Privacy Policy

Last updated: June 2026

1. Introduction

At Scholway ("we", "our"), we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains what data we collect when you visit scholway.com ("Site") and use our services, how we use it, and what your rights are.

2. Data We Collect

2.1 Account Information

When you register, we collect your email address and password. Optionally, we also store your full name.

2.2 Usage Data

Content you create on the platform — such as favorite programs, application tracking information, and calendar events — is stored securely in our database.

2.3 Cookies

Our site uses cookies for the following purposes:

  • Session cookies: Used by Supabase Auth to maintain your login state.
  • Preference cookies: Your language preference (TR/EN) is stored in your browser via localStorage.
  • Advertising cookies: Google AdSense uses cookies to display ads based on user interests.
  • Analytics cookies: Anonymous statistics that help us understand site traffic.

See our Cookie Policy page for the full list and management options.

2.4 Form Data

When you use the contact form we process your name, email, subject, and message; when you request a Tanıdık/consulting session we process your name, email, country, and stated goals; when you apply to become a Tanıdık (consultant) we process the education and experience details you provide. This data is used solely to handle the relevant request.

2.5 Server Logs

For security and debugging, standard server logs (IP address, request time, browser information) may be kept for short periods; IP addresses are processed temporarily for abuse prevention such as rate limiting.

3. Third-Party Advertising (Google AdSense)

This site uses third-party advertising services through Google AdSense. Google and its partners may use cookies to serve ads based on your prior visits to this site and other sites on the internet.

To opt out of personalized advertising, you can visit Google Ad Settings. You can also opt out of third-party ad use at aboutads.info.

For more information about Google's privacy practices, visit: policies.google.com/privacy

4. How We Use Your Data

  • To manage your account and provide our services
  • To provide personalized features such as favorite programs, application tracking, and calendar
  • To improve the platform and debug issues
  • To comply with legal obligations

We do not share your data with third parties for marketing purposes.

5. Data Security

All data is stored encrypted on Supabase (PostgreSQL). Session information is protected with industry-standard JWT tokens. We take reasonable technical measures to protect your data; however, no transmission over the internet is 100% secure.

5A. Data Sharing and International Transfers

We never sell or rent your data for marketing. Data is shared only with the infrastructure providers we rely on to deliver the service:

  • Supabase: database and authentication infrastructure.
  • Resend: transactional email (contact replies, application notifications).
  • Google: analytics and advertising services.
  • Stripe: payment processing (when active) — card details go directly to Stripe, not to us.

These providers may operate servers outside your country; your data may therefore be transferred abroad to the extent required to provide the service and under the providers' data processing agreements. By creating an account and using our forms you acknowledge this transfer.

5B. Retention Periods

  • Account data: for as long as your account is active; permanently deleted within a reasonable period upon request.
  • Favorites, application tracking, calendar: stored with your account and removed when it is deleted.
  • Contact/consulting form records: for as long as needed to resolve the request and any potential disputes.
  • Server/security logs: short-term, on a rolling basis.

5C. Children's Privacy

Scholway is aimed at prospective higher-education students and does not knowingly collect personal data from children under 16. If you become aware of such data being processed, let us know and we will delete it.

6. Your Rights (GDPR)

You have the following rights:

  • Right to access your data
  • Right to request correction of your data
  • Right to request deletion of your data ("right to be forgotten")
  • Right to request restriction of data processing
  • Right to data portability

To exercise these rights, email us at [email protected]. Requests are answered free of charge within 30 days after identity verification. If your request is rejected or you find the response insufficient, you may lodge a complaint with the Turkish Personal Data Protection Authority (KVKK) or, if you reside in the EU, with your local supervisory authority.

7. Changes to This Policy

We may update this policy from time to time. Changes take effect as soon as they are published on this page. Registered users will be notified by email of significant changes.

8. Contact

For privacy-related questions: [email protected]

Gizlilik Politikası | Scholway | Scholway