Home › Privacy Policy

Privacy Policy

Last updated: 10 November 2025

1. Who We Are

Anatolian Sweet Haven Ltd. (“Anatolian Sweet Haven”, “we”, “us”, or “our”) is a Turkish company registered at Gazipaşa Bulvarı No:12, Konak, 35210 Izmir, Turkey. We operate the website anatoliansweets.com, manage in-person tastings at our Izmir atelier, and fulfil gifting, wholesale, and corporate confectionery services.

2. Scope

This policy explains how we collect, use, store, and share personal information from website visitors, boutique guests, newsletter subscribers, and customers. It covers data gathered online, by phone, by email, and at our physical locations. By using our services, you acknowledge you have read and understood this policy.

3. Data We Collect

We collect the following categories of personal information:

  • Identity data: name, company name, pronouns, and event role when provided via forms or email.
  • Contact data: email address, telephone number, billing address, delivery address, and social media handles used to contact us.
  • Transaction data: purchased products, tasting bookings, payment reference numbers (processed via PCI-compliant partners), and invoice history.
  • Preference data: flavour interests, dietary notes, newsletter topics, and marketing consent selections.
  • Technical data: IP address, device type, browser, pages viewed, referral source, and cookie identifiers collected through analytics cookies and logs.
  • Correspondence: emails, form submissions, and tasting notes exchanged with our concierge team.

4. How We Use Your Data

We use personal data for the following purposes and legal bases:

  • Service delivery (contract): processing purchases, organising tastings, preparing bespoke gift hampers, and communicating order updates.
  • Customer support (legitimate interest): responding to enquiries, troubleshooting issues, and documenting conversations to improve our service.
  • Marketing (consent): sending newsletters, event invitations, and product updates when you opt in; you may opt out at any time.
  • Compliance (legal obligation): maintaining tax, accounting, and consumer regulation records; satisfying product traceability requirements.
  • Analytics (legitimate interest/consent): measuring website performance, evaluating campaign effectiveness, and enhancing user experience. Non-essential cookies are only set after consent.
  • Security (legitimate interest/legal obligation): preventing fraud, monitoring suspicious activity, and protecting our digital infrastructure.

5. Data Retention

We retain order and invoicing records for seven (7) years to comply with Turkish commercial law. Enquiry logs and tasting notes are kept for three (3) years to support repeat requests. Newsletter consent records are maintained until you unsubscribe or request deletion. When retention periods expire, data is securely deleted or anonymised.

6. Sharing Your Information

We do not sell personal data. We share information only with vetted partners who help deliver our services:

  • Payment gateways processing secure card and bank transactions (we never store full card numbers).
  • Courier and cold-chain logistics providers fulfilling deliveries domestically and internationally.
  • Email marketing platforms managing subscriber communications and consent logs.
  • IT, hosting, and security vendors who maintain our website and booking systems.
  • Professional advisers (accountants, legal counsel) bound by confidentiality.

Each partner operates under written agreements requiring GDPR-level safeguards. We may disclose data if required by law, regulation, or court order.

7. International Transfers

Some partners operate within the European Economic Area. When we transfer personal data outside Turkey or the EEA, we rely on adequacy decisions, Standard Contractual Clauses, or equivalent safeguards to protect your information.

8. Cookies & Tracking

Our website uses necessary cookies to maintain session security, remember cookie choices, and support form submissions. With your consent we also set analytics cookies (Google Analytics 4) to understand traffic patterns. You can adjust preferences in the cookie banner or via your browser settings. Details on cookie categories, lifetimes, and management are outlined in our Cookie Policy.

9. Data Security

We store digital records on encrypted servers with role-based access, multi-factor authentication, and routine vulnerability testing. Paper documents are held in locked cabinets within restricted areas of our atelier. Employees receive annual privacy training and must report suspected incidents immediately.

10. Your Rights

Subject to applicable law, you may:

  • Request confirmation of whether we process your personal data and obtain a copy.
  • Ask us to correct inaccurate or incomplete information.
  • Request deletion of data when it is no longer required or when you withdraw consent.
  • Object to processing based on legitimate interests or direct marketing.
  • Restrict processing while we verify contested data.
  • Receive your data in a portable format for transfer to another controller.

To exercise any right, email [email protected]. We will respond within 30 days, or explain if additional time is needed. You may also lodge a complaint with the Turkish Personal Data Protection Authority (KVKK) or your local supervisory authority.

11. Children’s Privacy

Our services are intended for individuals aged 16 and above. We do not knowingly collect personal data from children. If you believe we have inadvertently collected such data, contact us for prompt deletion.

12. Updates to This Policy

We may revise this policy to reflect operational changes or regulatory updates. The revision date appears at the top of the page. Significant changes will be communicated via email to subscribed customers or highlighted on our website.

13. Contact

Questions, requests, and complaints can be directed to our Data Protection Officer: [email protected] or mailed to Anatolian Sweet Haven Ltd., GazipaĹźa Bulvarı No:12, Konak, 35210 Izmir, Turkey. Telephone: +90 538 838 2512.