Privacy Policy

WORDO AI YAZILIM VE TEKNOLOJİ LTD. ŞTİ. ("Wordo AI", "we") is committed to protecting the personal data of visitors to wordo.ai and users of our services. This Privacy Policy explains what data we collect, the purposes we process it for, whom we share it with, and the rights available to you.

As a company based in Türkiye, we conduct our activities in accordance with Law No. 6698 on the Protection of Personal Data ("KVKK"). For visitors from outside Türkiye, we also strive to align with relevant local regulations and international standards such as the GDPR.

This policy is a summary of our obligations under KVKK. A more detailed disclosure notice is available on our KVKK Disclosure Notice page.

Depending on the channel through which you interact with us and the information you share, we may collect the following categories of personal data:

• Identity and contact data: Name, surname, email address, phone number, company name (when shared via the contact form or email).
• Message content: Project, need, or question text that you share with us via the contact form or email.
• Technical data: Log entries such as IP address, browser type, operating system, device type, pages visited, and visit times.
• Cookie and analytics data: Data collected through cookies and similar technologies to understand how you browse the site (see our Cookie Policy for details).

We only process the personal data we collect for the specific, explicit, and legitimate purposes listed below:

• To respond to you and provide solutions for the matter you contacted us about.
• To deliver our services, fulfill our contractual obligations, and manage the customer relationship.
• To ensure the security of the site, and to detect and prevent abuse.
• To measure site performance, improve user experience, and develop our content.
• To comply with our legal obligations and respond to requests from official authorities.

We process your personal data based on the legal grounds set out in Articles 5 and 6 of KVKK. Our primary legal bases are:

• Processing is necessary for the conclusion or performance of a contract.
• Processing is mandatory for the data controller to fulfill a legal obligation.
• Processing is necessary for our legitimate interests, provided that it does not harm your fundamental rights and freedoms.
• Your explicit consent, where required.

We do not sell your personal data to third parties and we do not share it for marketing purposes. We share your data only to the extent necessary to deliver our services, with the following categories of service providers we work with:

• Infrastructure and hosting providers (cloud providers such as Google Cloud and Cloudflare).
• Analytics and measurement tools (tools such as Google Analytics, Meta Pixel, and Hotjar; see our Cookie Policy for details).
• Communication and support tools (live chat solutions like Tawk.to and our email provider).
• AI model providers (LLM providers such as OpenAI, Anthropic, and Google; only data strictly required for our products to function is transferred).
• Legal requests from official authorities and courts.

Some of the service providers listed above may host their servers outside of Türkiye. As a result, your personal data may, from time to time, be processed on servers located abroad.

These transfers are carried out in accordance with Article 9 of KVKK and the current regulations of the Turkish Personal Data Protection Authority, with appropriate safeguards in place. Where required, your explicit consent will be obtained.

We retain your personal data for as long as required by applicable legislation or for as long as necessary for the purposes for which it was processed.

When the retention period expires or there is no longer a legal basis for storage, your personal data is deleted, destroyed, or anonymized.

In general, log records are retained for up to one year; messages received via the contact form or email are retained for up to three years after the relevant process is completed.

We apply technical and administrative security measures to protect your personal data against unauthorized access, modification, disclosure, or destruction. These measures include end-to-end encrypted connections (HTTPS), access controls, regular backups, vulnerability scanning, and data-protection training for our team.

However, no method of transmission over the internet is one hundred percent secure. In the unlikely event of a data breach, we will make the necessary notifications to the Turkish Personal Data Protection Authority and the affected individuals.

Under Article 11 of KVKK, you have the following rights regarding your personal data:

• To learn whether your personal data is being processed.
• To request information if your data has been processed.
• To learn the purpose of processing and whether the data is used in accordance with that purpose.
• To know the third parties to whom the data is transferred, within the country or abroad.
• To request correction of data that has been processed incompletely or incorrectly.
• To request deletion or destruction of data under the conditions set out in Article 7 of KVKK.
• To request that any correction, deletion, or destruction be notified to third parties to whom the data was transferred.
• To object to a result that is adverse to you arising from the analysis of your data solely through automated systems.
• To claim compensation for damage arising from the unlawful processing of your data.

We may update this Privacy Policy from time to time. Updates take effect as soon as they are published on this page. For significant changes, we provide reasonable notice on the site before the changes take effect.

You can always check the most recent version by the date at the top of the page.

For any questions, requests, or complaints regarding this policy or your personal data, you can reach us by email at contact@wordo.ai.

Data Controller: WORDO AI YAZILIM VE TEKNOLOJİ LTD. ŞTİ.

Address: Ortabayır Mah. Şair Çelebi Sk. Gürtaş İş Merkezi, Kağıthane / Istanbul, Türkiye

Tax ID: 8141116791 · MERSIS: 0814111679100001