K
Kayistra← Home

Privacy Policy

Son güncelleme: May 1, 2026

Kayistra is a SaaS platform hosted in Germany (Hetzner), covered by EU/GDPR standards. Payments are processed by Paddle.com Market Limited — card details never reach Kayistra servers.

1. Data We Collect

Account Information

  • Name, surname and email address (at registration)
  • Password (stored as a one-way hash — never in plain text)
  • Registration date and last login time

Platform Usage Data

  • Ozon Seller API key (stored encrypted, used only for Ozon API calls)
  • Product data you process: source URL, title, price, stock status, images
  • Store configuration: profit margin, shipping settings, currency preferences
  • Sync logs and error records

Technical Data

  • IP address and browser info (for security and debugging)
  • Session token (JWT, stored only in browser localStorage)

Payment Data

All payments are processed by Paddle.com Market Limited. Credit card, IBAN, or payment instrument details are never processed or stored on Kayistra servers. For Paddle's privacy policy: paddle.com/legal/privacy

2. How We Use Your Data

  • Delivering the platform service (product import, price tracking, Ozon sync)
  • Account security and authentication
  • Subscription management and billing (via Paddle)
  • Debugging and technical support
  • Compliance with legal obligations

Your data is never sold or shared for marketing purposes.

3. Data Storage and Security

  • Server location: Germany (Hetzner Cloud) — within EU/GDPR scope
  • Database: PostgreSQL with encrypted connections (TLS)
  • API keys: Encrypted at the application level
  • Transport: All traffic over HTTPS (TLS 1.2+)
  • Retention: While your account is active; removed within 30 days of a deletion request

4. Chrome Extension

The Kayistra Chrome Extension reads only the active tab's product page. It does not access your browsing history, other tabs, or personal data. Extension privacy policy: kayistra.com/privacy-extension

5. Your GDPR Rights

If you reside in the EU or Turkey, you may exercise the following rights:

  • Right of access: Learn what data we process about you
  • Right to rectification: Correct inaccurate data
  • Right to erasure: Delete your account and all associated data
  • Right to portability: Receive your data in machine-readable format
  • Right to object: Object to certain processing activities

To exercise your rights: info@kayistra.com

6. Cookies

The Kayistra web app uses JWT tokens for session management (localStorage). No third-party advertising or tracking cookies are used. Anonymous usage analytics may be collected on the landing page.

7. Contact

Privacy questions: info@kayistra.com