Privacy Policy
Last updated: March 18, 2026
Overview
We respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our services.
Payment processing
We use Paddle for payment processing. Paddle handles billing, invoices and payment authorization on our behalf. We do not store full payment card details on our servers. For more information, see Paddle's Privacy Policy and Paddle's Terms.
Where we store your data
Uploaded files and backups are stored on Amazon Web Services (AWS). We use AWS S3 for file storage and related services. Access to stored files is restricted and signed URLs are used for secure temporary access when necessary.
Data retention
We retain personal data as long as necessary to provide our services or as required by law. If you wish to request deletion of your data, contact us at info@ziyara.io.
Your rights
You have rights to access, correct, or request deletion of your personal data. To exercise these rights contact us at info@ziyara.io.
International transfers & processors
We use third-party processors such as Paddle (payments) and AWS (storage). These providers may transfer or store data outside the EEA/UK/Türkiye. Where transfers occur, we rely on appropriate safeguards such as Standard Contractual Clauses, EU/UK adequacy decisions where applicable, or other lawful transfer mechanisms. Please consult the providers' privacy pages for details.
GDPR / UK GDPR (EU & UK residents)
If you are located in the EU or the UK, you have the rights listed above and the right to lodge a complaint with your local supervisory authority. The legal bases for processing personal data include contract performance, legitimate interests, and consent where required (for example for non-essential cookies).
CCPA / CPRA (California residents)
If you are a California resident, you may have additional rights under the California Consumer Privacy Act (CCPA) / California Privacy Rights Act (CPRA), including the right to request disclosure of categories of personal information collected, the purposes for which it is used, and the right to request deletion. We do not sell personal information. To exercise your rights under CCPA/CPRA, contact info@ziyara.io and specify your request.
KVKK (Türkiye)
If you are a resident of Türkiye, you have rights under the Turkish Data Protection Law (KVKK) including access, correction, deletion, and objection. To exercise those rights, contact info@ziyara.io. For international transfers from Türkiye, we will rely on appropriate safeguards and provide information upon request.
Security measures
We implement reasonable organizational and technical measures to protect personal data, including encrypted storage for files (AWS S3), restricted access, and signed URLs for temporary file downloads.
Data Protection Officer / Contact
If you have data protection concerns you may contact info@ziyara.io. If required by law we will provide DPO contact details; otherwise contact the address above for privacy requests.
This policy references third-party services we use (Paddle for payments, AWS for storage). Please review their policies for details about how they handle data.
Contact
If you have questions about this policy, please contact: info@ziyara.io
This policy references third-party services we use (Paddle for payments, AWS for storage). Please review their policies for details about how they handle data.