FinansZ
Login

Privacy Policy

Last updated: May 14, 2026

1. Introduction

At Paynion, we take the privacy and security of your personal data seriously. This Privacy Policy explains what personal data we collect, how we use it, with whom we share it and how you can exercise your rights when you use the FinansZ application and our website (the "Service").

This policy has been prepared in accordance with the Turkish Personal Data Protection Law No. 6698 ("KVKK"), the European Union General Data Protection Regulation ("GDPR") and other applicable legislation.

2. Data Controller

The data controller for this policy is:

  • Company: Paynion Tech Bilişim Hizmetleri A.Ş.
  • Product: FinansZ
  • Address: Barbaros, Sebboy St. No:4/1 Inner Door No:1, 34758 Atasehir/Istanbul, Türkiye
  • Email:info@paynion.com
  • Website:www.paynion.com

3. Data We Collect

We collect the following categories of personal data to provide and improve the Service:

3.1 Account and Identity Information

Information we collect to create your account, authenticate you and contact you.

  • First name and last name
  • Email address and phone number
  • Company name, title, tax office and tax number
  • Password (stored only in one-way encrypted form)

3.2 Financial Transaction Data

Data related to the financial and operational transactions you perform through FinansZ.

  • Invoices, dispatch notes, e-documents and accounting records
  • Bank account, transaction and reconciliation data
  • POS, virtual POS and other payment channel transaction records
  • Customer, supplier and current account information

3.3 Device and Usage Data

Technical data automatically collected to keep the Service secure and running properly.

  • IP address, device identifier (device ID), operating system and version
  • Browser type, app version, language and timezone preference
  • Login records, usage statistics and features used
  • Crash and error logs, performance data

4. Purposes of Processing

We process your personal data only for the following specific, explicit and legitimate purposes:

  • To create your account, verify your identity and provide the Service
  • To form and perform the agreement and to operate subscription / payment processes
  • To provide customer support and to evaluate requests / complaints
  • To ensure the security of the Service and to detect fraud and abuse
  • To measure the performance of the Service, to improve it and to develop new features
  • To comply with legal obligations and respond to requests from official authorities
  • Marketing and informational communications, where you have consented

5. Legal Basis for Processing

We process your personal data based on the following legal grounds under KVKK Article 5 and GDPR Article 6:

  • The processing is necessary for the conclusion or performance of a contract
  • Compliance with our legal obligations
  • Processing is necessary for the establishment, exercise or protection of a right
  • Processing is necessary for our legitimate interests, provided that your fundamental rights and freedoms are not harmed
  • Your explicit consent (for matters that require consent, such as marketing communications)

6. Sharing of Data

We share your personal data only with the following parties and for specific purposes:

  • Infrastructure, hosting and cloud service providers we work with to deliver the Service
  • Business partners we cooperate with in areas such as payments, e-invoicing, e-archive and banking integrations
  • Suppliers that provide customer support, analytics and error monitoring tools
  • Authorised public authorities and courts where required by law

We do not sell your personal data to third parties.

7. International Data Transfers

Some of our service providers may be located outside of Türkiye. In such cases, your personal data may be transferred abroad in accordance with KVKK Article 9 and the relevant provisions of GDPR, based on standard contractual clauses, adequacy decisions or your explicit consent.

8. Retention Period

We retain your personal data for as long as required by the purposes of processing and for the minimum retention periods set out in applicable legislation (such as the Tax Procedure Law and Turkish Commercial Code).

When the retention period expires or the purpose of processing ceases, your personal data is deleted, destroyed or anonymised.

9. Data Security

We apply industry-standard technical and organisational measures to protect your personal data against unauthorised access, loss or alteration:

  • End-to-end TLS encryption during data transmission
  • Encrypted storage of sensitive data
  • Role-based access control and audit logs
  • Regular security tests, penetration tests and vulnerability management

10. Your Rights

Under KVKK Article 11 and GDPR you have the following rights:

  • To learn whether your personal data is being processed
  • To request information about your processed personal data
  • To learn the purpose of processing and whether it is used in accordance with the purpose
  • To know the third parties in Türkiye or abroad to whom your data is transferred
  • To request correction of incomplete or inaccurate data
  • To request the deletion, destruction or anonymisation of your data
  • To request restriction of processing and data portability

To exercise these rights, please contact us at info@paynion.com. We will respond to your requests within 30 days at the latest.

11. Mobile App Permissions

The FinansZ mobile application may request certain permissions from the operating system for operational and security purposes (e.g. internet access, notifications, session storage). All requested permissions are clearly displayed to you when you start using the related feature.

You can change or revoke app permissions at any time from your device's system settings. Removing certain permissions may cause the related features to stop working.

12. Cookies

We use cookies on our website for session management, preference remembering and analytics. You can manage your cookie preferences from the cookie notice shown on your first visit or from your browser settings.

13. Children's Privacy

Our Service is not intended for users under the age of 18. If we discover that we have collected personal data from a person under 18, we will delete it without undue delay.

14. Changes to this Policy

We may update this Privacy Policy from time to time. For material changes, we will notify you via the app or to your registered email address. The current version is always published on this page.

15. Contact

If you have any questions about this policy or your personal data, you can contact us:

  • Email:info@paynion.com
  • Address: Barbaros, Sebboy St. No:4/1 Inner Door No:1, 34758 Atasehir/Istanbul, Türkiye