← Back to Codena

Privacy Policy

This Privacy Policy explains how Codena (the "Platform", "we", "us") collects, uses, shares, and protects personal data when you visit codena.io (the "Site"), request a demo, or contact us. It also describes your rights under the Turkish Personal Data Protection Law No. 6698 (KVKK) and, where applicable, the EU General Data Protection Regulation (GDPR).

1. Data Controller

The data controller responsible for your personal data is:

2. Personal Data We Collect

2.1 Information you provide

When you contact us or request a demo (e.g. by email), we collect the details you choose to share, such as your name, email address, company name, job title, and the content of your message.

2.2 Information collected automatically

When you browse the Site, we and our analytics provider automatically collect technical and usage data, including your IP address (anonymized), device and browser type, pages viewed, referring source, and approximate location. This is collected through cookies and similar technologies — see our Cookie Policy.

3. Purposes and Legal Bases

PurposeLegal basis (KVKK / GDPR)
Responding to enquiries and demo requests Performance of a contract / taking steps at your request; legitimate interest
Operating, securing, and improving the Site Legitimate interest in a safe, functional website
Analytics and audience measurement Your consent (you may opt out at any time)
Complying with legal obligations Compliance with a legal obligation

4. Cookies and Analytics

We use Google Analytics 4 to understand how visitors use the Site. Analytics run by default, but you can opt out at any time using the Cookie Settings option, or via the controls in our Cookie Policy. IP addresses are anonymized before processing.

5. Sharing of Personal Data

We do not sell your personal data. We may share it with:

6. International Transfers

Some of our service providers (such as Google) may process data on servers located outside Türkiye, including in the United States and the European Union. Where personal data is transferred abroad, we rely on appropriate safeguards as required by KVKK and GDPR.

7. Data Retention

We keep personal data only as long as necessary for the purposes above or as required by law. Enquiry and demo correspondence is retained for the duration of our relationship and a reasonable period thereafter; analytics data is retained according to our Google Analytics configuration.

8. Data Security

We apply appropriate technical and organizational measures to protect personal data against unauthorized access, loss, or disclosure. No method of transmission over the internet is completely secure, however, and we cannot guarantee absolute security.

9. Your Rights

Under KVKK Article 11, and where applicable under the GDPR, you have the right to:

10. How to Exercise Your Rights

To exercise any of these rights, contact us at info@grandeworks.com. We will respond within the timeframes required by applicable law (no later than 30 days under KVKK).

11. Children

The Site is intended for businesses and is not directed to children. We do not knowingly collect personal data from children.

12. Changes to This Policy

We may update this Policy from time to time. The "Last updated" date reflects the latest revision. Material changes will be posted on this page.

13. Contact

Questions about this Policy or your personal data? Email info@grandeworks.com.