Back to home

Privacy Policy

Last updated: January 2026

Turalogin ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our authentication service.

1. Information We Collect

1.1 Information You Provide

  • Account Information: Email address when you create a Turalogin account
  • Application Information: Names and configurations of applications you register
  • Payment Information: Billing details if you subscribe to paid plans (processed by third-party payment processors)

1.2 Information Collected Automatically

  • Log Data: IP addresses, browser type, operating system, referring URLs, and timestamps
  • API Usage Data: Authentication requests, response times, and error rates
  • Device Information: Device type and unique device identifiers

1.3 Information from End Users

When end users authenticate through your application using Turalogin, we process:

  • Email addresses for verification purposes
  • One-time passwords (OTPs) or magic link tokens
  • IP addresses and user agents for security and logging

2. How We Use Your Information

We use the collected information to:

  • Provide, maintain, and improve our authentication services
  • Send verification emails and authentication codes
  • Monitor and analyze usage patterns and trends
  • Detect, prevent, and address technical issues and security threats
  • Communicate with you about service updates and support
  • Comply with legal obligations

3. Data Sharing and Disclosure

We do not sell your personal information. We may share information with:

  • Service Providers: Third parties that help us operate our service (e.g., email delivery, cloud hosting)
  • Your Applications: Authentication tokens and user identifiers as part of the service
  • Legal Requirements: When required by law or to protect our rights
  • Business Transfers: In connection with a merger, acquisition, or sale of assets

4. Data Retention

We retain your information for as long as your account is active or as needed to provide services. API logs are retained indefinitely for security and debugging purposes but may be anonymized after 90 days. You may request deletion of your account and associated data at any time.

5. Data Security

We implement industry-standard security measures including:

  • Encryption in transit (TLS) and at rest
  • Secure password hashing for admin accounts
  • API key hashing (keys are never stored in plain text)
  • Regular security audits and monitoring
  • Access controls and authentication for internal systems

6. Your Rights

Depending on your location, you may have the right to:

  • Access the personal information we hold about you
  • Correct inaccurate or incomplete information
  • Delete your personal information
  • Export your data in a portable format
  • Object to or restrict certain processing activities
  • Withdraw consent where processing is based on consent

7. International Data Transfers

Your information may be transferred to and processed in countries other than your own. We ensure appropriate safeguards are in place, including standard contractual clauses approved by relevant authorities.

8. Children's Privacy

Our service is not intended for children under 16. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

9. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at:

  • Email: privacy@turalogin.com