Security & Compliance
Data security and legal compliance form the foundation of our platform. We protect your data with features that meet GDPR and KVKK requirements.
Legal Compliance
General Data Protection Regulation
Technical and organizational measures required for protecting personal data of EU citizens. Consent management, data portability and right to erasure support.
Personal Data Protection Law
Infrastructure compliant with personal data processing requirements in Turkey. Privacy notice, explicit consent and data retention period management.
Security Features
Consent Management
Collect explicit consent from visitors. Consent types (marketing, analytics) can be managed separately.
Data Retention Periods
Location-based configurable retention periods. Automatic deletion operations.
Data Anonymization
Anonymization of personal information for analytics data. Privacy-protected reports.
Data Export
Export visitor data in JSON or CSV format. Right to data portability support.
Right to Erasure
Permanently delete visitor data upon request. GDPR Article 17 compliance.
Audit Logs
Record of all data access and modification operations. Ready for compliance audits.
Data Processing
Collected Data
- Contact information (phone, email)
- Device information (MAC, device type)
- Session data (duration, connection time)
- Consent records
Processing Purposes
- Providing WiFi access
- Network security and monitoring
- Service improvement (optional)
- Marketing (with consent)
Data Security
- HTTPS encrypted communication
- Database encryption
- Access control and authorization
- Regular security updates
Important Note
OBIFI provides the technical infrastructure required for GDPR and KVKK compliance. However, full compliance depends on your business's data processing policies, privacy notices and organizational processes. We recommend working with your legal advisor to ensure full compliance.