This translation is provided for information purposes only. The binding and authoritative version of this document is the Turkish text.

KRATS COOKIE POLICY

Effective Date: 17 May 2026 Data Controller: KRATS Yazılım Faaliyetleri (Sole Proprietorship) — "KRATS" Scope: kratsonline.com (website) and portal.kratsonline.com (customer portal)


1. WHAT IS A COOKIE?

A cookie is a small text file stored on your device by a website via your browser. Cookies are used for session management, remembering preferences, and usage analytics.

Under the EU ePrivacy Directive (Cookie Law), the GDPR, and the Turkish KVKK Art. 5/2-f (legitimate interest framework), non-essential cookies require your explicit consent (cookie banner).


2. CATEGORIES OF COOKIES WE USE

2.1 STRICTLY NECESSARY COOKIES (Consent NOT required)

Essential for the website / portal to function. Cannot be disabled.

Cookie NameProviderPurposeDuration
__cf_bmCloudflareBot traffic prevention30 minutes
cf_clearanceCloudflareCAPTCHA verification state30 days
krats_sessionKRATSSession management (login)Session
krats_csrfKRATSCSRF security tokenSession
cookie_consentKRATSCookie preference record12 months

2.2 FUNCTIONAL COOKIES (Consent REQUIRED)

Remember your preferences.

Cookie NameProviderPurposeDuration
krats_themeKRATSLight/dark theme preference12 months
krats_langKRATSLanguage preference (TR/EN)12 months

2.3 ANALYTICS COOKIES (Consent REQUIRED — opt-in)

Anonymous usage statistics.

Cookie NameProviderPurposeDuration
None currentlyKRATS does NOT use Google Analytics, Plausible, etc. Only server-side anonymised logs.

NOTE: In the future, KRATS may integrate Plausible (privacy-friendly, cookieless analytics). When implemented, this policy will be updated and consent banner will request opt-in.

2.4 MARKETING COOKIES

KRATS does NOT use marketing / advertising cookies. No Facebook Pixel, Google Ads, etc.


3. THIRD-PARTY COOKIES

Third PartyWhereDataTheir Policy
CloudflareAll pagesDDoS / bot protection — IP, browser fingerprint (anonymous)cloudflare.com/privacy
Paddle (payment)/checkout, /billingPayment session (only during checkout)paddle.com/privacy

4. MANAGING YOUR COOKIE PREFERENCES

4.1 KRATS Cookie Banner

When you first visit the website / portal, a cookie preference banner offers:

  • Strictly necessary only — Only technically required cookies
  • Accept all cookies — Including functional + analytics
  • Manage preferences — Category-by-category selection

Your preference is stored in the cookie_consent cookie (12 months).

4.2 Browser Settings

You can also manage cookies via your browser:

  • Chrome: Settings → Privacy → Site Settings → Cookies
  • Firefox: Preferences → Privacy & Security → Cookies
  • Safari: Preferences → Privacy → Manage Cookies
  • Edge: Settings → Cookies and Site Permissions

WARNING: Deleting / blocking strictly necessary cookies may prevent the website / portal from functioning (you may not be able to log in).


5. GDPR / KVKK RIGHTS

For personal data processed via cookies, you have rights under GDPR Art. 15–22 and KVKK Art. 11:

  • Find out which cookies are active
  • Withdraw consent (via banner or browser)
  • Lodge a complaint with your supervisory authority

Requests: support@kratsonline.com | KEP: hatice.gucuk@hs03.kep.tr


6. CHANGES

When this policy is updated:

  • New version is published at kratsonline.com/cookie-policy
  • If cookie categories change, a new consent banner is shown
  • Version history is maintained at the bottom of this policy

Version History:

  • v1.0 — 17 May 2026 — Initial publication

7. CONTACT

KRATS (KRATS Yazılım Faaliyetleri — Sole Proprietorship)


APPENDIX: COOKIE BANNER TEXT (Portal Display)

KRATS values your privacy.

KRATS uses essential cookies for session management and security. May we use
functional cookies to remember your preferences? We do not use personalised
advertising or tracking cookies.

[Strictly necessary]  [Accept all cookies]  [Manage preferences]

Details: kratsonline.com/cookie-policy