Privacy Policy

Fax Office 1987 is a daily online editorial publication covering fashion, streetwear, design, and culture. This policy explains what information we handle when you visit faxoffice1987.com or subscribe to our newsletter, and what your rights are. We have written it in plain language. Where the law uses specific terms (GDPR, KVKK, CCPA), we note them so you can match your rights to the right framework.

The publisher of Fax Office 1987 is based in Turkey. We follow Turkey’s Personal Data Protection Law (KVKK) for all readers, additionally apply the EU/UK GDPR for readers in those regions, and the CCPA for readers in California.

1. What we collect

We try to collect as little as possible. In practice, this means:

Server logs. When you visit the site, our hosting provider records standard technical information: your IP address, the page you requested, the time of the request, the referring page, and your browser and device type. This is normal for any website and is needed for security, abuse prevention, and basic reliability.

Newsletter subscription (only if you subscribe). If you choose to sign up for our newsletter, we collect the email address you give us, and your first name if you provide one. We only ask for what is needed to send you the newsletter.

Essential cookies. We use a small number of strictly necessary cookies (session and security). We do not use marketing or advertising cookies. See our Cookie Policy for details.

What we do not collect. We do not run analytics or tracking pixels at the time of writing. We do not have user accounts, comments, or a paywall, so we do not collect login data, comment history, or payment information. We do not buy or enrich reader data from third parties.

2. Why we collect it

Server logs: to keep the site online, secure, and free from abuse. Legal basis under GDPR: legitimate interest (Article 6(1)(f)). Legal basis under KVKK: legitimate interest of the data controller (Article 5(2)(f)).

Newsletter data: to send you the newsletter you asked for. Legal basis under GDPR: consent (Article 6(1)(a)). Legal basis under KVKK: explicit consent (Article 5(1)).

3. Who we share it with

We do not sell your data. We do not share it for advertising. We do use a small number of service providers (“processors”) who handle data on our behalf, strictly to run the publication:

Sanity.io hosts our editorial content (articles, images, metadata). They do not receive visitor data.

Vercel hosts the website itself. As part of normal hosting, Vercel processes server logs that include visitor IP addresses.

Supabase powers an internal editorial pipeline. It does not store any visitor or reader data.

Beehiiv (when our newsletter goes live) will store newsletter subscriber email addresses and names, and will deliver our emails. If you subscribe, your data is processed by Beehiiv under their terms and privacy policy.

Anthropic provides AI tooling we use internally to help draft articles before human editorial review. We do not send reader data, server logs, or subscriber data to Anthropic.

We may also disclose information if required by a valid legal request, or to defend our rights and the safety of our readers.

4. International transfers

Some of the providers listed above are based outside Turkey and the EU (mainly the United States). Where this applies, transfers are made under appropriate safeguards (such as Standard Contractual Clauses) and consistent with KVKK Article 9.

5. How long we keep it

Server logs: typically up to 30 days, then deleted or rotated by our hosting provider, unless we need to keep specific entries longer for security investigations.

Newsletter data: until you unsubscribe, or until the newsletter program is discontinued. Every newsletter we send includes a one-click unsubscribe link.

6. Your rights

You have the right to:

• ask what data we hold about you (access),
• ask us to correct it if it is wrong (rectification),
• ask us to delete it (erasure),
• ask us to stop or limit how we use it (restriction or objection),
• receive your newsletter data in a portable format (portability),
• withdraw your consent at any time (this does not affect what we did before you withdrew it).

These rights come from GDPR Articles 15 to 22, KVKK Article 11, and the CCPA for California residents (including the right to know, delete, and opt out of any sale of personal information; we do not sell personal information).

To use any of these rights, email us at hello@faxoffice1987.com. We will reply within 30 days. You also have the right to complain to your local data protection authority (in Turkey, the KVKK Authority; in the EU, your national supervisory authority; in the UK, the ICO).

7. Children

Fax Office 1987 is written for adult readers. We do not knowingly collect data from anyone under 16. If you believe a child has subscribed to our newsletter, please contact us and we will delete the record.

7a. Affiliate links

When an article links to a retailer, the link may be processed by an affiliate network (Skimlinks). The network may set a cookie to attribute purchases to the office. We do not receive your name, email, or any other personal data from this — only an aggregate commission report. You can opt out at any time via the network’s consumer page (skimlinks.com/about). Affiliate routing never affects which products, houses, or stories we cover.

8. Security

We rely on reputable hosting and infrastructure providers and apply reasonable technical and organisational measures. No system online is perfectly secure, but we work to keep risk low and to respond quickly if something goes wrong.

9. Updates to this policy

We may update this policy as the publication grows (for example, when we turn on the newsletter, or add privacy-friendly analytics). When we do, we will change the “Last updated” date at the top. Significant changes will be flagged on the site.

10. Contact

Questions, requests, or complaints: hello@faxoffice1987.com.