (KVKK) and the EU’s General Data Protection Regulation (GDPR).
For the purposes of this policy, the Data Controller is Tuğrul Yıldırım.
Depending on your interaction with my services, I process the following categories of personal data:
- Account Creation: When you register, I collect basic identity and contact details such as your name, surname, e‑mail address and an encrypted password to create and manage your account.
- Client Portal Usage: When using the client portal, I process project details, documents and images you upload, revision requests and to‑do items to enable tracking, communication and collaboration.
- Digital Product Purchases: If you buy a ready‑made website or mobile app, I process billing details (name, address, tax number), order information and payment history to fulfil the order and issue invoices. Card details are never stored by me and are processed directly by the payment provider.
- Contact and Support: When you reach out via forms or e‑mail, I process your contact details and message content to respond and provide support.
- Technical and Analytics Data: I use cookies to collect anonymised technical data such as IP address, browser, operating system and on‑site navigation to improve services and security.
I never sell or rent your personal data. Data may be shared only where necessary to provide my services and strictly with the following partners:
- Payment Providers: To process purchases securely (e.g. PayTR, Stripe).
- Hosting & Infrastructure: Trusted cloud services hosting the site and data.
- Legal Authorities: Where legally required by competent public bodies.
- Service Providers: Third parties for technical support, analytics or security.
- Partners: Project‑based collaborations or consultancy.
- E‑mail & Communications: For newsletters or notifications (e.g. Mailchimp, SendGrid).
- Analytics: Anonymised data to improve performance and user experience (e.g. Google Analytics).
- Security Services: To protect the site (e.g. Cloudflare).
Under KVKK Article 11 and the GDPR, you have the following rights regarding your personal data:
- To learn whether your data is being processed,
- If processed, to request information about such processing,
- To learn the purpose of processing and whether it is used accordingly,
- To know third parties to whom data is transferred domestically or abroad,
- To request correction of incomplete or inaccurate data,
- To request deletion or destruction of your data,
- To object to processing and to seek compensation for damage suffered.
To exercise these rights, please contact me using the details below.
For any questions, feedback or requests regarding this privacy policy or your personal data, please contact me at:
contact@tugrulyildirim.com