Gizlilik Politikası
Privacy Policy
At Alone Pilates, your privacy is extremely important to us. This Privacy Policy explains how we collect, use, disclose, and safeguard your personal information when you use our mobile application ("App") and our website ("Site"). By using the App and/or Site, you agree to the terms described in this Privacy Policy.
1. Information We Collect
When you register for and use our services, we may collect the following personal information:- Personal Identification Information: Full name, email address, phone number, date of birth, gender.
- Health-Related Information: Blood type and other optional health details you may choose to provide.
- Profile Information: Profile picture that you upload.
- Camera Access: If you choose to upload a profile photo directly via your device camera, the App may request access to your camera. This permission is used only for capturing and uploading your profile photo, and no images or video are recorded or stored without your explicit consent.
- Device Information: Device type, operating system, unique device identifiers, and IP address.
- Usage Information: How you interact with our App and Site, such as log data, activity history, and preferences.
2. How We Use Your Information
We may use the information we collect for the following purposes:- To create and manage your account.
- To provide, maintain, and improve our services.
- To personalize your experience and recommend services.
- To contact you with important updates, notifications, or promotional content (where permitted by law).
- To ensure the safety of our community and comply with legal obligations.
- To analyze usage trends and improve user experience.
3. Camera and Media Permissions
- The App may request permission to access your camera for the sole purpose of capturing and uploading your profile picture.- The App may request permission to access your photo library or media gallery if you choose to upload an existing photo.
- We do not use your camera or photos for any other purpose, and we do not access or store media files without your explicit action and consent.
4. How We Share Your Information
We do not sell, trade, or rent users’ personal information to third parties. We may share information only in the following circumstances:- With Service Providers: We may share data with trusted service providers who help us operate the App, process payments, or provide technical support.
- For Legal Compliance: We may disclose information if required by law or in response to valid legal requests.
- Business Transfers: In case of a merger, acquisition, or asset sale, your data may be transferred to the new owner.
5. Data Security
We implement industry-standard security measures to protect your personal data from unauthorized access, disclosure, alteration, or destruction. However, please note that no method of transmission over the Internet or method of electronic storage is completely secure.
6. Data Retention
We will retain your personal data only for as long as is necessary for the purposes set out in this Privacy Policy or as required by applicable laws. You may request deletion of your data at any time by contacting us.
7. Children’s Privacy
Our App and Site are not intended for individuals under the age of 13. We do not knowingly collect or solicit personal information from children under 13. If we learn that we have collected personal information from a child, we will delete it promptly.
8. Your Rights
Depending on your jurisdiction, you may have the following rights regarding your data:- The right to access your personal information.
- The right to request correction of inaccurate information.
- The right to request deletion of your information.
- The right to withdraw consent for certain processing activities.
- The right to request a copy of your data in a portable format.
9. Third-Party Services
Our App may include links to third-party websites or services. Please note that we are not responsible for the privacy practices of these third parties. We encourage you to review their privacy policies.
10. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. Any changes will be effective immediately upon posting the updated version in the App or on the Site. We encourage you to review this Privacy Policy periodically.
11. Contact Us
If you have any questions or concerns about this Privacy Policy, please contact us at:Alone Pilates
Email: info@alonepilates.com
Phone: 0216 706 75 87
Address: Cevizli Mah. Tansel Cad. No: 49/A Maltepe - İstanbul
5. STORAGE AND DESTRUCTION OF PERSONAL DATA
Our Company retains personal data for the period required for the purpose for which it is processed and in accordance with the maximum retention periods stipulated by the applicable legislation governing the relevant activity. In cases where the legislation prescribes a specific retention period for personal data, such data is retained for the period specified therein. If no such legal period exists, personal data is stored only for as long as necessary for the purpose for which it was processed.
At the end of the determined retention periods, personal data is destroyed using the methods specified in this Policy, either periodically or upon the data subject’s request.
5.1 Retention and Destruction Periods
| Data Category | Retention Period | Destruction Period |
|---|---|---|
| Identity | 10 years after termination of the legal relationship | During the first periodic destruction period following the end of retention |
| Contact | 10 years after termination of the legal relationship | Same as above |
| Transaction Security | 2 years | Same as above |
| Physical Security | 20 days | Same as above |
| Financial | 10 years | Same as above |
| Personnel | 10 years | Same as above |
| Legal Affairs | 10 years | Same as above |
| Customer Transactions | 10 years | Same as above |
| Professional Experience | 10 years | Same as above |
| Marketing | 10 years | Same as above |
| Visual and Audio Records | 10 years | Same as above |
5.2 Methods of Destruction
Our Company deletes, destroys, or anonymizes personal data it retains in accordance with the Law and this Policy when the reasons requiring its processing no longer exist, either upon the request of the data subject or automatically at the end of the prescribed period.
5.2.1 Deletion Methods
- Servers: Access authorizations are revoked, and the data is permanently deleted by the system administrator.
- Electronic Media: Access permissions for employees (except the database administrator) are removed, making data inaccessible and unusable.
- Physical Media: Paper-based personal data is made inaccessible to all employees (except the archive manager) and rendered unreadable by crossing out, blacking out, or erasing.
- Portable Media: Flash-based data is encrypted, and access is restricted to the system administrator; encryption keys are securely stored.
5.2.2 Destruction Methods
- Physical Media: Paper-based documents containing personal data are irreversibly destroyed using shredders.
- Electronic Media: Optical and magnetic media are destroyed through melting, burning, pulverizing, or grinding to ensure irretrievable removal.
- Cloud Storage: Personal data stored in the cloud is permanently deleted via digital commands, and all encryption keys are destroyed once the cloud service relationship ends.
5.2.3 Anonymization Methods
- Variable Removal: Direct identifiers that could reveal an individual’s identity are removed.
- Regional Masking: Outlier or distinctive data within datasets is deleted to prevent identification.
- Generalization: Data belonging to multiple individuals is aggregated and stripped of unique identifiers to create statistical information.
- Data Mixing/Corruption: Identifiers are mixed or altered to break the link between data and the data subject.
5.3 Periodic Destruction
When all processing conditions for personal data cease to exist, our Company automatically deletes, destroys, or anonymizes such data at recurring six-month intervals. The first periodic destruction process began on June 1, 2021.
6. RIGHTS OF DATA SUBJECTS
Data subjects have the right to learn whether their personal data is being processed, request information regarding its processing, demand correction or deletion of incomplete or inaccurate data, learn about third parties to whom data has been transferred, and object to unfavorable outcomes resulting from automated processing, in accordance with applicable law.