COOKIE POLICY

I. Purpose and Scope

Article 1 – The purpose of this Policy is to determine the types of cookies used on the Site, their purposes of use, their legal bases, their retention periods and the principles concerning their management.

II. Legal Basis

Article 2 – This Policy has been prepared upon the basis of Law No. 6698 on the Protection of Personal Data, the guidance of the Personal Data Protection Authority on cookie practices, and the relevant provisions of Directive (EU) 2002/58 and Regulation (EU) 2016/679.

III. Definitions

Article 3 – In the application of this Policy, “Cookie” means a small text file placed on the user's device by a website; “Session cookie” means a temporary cookie deleted when the browser is closed; “Persistent cookie” means a cookie that remains on the device for a certain period; “First-party cookie” means a cookie placed directly by the Site; and “Third-party cookie” means a cookie placed by service providers other than the Site.

IV. General Principle

Article 4 – No cookies for advertising, marketing or cross-site tracking are used in the public part of the Site. Site analytics are provided by the cookieless Cloudflare Web Analytics service, which produces only aggregate and anonymous statistics.

V. Strictly Necessary (Technical) Cookies

Article 5 – A limited number of strictly necessary technical cookies are used to perform the essential functions of the Site and to ensure its security.

Of these, the “eb_session” cookie is an httpOnly, first-party session cookie used solely to maintain the session securely within the administration panel, and is not placed on the public visitors of the Site.

Furthermore, within the scope of the bot-protection and security (Turnstile) service, strictly necessary cookies may be placed by the service provider Cloudflare solely for security purposes.

VI. Analytics and Marketing Cookies

Article 6 – There are no cookies placed on the Site for analytics or marketing purposes. Should this change, this Policy will be updated and, where necessary, the explicit consent of the user will be obtained.

VII. Legal Basis

Article 7 – As strictly necessary cookies are required for the provision of the Site and the maintenance of its security, they rest upon the legal bases of legitimate interest and the performance of the service and are, by their nature, not subject to the requirement of explicit consent. Where a non-essential cookie is to be used, prior explicit consent is obtained to the extent required by law.

VIII. Retention Periods of Cookies

Article 8 – Session cookies are deleted when the browser is closed or the session ends. Strictly necessary security cookies are retained for the period determined by the relevant service provider and required by the security purpose.

IX. Management and Refusal of Cookies

Article 9 – Through the settings of the browser they use, the user may view and delete cookies, block particular cookies, or refuse all cookies.

The user is aware that, should strictly necessary cookies be blocked, certain parts or functions of the Site may not operate properly, and that the user shall be responsible for the consequences arising therefrom.

X. Third-Party Services

Article 10 – The hosting, security and bot protection of the Site are provided by the service provider Cloudflare. Security cookies that may be placed within the scope of these services are also subject to Cloudflare's own policies.

XI. Limitation of Liability

Article 11 – The data controller shall not be liable, to the maximum extent permitted by the applicable law, for the consequences arising from the cookie practices of third-party service providers or from the user's own browser settings.

XII. Amendment and Entry into Force

Article 12 – This Policy may be updated unilaterally by the data controller where deemed necessary; the current version is published on this page. Any question or application may be addressed to hello@enesbahadir.design. This Policy enters into force as of the date of entry into force shown in the masthead.