Sanki Legal

Privacy Policy

Back to Home

Last Updated: 24 May 2026

1. Introduction

This Privacy Policy explains what personal data Sanki processes, why we process it, who we may share it with, and what rights you may have when you use the Sanki app and related services.

Sanki provides language-learning tools, flashcard decks, cross-device synchronization, AI-assisted learning features, subscription features, and limited ad-supported experiences.

2. Data We Process

We may process the following categories of personal data:

  • Account data: email address, profile photo, display name, and basic account details received from sign-in providers.
  • App data: decks, cards, study progress, settings, preferences, and synchronization records.
  • AI interaction data: text you enter into AI chat, translation/explanation/mining requests, safety-review signals, and related technical usage logs.
  • Purchase and subscription data: subscription status, restore status, product entitlements, and limited subscription verification data received from payment-related providers.
  • Advertising and measurement data: ad impressions, rewarded-ad completion status, technical ad-request signals, and, where permitted, advertising identifiers or similar device identifiers.
  • Support data: information you send to us by email or feedback channels.
  • Technical and security data: limited crash logs, device language, app version, limited device/session analytics data, and abuse/fraud prevention records.

3. Why We Process Your Data

We process personal data to:

  • create, authenticate, and manage your account;
  • synchronize your data across devices;
  • preserve your learning progress and personalize your experience;
  • provide, safeguard, and improve AI-powered features;
  • manage subscriptions and purchase entitlements;
  • show ads in free experiences, verify rewarded-ad grants, and prevent ad abuse;
  • improve the app, monitor performance, and fix issues through analytics and crash reporting;
  • respond to support requests; and
  • comply with legal obligations, maintain security, and prevent abuse and fraud.

4. International Data Transfers

Sanki relies on cloud infrastructure and third-party service providers. As a result, your personal data may be stored or processed on servers located outside Turkey.

In particular:

  • account, profile, storage, and sync data may be processed through Supabase infrastructure;
  • text submitted to AI features may be processed through OpenRouter, the model providers it routes to (such as OpenAI and Google Gemini), and OpenAI moderation services outside Turkey;
  • crash logs and technical diagnostics may be processed through Sentry;
  • product analytics and usage measurement may be processed through PostHog;
  • subscription and purchase verification data may be processed through RevenueCat and relevant app store infrastructure;
  • ad delivery, rewarded-ad verification, and related measurement data may be processed through Google Mobile Ads / AdMob.

For users in Turkey, by using Sanki, creating an account, or using features that rely on infrastructure outside Turkey, you acknowledge that your personal data may be stored and processed on servers located outside Turkey for the purpose of providing the service and, to the extent required under applicable law, you expressly consent to that cross-border transfer and storage.

5. Important Notice About AI Features

Please do not enter Turkish national ID numbers, addresses, phone numbers, payment data, health data, or other sensitive personal data into AI chat fields.

Content you submit to AI features may be transmitted to and processed by AI service providers for feature operation, safety checks, and quality improvements.

AI-generated responses can be incomplete or incorrect. Please verify important information with a trusted source before relying on it.

6. Ads, Analytics, and Privacy Choices

Sanki's free experience may include ads. Ad-supported features may be enabled only where appropriate and only for users without an active subscription.

At this time, free users may still see non-personalized ads regardless of their analytics choice. If you allow analytics, we may measure feature usage and app issues to improve reliability and product experience.

Where permitted by platform settings, device settings, or applicable law, advertising identifiers or similar technical identifiers may be used for ad delivery, rewarded-ad verification, fraud prevention, frequency control, and measurement.

You can revisit and change relevant privacy choices later inside the app.

7. Who We Share Data With

We may share personal data with the following service providers or infrastructure partners:

  • Supabase for database, authentication, storage, and synchronization;
  • OpenRouter and the model providers it routes to, such as OpenAI and Google Gemini, for chat, translation, explanation, card generation, and related AI features;
  • OpenAI Moderation for AI safety and content review;
  • Sentry for crash reporting and technical diagnostics;
  • PostHog for product analytics and usage measurement;
  • RevenueCat for subscription management and purchase verification;
  • Apple, Google, and similar sign-in or app-store providers for authentication, purchases, subscriptions, and restore flows;
  • Google Mobile Ads / AdMob for ad delivery, ad measurement, and rewarded-ad verification.

We share data only as needed to provide, secure, and improve the service.

8. Retention

We retain personal data for as long as needed to provide the service or comply with legal obligations.

Different categories of data may be retained for different periods depending on purpose, including:

  • account, profile, decks, cards, and study progress for as long as needed to operate the service;
  • subscription, purchase, consent, safety, and audit records for reasonable operational or legal periods;
  • crash logs, analytics events, and ad-verification records for limited retention periods.

If you delete your account, your account/profile information, decks, cards, study progress, chat history, and related records may be scheduled for deletion or removed from our systems within a reasonable period. Some technical backups, security logs, or legal records may be retained longer where necessary.

9. Your Rights

Depending on applicable law, you may have rights to:

  • know whether your personal data is processed;
  • request information about that processing;
  • request correction of inaccurate or incomplete data;
  • request deletion or destruction where legal conditions are met;
  • object to certain processing; and
  • request compensation if you suffer damage due to unlawful processing.

You can contact us at sanki.app.contact@gmail.com.

10. Account and Data Deletion

You can request deletion of your account and associated data in any of the following ways:

  • through the in-app delete-account option in Profile > Settings;
  • through our public account-deletion page on the web; or
  • by emailing sanki.app.contact@gmail.com.

The in-app delete-account option starts deletion of your account and associated data directly from the app. If you cannot access the app, you may also request deletion by email or through the web page. We may ask for additional information to verify account ownership before completing a manual request.

Some limited backups, legal records, or security logs may be retained for a reasonable period where necessary.

11. Security

We use reasonable technical and organizational safeguards to protect personal data. However, no method of transmission over the internet or method of electronic storage is completely secure.

12. Children

Sanki is not intended for children under 13. If we become aware that we collected personal data from a child under 13, we will take appropriate steps to delete it.

13. Changes

We may update this Privacy Policy from time to time. The updated version becomes effective when it is posted on this page.

14. Contact

If you have privacy-related questions, contact us at:

sanki.app.contact@gmail.com