Maliyo ERP - Privacy Policy

Privacy Policy

Last Updated: 12/17/2025

Maliyo ("Company", "we", "our", or "us") places great importance on the protection of personal data. This Privacy Policy has been prepared in accordance with the EU General Data Protection Regulation GDPR and the Turkish Law on the Protection of Personal Data No. 6698 KVKK to explain how personal data is collected, processed, stored, and protected.

By accessing or using our website, you acknowledge and accept this Privacy Policy.

1 Data Controller

In accordance with GDPR and KVKK, the Data Controller is:

Maliyo
Email: info@maliyoerp.com
Website: www.maliyoerp.com

2 Personal Data Collected

We may collect the following categories of personal data:

a. Identity & Contact Information

  • Name and surname
  • Company name
  • Email address
  • Phone number

b. Transaction & Request Information

  • Information submitted via contact forms
  • Quote requests and inquiries
  • Communication records

c. Technical Data

  • IP address
  • Browser and device information
  • Website usage data (via cookies and logs)

3 Legal Grounds for Processing

Personal data is processed based on the following legal grounds under GDPR & KVKK:

  • Explicit consent of the data subject
  • Performance of a contract or pre-contractual steps
  • Compliance with legal obligations
  • Legitimate interests of the Company, provided fundamental rights are not harmed

4 Purposes of Data Processing

Your personal data is processed for the following purposes:

  • Responding to inquiries and quote requests
  • Providing information about products and services
  • Improving website performance and user experience
  • Ensuring information security and fraud prevention
  • Fulfilling legal and regulatory obligations

5 Data Transfer & Sharing

Personal data may be shared only when necessary and in compliance with GDPR and KVKK:

  • With authorized service providers (IT, hosting, analytics), under confidentiality obligations
  • With legally authorized public institutions, when required by law
  • For legitimate business operations, without violating data subject rights
Important: No personal data is sold or shared for advertising purposes without explicit consent.

6 International Data Transfers

If personal data is transferred outside Türkiye or the European Economic Area (EEA), such transfers are conducted in accordance with:

  • GDPR Articles 44–49
  • KVKK Article 9

Appropriate safeguards are implemented to ensure data protection.

7 Data Retention

Personal data is retained only for the period required by:

  • Processing purposes
  • Legal obligations
  • Legitimate business needs

After this period, data is securely deleted, destroyed, or anonymized.

8 Data Security Measures

We apply technical and administrative measures to ensure data security, including:

  • Access control and authorization
  • Data encryption
  • Secure infrastructure and monitoring
  • Audit logs and incident prevention

9 Rights of Data Subjects

Under GDPR and KVKK, you have the right to:

  • Learn whether your data is processed
  • Request access to your personal data
  • Request correction or deletion
  • Object to processing
  • Request restriction of processing
  • Withdraw consent at any time
  • File a complaint with relevant authorities
How to Exercise Your Rights: Requests can be submitted via info@maliyoerp.com

10 Cookies

Our website uses cookies to enhance user experience and analyze traffic. Detailed information is provided in our Cookie Policy.

11 Policy Updates

This Privacy Policy may be updated periodically. Updates become effective upon publication on the website. We encourage you to review this policy regularly to stay informed about how we protect your data.

Contact Us

For privacy-related questions or requests:

Maliyo
Email: info@maliyoerp.com