SECURITY & COMPLIANCE

Enterprise-Grade Security Built In

We protect your data with strong encryption, strict access controls, and privacy-first practices.

🔒 DATA PROTECTION

Data Protection & Privacy

We handle personal and health-related data with privacy-first practices:

• Sensitive data encrypted at rest and in transit
• Access controls and audit trails for all data interactions
• Data minimization — we collect only what a feature needs
• KVKK & GDPR-ready data handling
🛡️

Data Encryption

Your data is protected with industry-leading encryption standards:

AES-256 Encryption

All data at rest is encrypted using AES-256, the same standard used by banks and government agencies.

TLS 1.3

All data in transit is protected with TLS 1.3 encryption for secure communication.

Key Management

Encryption keys are managed separately with secure key rotation policies.

🔐

Access Control & Authentication

• Multi-factor authentication (MFA) available for user accounts
• Role-based access control (RBAC) with granular permissions
• Least-privilege access to production data
• Session management with automatic timeout
📋

Data Regulations

We build with data-protection regulations in mind:

KVKK

Turkish Data Protection Law

GDPR

European Data Privacy

🚨

Monitoring & Incident Response

We watch our cloud infrastructure and respond quickly when something looks wrong:

• Monitoring and alerting on our cloud infrastructure
• A defined incident-response process with clear escalation
• Regular dependency and security updates

Have Security Questions?

Our security team is available to discuss your compliance requirements.

Contact Security Team