Our commitment to your digital sovereignty.
At Ephesus Strategic Data, we view privacy not as a compliance hurdle, but as the foundational architecture of elite analytics. This policy outlines how we protect the data insights shared with us.
Information we harvest and why.
We do not believe in mass data collection. Our intelligence gathering is surgical, prioritized for generating high-fidelity analytics that drive data insights for our clients.
Our physical infrastructure in Istanbul adheres to tier-three security standards.
Identity & Contact Metadata
When you engage with our platform or request a consultation, we collect your name, professional email, and the organization you represent. This allows us to tailor our intelligence reports to your specific industry constraints.
Behavioral Telemetry
We use anonymous interaction tracking to understand how users navigate our complex analytics tools. This includes IP addresses (masked), browser types, and session duration.
The processing dichotomy.
How we use your data.
- / Personalizing the dashboard interface for your specific analytic benchmarks.
- /
- / Validating user credentials to ensure the integrity of our private data insights.
What we never do.
- Sell or lease individual user profiles to third-party marketing networks.
- Transmit raw data to jurisdictions without equivalent KVKK/GDPR protections.
Exercising your agency.
Under Turkish and International Law, you possess specific rights regarding your digital footprint. We provide the mechanisms to exercise them with zero friction.
The Right to Erasure
At any point, you may request the complete purging of your personal records from our active servers. We process these requests within 30 business days, ensuring that backup logs are overwritten in accordance with standard data sanitation cycles.
Rectification
Inaccurate intelligence is useless. If your professional data has changed, we are committed to updating our records immediately.
Data Portability
You have the right to receive your personal data in a structured, commonly used, and machine-readable format to transfer to another service provider.
KVKK Compliance
Based in Halaskargazi Cd., Istanbul, Ephesus Strategic Data strictly adheres to Kişisel Verilerin Korunması Kanunu (KVKK). Our internal Data Protection Officer (DPO) oversees all analytics processing workflows to ensure total alignment with local legislation.
Security as a core architectural principle.
Encryption
All data is encrypted in transit using TLS 1.3 and at rest using AES-256 standards. Our keys are managed through isolated hardware security modules (HSMs).
Access Control
The principle of least privilege governs our internal operations. Employees only access the minimum data set required to execute specific analytics tasks.
Audit Trails
Every instance of data access or modification is logged in an immutable ledger, subject to weekly review by our security analysts.
Breach Response
In the unlikely event of a security incident, we notify affected parties and the relevant authorities within 72 hours, providing a detailed impact assessment.
Inquiries regarding this policy.
For any clarifications, formal requests, or concerns regarding your privacy, our dedicated compliance team in Istanbul is available during standard business hours.
Halaskargazi Cd. 200, Istanbul
info@ephesusstrategicdata.digital
Mon-Fri: 09:00-18:00