VERİBİLGİ
A Veridizayn Technology Platform
Menu
Products Hardware About References Blog Contact
Support Privacy Policy

Privacy Policy

Last updated: 2026-02-05

1) Scope and Roles

This policy explains the principles regarding the processing of parent/student data within the eduSIS Kolej Mobile App. In this service, the data controller is the relevant school/institution; Veribilgi acts as the data processor (service provider) on behalf of the school/institution. Data is processed and stored on the servers of the relevant school/institution.

Note: The app includes records about the student for parental supervision purposes. The school/institution provides the required notices within its own processes and policies.

2) Account Management and Authentication

  • No in-app account creation: Accounts are created and managed by the school/institution.
  • Login method: Authentication is performed using school code, username, and password.

For security purposes, user identity (e.g., user ID) and session activity may be written to technical logs. Passwords should not be stored in plain text; they should be processed using appropriate security methods only for verification.

3) Types of Data Processed

Depending on the features provided by the app, the following types of data may be processed:

  • Balance information: card/account balance, balance transactions (if any)
  • Entry/turnstile records: date-time and entry/exit point information
  • Spending limit / restricted items: limit definitions, restrictions, and records related to enforcing these restrictions
  • Technical data: app version, device/OS information, IP address and/or device identifiers (for security and operational logs)

Location data (GPS) is not processed. Camera/gallery permissions are not used. Push notifications: no push token is processed.

4) User Actions

The app may enable users not only to view information but also to update certain settings / take actions (e.g., managing spending limits/restrictions). Records related to these actions may be kept for security and audit purposes.

5) Biometric Data

The mobile app does not collect or store biometric data (fingerprint/face template). If biometric authentication exists, it is carried out within the processes of the school/institution on the institution’s own devices and infrastructure.

6) Payments / Balance Top-Up

  • Balance top-up is performed by redirecting to a payment page via an in-app WebView.
  • Card details are not transmitted to Veribilgi servers and are not processed by the app; payments are completed on the secure infrastructure of the payment service provider.

For accounting/chargeback processes, transaction data such as bank name, order number, date, and amount may be retained. Payment service provider: Payten.

7) Third Parties and Transfers

No third-party SDKs are used for analytics, crash reporting, or advertising. For payment transactions, data may be transferred to providers such as Payten only to the extent necessary for the payment to be completed. Other than this, sharing data with third parties is not intended.

8) Retention Periods

  • Backups: system backups may be retained.
  • Transactional logs: may be retained for certain periods due to legal obligations.
  • Other data: is retained according to the contract with the school/institution and the institution’s policies.

9) Account Deletion and Data Requests

The app may not provide a direct “delete account” initiation feature. Account deletion and data requests are handled via the school/institution or through support channels. For detailed steps: Account Deletion and Privacy Choices.

10) Security

Access control, encryption, and logging mechanisms are applied to prevent unauthorized access. For operational security, technical logs such as IP address/device identifiers and user identity may be kept.

11) Contact

For privacy-related requests: bilgi@veridizayn.com For general support: Support.