Superpare GDPR Privacy Notice

1. Introduction

Superpare, a product of Kodfu Bilişim A.Ş., is committed to protecting the privacy and security of personal data. This Privacy Notice is provided in compliance with the UK General Data Protection Regulation (UK GDPR). It explains how we collect, process, store, and protect personal data of users, partners, employees, and other individuals.

2. Data Controller

For the purposes of UK GDPR, the data controller is:

Kodfu Bilişim A.Ş.
Superpare UK Representative
9 Hills Road, Cambridge CB12 1GE, United Kingdom
Email: support@superpare.com

3. Purpose of Processing Personal Data

Superpare processes personal data for the following purposes:

• Service Provision: Facilitating online appointment scheduling, account creation, and management.
• Customer Relationship Management: Handling feedback, complaints, and satisfaction surveys.
• Marketing and Communication: Sending promotional content, special offers, and updates about our services.
• Legal and Compliance Obligations: Compliance with UK laws, including tax regulations and consumer protection laws.
• Security Measures: Preventing unauthorized access, fraud, and ensuring cybersecurity.
• Internal Audits and Reporting: Monitoring business performance, internal investigations, and compliance checks.

4. Categories of Personal Data Processed

We collect and process the following types of personal data:

• Identity Data: Name, surname, date of birth.
• Contact Data: Email, phone number, postal address.
• Financial Data: Payment details (processed via third-party providers; not stored by Superpare).
• Technical Data: IP addresses, cookies, device information, and browsing activity.
• Legal Data: Dispute resolution details, regulatory compliance records.

5. Legal Basis for Processing

Under UK GDPR, we process personal data based on the following lawful bases:

• Contractual Necessity: When processing is required to fulfill our contract with users.
• Legal Obligation: To comply with regulatory requirements.
• Legitimate Interests: When processing is necessary for our business operations, provided that it does not override individual rights.
• Consent: For marketing communications or processing sensitive personal data (where applicable).

6. Data Sharing and Transfers

Superpare may share personal data with:

• Service Providers and Partners: For technical support, marketing, and operational assistance.
• Regulatory Authorities: When required by law, including the UK Information Commissioner’s Office (ICO).
• Third-Party Processors: Subject to appropriate contractual safeguards.

If we transfer data outside the UK, we ensure adequate safeguards, such as:

• UK adequacy decisions,
• Standard Contractual Clauses (SCCs), or
• Binding Corporate Rules (BCRs).

7. Data Retention

Personal data is retained for as long as necessary to fulfill the processing purposes. When data is no longer required, we securely delete, anonymize, or restrict access to it.

8. Data Security

Superpare implements robust security measures, including:

• Data encryption,
• Secure access controls,
• Firewall protections,
• Regular security audits.

Despite these measures, no transmission over the internet is entirely secure, and users acknowledge the inherent risks.

9. Individual Rights Under UK GDPR

Users have the right to:

• Access their personal data.
• Rectify inaccuracies.
• Request erasure (‘right to be forgotten’).
• Restrict processing under certain conditions.
• Object to processing, including direct marketing.
• Data portability, where applicable.
• Not be subject to automated decision-making affecting their legal rights.
• Lodge a complaint with the ICO (www.ico.org.uk).

10. Data Breach Notification

In case of a personal data breach that poses a risk to individuals’ rights and freedoms, Superpare will notify the ICO within 72 hours and affected individuals if required.

11. Contact Information & Complaints

For privacy inquiries, please contact:

Superpare UK Representative
9 Hills Road, Cambridge CB12 1GE, United Kingdom
Email: support@superpare.com

If you believe your data protection rights have been violated, you can file a complaint with the UK Information Commissioner’s Office (ICO) at www.ico.org.uk.

12. Changes to this Privacy Notice

We may update this Privacy Notice to reflect changes in legal requirements or our business practices. The latest version will always be available on our website.