Who are we
In this section, you should specify your site address, as well as the name of the company, organization or person behind it, and some accurate contact information.
The amount of information you may be required to show will vary depending on local or national employment laws. For example, you may need to show a physical address, registration address or your company registration number.
Recommended text:
Our website address: http://wpremiumtheme.com
What personal information do we collect and for what purposes?
In this section, you should note the personal data you collect from users and site visitors. This may include personal data such as name, email address, personal account preferences, transaction data such as purchasing information, and technical data such as information about cookies.
You should also specify the collection and storage of sensitive personal data, such as health-related data.
In addition to listing what personal data you collect, you should also state why you are collecting it. These statements must indicate either the legal basis or the active consent given by the user for data collection and storage.
Personal data is not created simply by a user’s interaction with your site. Personal data is also generated from technical processes such as contact forms, comments, cookies, analytics and third-party embedded content.
By default, WordPress does not collect any personal information about visitors and only collects data displayed on the User Profile screen by registered users. However, some of your plugins may collect personal data. You must include the relevant information below.
Comments
In this subsection you should note what information is captured through comments. We noted the data WordPress collects by default.
Suggested text: When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser slug text to help spam detection.
An anonymized text created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using the service. The privacy policy of the Gravatar service is at https://automattic.com/privacy/. After your comment is approved, your profile picture will be visible to everyone along with your comment.
Environment
In this subsection you should note what information can be disclosed by users who can upload media files. All uploaded files are generally public.
Recommended text: If you upload images to the website, you should avoid uploading images that contain embedded location data (EXIF GPS). Website visitors can download and extract any location information from images on the website.
Contact forms
WordPress does not include a contact form by default. If you’re using a contact form plugin, use this subsection to note what personal data you receive when someone submits a form and how long you keep it for. For example, you may state that you retain contact form submissions for a certain period of time for customer service purposes, but do not use information submitted for marketing purposes.
Cookies
In this subsection you should list the cookies your website uses, including those saved by your plugins, social media and analytics. We have provided the cookies that WordPress installs by default.
Suggested text: If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies remain for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will save several cookies to save your login information and your screen display choice. Login cookies last for two days and screen options cookies last for a year. If you select the “Remember me” option, your login will persist for two weeks. If you log out of your account, login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie contains no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other sites
Recommended text: Articles on this site may contain embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in exactly the same way as if the visitor had visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Analysis
In this subsection, you should note which analytics package you are using, how users can opt out of analytics tracking, and a link to your analytics provider’s privacy policy, if available.
Varsayılan olarak WordPress herhangi bir analiz verisi toplamaz. Ancak birçok web barındırma hesabı bazı anonim analiz verileri toplar. Ayrıca analitik hizmetleri sağlayan bir WordPress eklentisi de yüklemiş olabilirsiniz. Bu durumda, bu eklentiden buraya bilgi ekleyin.
Verinizi kimlerle paylaşıyoruz
Bu bölümde ortaklar, bulut tabanlı hizmetler, ödeme aracıları ve üçüncü taraf hizmet sağlayıcıları dahil olmak üzere site verilerini paylaştığınız tüm üçüncü taraf sağlayıcıları adlandırmanız ve listelemeniz gerekir ve hangi veriyi neden paylaştığınızı belirtmelisiniz. Mümkünse kendi gizlilik politikalarına bağlantı da verin.
Varsayılan olarak WordPress kişisel bilgilerinizi hiç kimse ile paylaşmaz.
Verilerinizi ne kadar süre tutarız
Bu bölümde, web sitesi tarafından toplanan veya işlenen kişisel verileri ne kadar süreyle sakladığınızı açıklamalısınız. Her veri kümesini ne kadar süreyle ve neden sakladığınızı gösteren bir çizelge göstermek sizin sorumluluğunuzda olsa da, bu bilgilerin burada listelenmesi gerekir. Örneğin, altı ay boyunca iletişim formu girişlerinizi, bir yıl için analiz kayıtlarını ve on yıl boyunca müşteri satın alma kayıtlarını tuttuğunuzu söylemek isteyebilirsiniz.
Önerilen metin:Bir yorum bırakırsanız, yorum ve meta verileri süresiz olarak saklanır. Böylece, takip eden yorumlarınızı denetim kuyruğunda tutmak yerine otomatik olarak tanıyabilir ve onaylayabiliriz.
Web sitemize kayıt yaptıran kullanıcılar için (varsa) kullanıcı profilinde sağladıkları kişisel bilgileri de saklarız. Tüm kullanıcılar kişisel bilgilerini istedikleri zaman görebilir, düzenleyebilir veya silebilir (kullanıcı adı değiştirme hariç). Web sitesi yöneticileri de bu bilgileri görebilir ve düzenleyebilir.
Verileriniz üzerindeki haklarınız neler
Bu bölümde, kullanıcılarınızın verilerinin üzerindeki haklarını ve bu haklara nasıl başvurabileceklerini açıklamalısınız.
Önerilen metin:Bu sitede bir hesabınız veya yorumlarınız varsa, bize sağladığınız veriler dahil olmak üzere, hakkınızda tuttuğumuz kişisel verilerin dışa aktarılmış bir dosyasını almayı isteyebilirsiniz. Ayrıca, hakkınızda tuttuğumuz tüm kişisel verileri de silmeyi isteyebilirsiniz. Bu, idari, yasal veya güvenlik amaçlarına uymak zorunda olduğumuz hiçbir veriyi içermez.
Verinizi nereye gönderiyoruz
Bu bölümde, site verilerinizin Avrupa Birliği dışındaki tüm transferlerini listelemeli ve bu verilerin Avrupa veri koruma standartlarına göre korunan araçlarını açıklamanız gerekir. Bu, web barındırma, bulut depolama veya diğer üçüncü taraf hizmetlerini içerebilir.
European data protection law requires that data about European residents transferred outside European countries be protected in accordance with the same standards as within Europe. So, in addition to listing where the data goes, you need to explain how these standards are met by yourself or third-party providers, whether through an agreement such as a privacy shield, model clauses in your contracts, or binding corporate rules.
Suggested text: Visitor comments may be checked through an automatic spam detection service.
Your contact information
In this section you must provide a method of contact for privacy concerns. If you must retain a data protection officer, include their name and full contact details here as well.
Additional info
If you use your site for commercial purposes and engage in a more complex collection or processing of personal data, you must include the following information in your privacy policy in addition to the information we have previously discussed.
How we protect your data
In this section, you should explain what measures you take to protect your users’ data. This may include technical measures such as encryption, security measures such as two-step authentication, and measures such as staff training on data protection. If you have conducted a privacy impact assessment, you can also indicate it here.
What data breach procedures do we have in place?
In this section, you should explain what procedures you have in place to deal with potential or actual data breaches, such as internal reporting systems, communication mechanisms, or error notifications.
Which third parties do we receive data from?
If your website receives user-related data from third parties, including advertisers, this information should be included in the third-party data privacy notice section.
What type of automated decision-making and/or profiling we do with user data
If your website has a service that involves automated decision-making, for example allowing customers to apply for credit or having their data collected into an advertising profile, you should include information about how this information is used; You should communicate what decisions are made with the data collected and what rights users have over those decisions without human intervention.
Ministry of Industry’s obligation to inform the public
If you are a member of a regulatory industry or subject to additional privacy laws, you may be required to disclose this information here.