Privacy Policy and Information Notice (Pursuant to the Turkish Personal Data Protection Law – KVKK) for AskAmigo Mobile Application

This English version of the Privacy Policy is provided for informational purposes only. In case of any inconsistency or difference in interpretation, the Turkish version (“AskAmigo Mobil Uygulaması KVKK Aydınlatma Metni ve Gizlilik Politikası”) shall prevail. Click [KVKK Aydınlatma Metni ve Gizlilik Politikası] for Turkish version.

 

Last Update: 11/12/2025

Data Controller: Halil Doğacan Koca

E-mail: askamigo24@gmail.com

1. Purpose

This clarification text has been prepared in order to provide information, within the framework of the Personal Data Protection Law No. 6698 (KVKK) and the relevant legislation, about the purposes for which the personal data of individuals (“User”) who use the AskAmigo mobile application (“Application”) are processed, stored, and protected, and to present information regarding users’ rights in a clear, understandable, and accessible manner.

2. Categories of Processed Data and Purposes of Processing

AskAmigo is a mobile application that offers its users entertaining questions, games, and opportunities for social interaction. In order to perform its basic functions, personalize the user experience, and ensure service continuity, the application processes the limited data categories listed below.

The table below details the data processed by the application, the purposes of processing, and their legal bases.

Data Category	Description / Example	Purpose of Processing	Legal Basis	Retention Period
Identity and contact information	Email address, Password (stored securely/hashed on Firebase Auth)	To create a user account, log in, and carry out membership procedures.	KVKK Art.5/2(c)- Establishment and performance of the contract	Stored until the user deletes their account. When the account is deleted, it is permanently removed from Firebase servers.
In-app generated visuals (screenshots)	Question cards or game result screens created within the application (Screenshot)	To enable sharing through the device’s sharing functions at the user’s request.	KVKK Art.5/2(f) – Legitimate Interest	Temporarily stored on the device; deleted after sharing is complete.
Local preferences / cookie data	Language code, child mode status, subscription type, anonymous login information, profile image code, privacy preference, consent variables	To keep the personalized settings of the application and maintain the workflow.	KVKK Art.5/2(f) – Legitimate Interest	Stored locally until app removal. Deleted automatically upon uninstallation.
Advertisement data (collected by AdMob)	Impressions, clicks, advertising IDs	Show ads and generate revenue; personalized ads if consent given	KVKK Art.5/2(f) – Legitimate Interest KVKK Art.5/1 – Explicit Consent	Subject to Google/AdMob retention policies.
Error / crash logs (Firebase Crashlytics)	Automatically collected data (device model, OS version, app version, error code, timestamp)	Detect app crashes and monitor performance (SDK does not collect user-identifiable data such as name or email)	KVKK Art.5/2(f) – Legitimate Interest	Retained by Firebase for up to 90 days.

 

Any visual outputs created within the app (e.g., shared screenshots) are only shared through the user’s own device mechanisms (such as social media or messaging apps). This sharing is entirely under the user’s control; the app does not record, monitor, or share this content with third parties. Platforms used for sharing are subject to their own privacy policies.

For crash reporting, the app uses Firebase Crashlytics provided by Google LLC. Technical crash data (device model, OS version, app version, error code, timestamp) are transferred to Google LLC’s servers located in the USA and EU. This transfer is carried out under Google’s Data Processing Terms and in compliance with Article 9/2 of the KVKK, ensuring necessary security measures. The data does not contain any personally identifiable information and is used only for debugging purposes and error analysis. Crash and error logs are collected solely for application improvement purposes and do not contain information related to an identified or identifiable user. The data is processed in anonymized form, and no personally identifiable information (name, email, IP address, etc.) is recorded in our systems. While crash data may contain identifying elements such as the device's IP address, this data is used solely for technical logging purposes within Firebase systems and is not used by us for personal identification in any way.

Expired data are securely anonymized or irreversibly deleted. Since app data are stored locally, uninstalling the app automatically deletes them.

3. Data Retention and Deletion Policy

Data are anonymized or irreversibly deleted once their retention period expires. All locally stored data are automatically deleted when the app is uninstalled.

4. Transactions Requiring Explicit Consent and Approval Mechanisms

Process	Description	Consent Method
Personalized Ads	Personalized ads may be displayed via Google AdMob.	Separate in-app consent checkbox.
Silent Notifications	App may send silent reminders.	User may disable notifications from settings.
Crash Reports	Collected anonymously, contain no personal identifiers.	Explained in this clarification text.

5. Local Storage / Cookie Data

The app stores the following data locally on devices.

Variable	Description
firstTimeStart	Whether the application is being opened on the device for the first time (required for approval of the clarification text)
languageCode	The user’s selected language preference
childMode	The active/inactive status of child mode
subscription	The user’s subscription status (Free/Premium)
isAnonymous	Whether the user has logged in anonymously
profile	The avatar/profile image code selected by the user
privacy	The user’s profile privacy preference
consent_ads	The user’s acceptance/rejection status for personalized ads (integrated with the UMP SDK)
consent_ads_date	The date and time when ad consent was given

 

These values are stored only on the device and are not transferred to third parties. They are automatically deleted when the app is uninstalled.

6. Methods and Sources of Data Collection

Data are obtained either through the user’s direct input (such as email registration, in-app selections) or through automatic means (Firebase SDKs, AdMob, local storage).

The application also temporarily generates images (such as canvas outputs or screenshots) in the device’s memory for sharing purposes as a result of user interactions. These data are transferred only to the device’s sharing mechanisms through the user’s sharing action and are not stored by the application. In addition, anonymous error and crash logs may be automatically collected via Firebase Crashlytics to improve the application’s stability.

An internet connection is required for the core functions of the application to operate. The application does not function when there is no internet connection or when the connection is later lost. No data is manually entered; no text or audio data is processed.

7. Access / Transfer / Third Parties

The Authentication (Auth), Database (Firestore), Analytics (Crashlytics), and Advertising (AdMob) services used in the application infrastructure are provided by Google LLC (Firebase). The data collected within this scope may be processed on Google’s secure servers located in the USA and other countries. This transfer takes place under the “Data Processing Terms” currently in effect with Google and within the framework of security measures compliant with the KVKK (Standard Contractual Clauses).

For more details: https://firebase.google.com/terms/data-processing-terms

No other personal data are transferred to any third parties.

8. Technical and Administrative Security Measures

Key data protection measures include:

• Storing user passwords as a secure cryptographic hash
• Immediate deletion of temporary files after processing
• Protection of local data under device-based security measures against unauthorized access
• Secure storage of consent and disclosure records
• Carrying out data transfers with Firebase and AdMob services through secure communication protocols (HTTPS/TLS)
• Execution of “data processor” agreements with Google and similar service providers

 

9. User Rights Under Article 11 of KVKK

Users have the right to;

1. Learn whether their personal data are being processed,
2. Request information if their data have been processed,
3. Learn the purpose of processing and whether it is used appropriately,
4. Learn the third parties to whom data have been transferred domestically or abroad,
5. Request correction of incomplete or inaccurate data,
6. Request deletion or destruction of data under KVKK Article 7,
7. Request notification of such actions in previous two to third parties,
8. Object to results arising solely from automated processing,
9. Demand compensation for damages due to unlawful processing.

 

Requests can be sent to askamigo24@gmail.com and will be concluded as soon as possible, within 30 days at the latest.

10. Policy Updates

This “Privacy Policy and Information Notice for AskAmigo Mobile Application” may be updated periodically. Users may always access the latest version from within the app or on the website (askamigo.site). Updated versions take effect on the publication date.

11. Enforcement

This text entered into force as of the initial release date of the AskAmigo mobile application.

 

 

E-posta/E-Mail:
askamigo24@gmail.com