Privacy Policy

1. Data controller

Under Turkey's Personal Data Protection Law (KVKK No. 6698), the data controller is tweetloom, operated as an individual venture. Contact: info@tweetloom.com. You may email this address for written requests (including the data controller's identity details).

2. Data we collect

• Account information: your email address and display name.
• If you connect it, your X (Twitter) account information: username, public profile data, and the access tokens that let us publish content to your account.
• The content you create, your generation history, and the tweet samples you use for style training.
• Payment information: your card details are NOT stored by us; payment is processed by our merchant of record, Creem. Only a transaction summary (amount, date, plan) reaches us.
• Basic usage and log data: to run the service and prevent abuse.
• Visit analytics: cookieless, non-identifying aggregate page statistics.

3. How we use data

• To provide the service and generate content in your style.
• To manage your subscription and credits.
• To keep your account secure and prevent abuse.
• To send you important service-related notifications (e.g. welcome, disconnection alerts, opt-in summaries).

4. International transfers and service providers

To run the service, some of your data is processed by service providers whose servers are located abroad (EU/US). By using the service, you give explicit consent to this transfer (KVKK Art. 9). Provider categories and roles:

• Hosting, database, and authentication infrastructure
• AI model providers (only the text in a generation request is processed)
• Payment institution (merchant of record — your card details are not held by us)
• Transactional email delivery
• Public X (Twitter) content reading service
• Error tracking and cookieless visit analytics

These providers process your data only to provide the service; it is not sold or shared for advertising. You can request the current list of provider names that data is transferred to under KVKK Art. 11 at info@tweetloom.com.

5. Cookies

We use only STRICTLY NECESSARY cookies to maintain your session and provide the core functions of the service. We don't use advertising/tracking cookies; our visit analytics are cookieless.

6. Data retention and deletion

• Your account and content data: kept for as long as your account is active.
• When you delete your account: your account, the content you created, style trainings, sources, and settings are deleted IMMEDIATELY and permanently (Settings → delete account — self-service).
• Financial records (payment/credit transaction summaries): may continue to be kept, with the identity link severed (anonymized), as required by legal obligations.
• Server logs: cyclically deleted within 90 days at most.

7. Your rights (KVKK Art. 11)

You have the right to access your personal data, learn whether it is processed, request its correction and deletion, know the third parties it is transferred to, and demand remedy if you suffer harm. You can delete your account yourself instantly from the Settings page; for other requests, simply email info@tweetloom.com — answered within 30 days at the latest.

8. Security

To protect your data, we use encrypted connections (HTTPS), row-level access control (RLS), and industry-standard security practices. The security of your data is a priority for us.

9. Contact

You can send privacy-related questions to info@tweetloom.com.