Privacy

Privacy Policy

How DMC Bilgi Teknolojileri collects, uses and protects your personal data when you use Sentinel DB 360 and our website.

Last updated: 2026-04-30

ℹ️ For informational purposes. Binding contract terms are negotiated and signed with you during the procurement process. This page provides a general framework of our product and service scope.

1. Data Controller

DMC BİLGİ TEKNOLOJİLERİ YAZILIM DANIŞMANLIK SANAYİ VE TİCARET LİMİTED ŞİRKETİ (trading as "DMC Bilgi Teknolojileri", hereinafter "DMC" or "we") is the data controller for personal data processed through the Sentinel DB 360 product and the sentineldb360.com website. Registered office: Düzce University Technology Development Zone (Düzce TGB), Türkiye. Contact: [email protected] · For data-protection requests: [email protected].

2. Data We Collect

  • Account / contact data — name, email, phone, company name (provided by you when requesting a demo, signing up, or contacting support).
  • Usage data — IP address, browser/OS, pages visited, request timestamps (collected automatically).
  • Operational telemetry — only metrics from databases you connect to Sentinel DB 360. Database content is never transmitted off your premises in on-premise deployments.
  • Billing data — invoice address, tax number (for paid plans).

3. How We Use Data

  • To provide and operate the Sentinel DB 360 product and related services.
  • To respond to demo, support and sales inquiries.
  • To improve product reliability and security (aggregated, non-identifying).
  • To meet legal, tax and regulatory obligations.

4. Legal Bases (GDPR Art. 6)

Performance of contract (delivering Sentinel DB 360), legitimate interests (security, abuse prevention, product analytics), consent (marketing communications), and compliance with legal obligations.

5. Data Sharing

We do not sell personal data. We share data only with sub-processors acting on our behalf under written DPA: cloud hosting (Microsoft Azure), email delivery (Microsoft 365), licensing (Azure Cosmos DB). Full sub-processor list available on request.

6. International Transfers

For Turkish customers, data is hosted in EU/Türkiye-region data centers by default. International transfers (if any) are protected by Standard Contractual Clauses or equivalent safeguards.

7. Retention

Account data: lifetime of the account + 10 years (Turkish Tax Procedure Law). Usage logs: 12 months. Demo-form submissions: 24 months. Marketing consent: until withdrawal.

8. Your Rights (GDPR Art. 15-22 / KVKK Art. 11)

Access, rectification, erasure, restriction, portability, objection, and the right to withdraw consent. To exercise rights, email [email protected]. We respond within 30 days. Turkish residents may also file a complaint with KVKK (kvkk.gov.tr); EU residents with their local supervisory authority.

9. Security

TLS in transit, AES-256 at rest, role-based access control, audit logging, periodic penetration tests. See SECURITY.md in our codebase for technical details.

10. Changes

We may update this policy. Material changes will be notified by email at least 30 days in advance. The "Last updated" date is shown above.

11. Contact

Questions about this policy: [email protected] · Data-protection requests: [email protected].