Vybeo Privacy Policy
Last Updated: 20 Temmuz 2025
Vybeo At Vybeo ("We", "Platform" or "Service"), we place great importance on user privacy. This Privacy Policy explains how your personal data is collected, used, shared, and protected in accordance with Türkiye's Law on the Protection of Personal Data (KVKK), the European Union's General Data Protection Regulation (GDPR), and the California Consumer Privacy Act (CCPA).
Types of Data Collected
- Account Information: Email, password, name, gender, and country information during registration
- Connection Data: IP address, estimated location, device information
- Chat Data: Session start/end times, chat duration, text messages
- Usage Data: Connection timestamps, status (active, chatting, searching for partner)
- Moderation Data: Reported chats, ban history
- Spotify Data: Linked Spotify account, listening history, artists and tracks played
Purposes of Data Use
- To provide random matching and video chat service
- To ensure platform security and prevent abuse
- To improve and personalize the user experience
- To fulfill legal obligations
- To provide customer support and resolve issues
Data Protection & Security
We take the following measures to secure your personal data:
- Encryption: All sensitive data (passwords) are encrypted using industry‑standard bcrypt
- Access Control: Only authorized personnel have limited access to data
- Regular Audits: Security measures are regularly audited and updated
- Data Minimization: Only necessary data is collected and stored
Data Sharing & Transfer
Your personal data:
- Is shared with third parties only with your explicit consent or when legally required
- Is transferred outside the EU only with adequate safeguards under GDPR
- Is processed under Article 9 of KVKK for transfers within Turkey
Data Retention Periods
| Data Type |
Retention Period |
Legal Basis |
| Account Information |
Until account deletion |
Contractual obligation |
| Chat Sessions |
3 months from last chat |
Legal compliance |
| Connection Data |
24 hours |
Technical requirement |
| Reported Content |
1 year |
Legal obligation |
| Spotify Data |
Until Spotify account unlinking |
User consent |
User Rights
legals.privacyPolicy.userRights.gpdr.title
- Right to access your data
- Right to correction and erasure (right to be forgotten)
- Right to restrict processing
- Right to data portability
- Right to object to automated decision‑making
KVKK (for Turkish Users)
- Right to request information about data processing
- Right to correction of incomplete/incorrect data
- Right to deletion or destruction of data
- Right to have processed data transferred
- Right to object to processing activities
Children’s Privacy
Vybeo is not suitable for users under 16 years of age. If we become aware we have collected personal data from someone under 16 without verification, we will delete it immediately.
If you have any questions about this Privacy Policy, please contact us at [email protected].
Vybeo Terms of Use
Last Updated: 20 Temmuz 2025
Please read these Terms of Use carefully before using the Vybeo platform ("Platform" or "Service"). By using the Platform, you agree to these terms.
Acceptable Use
By using the Platform, you agree to:
- Treat other users with respect and courtesy
- Share content that complies with laws
- Provide real and accurate personal information
- Refrain from activities that jeopardize platform security
Prohibited Use
The following activities are strictly prohibited on the Platform:
- Sharing hate speech, discrimination, or harassment
- Sharing sexually explicit or obscene material
- Distributing others’ personal information without consent
- Engaging in spam, advertising, or commercial activity
- Attempting to damage the platform’s technical infrastructure
- Being under 16 years old or inviting users under that age
Account Responsibilities
Account Security
You are responsible for the confidentiality and security of your account information. Do not share your password and choose a strong password.
Account Activity
You may delete your account at any time. Account deletion will remove personal data according to our Privacy Policy retention periods.
Intellectual Property
You represent that you own or have the right to share content you upload. You grant Vybeo a worldwide, royalty‑free, transferable license to display and distribute such content on the platform.
Limitation of Liability
The Platform is provided “AS IS” and “AS AVAILABLE.” Vybeo is not liable for:
- Accuracy or appropriateness of user-generated content
- Uninterrupted, secure, or error-free service
- Outcomes of interactions between users
- Links to third-party sites or services
Legal Compliance & Governing Law
Applicable Law
These Terms and your use of the platform are governed by the laws of the Republic of Turkey.
Dispute Resolution
Any disputes arising from these terms will first seek amicable resolution; if unresolved, courts and enforcement offices in Istanbul shall have jurisdiction.
If you have any questions about these Terms of Use, please contact us at [email protected].
Vybeo Data Flow Diagram
Below is a diagram showing the data flow and processing within the Vybeo platform. It illustrates our data management practices in compliance with KVKK, GDPR, and CCPA.
1. Data Collection
- Data provided by the user during registration (email, password, name, gender)
- Technical data automatically collected (IP address, device information, estimated location)
- Chat interaction data generated during sessions (messages, start/end times)
2. Data Processing
- Processing user preferences for matching algorithm
- Behavioral analysis for security and moderation
- Anonymized usage statistics for service improvement
3. Data Storage
- Passwords stored hashed with bcrypt
- Sensitive data stored encrypted with AES‑256
- Retention periods defined according to data type
4. Data Sharing
- No third-party sharing except when legally required
- Use of anonymized, aggregated data for analysis
- Contracts with GDPR‑compliant data processors
5. Data Deletion
- Data deletion upon user request
- Automated data cleanup when retention period expires
- Deletion of all personal data when account is removed
Security Measures
Encryption
Industry‑standard encryption methods are used during transmission and storage.
Access Control
Strict permission management and RBAC are enforced.
Regular Audits
Annual security audits and penetration tests are conducted.
For more information about our data processing procedures, please refer to our Privacy Policy or contact our Data Protection Officer at [email protected].