How does Rapitek CRM protect my data?

Every Rapitek CRM customer gets their own private tenant database, fully isolated at the database level — no shared tables, no cross-tenant risk. Enterprise and Enterprise+ tiers can add a dedicated VPS or VDS on top. We use 256-bit SSL/TLS encryption, daily automated backups, DDoS protection, role-based access control, and two-factor authentication.

Where is my data stored?

All data is stored in data centers located in Turkey, ensuring full compliance with KVKK (Turkish Personal Data Protection Law). Your data never leaves Turkish borders unless you explicitly request it.

Can I export my data anytime?

Yes. You have full ownership of your data. You can export all your data at any time through our API or built-in export tools. There is no vendor lock-in - your data belongs to you.

Is Rapitek CRM KVKK compliant?

Yes. Rapitek CRM is fully compliant with KVKK (Turkish Personal Data Protection Law). We store all data in Turkish data centers, include a data processing agreement with every contract, and provide tools for data access, deletion, and export requests as required by law.

Security & privacy

Your data. Your priority.

Every customer gets a private tenant database with database-level isolation. Enterprise+ tier adds a dedicated VPS or VDS. Data stays in Turkey.

KVKK Compliant

TLS 1.3 + AES-256 at rest

Private Tenant DB per Customer

Tiered Deployment Architecture

Unlike most CRM providers that share one database across all customers, every Rapitek CRM customer gets a private tenant database — isolated at the database level, on a managed multi-tenant cluster. On Enterprise and Enterprise+ tiers you can add a dedicated VPS or VDS on top for full infrastructure isolation. Pick the tier that matches your compliance and scale needs.

Complete Data Isolation

No shared databases. Your data lives on your own server, completely separated from everyone else.

Data Stays in Turkey

All servers are located in Turkish data centers. Full KVKK compliance guaranteed.

No Vendor Lock-in

Export your data anytime. Your data belongs to you, not to us.

Full API Access

Complete API access to your own data. Integrate with any system you need.

Your Company

Private Tenant DB • Own Backups • VPS/VDS on Enterprise+

Encrypted Connection

Another Customer

Separate Tenant DB • Separate Backups • No Cross-Tenant Access

Zero data sharing between customers

Security measures

Multiple layers of protection.

Encryption, backups, access control, and monitoring — your data stays safe at every layer.

TLS 1.3 in Transit, AES-256 at Rest

Every connection to your CRM uses TLS 1.3 — the latest transport encryption standard, HTTP/2 enabled. Data at rest is encrypted with AES-256 in the managed database layer. No legacy TLS 1.0/1.1 ciphers are offered.

Daily Automated Backups

Your data is automatically backed up every day. Multiple backup copies stored in separate locations for maximum safety.

DDoS Protection

Advanced DDoS protection ensures your CRM stays online and accessible even during attack attempts.

Role-Based Access Control

Define exactly who can see and do what. Granular permissions ensure each team member only accesses the data they need.

Two-Factor Authentication

Add an extra layer of security with 2FA. Even if a password is compromised, your account stays protected.

Audit Logs & Activity Tracking

Complete audit trail of every action. Know who did what, when, and from where. Essential for compliance and accountability.

KVKK

Turkish Personal Data Protection Law

Data stored in Turkish data centers

Data processing agreement included

Right to access, delete, export data

Regular security audits

KVKK Compliance

Rapitek CRM is fully compliant with KVKK (Turkish Personal Data Protection Law, No. 6698). We take your legal obligations seriously and provide the tools and infrastructure you need to stay compliant.

Because every customer has their own private tenant database, your data processing is inherently isolated. We include a data processing agreement (DPA) with every contract. Your users can exercise their KVKK rights — access, correction, deletion, and data portability — directly through the platform.

Infrastructure

Built on reliable cloud.

Your CRM runs smoothly on infrastructure designed for uptime, speed, and scale.

Managed Cloud Hosting

Managed multi-tenant cluster with per-customer resource guarantees. Dedicated VPS/VDS option on Enterprise+ tier.

99.9% Uptime SLA

We guarantee 99.9% uptime so your team can work without interruption.

Automated Monitoring

24/7 automated monitoring detects and resolves issues before they affect you.

Disaster Recovery

Comprehensive disaster recovery plan with rapid restoration capabilities.

Certifications & Roadmap

Where we stand, where we're going.

We publish our certification roadmap openly. Active controls are production today; others are dated and on the calendar.

KVKK

Active

Turkish Personal Data Protection Law compliance, production today. Data stored in Istanbul.

ISO/IEC 27001

Audit Q4 2026

Information Security Management System. Gap analysis complete; internal controls being formalised ahead of third-party audit.

ISO/IEC 27701

Planned H1 2027

Privacy Information Management extension. Scheduled to follow ISO 27001 certification.

SOC 2 Type II

Under evaluation

Scope being evaluated for North American & EU enterprise customers. Timeline announced once scoped.

Real-time status dashboard launching Q3 2026. Incidents are currently communicated directly to customer contacts.

Security questions? Talk to us.

Our team answers every question about data security, KVKK compliance, and our tiered deployment model. Directly — no tickets.

Your data. Your priority.

Tiered Deployment Architecture

Complete Data Isolation

Data Stays in Turkey

No Vendor Lock-in

Full API Access

Multiple layers of protection.

TLS 1.3 in Transit, AES-256 at Rest

Daily Automated Backups

DDoS Protection

Role-Based Access Control

Two-Factor Authentication

Audit Logs & Activity Tracking

KVKK

KVKK Compliance

Built on reliable cloud.

Managed Cloud Hosting

99.9% Uptime SLA

Automated Monitoring

Disaster Recovery

Where we stand, where we're going.

KVKK

ISO/IEC 27001

ISO/IEC 27701

SOC 2 Type II

Security questions? Talk to us.

Close 40% Faster

CRM Selection Guide: Lessons from 200+ Projects