Legal
Privacy Policy
This policy explains what little personal data CoinSocialBase collects, why, and what your rights are.
Last updated: July 11, 2026
1. Data Controller
The data controller for CoinSocialBase is the operator of the CoinSocialBase service based in Türkiye ("we", "us"). For any privacy matter, contact coinsocialbase@gmail.com, coinsocialbase@outlook.com. This policy is provided in accordance with the Turkish Personal Data Protection Law No. 6698 ("KVKK") and, where applicable to visitors from the European Economic Area or the United Kingdom, the GDPR / UK GDPR.
2. Our Approach: Minimal Data
CoinSocialBase is designed to work with as little personal data as possible. We do not build behavioral profiles of individual users, we do not track your activity across other websites, and we do not sell personal data. The market and social statistics shown on the site are derived from public social media and market data about cryptocurrencies — not from our users.
3. What We Collect
Account data (only if you sign up): your email address and a hashed password (we never store your password in readable form), plus the preferences you save: favorite coins, notification choices, language, and theme.
Push notification data (only if you enable it): the browser subscription token needed to deliver the alerts you choose.
Technical logs: like almost every website, our servers automatically record short-lived technical logs (IP address, browser type, requested page, timestamp, error details) strictly for security, abuse prevention, and debugging.
Newsletter (optional, when launched): if you opt in to our email newsletter, we store your email address and your consent record for that purpose. Every newsletter includes an unsubscribe link.
We do not ask for and you should not send us: private keys, seed phrases, wallet recovery phrases, exchange passwords, national identity documents, or any similar sensitive information.
4. Why We Process It (Legal Bases)
| Purpose | Data | Legal basis (KVKK / GDPR) |
|---|---|---|
| Creating and operating your account | Email, hashed password, preferences | Performance of a contract (KVKK 5/2-c; GDPR 6/1-b) |
| Sending push alerts you enabled | Push subscription | Performance of a contract / your request |
| Security, abuse and fraud prevention, debugging | Technical logs | Legitimate interest (KVKK 5/2-f; GDPR 6/1-f) |
| Email newsletter | Explicit consent (opt-in); withdrawable at any time | |
| Complying with legal obligations | Any of the above | Legal obligation (KVKK 5/2-a; GDPR 6/1-c) |
5. Advertising
The site may display advertisements. If we work with an advertising network that uses cookies or similar technologies, those technologies will only run with your consent via the cookie banner, and this policy and the Cookie Policy will be updated to name the provider before such advertising goes live. As of the "last updated" date above, we do not share personal data with advertisers.
6. Who We Share Data With
We may disclose information if required by law, legal process, regulators, or competent authorities, or where reasonably necessary to protect CoinSocialBase, our users, or the integrity of the Service. We never sell personal data.
7. International Transfers
Our servers and providers may be located outside Türkiye. Where personal data is transferred abroad, we rely on the mechanisms permitted under KVKK Article 9 (including your explicit consent where required, or transfers to destinations covered by adequacy decisions or appropriate contractual safeguards) and, for EEA/UK users, on GDPR transfer mechanisms such as adequacy decisions or standard contractual clauses.
8. Retention
- Account data: kept while your account is active; deleted or anonymized within 30 days after you delete your account, except where a longer period is required by law.
- Technical/security logs: kept up to 12 months, then deleted or anonymized (Turkish Law No. 5651 requires hosting-related traffic records to be retained for a statutory period).
- Newsletter consent records: kept while you are subscribed and for a reasonable evidence period after unsubscribing.
- Backups: encrypted backups are rotated on a fixed schedule; deleted data leaves backups as they expire.
9. Security
We use reasonable technical and organizational safeguards: passwords are stored hashed, connections are encrypted (HTTPS), and access to systems is restricted. No system is perfectly secure; please use a strong, unique password.
10. Your Rights
Under KVKK Article 11 you may, at any time: learn whether we process your personal data; request information about that processing; learn the purpose and whether data is used accordingly; know the third parties to whom data is transferred; request correction of incomplete or inaccurate data; request deletion or destruction of your data; request notification of corrections/deletions to third parties; object to results produced exclusively by automated systems; and claim compensation for damage caused by unlawful processing.
If GDPR/UK GDPR applies to you, you additionally have the rights of access, rectification, erasure, restriction, portability, and objection, and the right to withdraw consent at any time without affecting prior processing.
To exercise any right, email coinsocialbase@gmail.com, coinsocialbase@outlook.com. We respond within 30 days (KVKK) or one month (GDPR). You also have the right to lodge a complaint with the Turkish Personal Data Protection Authority (KVKK Kurumu) or, for EEA/UK users, with your local supervisory authority.
11. Cookies
See our Cookie Policy for details on the cookies and local storage we use and how to manage them.
12. Children
CoinSocialBase is not intended for anyone under 18. We do not knowingly collect personal data from minors. If you believe a minor has provided personal data, contact coinsocialbase@gmail.com, coinsocialbase@outlook.com and we will delete it.
13. Changes to This Policy
We may update this policy as our features or legal requirements change. The latest version will always be on this page with the updated date; material changes will be announced on the site or by email where practical.