FuudUp Logo

Personal Data Protection Policy

We have prepared this policy as Gala İlaç ve Yazılım A.Ş. ("FuudUp") to clarify our approach to the processing and protection of personal data. FuudUp carefully processes personal data within the scope of the Personal Data Protection Law No. 6698 ("PDPL") and related secondary legislation, as well as the decisions of the Personal Data Protection Board ("Board") (hereinafter referred to as "PDP Legislation"), and meticulously implements all necessary technical and administrative measures to ensure the security of this data.

You can contact us at info@fuudup.com to get detailed information about the processes by which your personal data is processed by FuudUp or to convey your questions on any subject.

1. Purpose and Scope of the Policy

This policy covers all personal data processing processes related to FuudUp's users, customers, employees, job applicants, authorized persons/representatives, individual business partners/suppliers, employees of business partners/suppliers, website visitors, and workplace visitors as the data controller.

FuudUp conducts all personal data processing activities in full compliance with PDP Legislation and the principles and rules specified in this policy.

2. Collection, Processing, and Storage of Personal Data

Through our application, personal data is collected in various categories such as user registration information (name, surname, email address, phone number, address, etc.), password, username, profile data, uploaded images, location information, device information, usage data, and social interaction data. Company information, payment methods, registered card information, surveys, in-app messages, requests, and complaints from companies wishing to advertise within the application are also collected and stored as data.

This data is processed for the following purposes:

  • Service provision and improvement: Ensuring application functionality, improving user experience, and developing new services;
  • Security and fraud prevention: Ensuring account security, detecting and preventing fraudulent activities;
  • Communication and support: Providing information, customer support, and technical assistance to users;
  • Marketing and analysis: Promoting our services, delivering campaigns and announcements, and analyzing usage patterns.

Data processing operations are carried out based on relevant legal grounds (explicit consent, contract performance, legal obligations, etc.). The collected data is retained for the necessary period and then destroyed within the framework of legal requirements.

3. Data Security

Our company implements technical and administrative security measures at international standards to protect personal data against unauthorized access, disclosure, loss, alteration, or destruction. In this context, methods such as data encryption, access control, regular security scans, and staff training are utilized.

4. Your Rights Regarding the Protection of Your Personal Data

Within the scope of PDPL, our users have the following rights:

  • Learning whether personal data is processed;
  • Requesting information about processed data;
  • Requesting correction or updating of personal data;
  • Requesting deletion or destruction of data when necessary;
  • Objecting to the processing of data exclusively through automated systems for analysis.

You can make requests through the communication channels specified above to exercise these rights. Your requests will be evaluated within legal timeframes.

5. Policy Changes

This Policy may be periodically reviewed and updated in line with changes in legislation or updates in our company's practices. Any changes made within the scope of the policy will be announced through the application.

Effective as of: 09.07.2025
Last updated: 09.07.2025