RepStudio
Protected & Secure

Privacy and Personal Data Protection Policy

Last Updated: 22.01.2026

RepStudio ("We", "Platform") prioritizes the privacy of its users at the highest level. This policy has been prepared in accordance with the Law on Protection of Personal Data No. 6698 ("KVKK") and GDPR standards.

1. Distinction Between Data Controller and Data Processor

RepStudio is a SaaS (Software as a Service) platform. In this context, we have two different roles:

  • For Trainers: We are the Data Controller for the account data you create in your own name.
  • For Clients: The Trainer is the Data Controller for client data (name, measurements, workouts) entered into the system. RepStudio acts as a Data Processor, storing and providing this data only upon the trainer's instruction.

2. Collected Data and Special Categories of Data

To provide our services, we process the following data:

  • Identity and Contact: First name, last name, email, phone number.
  • Financial Data: Subscription and payment history (Credit card data is not stored by us; it is processed directly by the payment provider Iyzico).
  • Health and Physical Information (Special Category Data): Height, weight, fat percentage, workout history, and biometric data entered by trainers. This data is stored only for service performance purposes with high security measures (encrypted).

3. How We Use Data?

Your data is processed for the following purposes:

  • Tracking workouts and generating progress charts.
  • Providing AI-powered "Smart Insights" and performance analyses.
  • Automated billing and payment collection.
  • Appointment reminders (via Email, SMS, or WhatsApp).

4. Data Sharing and Infrastructure Providers

To ensure service quality, we may share your data with the following trusted business partners (Data Recipients):

  • Supabase (Database):Secure and encrypted data storage (EU/USA Servers).
  • Iyzico (Payment):Secure execution of payment transactions.
  • Meta (WhatsApp):Automated messaging based on trainer instructions.
  • Resend/AWS:Email notification services.
  • Legal Obligations:Sharing with official authorities in line with court orders or legal requests.

5. Data Security

Your data is protected with industry-standard SSL/TLS encryption and stored in our database with At-Rest Encryption.

6. Your Rights

Users (Trainers) and relevant persons (Clients) have the right to learn whether their data is being processed, to correct, delete, and learn about third parties to whom their data is transferred, in accordance with KVKK Article 11.

Note: Clients should first direct their data deletion requests to the Trainer they receive services from.

7. Cookies

We use essential (session) cookies for the platform to function and analytical cookies (Google Analytics) to improve the experience.

8. Contact Us

For any questions or requests, you can contact our Data Protection Officer at: privacy@repstudio.fit