“KinderGarten In APP” Application Privacy Policy:
We care about your privacy.
This privacy policy sets out how ABOS YAZILIM LLC. uses and protects the personal data you provide when you use the “KinderGarten In APP” for which it is a service provider.
If we ask you to provide personal data by which you can be identified when using the application, you can be assured that this information will only be used in accordance with this privacy statement.
ABOS YAZILIM LLC. may make changes by updating this Privacy Policy from time to time. You should check back from time to time to make sure you are aware of any changes that will be made.
This privacy policy is entered into force on June 1, 2024.
We encourage you to check this site periodically and review the most current Privacy Policy as set forth in the Effective Date shown above.
ABOS YAZILIM LLC. is the service provider of the “KinderGarten In APP” application. It is located in the office at Menteşe/Muğla/Türkiye.
- Trade Registry Number: 0003151626000001
- D.U.N.S. Number: 751130250
The CCPA gives consumers the right to know what personal information a business has collected about them and includes disclosure of the purpose of the collection. According to GDPR, people should have control of their own personal data. Therefore, we have explained below why and how your personal data is processed.
- Your personal data is processed in connection with your use of the ‘KinderGarten In APP’ application.
- If you are our customer (i.e. the operator of a childcare institution), we process your personal data for the purposes of entering into a contract with you and fulfilling our accounting, tax and consumer law obligations [GDPR Article 6(1)(b) – GDPR Article 6(1)(c) – GDPR Article 6(1)(f)].
- With your separate consent, we may also process your personal data to invite you to take advantage of promotions by email and telephone and to send you other marketing information. [GDPR Article 6(1)(a)].
- If you are an employee of childcare institution (teacher or staff), we take care to process only the necessary amount of your data recorded in the system by your institution administrator so that you can use the application. Such processing is necessary for purposes arising from the user’s legitimate interests (i.e. creating an account to be able to use the application) [GDPR Article 6(1)(f)].
- If you are a parent or guardian (that is, if you are a user who uses our application because your child or ward goes to an institution that uses our application), the information in the form you fill out during your child’s registration to the institution is recorded in the system by the relevant institution. When you log in to the system, you can clearly and transparently see and review the recorded data, and request the institution to remove this data whenever you want. These data are nothing more than the use of the services we offer electronically, such as access to the content of our application and within the scope of consumer legislation. This processing is necessary for the performance of a contract to which the data subject is party or to take necessary steps at the request of the data subject [GDPR Article 6(1)(b) – GDPR Article 6(1)(f)].
In addition, usage data that characterizes each user’s use of our application is processed. We may use this information for statistical purposes and to improve the operation of the application. Data stored in server logs is not associated with users of the application [GDPR Article 6(1)(f)].
- We always take care to process only necessary and minimal data. We may process the following personal data about you when using our application:
- Childcare institution:
- Name Surname
- Business Name
- Login Information (Username, Password)
- Phone Number
- E-mail Address
- Business Address
- Data required for issuing the VAT invoice, if necessary
- Institution Staff:
- Name Surname
- Login information
- Phone Number (If recorded by the institution you work for)
- Email address (if registered by the institution you work for)
- Parent or guardian (If you are using the app because your child or ward goes to an institution that uses our app)
- Your (mother, father and other) and your child’s Name and Surname,
- Login Information (Username, Password)
- Date of Birth (If recorded by the institution)
- Gender (Child and Parent) (If recorded by the institution)
- Medical data (Allergy, Blood Group, Height, and Weight, etc.) (If recorded by the institution)
- Phone Number (If recorded by the institution)
- National ID number of children attending the institution (if registered by the institution)
- With whom can your personal data be shared?
- Data shared by businesses to issue invoices may be shared with legally authorized authorities (such as tax authorities) to the extent necessary.
- User personal data is not shared with anyone by the Service Provider. Moreover, in order to ensure the security of your personal data; It is processed in an IT system located in the so-called computing cloud, provided by third parties that provide support for GDPR and CCPA, have ensured ISO (ISO 27001) and SOC (SOC 1, SOC 2 and SOC 3) compliance and (ISO 27017 and ISO 27018) certification processes.
- How long is your personal data processed?
- If you are a childcare institution, we process your personal data only as long as it is necessary for tax purposes and for five years after the tax liability arises.
- Your required data is processed starting from your application and throughout the period your account is active.
- Additionally, if you have any legal or contractual rights, we must process your personal data during this period to be able to assist you with this where necessary.
- As long as our application is used or your subscription continues, the processing of your data based on consent will continue until you withdraw your consent as a legal prerequisite.
- We inform you that you have certain rights that will allow you to intervene in the way your personal data is processed and, in some cases, cause us to stop such processing. These rights are:
- Right to access your personal data (GDPR Article 15)
- You will not be asked for your personal data when installing the application. But, to use the application;
- If you are a childcare institution, Your information is processed by the service provider to create your subscription and login information (such as username and password).
- If you are a parent or guardian (that is, if you are a user who uses our application because your child or ward goes to an institution that uses our application), You can log in with the username and password sent to you by the institution (not sent by the Service Provider).
- After login to the application, the data owner can log in to the relevant modules and see all recorded and processed data about him/her in a clear and transparent manner.
- The data subject shall have the right to obtain from the controller confirmation as to whether personal data concerning him or her are being processed and, in this case, to obtain access thereto and to the following information:
- purposes of processing,
- categories of personal data,
- where possible, the period for which the personal data are intended to be stored and, where this is not possible, the criteria for determining this period,
- Information on the right to request from the controller rectification, erasure or restriction of processing of personal data concerning the data subject and to object to such processing,
- The right to correct your personal data (GDPR Article 16)
- The data subject shall have the right to request the Service Provider, if the Childcare Institution, or the Institution, if the parent, to correct inaccurate personal data concerning him or her without delay. Taking into account the purposes of the processing, the data subject shall have the right to request completion of incomplete personal data, including by means of a supplementary statement.
- The right to delete your personal data (“right to be forgotten”) (GDPR Article 17)
- The data subject shall have the right to request the Service Provider, if the Childcare Institution, or the Institution, if the Parent, the immediate erasure of personal data concerning him or her. And where one of the following applies, the controller shall be obliged to erase personal data without undue delay:
- the personal data are no longer necessary for the purposes for which they were collected or otherwise processed;
- the data subject withdraws consent on which the processing is based pursuant to Article 6(1)(a) or Article 9(2)(a) and there is no other legal basis for the processing;
- the data subject objects to the processing pursuant to Article 21(1) and there are no overriding legitimate grounds for the processing, or the data subject objects to the processing pursuant to Article 21(2);
- Personal data has been processed unlawfully.
- In case of obligation to delete personal data, reasonable steps, including technical measures, are taken, considering the available technology and the cost of implementation. The data subject is obliged to inform the data subject that he/she requests the deletion of all links to or copies of the personal data in question.
- The right to restrict the processing of your personal data (GDPR Article 18)
- In the following cases, the data owner shall have the right to request the Service Provider, if the Childcare Institution, or the Institution, if the parent, the restriction of the processing of personal data concerning him/her:
- the processing activity is unlawful, and the data subject opposes the erasure of the personal data and requests instead the restriction of the processing activity;
- personal data are no longer needed for the purposes of processing;
- In cases where data processing is restricted, personal data, excluding storage, may be processed only with the consent of the data owner or for the purpose of establishing, pursuing, defending claims, and protecting the data owner.
- Before a restriction on data processing is lifted, the data subject requesting the restriction is informed.
- Right to object to the processing of your personal data (GDPR Article 21)
- The data subject has the right to object at any time, on grounds relating to his or her situation, to processing of personal data concerning him or her based on Article 6(1)(e) or (f), including profiling pursuant to those provisions. The controller shall no longer be permitted to process these personal data unless the controller can demonstrate compelling legitimate grounds for the processing which override the interests, rights and freedoms of the data subject, or for the establishment, exercise or defense of claims.
- We collect data from institutions primarily to the extent necessary for the creation of their subscriptions and the establishment of the contract. Some of the data is also necessary for us to fulfil our legal obligations (tax regulations, accounting regulations, pro-consumer obligations). User data is not collected by us and is only stored as the information provided by the institutions is entered into the system. Unfortunately, failure to provide your personal data will not make it possible to establish and perform the contract.
- We only collect your personal data from you. We collect data regarding the use of the application by automated means.
- The data used in the application, Usage data, is processed by automated means and subject to profiling in the sense adopted by the GDPR.
- If you are a childcare institution, the personal data you share only for the purpose of establishing a contract with the service provider and the data subsequently recorded when using the application;
- If you are an employee of childcare institution (teacher or staff), your data is recorded in the system by your institution administrator so that you can use the application;
- If you are a parent or guardian (that is, if you are a user who uses our application because your child or ward goes to an institution that uses our application), the personal data of you and your child that the institution records in the application according to the information in the form you filled out during your child’s registration with the institution is processed..
Apart from these, no personal data is processed or stored.
In case of a dispute, the courts in the country and region where the company is located have jurisdiction.