Company Information

- Business Name: Selfynity - Location: United Kingdom - Website: https://selfynity.com - Email: privacy@selfynity.com

Data Protection Contact

For all data protection inquiries, contact us at privacy@selfynity.com

A) Identity Information

- Name, email address - Date of birth (for age verification) - IP address

B) Contact Information

- Email address - Phone number (optional) - Communication preferences

C) Test Data

- IQ test results - Questions answered - Test completion times - Cognitive profile data (CHC, Big Five, RIASEC)

D) Security Data

- Session information - Device information (browser, OS) - Log records - Cookie data

E) Financial Data

- Payment information (via payment provider) - Invoice details - Transaction history

F) Marketing Data (with consent)

- Communication preferences - Areas of interest - Platform usage behavior

a) Service Delivery

- Administering IQ tests and calculating results - Creating cognitive profile reports - Account management and authentication - Providing customer support

b) Legal Obligations

- Tax compliance and record keeping - E-commerce regulation compliance - Court order compliance

c) Security

- Ensuring platform security - Fraud prevention - Abuse detection - Resolving technical issues

d) Communication (with consent)

- Product and service notifications - Campaign and promotion announcements - Important updates - Customer satisfaction surveys

e) Analytics and Improvement

- Measuring platform performance - Improving user experience - Statistical analysis - Scientific research (with anonymized data)

A) Service Providers

- Server hosting: AWS (Amazon Web Services) - Payment processing: Paddle.com (Merchant of Record) - Analytics: Google Analytics (anonymized)

B) International Transfers

Data may be transferred to: - United Kingdom (primary operations) - European Union (data centers) - United States (cloud services)

a) Right to Access

- Request information about whether we process your data - Obtain a copy of your personal data

b) Right to Rectification

- Request correction of inaccurate personal data - Complete incomplete personal data

c) Right to Erasure

- Request deletion of your personal data - 'Right to be forgotten' under certain circumstances

d) Right to Restriction

- Request restriction of processing in certain cases

e) Right to Data Portability

- Receive your data in a structured, machine-readable format - Transfer data to another controller

f) Right to Object

- Object to processing based on legitimate interests - Object to direct marketing

g) Rights Related to Automated Decision-Making

- Not be subject to solely automated decisions with significant effects

How to Exercise Your Rights

Email: privacy@selfynity.com

Response Time

We respond to all requests within 30 days, free of charge.

Retention Periods

Account Information

- While account is active + 1 year - Deleted immediately upon request

Test Results

- Indefinitely (your property) - Deleted immediately upon request

Transaction Records

- 7 years (legal requirement) - Invoices and payment records

Communication Records

- 3 years - Support requests, emails

Marketing Data

- While consent is active - Deleted within 6 months of consent withdrawal

Log Records

- 2 years (security and technical diagnostics) - IP addresses, session information

Anonymized Data

- Indefinitely (identity not identifiable) - Statistics and research

Technical Measures

- Encryption: AES-256 bit (database), TLS 1.3 (transit) - Access Control: Role-based access, 2FA required - Firewall: WAF (Web Application Firewall), DDoS protection - Monitoring: 24/7 security monitoring, penetration testing - Backup: Daily automated backups, encrypted storage - Updates: Regular security patches and updates

Organizational Measures

- Confidentiality Agreements: Signed with all staff - Access Policies: Minimum privilege principle - Training: Regular data security training - Data Processing Agreements: Signed with all vendors - Incident Response Plan: Emergency action plan for data breaches

Data Breach Notification

In case of a data breach: - Supervisory authority notified within 72 hours - Affected users notified as soon as possible - Necessary measures taken to mitigate impact

Under 13

Our platform is not intended for children under 13. We do not knowingly collect data from children under 13. If we discover data from a child under 13, we will delete it immediately.

Ages 13-18

- Users aged 13-18 may use the platform with parental or guardian consent - Parental consent is obtained during registration - Parents have the right to view and delete their child's data

Parental Controls

Parents have the right to: - Review personal data collected about their child - Request deletion of their child's personal data - Refuse further collection or use of their child's data

Contact

For questions about children's privacy: privacy@selfynity.com

Cookie Types Used

Essential Cookies

- Session management - Authentication - Security

Analytics Cookies (with consent)

- Google Analytics (anonymized IP) - Platform usage statistics

Marketing Cookies (with consent)

- Targeted advertising - Conversion tracking

Acceptance of Changes

Continued use of the platform after changes take effect constitutes acceptance. If you do not agree, you may delete your account.

Version History

Previous versions available at https://selfynity.com/legal/kvkk/history

Last Updated

January 13, 2026 Version: 2.0

Data Controller

Selfynity United Kingdom

Contact

- General: info@selfynity.com - Privacy: privacy@selfynity.com - Support: support@selfynity.com

UK Supervisory Authority

If your request is denied, you find the response inadequate, or you don't receive a timely response, you may lodge a complaint with the Information Commissioner's Office (ICO):