Security & Privacy

All your data is protected with 256-bit AES encryption. Server communications use SSL/TLS.

The Google Ads connection is read-only. No changes are made to your campaigns.

Your data is never shared with third parties or used for advertising.

Our servers are hosted in EU data centers and run on a GDPR / KVKK compliant infrastructure.

Access logs are retained for 90 days and automated monitoring systems watch for unauthorized access attempts.

Under GDPR (for EU users) and Turkey's Law No. 6698 on the Protection of Personal Data you have the following rights: to learn whether your personal data is processed, to access processed data, to request correction or erasure.

Send your requests to merhaba@moof.com.tr with the subject line 'GDPR / KVKK Request'.

Requests are answered within 30 days. Identity verification may be required.

For detailed information see our /kvkk page.

To make your account more secure an SMS-based two-factor authentication (2FA) feature is available.

Activate it from 'Account Settings → Security → Two-Factor Authentication'.

When 2FA is on, every login sends an SMS code to your phone number.

If you cannot access your phone number, contact merhaba@moof.com.tr for account recovery.

You can request that all your personal data is erased. This includes full deletion of your account.

For your request send an email to merhaba@moof.com.tr with the subject line 'Data Deletion Request'.

Requests are fulfilled within 30 days under GDPR / KVKK and you are notified.

Deletion is irreversible. Remaining credits are not refunded.