PRIVACY POLICY FOR BAYBORA.NET.TR
(Copy-paste this into your WordPress Privacy Policy page)
Who we are
Our website address is: https://baybora.net.tr.
We also operate X48, an AI-powered business communication platform that provides automated messaging services through Meta platforms including Instagram and WhatsApp Business Platform on behalf of our clients.
Comments
When visitors leave comments on the site we collect the data shown in the comments form, and also the visitor’s IP address and browser user agent string to help spam detection.
An anonymized string created from your email address (also called a hash) may be provided to the Gravatar service to see if you are using it. The Gravatar service privacy policy is available here: https://automattic.com/privacy/. After approval of your comment, your profile picture is visible to the public in the context of your comment.
Media
If you upload images to the website, you should avoid uploading images with embedded location data (EXIF GPS) included. Visitors to the website can download and extract any location data from images on the website.
Cookies
If you leave a comment on our site you may opt-in to saving your name, email address and website in cookies. These are for your convenience so that you do not have to fill in your details again when you leave another comment. These cookies will last for one year.
If you visit our login page, we will set a temporary cookie to determine if your browser accepts cookies. This cookie contains no personal data and is discarded when you close your browser.
When you log in, we will also set up several cookies to save your login information and your screen display choices. Login cookies last for two days, and screen options cookies last for a year. If you select “Remember Me”, your login will persist for two weeks. If you log out of your account, the login cookies will be removed.
If you edit or publish an article, an additional cookie will be saved in your browser. This cookie includes no personal data and simply indicates the post ID of the article you just edited. It expires after 1 day.
Embedded content from other websites
Articles on this site may include embedded content (e.g. videos, images, articles, etc.). Embedded content from other websites behaves in the exact same way as if the visitor has visited the other website.
These websites may collect data about you, use cookies, embed additional third-party tracking, and monitor your interaction with that embedded content, including tracking your interaction with the embedded content if you have an account and are logged in to that website.
Data collected through our platform services
In addition to website data, we collect and process the following data through our X48 platform services:
Account Information: Name, email address, phone number, company name of our business clients.
Authentication Data: Google or Facebook account information when social login is used.
Messaging Data: Inbound and outbound message content processed through Instagram Graph API and WhatsApp Business Platform, including message metadata (timestamps, sender/recipient information) and media files. This data is processed on behalf of our business clients to provide automated messaging and customer communication services.
WhatsApp Business Data: WhatsApp Business Account information, phone numbers, message templates, and business profile information of our clients who use the WhatsApp Business Platform through our services.
Usage and Technical Data: Platform usage statistics, session information, IP addresses, browser type, and device information.
How we use your data
We use the data collected through our platform for the following purposes:
- Account creation and authentication
- Providing and improving our automated messaging and communication services
- Processing and delivering messages through Instagram Graph API and WhatsApp Business Platform on behalf of our clients
- AI-powered customer communication and call management
- Customer support
- Security and fraud prevention
- Compliance with legal obligations
Who we share your data with
If you request a password reset, your IP address will be included in the reset email.
We do not sell personal data to third parties. Data may be shared with:
- Our service providers: Firebase, Google Cloud, and Supabase for hosting, authentication, and data storage.
- Meta Platforms, Inc.: To provide messaging services through the Instagram Graph API and WhatsApp Business Platform. Messages sent and received through these platforms are subject to Meta’s own data policies.
- Legal authorities when required by law.
- Third parties only with your explicit consent.
How long we retain your data
If you leave a comment, the comment and its metadata are retained indefinitely. This is so we can recognize and approve any follow-up comments automatically instead of holding them in a moderation queue.
For users that register on our website (if any), we also store the personal information they provide in their user profile. All users can see, edit, or delete their personal information at any time (except they cannot change their username). Website administrators can also see and edit that information.
For platform service data: Messaging data and account information are retained as long as the client’s account is active. Upon account termination, data is retained for up to 30 days before permanent deletion, unless longer retention is required by law.
What rights you have over your data
If you have an account on this site, or have left comments, you can request to receive an exported file of the personal data we hold about you, including any data you have provided to us. You can also request that we erase any personal data we hold about you. This does not include any data we are obliged to keep for administrative, legal, or security purposes.
Data deletion requests
You can request deletion of your data through the following methods:
- By email: Send a deletion request to x48@baybora.net.tr
- In-platform: Use the “Delete My Account” option in your Account Settings
Upon receiving your request, all personal data, messaging history, and account information will be permanently deleted within 30 days. Data previously shared with Meta platforms (Instagram, WhatsApp) is subject to Meta’s own data retention and deletion policies.
Where your data is sent
Visitor comments may be checked through an automated spam detection service.
Platform data may be processed and stored using Firebase (Google Cloud) servers, Supabase servers, and transmitted through Meta’s Instagram Graph API and WhatsApp Business Platform infrastructure.
Data security
We implement industry-standard security measures to protect your data, including SSL/TLS encryption, Firebase Authentication security infrastructure, database-level access controls, and regular security audits.
Changes to this policy
We may update this privacy policy from time to time. Significant changes will be communicated through our website or platform.
Contact
For questions about this privacy policy, please contact us at: x48@baybora.net.tr
Last updated: February 2026