Blur Lune Privacy Policy

Last Updated: 03.09.2025

Blur Lune. (“Blur Lune” or the “Company”) values the privacy of its users (“Users”) and is committed to protecting personal data in accordance with the Turkish Personal Data Protection Law No. 6698 (“KVKK”) and the European Union General Data Protection Regulation (“GDPR”).

1. Collected Data

Blur Lune may collect the following types of data to provide and improve the Service:

  1. Registration Data:
    • Email address, username, and password (passwords are securely hashed).
  2. Payment Data:
    • Credit/debit card information is processed directly by payment providers (Stripe, iyzico, PayTR, etc.); Blur Lune does not store these details.
  3. Analytics and Usage Data:
    • IP address, device type, browser information, operating system, page views, usage statistics, cookies, and similar tracking technologies.
    • Analytics data may be collected through third-party providers (e.g., Google Analytics).
  4. Communication Data:
    • Emails, support requests, and feedback provided by the User.

2. Purposes of Data Processing

Collected data is processed solely for the following purposes:

  • Account and Membership Management: User registration, login verification, account management, and responding to support requests.
  • Payment Processing: Handling subscription fees and conducting billing processes.
  • Service Improvement: Enhancing Service performance, improving user experience, and identifying technical issues.
  • Legal Obligations: Complying with legal requirements, responding to legal requests, and providing evidence in potential disputes.

3. Data Sharing

Blur Lune may share personal data only in the following circumstances:

  • Payment Providers: Necessary data for payment processing (Stripe, iyzico, PayTR, etc.).
  • Analytics and Performance Providers: Third-party services like Google Analytics may receive anonymized or aggregated data only.
  • Legal Authorities: When required by law or necessary for legal proceedings.

4. Data Retention

  • Registration and account data are retained for the duration of the membership and as legally required.
  • Analytics data may be retained in anonymized or aggregated form for long-term statistical analysis and service improvement.
  • Payment data is not stored by Blur Lune; retention is subject to payment providers’ policies.

5. Data Security

  • Blur Lune implements reasonable technical and administrative measures to prevent unauthorized access, loss, disclosure, alteration, or destruction of personal data.
  • All user passwords are securely encrypted.
  • In the event of a data breach, Users are notified in accordance with legal obligations.

6. International Data Transfers

  • Blur Lune may transfer User data internationally due to the operation of the Service and third-party service providers.
  • Such transfers are conducted in compliance with GDPR and KVKK, ensuring adequate safeguards.

7. User Rights

Users have the following rights under KVKK and GDPR:

  1. Right of Access: Request access to their personal data.
  2. Right to Rectification: Request correction of inaccurate or incomplete data.
  3. Right to Erasure: Request deletion of data (subject to legal retention obligations).
  4. Right to Object: Object to data processing activities.
  5. Right to Data Portability: Request provision of data in a structured and readable format.

All requests can be submitted to Blur Lune via noreply@blurlune.com.

8. Cookies and Similar Technologies

  • Blur Lune uses cookies and similar technologies to enhance Service functionality and personalize the user experience.
  • Users may refuse or delete cookies via browser settings; however, some Service features may be limited as a result.