Tesir

Data Deletion Policy

DCBA CONSULTING LTD. • TESIR.IO PLATFORM • DATA DELETION POLICY (LINKEDIN API COMPLIANT)

PURPOSE AND SCOPE

This Data Deletion Policy (the “Policy”) explains how personal data processed within the Tesir.io platform, website, mobile applications, and related digital platforms (together, the “Platform”) operated by DCBA Danışmanlık Limited Şirketi (the “Company” or “Tesir.io”) is deleted, destroyed, or anonymized in cases such as a data subject request, revocation of authorization, account deletion, or termination of an integration, and which timelines and technical procedures are followed.

This Policy is prepared in full compliance with applicable data protection legislation, including the Turkish Personal Data Protection Law No. 6698 (“GDPR”), Law No. 5651, and the LinkedIn Developer Program Terms and LinkedIn API data protection obligations.

Data obtained via the LinkedIn API is processed only with the user’s explicit authorization and only to the extent necessary to provide Tesir.io services. Such data is never sold, rented, licensed, or shared with third parties for commercial purposes.

WHICH DATA IS DELETED UNDER THIS POLICY?

Within Tesir.io, the following categories of data processed as part of your use of the Platform may be subject to deletion or anonymization:

2.1. Identity and Contact Data

Name, surname, and email address.

2.2. Customer Transaction Data

Platform usage information, content generation and sharing records, user activity history, support requests, subscription and service usage records.

2.3. Financial Data

Bank account number or IBAN (only where wire transfer/EFT is required and within legal obligations).

2.4. Security and System Data

IP address, access logs, session information, device and system records, security incident logs.

2.5. Cookie and Analytics Data

Non-essential cookies and user preferences (only with explicit consent where applicable).

2.6. Data Obtained via the LinkedIn API

Limited user data transferred to Tesir.io via the LinkedIn API with the user’s explicit authorization and only as necessary to operate platform functions. LinkedIn API data is retained only for the duration of the user’s authorization and is not retained after authorization ends.

EVENTS THAT TRIGGER DELETION OR ANONYMIZATION

  • 3.1. The user deletes their Tesir.io account.
  • 3.2. The user submits a deletion request under GDPR (data subject request).
  • 3.3. The user revokes LinkedIn integration authorization (revocation/deauthorization).
  • 3.4. Tesir.io receives a technical notice from LinkedIn or detects automatically that authorization has been revoked.
  • 3.5. The purpose of processing no longer exists.
  • 3.6. A legal obligation to delete arises under applicable laws or by a competent authority.
  • Tesir.io systems may automatically detect LinkedIn deauthorization via integration mechanisms and initiate deletion automatically.

TIMELINES (LINKEDIN-COMPLIANT DELETION COMMITMENT)

Tesir.io deletes or irreversibly anonymizes personal data obtained via the LinkedIn API and related system records within a maximum of ten (10) days when authorization is revoked, the account is deleted, or a deletion request is submitted.

This period starts from the time the deletion request is received or when the system detects that LinkedIn authorization has been revoked.

LinkedIn API data is retained only while the user’s authorization is active and is not retained once authorization ends.

DELETION AND ANONYMIZATION METHODS

5.1. Database-Level Deletion

User data is permanently deleted from production databases.

5.2. Selective Deletion

LinkedIn API data is separated per user and only the relevant user’s data is deleted.

5.3. Anonymization

Data may be anonymized so it can no longer be linked to an individual.

5.4. Cache and Temporary Storage Cleanup

Caches, temporary storage, and session data are deleted.

5.5. Revoking Access

Access to data is fully removed.

BACKUPS, LOGS, AND LEGAL EXCEPTIONS

6.1. Logs Under Law No. 5651

Traffic and access logs that must be retained under Law No. 5651 are stored only for the legally required period and are deleted or anonymized after that period.

6.2. Backup Systems

Deleted data is removed from production systems without undue delay. Data in backup systems is deleted or anonymized automatically at the end of the backup lifecycle, and restoration processes are designed to prevent reactivation of deleted data.

6.3. Legal Obligation Exception

Data required to comply with legal obligations, resolve disputes, or protect legal rights may be retained only for the necessary period.

DATA DELETION REQUEST AND PUBLIC ENDPOINT

To comply with the LinkedIn Developer Program requirements, Tesir.io provides a public contact point for submitting data deletion requests.

Users may submit deletion requests through the following channels:

Data Deletion Request URL:

https://tesir.io/data-deletion

Data Deletion Contact Email:

support@tesir.io

DATA SECURITY

  • SSL/TLS encryption technologies
  • access control systems
  • data isolation
  • logging and monitoring systems
  • technical safeguards against unauthorized access

POLICY UPDATES

Tesir.io reserves the right to update this Policy in line with legal changes, LinkedIn API requirements, or platform updates. The updated Policy becomes effective on the date it is published on the Tesir.io website.

DATA CONTROLLER CONTACT INFORMATION

DCBA Danışmanlık Limited Şirketi

Web: https://tesir.io

Email: support@tesir.io

Address: Ferko Signature No: 175/7 Şişli / İstanbul / Turkey