Privacy Policy

What personal data we collect

We aim to collect only what we need for the purposes below. The main categories are:

We do not intentionally collect special categories of data (such as health data) through the public website. Please do not send unnecessary sensitive information in free-text fields.

Why we use your data (purposes and bases)

• Responding to your request. We process identity, contact, and inquiry content to take steps at your request before a contract and, if a supply relationship follows, to perform and manage that relationship (GDPR Art. 6(1)(b) pre-contract / contract; analogous rules may apply in other countries).
• Optional email updates. If you opt in, we process your email and related subscription metadata on the basis of consent (GDPR Art. 6(1)(a)), which you may withdraw at any time without affecting the lawfulness of prior processing.
• Site operation and security. We process technical data where necessary for our legitimate interests in running a secure, reliable website and preventing fraud or abuse (GDPR Art. 6(1)(f)), balanced against your rights.
• Legal compliance. We may process data where required by law—for example tax, trade compliance, or responding to lawful requests from public authorities (GDPR Art. 6(1)(c)).

How we share data and who receives it

• TorkFood personnel. Staff and authorised representatives who need access to handle commercial inquiries and subscriber lists.
• Infrastructure & email providers. Hosting, database, and email-transport services that process data on our instructions (processors). They only receive what is needed to provide the service—for example storing subscriber records in our database or delivering form notifications to our mailbox.
• Professional advisers. Lawyers, auditors, or insurers where required and subject to confidentiality.
• No selling of personal data. We do not sell your personal information to data brokers for money in the sense of “sale” under modern privacy laws.

International transfers

TorkFood is established in Türkiye. Our website and related services may use cloud or email infrastructure in the European Economic Area, the United Kingdom, the United States, or other regions. Where GDPR applies and data is transferred outside the EEA/UK, we rely on appropriate safeguards such as the European Commission’s standard contractual clauses or equivalent mechanisms offered by our providers, unless another legal basis applies.

Retention

• Commercial correspondence. Emails and form-related threads may be kept for as long as needed to complete your request, manage any ongoing relationship, and meet legal, tax, or regulatory record-keeping—then deleted or archived according to internal policy.
• Marketing subscription. We retain subscriber records while your subscription is active or as needed to demonstrate consent and honour unsubscribe choices (including a suppressed or “unsubscribed” state rather than silent deletion in every case).
• Server logs. Typical hosting logs rotate after a limited period defined by our provider; we do not use them for long-term profiling of individual visitors.

Security

We use reasonable technical and organisational measures appropriate to the risk—for example TLS for web traffic, access control on administrative tools, validation and rate limits on public APIs, and separation of optional marketing data in a dedicated database. No method of transmission over the Internet is 100% secure; if you have reason to believe your interaction with us has been compromised, contact us promptly.

Your rights

Depending on where you live, privacy law may grant you rights such as:

• Access to the personal data we hold about you;
• Rectification of inaccurate data;
• Erasure or restriction in certain cases;
• Objection to processing based on legitimate interests;
• Withdrawal of consent for marketing, at any time (easiest via unsubscribe instructions in messages or by emailing us);
• Data portability for information you provided and that we process by automated means under contract or consent, where technically feasible.

To exercise rights, email [email protected] from the address concerned (or attach proof of authority if you act for someone else). We may need to verify identity before disclosing information. If you are in the EU/UK and believe we have not resolved your concern, you may lodge a complaint with your local supervisory authority.

Cookies and similar technologies

Our Site may use cookies or local storage where technically required for basic functionality (for example language or session preferences) or as implemented by our analytics or map embeds. Exact names and durations can change with site updates. You can control cookies through your browser settings; blocking some cookies may limit certain features.

Children

The Site is intended for business users. It is not directed at children, and we do not knowingly collect personal data from anyone under 16 (or the age required in your jurisdiction) through the public forms. If you believe a minor has submitted data, contact us and we will take appropriate steps to delete it.

Automated decision-making

We do not use your personal data on this Site for automated decision-making or profiling that produces legal or similarly significant effects on you.

Changes to this Policy

We may update this Privacy Policy to reflect changes in law, our services, or data practices. Material changes will be highlighted by updating the “Last updated” date at the top and, where appropriate, by a notice on the Site or by email to active subscribers or recent correspondents.

Contact

Questions about this Privacy Policy or our data practices:

• [email protected]
• +905016859058
• Contact page

Related: Email usage explanation · Terms of Service