This privacy notice describes how we collect, use and protect your personal data when you visit or use our website. We operate a marketplace and ERP service; we collect personal data to manage accounts, process transactions, verify sellers and improve our services.
The controller responsible for your personal data is Lasse Tramann, Westring 423 (ZfE), 24118 Kiel, Germany, email: hi@tnxapi.com.
We collect information you provide when you create an account, list or purchase goods, or contact us (such as your name, address, payment details, tax number and goods descriptions). We also collect technical information automatically when you use our site, including IP address, browser type, device identifiers, cookies and usage data.
We use your data to operate the marketplace, provide ERP functions, verify and monitor sellers, fulfil contracts, process payments, comply with legal obligations and protect our legitimate interests, including fraud prevention and marketing. Where required by law (e.g., for cookies or marketing communications), we rely on your consent.
We may share your data with service providers (e.g., payment processors, hosting providers, logistics partners) and authorities when required. Your data may be transferred to countries outside your residence, including the United States and EU. When we transfer personal data, we rely on adequacy decisions, standard contractual clauses or your explicit consent.
We store personal data as long as necessary to fulfil the purposes described or to comply with legal retention obligations and then delete or anonymise it. We implement technical and organisational measures to protect your information, including encryption (SSL/TLS) and access controls. Nevertheless, transmission over the internet is never completely secure.
You may have rights under applicable data protection laws, including to request access, rectification, deletion or portability of your personal data, or to object to or restrict certain processing. Please contact us at hi@tnxapi.com. Your rights may depend on your location and the applicable law. If you reside in the European Economic Area or UK, the GDPR applies. If you reside in Turkey, the KVKK applies, as described below. We may decline requests where permitted by law or where we have overriding legitimate grounds.
For users located in Turkey, we process personal data in accordance with the Turkish Personal Data Protection Law (KVKK). We inform you of the categories of data collected, purposes of processing, methods of collection and your rights, including access, correction, deletion and data portability. We will delete or anonymise your data when the reasons for processing no longer exist. Transfers abroad will only take place where sufficient safeguards exist or with your explicit consent.
We may update this policy from time to time to reflect changes in our practices or applicable law. We will post the updated policy on this page and, where required, seek your consent.