1. Security Measures
GRANOBRA REKLAM PAZARLAMA YAZILIM VE BİLİŞİM SANAYİ TİCARET LİMİTED ŞİRKETİ (“Company”) places the highest priority on the security and privacy of your personal data. Our website www.granobra.com is hosted on AWS infrastructure, and the following advanced security measures are applied:
| Measure | Description |
|---|---|
| SSL/TLS Encryption | All data exchanged between your browser and our servers is encrypted via the TLS 1.2+ protocol. |
| HTTP/2 Support | HTTP/2 is used for faster and more secure connections. |
| Advanced Firewalls | Cloudflare’s Web Application Firewall (WAF) blocks unauthorized access attempts. |
| ISO 27018 & SOC 2-Compliant AWS Infrastructure | Amazon Web Services data centers meet international security standards. |
| Continuous Monitoring & Updates | Infrastructure and application layers are monitored 24/7 to detect potential vulnerabilities. |
| Access Controls | Personnel access is granted on a “least privilege” basis; all access is logged. |
These measures protect your data against loss, misuse, unauthorized access, alteration, or destruction.
2. Incident Notification and Response
While no online system is 100 % secure, transparency and rapid action are our core principles in the event of a breach.
- Data Breach Notification
- If a security breach involving your personal data is detected, the Personal Data Protection Authority (KVKK) and affected users will be notified as soon as possible (within a maximum of 72 hours, in accordance with KVKK Art. 12).
- User Information
- We provide explanatory information outlining the steps you should take to reduce risks.
- Regulatory Compliance
- Our breach-management procedures fully comply with GDPR Articles 33-34, KVKK Communiqué 2019/1, and relevant national regulations.
- Logging and Reporting
- All incidents are recorded in detail; reports are provided to regulatory authorities upon request.
3. Confidentiality of Personal Data
No personal data belonging to our users:
- is published without prior notice and consent.
- is sold, rented, or transferred to third parties.
If the Company’s shares or assets are transferred, data responsibility will be assumed by the new owner under equivalent confidentiality and security obligations set out in this policy.
► For more details, see our Privacy Policy page.
4. Continuous Improvement
Security is a dynamic process. Therefore:
- We conduct periodic penetration tests, security updates, and code reviews.
- We regularly train our employees on industry-standard security topics, including the OWASP Top 10.
- We update our policies and procedures in line with technological and regulatory changes.
5. Security-Related Questions
To ask questions about the protection of your personal data or to report a suspicious situation, please contact us:
- E-mail: info@granobra.com
All notifications will be evaluated and responded to promptly.