Privacy Policy

HexxLock is committed to protecting the privacy, confidentiality, and security of individuals who visit and interact with our website. This Privacy Policy explains how personal data is collected, used, stored, and protected when you access the HexxLock website.

Last updated: March 2025

1. Introduction

This Privacy Policy applies to the website operated by Hexxlock Teknoloji Limited Şirketi, located at Ankara University Technopark Campus, Türkiye.

HexxLock operates a technology-focused informational website. The website does not require user registration, does not offer user accounts, and does not collect personal data through forms or mandatory input mechanisms.

By accessing this website, you acknowledge that you have read and understood this Privacy Policy.

2. Data Controller

For the purposes of applicable data protection laws, including the Turkish Law on the Protection of Personal Data (KVKK) and the General Data Protection Regulation (GDPR) where applicable, the data controller is:

Hexxlock Teknoloji Limited Şirketi

Bahçelievler, 319. Sk. No:35 E - E Blok/B24 06830 Gölbaşı / Ankara, Türkiye (Ankara University Technopark Campus)

Contact:

  • privacy@hexxlock.com
  • legal@hexxlock.com

3. Scope of This Policy

This Privacy Policy applies solely to:

This Privacy Policy applies solely to:

  • Visitors of the HexxLock website
  • Passive interactions such as page views and navigation

This policy does not apply to:

  • Customer systems
  • Contractual services
  • Platform deployments
  • Enterprise products governed by separate agreements

4. Information We Collect

HexxLock does not require visitors to submit personal data to access the website.

However, limited technical information may be collected automatically, including:

  • IP address
  • Browser type and version
  • Device type
  • Operating system
  • Country or region-level location
  • Date and time of access
  • Pages visited and interaction patterns

This data is collected solely for security, performance monitoring, and statistical analysis.

5. Cookies and Analytics

HexxLock uses or may use Google Analytics to understand how visitors interact with the website.

Types of Cookies:

  • Essential cookies: Required for basic website functionality
  • Analytics cookies: Used to analyze traffic and usage patterns

HexxLock does not use:

  • Advertising cookies
  • Marketing trackers
  • Behavioral profiling technologies

Where required by law, a cookie consent mechanism may be implemented.

6. Purpose of Data Processing

Collected data is processed for the following purposes:

  • Website security and abuse prevention
  • Performance optimization
  • System diagnostics
  • Statistical analysis and trend evaluation
  • Legal and compliance obligations

Data is processed strictly on a need-to-know basis.

7. Legal Basis for Processing

Personal data is processed based on:

  • Legitimate interests related to website security and performance
  • Legal obligations under applicable laws
  • Explicit consent where required

8. Data Sharing and Disclosure

HexxLock does not sell, rent, or trade personal data.

Data may be shared only:

  • With authorized service providers (e.g., analytics infrastructure)
  • When required by law or regulatory authorities
  • To protect HexxLock's legal rights and security

All third-party service providers are required to comply with applicable data protection standards.

9. International Data Transfers

HexxLock does not intentionally transfer personal data outside of Türkiye or the European Economic Area for website operations.

If international data transfers become necessary, appropriate safeguards will be applied.

10. Data Retention

Technical and analytical data is retained only for as long as necessary to:

  • Fulfill the purposes outlined in this policy
  • Comply with legal obligations
  • Maintain system integrity and security

Data is periodically reviewed and securely deleted when no longer required.

11. Data Security Measures

HexxLock implements technical and organizational measures designed to protect data against:

  • Unauthorized access
  • Loss or destruction
  • Alteration or misuse

Security practices follow industry best practices and internal governance standards.

Specific security certifications or audits are disclosed only through contractual engagements.

12. Data Subject Rights

Depending on applicable law, individuals may have the right to:

  • Access their personal data
  • Request correction or deletion
  • Object to processing
  • Restrict processing
  • Withdraw consent

Requests can be submitted to:

privacy@hexxlock.com

13. Data Processing Agreements (DPA)

HexxLock processes customer data only under:

  • Explicit contractual agreements
  • Customer-defined instructions
  • Mutually agreed Data Processing Agreements

This Privacy Policy does not replace or override contractual DPAs.

14. Responsible Use of Technology and AI

HexxLock adheres to responsible technology and AI principles, including:

  • Human oversight over automated systems
  • Compliance with applicable laws and regulations
  • Ethical use aligned with public interest and legal frameworks

HexxLock does not engage in unlawful, unauthorized, or prohibited uses of technology.

15. Changes to This Privacy Policy

HexxLock reserves the right to update this Privacy Policy when necessary.

Changes will be published on this page with an updated revision date.

16. Contact

For questions or concerns regarding this Privacy Policy:

  • privacy@hexxlock.com
  • data@hexxlock.com
  • legal@hexxlock.com