This Privacy Policy describes how Karut Interactive ("Developer," "Company," "we," "us," or "our") collects, uses, discloses, stores, and otherwise processes personal data when you use the application Looply (the "App"), our related websites, customer-support channels, and any other services that link to this Privacy Policy (collectively, the "Services").
Please read this Privacy Policy carefully. By using the Services, you acknowledge that your personal data may be processed as described herein.
App Name: Looply
Developer Name: Karut Interactive
Developer Address
ADEM YAVUZ MAH. ULUKENT SK. NO: 27 İÇ KAPI NO: 8 ÜMRANİYE / İSTANBUL
Türkiye
Data Controller / Privacy Contact
Karut Interactive
ADEM YAVUZ MAH. ULUKENT SK. NO: 27 İÇ KAPI NO: 8 ÜMRANİYE / İSTANBUL, Türkiye
Email: info@looply-joydream.online
Turkish Data Protection Authority
Kişisel Verileri Koruma Kurumu (KVKK)
Website: kvkk.gov.tr
This Privacy Policy applies when you:
The table below lists the categories of personal data we may collect or receive. We update this table whenever new features, SDKs, permissions, or data types are introduced.
| Category | Examples | Purpose |
|---|---|---|
| Account & Profile Information | Name, username, email address, account ID, user ID, login credentials, authentication data, profile details | Account creation, authentication, service delivery |
| Device & Technical Information | Device ID, advertising ID (GAID/IDFA), Android ID, app instance ID, push token, IP address, device model, OS version, language, time zone, network type, carrier, app version, SDK version | App functionality, security, fraud prevention, analytics |
| Approximate or Precise Location | Country, region, IP-based location, GPS-based or network-based location if enabled | Offer eligibility, fraud prevention, localization, compliance |
| Installed Applications | List or metadata of apps installed on your device, where permitted and required by a specific SDK or anti-fraud process | Fraud prevention, attribution, offer validation |
| Usage & Activity Data | App interactions, session times, clicks, offer completions, survey interactions, game activity, rewards history, virtual currency balance and transactions | Service delivery, rewards tracking, personalization, analytics |
| Advertising & Attribution Data | Advertising identifiers, campaign IDs, attribution events, conversion signals, ad engagement data | Ad measurement, attribution, campaign optimization, fraud prevention |
| Crash, Diagnostic & Log Data | Crash reports, ANRs, error logs, performance data, diagnostics, security logs | App stability, debugging, quality improvement, security |
| Payment, Reward & Redemption Data | Reward requests, gift card selections, transaction records, payout status, fraud review results | Reward fulfillment, accounting, fraud prevention, dispute handling |
| Communications & Support Data | Emails, support messages, attachments you send us, feedback responses | Customer support, dispute resolution, product improvement |
| Sensitive Personal Data | Precise geolocation or other sensitive categories only where required for a feature and permitted by law | Feature-specific use with consent where required |
| Third-Party Partner Data | Data received from advertising, offer wall, survey, analytics, attribution, and anti-fraud partners, including conversion status and risk signals | Rewards validation, fraud prevention, attribution, analytics |
Where GDPR applies, we rely on the corresponding legal bases under GDPR Article 6 and, where special categories of data are processed, Article 9.
We may share personal data with the following categories of recipients:
Service providers that process personal data on our behalf are expected to process such data only under our instructions and appropriate contractual safeguards.
We may share advertising identifiers, device identifiers, IP address, app activity, offer activity, and approximate location signals with advertising, analytics, attribution, and monetization partners for ad measurement, fraud prevention, frequency capping, attribution, and targeted advertising where permitted.
| Category | Sold for Money? | May Be Shared for Targeted Ads / Attribution? | Purpose |
|---|---|---|---|
| Advertising identifiers | No | Yes | Ad measurement, attribution, fraud prevention |
| Device identifiers | No | Yes | Security, attribution, anti-fraud |
| IP address | No | Yes | Localization, security, ad measurement |
| Usage and offer activity | No | Yes | Rewards tracking, personalization, analytics |
| Approximate / precise location | No | Where permitted | Offer eligibility, fraud prevention, localization |
| Account / profile information | No | No | Service providers only |
| Payment / reward data | No | No | Reward fulfillment and compliance only |
| Support communications | No | No | Support and dispute resolution only |
You may exercise your opt-out rights using any of the following methods:
We will process verified opt-out requests within the timeframe required by applicable law.
✅ We will not discriminate against you for exercising your privacy rights.
| Data Type | Retention Period |
|---|---|
| Account and profile information | While the account is active and for a reasonable period after closure where required for legal, security, fraud prevention, or dispute purposes |
| Reward and redemption records | As needed for fulfillment, accounting, fraud prevention, chargebacks, audits, and legal obligations |
| Transaction and accounting records | As required by applicable tax, accounting, and commercial laws |
| Support communications | As needed to resolve requests and maintain records of support and disputes |
| Security logs and device identifiers | As needed for fraud detection, security, and abuse prevention |
| Advertising and analytics data | As needed for analytics, measurement, partner agreements, and legal compliance |
| Marketing and consent records | Until you withdraw consent or opt out, plus records necessary to prove compliance |
| Deletion request records | Minimum records needed to document compliance and prevent misuse |
When data is no longer needed, we delete, anonymize, or securely dispose of it in accordance with applicable data protection laws.
Depending on your jurisdiction, you may have the following rights:
To exercise any right, email info@looply-joydream.online with the subject line: "Privacy Rights Request – [Right Type] – [Your Country]".
If you believe our processing of your personal data violates applicable law, you may contact us first at info@looply-joydream.online so we can address your concern.
This section applies to California residents where the CCPA/CPRA applies.
Submit requests to: info@looply-joydream.online with subject: "California Privacy Request".
Residents of Virginia, Colorado, Connecticut, Utah, and other US states with applicable privacy laws may have rights to access, correct, delete, obtain a portable copy, opt out of targeted advertising, opt out of sale, opt out of certain profiling, and appeal denied requests.
Contact: info@looply-joydream.online with the subject line naming your state and request type.
Under Article 11 of KVKK, data subjects may have the right to:
You may send your request to info@looply-joydream.online. We may request additional information to verify your identity and process your request securely.
Where GDPR applies, you may have rights of access, rectification, erasure, restriction, portability, objection, withdrawal of consent, and complaint to a supervisory authority.
| Processing Activity | Typical Legal Basis |
|---|---|
| Account creation and management | Contract performance |
| Games, offers, surveys, rewards, and redemption features | Contract performance / legitimate interests |
| Customer support | Contract performance / legitimate interests |
| Fraud prevention and security | Legitimate interests / legal obligation |
| Analytics and product improvement | Legitimate interests / consent where required |
| Targeted advertising and personalization | Consent where required |
| Marketing communications | Consent or legitimate interests where permitted |
| Legal, tax, accounting, and compliance obligations | Legal obligation |
| Sensitive data where applicable | Explicit consent or another applicable legal basis |
If you are in Brazil, you may have rights under the LGPD, including confirmation of processing, access, correction, anonymization, blocking, deletion, portability, information about third-party sharing, revocation of consent, review of automated decisions, and the right to file a complaint with the ANPD.
Contact: info@looply-joydream.online.
If you are in South Korea, you may have rights under PIPA, including access, correction, deletion, suspension of processing, and information about third-party provision where applicable.
Contact: info@looply-joydream.online.
The App may request the following device permissions. We request only what is necessary for functionality, security, analytics, rewards, and compliance.
| Permission | Why It Is Requested | Mandatory? |
|---|---|---|
| INTERNET | Core connectivity, account syncing, offers, surveys, ads, analytics, and reward validation | Yes |
| POST_NOTIFICATIONS | Push notifications for rewards, account updates, reminders, and service messages | No — you may decline |
| Advertising ID | Ad measurement, attribution, fraud prevention, frequency capping, and offer validation | No — subject to device settings and consent where required |
| Location | Offer availability, localization, fraud prevention, and compliance where required | No — you may decline unless required for a specific feature |
| Camera / Photos / Storage | Only if a feature requires uploading an image, support attachment, profile image, or media selection | No — only when initiated by you |
You can manage or revoke permissions at any time through your device settings.
The App may integrate third-party SDKs for functionality, analytics, advertising, attribution, anti-fraud, offers, surveys, and rewards fulfillment.
| SDK Category | Purpose | Data That May Be Collected |
|---|---|---|
| Analytics SDKs | App usage analytics and performance monitoring | Device ID, usage events, session data |
| Crash Reporting SDKs | Detecting and diagnosing crashes and errors | Device info, crash logs, stack traces |
| Advertising SDKs | Serving ads, ad targeting, ad mediation, frequency capping | Advertising ID, IP address, usage signals |
| Attribution / MMP SDKs | Install attribution and campaign measurement | Device ID, advertising ID, install and conversion events |
| Offer Wall / Survey SDKs | Displaying offers and surveys, validating completions, calculating rewards | User ID, device signals, IP address, completion status, reward events |
| Anti-Fraud / Security SDKs | Detecting fraud, fake engagement, duplicate accounts, and bot activity | Device fingerprint, network info, behavioral signals, risk indicators |
| Customer Support SDKs | In-app support and ticketing | Account info, support messages |
Your personal data may be transferred to and processed in countries outside Türkiye, including the European Economic Area, the United Kingdom, the United States, and other countries where our service providers and partners operate. We use appropriate safeguards where required by applicable law, including contractual commitments, data processing agreements, standard contractual clauses where applicable, consent where required, and other legally recognized transfer mechanisms.
You may request information about specific transfer safeguards by contacting us at info@looply-joydream.online.
We implement reasonable technical and organizational security measures designed to protect personal data against unauthorized access, loss, misuse, alteration, or disclosure. These measures may include encryption in transit, access controls, logging, monitoring, pseudonymization where appropriate, and periodic security reviews.
No method of transmission or storage is completely secure. If you believe your account or data has been compromised, contact us immediately at info@looply-joydream.online.
The Services are not directed to children under 13, or a higher age where required by applicable law. We do not knowingly collect personal data from children below the applicable age threshold without verified parental or guardian consent. We do not knowingly sell or share children's personal data. If you believe a child has provided personal data without authorization, contact us at info@looply-joydream.online and we will take appropriate action.
The Services may contain links to or integrations with third-party websites, advertisers, survey providers, offer walls, payment providers, and partner services. Their privacy practices are governed by their own privacy policies. We are not responsible for third-party privacy practices and encourage you to review them before interacting with any third party.
You may request deletion of your account and associated personal data by:
We will process verified deletion requests within the timeframe required by applicable law. We may retain limited data where necessary for legal compliance, accounting, tax records, fraud prevention, security, dispute resolution, or enforcement of rights.
We may update this Privacy Policy from time to time to reflect changes in our Services, legal requirements, SDKs, permissions, data practices, or business operations. When we make material changes, we will update the "Last Updated" date and provide additional notice where required by law.
For any questions, requests, or concerns about this Privacy Policy or our privacy practices:
🎮 Looply
Developer: Karut Interactive
Address: ADEM YAVUZ MAH. ULUKENT SK. NO: 27 İÇ KAPI NO: 8 ÜMRANİYE / İSTANBUL, Türkiye
📧 Email: info@looply-joydream.online
📧 Support: info@looply-joydream.online
🏛️ Turkish Data Protection Authority: Kişisel Verileri Koruma Kurumu (KVKK) — kvkk.gov.tr
We aim to respond to privacy-related inquiries within the timeframe required by applicable law.