GDPR / Data Protection (DSGVO)

This page explains key GDPR-related information about how we process personal data.

Data Controller

Ziyara Solutions (info@ziyara.io) is the data controller for personal data processed via this service.

Legal basis

We process personal data based on legitimate interests, contract performance, and consent where required (e.g., cookies).

Third-party processors

We use Paddle for payments and AWS for file storage (S3). Both act as processors and have their own compliance measures. Files are stored on AWS; access is limited and signed URLs are used for temporary access. Where data is transferred outside the EEA/UK/Türkiye, we rely on appropriate safeguards such as Standard Contractual Clauses (SCCs), adequacy decisions, or equivalent measures.

Your rights

You have rights to access, rectify, erase, restrict processing, data portability, and object. To exercise these rights contact info@ziyara.io. You may also lodge a complaint with your supervisory authority.

Retention

We retain personal data only as long as necessary for the purposes described or as required by law.

Contact

Data protection questions: info@ziyara.io

---