Cyber Online Privacy Policy
Last Updated: February 12, 2025 | Effective Date: February 12, 2025
At Cyber Online ("Application", "we", "our", "us"), we are committed to protecting the privacy and security
of our users. This Privacy Policy explains how we collect, use, store, protect, and share your personal
information when you use the Cyber Online mobile application.
By downloading, installing, and using the Application, you agree to the terms outlined in this Privacy Policy.
If you do not agree with this policy, please do not use the Application.
Scope: This policy applies to all versions of the Cyber Online mobile application across
all platforms (Android, iOS, Windows) and all connected services, including CyberChat, CyberDesk, and CyberSupport.
1. Data Controller
The entity responsible for processing your personal data is:
- Company Name: Cyber Otomasyon
- Website: www.cyberotomasyon.com
- Application: Cyber Online (com.cyberAutomation.online)
- Contact Email: info@cyberotomasyon.com
2. Information We Collect
We may collect the following categories of personal and non-personal data when you use the Application:
2.1. Information You Provide Directly
| Data Type |
Description |
Requirement |
| Identity Information |
First name, last name, username |
Required |
| Contact Information |
Email address, phone number (including country code) |
Required |
| Account Information |
Password (stored in encrypted form), user role |
Required |
| Farm/Coop Information |
Farm names, coop names, device identifiers (QR codes) |
Required |
| Messaging Data |
Messages sent via CyberChat, chat history |
Optional |
| Payment Information |
Subscription plan, payment method type, payment amount |
Required for Pro Plan |
2.2. Information Collected Automatically
| Data Type |
Description |
| Device Information |
Device model, operating system version, unique device identifiers |
| Location Data |
Country code from phone number (direct GPS data is not collected) |
| Usage Data |
Application open/close times, feature usage statistics |
| Sensor Data |
Temperature, humidity, air quality, pressure, feed/water levels from IoT devices |
| Alarm Data |
Alarm history, alarm settings, triggered notifications |
| Push Notification Token |
Firebase Cloud Messaging (FCM) token information |
| Log Data |
Error logs, application performance data |
2.3. Information from Third-Party Services
- Firebase Authentication: Authentication tokens, session information
- Firebase Cloud Messaging: Notification delivery status, device tokens
- Cloud Firestore: CyberChat messaging data (real-time synchronization)
3. How We Use Your Information
We process your data for the following purposes:
3.1. Core Service Delivery
- User account creation, authentication, and authorization
- Farm and coop management (creation, editing, deletion)
- Real-time monitoring and display of IoT sensor data
- Operating the alarm and notification system
- Generating data tables and reports
- Providing remote access (CyberDesk) services
3.2. Communication and Support
- Providing CyberChat messaging services
- Delivering CyberSupport live support services
- Sending push notifications (alarm alerts, system notifications)
- SMS verification and password reset operations
3.3. Subscription and Payment Management
- Managing Free, Pro, and Trial subscription plans
- Tracking additional user and device quotas
- Recording payment transactions and billing
3.4. Service Improvement
- Monitoring and improving application performance
- Detecting, diagnosing, and resolving errors
- Enhancing user experience
4. Legal Basis for Processing
Your personal data is processed under the following legal bases in accordance with the Turkish Personal Data Protection Law (KVKK, Law No. 6698) and the EU General Data Protection Regulation (GDPR):
- Performance of Contract: Data processing necessary for providing Application services
- Consent: For marketing communications, optional notifications, and analytics
- Legitimate Interest: For service security, fraud prevention, and service improvement
- Legal Obligation: To comply with applicable laws and regulations
5. Data Retention and Security
5.1. Retention Periods
| Data Category |
Retention Period |
| Account Information |
Duration of active account + 30 days after account deletion |
| Sensor Data |
Based on subscription plan (Free: 7 days, Pro: 365 days, Trial: 30 days) |
| Messaging Data |
Chat history retained while account is active |
| Alarm History |
Varies by subscription plan |
| Log Data |
Maximum 90 days |
| Payment Records |
10 years as required by law |
5.2. Security Measures
We implement the following technical and organizational measures to protect your data:
- Encryption: All data transmissions are encrypted using SSL/TLS (HTTPS) protocol
- Password Security: User passwords are encrypted using one-way hash algorithms and never stored in plain text
- Token-Based Authentication: Secure session management using JWT (JSON Web Tokens)
- Local Storage: Sensitive data is stored in encrypted form (Hive) on your device
- Access Control: Role-based authorization system (Administrator, Farm User, Coop User)
- Firebase Security: Database access rules enforced through Firebase Security Rules
- Regular Updates: Security patches and updates are applied regularly
6. Data Sharing
Your personal data is not shared with third parties except in the following circumstances:
6.1. Service Providers
| Service Provider |
Purpose |
Data Shared |
| Google Firebase |
Authentication, notifications, messaging |
Identity information, device tokens, message content |
| Server Infrastructure Provider |
API hosting, data storage |
All application data (encrypted) |
6.2. Legal Requirements
We may share your data with authorized authorities in the following situations:
- Court orders or legal requests
- National security and public order requirements
- Fraud or security breach investigations
Important: Your personal data is never sold, rented, or shared with third parties for
advertising or marketing purposes under any circumstances.
7. Cookies and Local Storage
The Cyber Online mobile application does not use web cookies. However, the following local storage technologies are used:
- Hive (Local Database): User preferences, cache data, and session information are stored locally on your device
- SharedPreferences: Application settings (language preference, theme selection, notification settings) are stored on your device
- Firebase Local Cache: Offline access cache for messaging data
8. Your Rights
Under KVKK and GDPR, you have the following rights:
- Right to Information: Learn whether your personal data is being processed
- Right of Access: Request access to your processed personal data
- Right to Rectification: Request correction of incomplete or inaccurate data
- Right to Erasure (Right to be Forgotten): Request deletion of your personal data
- Right to Restriction: Request limitation of data processing in certain circumstances
- Right to Data Portability: Request your data in a structured, machine-readable format
- Right to Object: Object to the processing of your data
- Automated Decision-Making: Object to decisions based solely on automated processing
To Exercise Your Rights: You can view and edit your data from within the Application under
Settings > Profile. For account deletion or data portability requests, please contact
info@cyberotomasyon.com.
Your requests will be responded to within 30 days at the latest.
9. Children's Privacy
Cyber Online is not intended for individuals under the age of 18. We do not knowingly collect personal
information from children under 18. If we become aware that a child has provided us with personal data,
we will take immediate steps to delete such information. Parents or guardians who believe their child has
provided information to us may contact us directly.
10. International Data Transfers
Due to certain third-party services used in the Application (Firebase/Google), your data may be processed
on servers located outside of Turkey. These transfers are carried out subject to appropriate safeguards
under Article 9 of KVKK and Article 46 of GDPR. Google is certified under the EU-US Data Privacy Framework.
11. Push Notifications and Communications
The Application may send the following types of notifications:
- Alarm Notifications: Critical sensor alerts, temperature/humidity anomalies (essential for operational safety)
- System Notifications: Connection status changes, subscription reminders
- Message Notifications: New messages received via CyberChat
You can manage your notification preferences from the Settings section within the Application or from your
device's notification settings. It is recommended not to disable critical alarm notifications, as they are
essential for the safety of your livestock and equipment.
12. Account Deletion
Account Deletion Request (Important): To request deletion of your account and all
associated personal data, please send an email to
info@cyberotomasyon.com. Your request will be processed
within 30 days. Upon deletion, your profile information, farm/coop data, alarm history,
CyberChat message history, and all other personal data stored in the application will be permanently
removed. Data subject to legal retention obligations (such as payment records) is automatically deleted
at the end of the applicable legal retention periods.
When you request account deletion:
- All your personal information (name, surname, email, phone) will be permanently deleted
- Your farm and coop data will be anonymized or deleted
- Your CyberChat message history will be deleted
- Your push notification subscription will be cancelled
- All cached data on your local device will be cleared
Account deletion is irreversible. Data subject to legal retention obligations (such as payment records)
will be automatically deleted at the end of the applicable legal retention period.
13. Third-Party Links
The Application may contain links to third-party websites or services. When you follow these links,
the privacy policies of those sites will apply. We are not responsible for the content or privacy practices
of third-party sites.
14. Changes to This Policy
We may update this Privacy Policy from time to time. When significant changes are made:
- An in-app notification will be sent
- The updated policy will be published on this page
- The "Last Updated" date will be revised accordingly
Your continued use of the Application after changes are published constitutes your acceptance of the
updated policy.
15. Contact Us
For questions, requests, or complaints regarding this Privacy Policy, you may reach us through the
following channels:
For requests under KVKK, please contact us at the email address above along with documents verifying
your identity. Your requests will be processed free of charge within 30 days at the latest.
16. Governing Law and Jurisdiction
This Privacy Policy is governed by the laws of the Republic of Turkey. In case of disputes, the courts
of the Republic of Turkey shall have jurisdiction. You also retain the right to file a complaint with the
Turkish Personal Data Protection Authority (KVKK Board).