-
1
Morfoz's KVKK status
Morfoz is designed to be fully KVKK-compliant for businesses registered in Turkey. Morfoz is the data processor; you are the data controller.
-
2
Data processing region
Turkish customer data is processed in data centers in Turkey or the EU. No transfer to the US or outside Turkey/EU (without written consent).
-
3
Privacy notice
If you collect customer data through your AI assistant, you must show a KVKK privacy notice at the start of the chat. Morfoz's "Settings > Legal" section provides a customizable ready template.
-
4
Explicit consent
Explicit consent must be obtained if sensitive data (health, biometric) will be processed. Morfoz can be configured to automatically ask for the customer's "I accept" within the flow.
-
5
Veri silme talepleri
If a customer says "delete my data", you can delete all conversation history and personal data for that customer with a single click in the panel. The process must be completed within 30 days.
-
6
VERBİS registration
Businesses with annual revenue over 25M TL or 50+ employees must register with VERBİS (Data Controllers Registry). This is your responsibility; Morfoz provides the required info under "Settings > Legal Documents.nts" section.
💡 Tips
- For your annual audit, Morfoz signs a DPA (Data Processing Agreement) with you.
- In the event of a data breach, Morfoz notifies you within 24 hours; you must report to the KVK Authority within 72 hours.