Security and Compliance

The security of your data is our top priority. We provide a transparent and reliable service that complies with international security standards.

KVKK Compliance

We fully comply with Turkey's Personal Data Protection Law (KVKK). All personal data is stored encrypted and retained only for the necessary period.

PCI DSS Compliant Payments

Your credit card payments are processed through PCI DSS compliant secure payment infrastructure. Your card details are never stored in our system.

End-to-End Encryption

All your data is protected with AES-256 encryption. Your communications are secured with TLS 1.3 protocol.

Regular Security Audits

Our systems are regularly tested by independent security experts and subjected to penetration testing.

Data Backup

Your data is regularly backed up and we have disaster recovery plans in place. We guarantee 99.9% uptime.

Access Control

We prevent unauthorized access with multi-factor authentication, role-based access control, and detailed activity logs.

Certifications and Standards

KVKK Compliant
PCI DSS Level 1
ISO 27001 (Planned)
SOC 2 Type II (Planned)

Data Protection Details

Data Encryption

  • All data is encrypted with AES-256 algorithm
  • Secure data transmission with TLS 1.3 protocol
  • Transparent data encryption (TDE) at database level

Data Storage and Disposal

  • Personal data is stored only as required by legal obligations
  • Contact form data is automatically deleted after 90 days
  • Deletion requests are processed within 30 days

Payment Security

  • Card details are never stored in our system
  • We work with PCI DSS Level 1 certified payment providers
  • Additional security layer with 3D Secure

For Security Issues

If you have detected a security vulnerability or have security-related questions, please contact us.

security@almanhesabi.com