Regule logo

Privacy Policy

Effective Date: April 26, 2026 | Version: 1.0

Data Controller: Osman Emre Metehan Altuntekin, located at Gevher Nesibe Mah. Temizel Sk. Hilal Apt. 7/3 Kocasinan, Kayseri/Turkey.

Contact: [email protected]

This policy explains how your data is handled when you join the Regule waitlist. A Turkish-language version of this policy (Gizlilik Politikası) is available for Turkish residents here.

Legal Basis and Purpose of Processing: We process your personal data based strictly on your explicit consent (GDPR Article 6(1)(a) and KVKK Article 5(1)). The sole purpose of this processing is to notify you about Regule’s launch, send relevant developmental updates, and ensure you receive platform-relevant communications.

Information Collected: When you join the waitlist, we collect your email address and your platform preference. To securely verify your consent and protect against unauthorized signups, we also generate technical logs, which include timestamps, IP hashes, and Cloudflare Request IDs.

Processors and International Transfers: Processing your data requires transferring it to infrastructure operated outside the EEA and Turkey. We utilize Cloudflare (edge routing and security), Supabase (database storage), and Plunk via AWS (email delivery).

  • For EEA Users: Cross-border transfers are governed by Standard Contractual Clauses (SCCs) provided by these processors, in accordance with GDPR Article 46.
  • For Turkish Users: Cross-border transfers are conducted strictly based on your explicit consent, in accordance with KVKK Article 9(2). By providing your consent upon signup, you explicitly agree to these international transfers.

These processors maintain their own independent security certifications and compliance standards.

Analytics: This website uses Umami for anonymous traffic analysis. This tool does not use cookies and does not track or store any personally identifiable information.

Data Retention: Your email remains on the active mailing list as long as you wish to receive updates. If you withdraw your consent (unsubscribe), your email is immediately removed from the active list. However, a restricted, non-active record of your original consent and the deletion request is retained for up to 10 years to fulfill legal record-keeping obligations and to establish a defense against potential legal claims. This archive is strictly isolated, accessible only for the purpose of responding to legal claims or regulatory inquiries, and is not used for any other processing.

Data Breach Notification: In the event of a personal data breach affecting your information, we will notify the relevant supervisory authorities within 72 hours and inform affected users without undue delay, in accordance with applicable law.

Policy Updates: We may update this policy to reflect changes in legal or operational requirements. We will notify active subscribers of any material changes.

Your Rights: You retain full control over your data. You have the right to:

  • Access, rectify, or request the deletion of your personal data.
  • Receive a copy of your data in a portable, machine-readable format.
  • Restrict or object to the processing of your data.
  • Withdraw your consent at any time by using the unsubscribe link provided in our emails.
  • Lodge a complaint with your local Data Protection Authority (DPA) or the Turkish Personal Data Protection Board (KVKK).

To exercise any of these rights, please reach out to the contact address provided above. We will respond to all requests within 30 days.