KoruBeni Privacy Policy
Last updated: March 19, 2026 — Version 3.0.0
KoruBeni ("App", "we", "our") is a personal safety application designed to support its users. This privacy
policy explains what data we collect, how we use it, and how we protect it.
KoruBeni works offline-first. The primary copy of your app data stays on your device and is not sent to a developer-operated cloud backend. Online map tiles, Google Play Billing, and RevenueCat may have their own technical network behavior under their providers' policies.
1. Age Restriction
KoruBeni is intended for users aged 18 and older. Under-18 use is not supported in this release.
2. Data We Collect
a) User-Provided Data
- Emergency contacts: Names and phone numbers of contacts selected from your device
- Profile information: Name (optional, stored on device)
- PIN code: Stored encrypted on-device only, never sent to any server
- Fake call data: Caller name and configuration for the fake call feature, stored on-device only
b) Automatically Collected Data
- Location data: Only when you actively start a location session or trigger an emergency
- Device-side runtime state: Temporary technical state needed for app flows
- Legal consent log: Timestamps and versions of your consent to KVKK and privacy policies, stored on-device only
c) Data We Do NOT Collect
- Anonymous usage statistics
- Server-side crash reports
- Message contents
- Call logs
- Browsing history
- Card or payment credentials (processed by Google Play; not stored by the developer)
No Developer Backend: Safety data is not sent to developer-operated servers or cloud databases. Subscription status, anonymous user ID, purchase events, device/app information, and entitlement data may be processed by Google Play Billing and RevenueCat. Online map tiles are governed by the map provider.
3. Optional Pro Subscription
The app may provide basic free functionality and optional KoruBeni Pro subscription features. Pro purchases, renewals, cancellations, and restore operations are handled through Google Play. RevenueCat may process subscription status, anonymous user ID, purchase events, device/app information, and entitlement data to verify Pro access. Payment and card data is processed by Google Play and is not stored by the developer.
4. How We Use Data
- Start the Android call flow for your designated emergency contact
- Support Safe Walk and check-in flows
- Show local notifications
- Protect app access with PIN authentication
- Simulate on-device fake incoming calls for discreet exit from uncomfortable situations
Important: Your location data is only processed when you start a location session or when an
emergency is triggered. There is no continuous background location tracking.
5. Data Sharing
We do not sell your data to third parties. Safety data is not sent to a developer-operated backend. Subscription verification data may be processed by Google Play Billing and RevenueCat. Third-party network behavior is limited to online map tiles, Google Play Billing, and RevenueCat.
- Emergency contacts: When an emergency is triggered, the Android call flow is started or the dialer is prepared for your selected contact
- Map providers: OpenStreetMap infrastructure may be contacted when map screens are opened
- RevenueCat: May process anonymous user ID, purchase events, device/app information, entitlement status, and related subscription verification data
- Legal requirements: When required by law or court order
6. Emergency Contacts — Third-Party Data Subject Rights
When you add emergency contacts, you store their names and phone numbers on your device. These individuals are also data subjects under KVKK Article 11 and have the following rights:
- Right to be informed: Emergency contacts have the right to know that their data is stored in this app
- Right to request deletion: Emergency contacts may request the removal of their data
- Right to object: Emergency contacts may object to the use of their data
It is the user's responsibility to inform their emergency contacts that their name and phone number are stored in this app and to obtain their consent where applicable. To exercise these rights, the data subject may contact us at the email address listed below.
7. Data Security
- PIN code and first-responder profile information are stored with secure device storage where supported by the operating system
- Emergency contact records are stored in the app's local on-device database
- Fake call settings and optional avatar files are stored locally on the device
- No app data is sent to a developer-operated cloud backend; online map tiles, Google Play Billing, and RevenueCat may have their own technical network behavior
8. Data Retention
- Profile data: Until the user deletes it on the device
- Emergency contacts: Until the user deletes them on the device
- Location data: Used only during active emergency and sharing flows
- Fake call settings and avatar files: Until the user deletes app data on the device
- Legal consent log: Retained on-device for the duration of app usage
9. KVKK Article 10 — Data Controller Disclosure Table
In accordance with KVKK Article 10, the following table discloses the categories of personal data processed, the purposes of processing, and the legal basis for each.
| Data Category |
Purpose |
Legal Basis |
Storage |
| Name, Profile Photo |
User identification within the app |
Explicit consent |
On-device only |
| PIN Code |
App access protection |
Legitimate interest (security) |
Encrypted on-device (Keystore/Keychain) |
| Emergency Contacts (Name, Phone) |
Emergency call flow |
Explicit consent + vital interest (KVKK Art. 5/2-e) |
On-device only |
| Location Data |
Location status during emergency, map, and location sessions |
Explicit consent |
On-device, transient |
| Fake Call Configuration |
Simulating incoming calls for user safety |
Explicit consent |
On-device only |
| Legal Consent Log |
Recording user's KVKK and privacy policy consents with timestamps |
Legal obligation (KVKK Art. 12 accountability) |
On-device only |
No data is transferred to developer-operated servers. The primary copy of app data remains on the user's device. Online map tiles, Google Play Billing, and RevenueCat may have technical network behavior governed by their providers' policies.
10. Your Rights (KVKK Article 11)
- Access: Request access to your data
- Correction: Request correction of inaccurate data
- Deletion: Delete app data by clearing storage or uninstalling the app
- Permission management: Change location, phone, and notification permissions at any
time
- Data portability: Request a copy of your data
- Right to object: Object to processing of your data
- Right to complain: File a complaint with the Personal Data Protection Board (KVKK Kurulu)
11. Children's Privacy
KoruBeni is intended for users aged 18 and older. Under-18 use is not supported in this release.
12. Third-Party Services
- OpenStreetMap: Map display (tile data only, no personal data sent)
- Google Play Billing: Optional Pro subscription purchase, renewal, cancellation, and restore handling
- RevenueCat: Optional Pro subscription verification and entitlement management
Their respective privacy policies apply:
No advertising or third-party analytics SDK is used in this release.
13. Limitation of Liability
KoruBeni is provided "as is" without any warranty, express or implied. To the maximum extent permitted by applicable law:
- The developer shall not be liable for any direct, indirect, incidental, special, or consequential damages arising from the use or inability to use the app
- The total aggregate liability of the developer shall not exceed the total amount paid by the user through Google Play for KoruBeni Pro during the 12 months before the claim, or 0 TL for users without a paid subscription
- This limitation does not apply to damages caused by gross negligence (ağır ihmal) or willful misconduct (kast) in accordance with TBK Article 115
14. Indemnification
You agree to indemnify, defend, and hold harmless the developer from and against any claims, damages, losses, liabilities, costs, and expenses (including reasonable attorneys' fees) arising out of or related to your misuse of the app, violation of this privacy policy, or violation of any applicable law.
15. Force Majeure
The developer shall not be liable for any failure or delay in the performance of obligations due to causes beyond reasonable control, including but not limited to: natural disasters, war, terrorism, government actions, power failures, internet or telecommunications failures, device hardware failures, or operating system changes by device manufacturers.
16. Consumer Protection Notice
6502 Consumer Protection Law Notice: KoruBeni provides basic free functionality and may offer an optional KoruBeni Pro subscription through Google Play. It is not a professional security service, not a substitute for law enforcement (112/155), and does not guarantee protection against any threat. Purchases, renewals, cancellations, and restore operations for Pro are managed through Google Play.
17. Severability
If any provision of this privacy policy is found to be invalid, illegal, or unenforceable by a court of competent jurisdiction, the remaining provisions shall continue in full force and effect. The invalid provision shall be modified to the minimum extent necessary to make it valid and enforceable while preserving its original intent.
18. Policy Changes
We may update this privacy policy from time to time. When significant changes are made, users will be
notified through in-app notifications. Continued use of the app after changes constitutes acceptance of the updated policy.
19. Contact