OUR POLICIES

• 1. THE PURPOSE OF PREPARING THE POLICY

 

 Our company is ENTERPRISE TECHNOLOGY LTD. in the capacity of data controller, it acts with the awareness of the importance of the confidentiality and security of personal data obtained within the scope of the Personal Data Protection Law No. 6698 (PDPP) and other relevant legislations. 

 The INITIATIVE acts with the determination of compliance with the laws arising from the capacity of data controller, T .C. Together with the Constitution and the law No. 6698, it determines the personal data processing processes in accordance with the relevant legislation. 

At the same time, it is processed in accordance with the law. 

 

 Anonymization:

Even by matching Personal Data with other data, in no way is the identity of a certain fact making it impossible to be associated with a person. 

 

  Personal Data :

All kinds of information about an identified or identifiable real person 

 

  Explicit Consent :

 Personal data of the person to be processed before the relevant transaction is performed to make a declaration of consent to the execution of the transaction after its clarification. 

 

 Lighting Text :

For which purpose the personal data will be stored for how long, by which method it is collected, how it is maintained and 3. whether it will be shared with people or not a statement made to the relevant person.

 

Inventory :

 Data controllers are performing depending on their business processes personal data processing activities; personal data processing purposes, data category, they are created by associating the transferred recipient group and the data subject with the contact group and personal transfer of data to foreign countries for the maximum period required for the purposes for which they are processed the inventory they detail by explaining the foreseen personal data and the measures taken regarding data security 

 Contact Person :

The real person whose personal data is processed 

 

 Destruction :

Deletion, destruction or anonymization of personal data 

 

 Processing:

 PDPP's 3. registration, storage, retention of personal data in the article, modification, reorganization, disclosure, transfer, inheritance, acquisition, classification of transactions 

 

 Law :

Law on the Protection of Personal Data 

 

 Special Data :

Race, ethnicity, political opinion, philosophical belief, religion, sect or other beliefs, clothing, association, foundation or union membership, health, sexual life, criminal conviction and data related to security measures, as well as biometric and genetic data 

 

 Data Processing :

A natural or legal person who processes personal data on behalf of the data controller based on the authority granted by the data controller 

 

 Data Controller :

After the establishment of the data recording system, which determines the purposes of processing personal data by means of v:e, and the natural or legal person responsible for its management 

 

 Delete :

Deletion of personal data, the process of making personal data inaccessible and unusable again for the relevant users in any way 

 

 

2. SCOPE 

 The personal data owner defined as a related person in the PDPP and related legislations covers all personal data processed automatically to a real person or by non-automatic means, provided that they are part of the data registration system. 

 

3. DEFINITIONS 

 

 4. PERSONAL DATA COLLECTION CHANNELS 

 GIRIŞIM may collect personal data belonging to the related persons verbally, in writing or electronically by automatic or non-automatic methods. The relevant persons are clarified in accordance with the legislation by being the main channels of obtaining personal data. 

 

5. TYPES OF PERSONAL DATA OBTAINED 

The personal data obtained by the INITIATIVE, data categories, collection channels, processing purposes and legal reasons based on processing, the third parties to which the personal data are transferred and the transfer purposes are also regulated in detail in the relevant person disclosure text, taking into account. 

 

6. OBLIGATION OF DISCLOSURE 

 Related persons who have personal data obtained while continuing the activities of the ENTERPRISE are subject to Article 10 of the law. In accordance with the article, it is clarified before obtaining personal data. The information that should be communicated to the data owners within the framework of the said disclosure obligation is listed below with its main headings: 

 - The identity of the data controller and his representative, if any 

 - For what purpose the personal data will be processed, 

 - To whom and for what purpose the processed personal data will be transferred 

 - Method and legal reason of collecting personal data 

 - 11 of the law of the person concerned. Other rights listed in the Article 

 Our Company, in order to fulfill the obligation of disclosure, there are illumination texts to be presented to data owners within the scope of the above-mentioned provision of the law on the basis of the process and the persons whose data are processed. After the presentation of the clarification texts to the data owners, explicit consent statements are also provided for data processing activities and data categories that require the explicit consent of the data owner in order for our Company to carry out its commercial activities Jul. 

 

7. SPECIAL CATEGORIES OF PERSONAL DATA POLICY 

 In accordance with the Decision of the Personal Data Protection Board dated 31/01/2018 and numbered 2018/10 on Adequate Measures to be Taken by Data Controllers in the Processing of Special Data within our Company, special personal data are protected by us on the basis of special security measures. In this context, a Special Data Policy has been prepared and put into practice in our Company. 

 6 of the special data Act. The article is as follows: 

 - Race, ethnic origin, political thought, philosophical belief, religion, sect or other beliefs of persons, disguise and clothing, membership of an association, foundation or trade union, health, sexual life, criminal conviction and security measures related data, as well as biometric and genetic data are special personal data. 

 - It is forbidden to process personal data of a special nature without the explicit consent of the person concerned. 

 - Personal data other than the health and sexual life listed in the first paragraph may be processed without seeking the explicit consent of the relevant person in the cases provided for by law. Personal data related to health and sexual life can only be processed by persons or authorized institutions and organizations under the obligation to keep secrets for the purpose of protecting public health, preventive medicine, medical diagnosis, treatment and maintenance services, planning and management of health services and financing, without seeking the explicit consent of the relevant person. 

 - In the processing of personal data of a special nature, it is also necessary to take adequate measures determined by the Board. 

 

8. RIGHTS OF THE PERSONAL DATA OWNER 

 11 of the Law. Within the scope of the Article, everyone has the right to apply to our Company in the capacity of data controller on the following issues: Everyone should contact the data controller about themselves; 

 a) Learning whether personal data is processed, 

 b) If your personal data has been processed, do not request information about it, 

 c) To learn the purpose of processing personal data and whether they are used in accordance with their purpose, 

 ç) To know the third parties to whom personal data are transferred at home or abroad, 

 d) Requesting correction of personal data in case of incomplete or incorrect processing, 

 e) Requesting deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of Law No. 6698, 

 f) (d) and (e) to request that the transactions made in accordance with clauses be notified to the third parties to whom the personal data are transferred, 

 g) Objecting to the occurrence of a result against the person himself by analyzing the processed data exclusively through automated systems, 

 i) Has the right to request compensation of the damage if the personal data is damaged due to illegal processing. 

 

9. THE METHOD OF EXERCISING THE RIGHTS OF THE DATA OWNER 

 13 of the Law. article 1. in accordance with the paragraph and within the scope of the Communiqué on the Procedures and Principles of Applying to the Data Controller Published in the Official Gazette dated 10.3.2018 and numbered 30356; applications to be made to our Company, which is the data controller, regarding these rights must be submitted to us in writing or by other methods determined by the Personal Data Protection Board (“Board”). The “Relevant Person” who owns personal data will be able to inform our Company of the rights and requests set out in subparagraph A. In this context, the data subject may apply in writing within the following scope in order to exercise all other rights he/she has in accordance with article 11 of the Personal Data Protection Law No. 6698: 

 - With the applicant's personal application, - By mail with the addition of a signature declaration, 

 - Through a notary public, 

 - With a secure electronic signature, 

 - By signing with a secure electronic signature defined on behalf of the applicant and sending it to the KEP address specified below, 

 - By sending from the e-mail address previously notified to the data controller by the relevant person and registered in the data controller's system, Sending to the INITIATIVE address can be provided with the application letter. 

At the same time, the Initiative.Shipping to the KEP address can be provided. 

 

 10. MEASURES TAKEN 

 12 of the Law. In accordance with the Article, it takes the necessary administrative and technical measures to prevent the unlawful processing and access of personal data processed by our Company in accordance with the Article and to ensure the safe storage of personal data, and to carry out and / or to carry out the necessary audits in this context. Although measures are taken in accordance with the nature of the personal data, personal data of a special nature are protected by stricter security measures. 

 

11. STORAGE OF PERSONAL DATA 

 The personal data obtained by our company are stored securely in physical or electronic environment for an appropriate period of time in order for our Company to continue its activities. Within the scope of these activities, our Company acts in accordance with the obligations stipulated in all relevant legislation, especially the PDPP, regarding the protection of personal data.

PROTECTION OF PERSONAL DATA CLARIFICATION TEXT • 

  This “Clarification Text” is issued by the INITIATIVE TELECOMMUNICATIONS CONSTRUCTION CONTRACTING TOURISM ELECTRONIC PROJECT CONSULTANCY INDUSTRY AND TRADE LIMITED COMPANY (“INITIATIVE”) in the capacity of data controller in accordance with the Personal Data Protection Law No. 6698 (“PDPP Law”), under the PDPP's title "Disclosure Obligation of the Data Controller" 10. article 11 entitled ‘Rights of the Person Concerned’. within the framework of the article, it has been prepared in order to inform you about the collection methods, processing, use, transfer and destruction of your personal data. 

  As a VENTURE, we attach importance to the security of your personal data. For this reason, all your personal data related to us are processed and stored in accordance with the Personal Data Protection Law No. 6698 (“PDPP Law”). 

  As a VENTURE, in the capacity of “Data Controller”, we process your personal data within the limits set by legal legislation.

  The INITIATIVE undertakes to take the necessary measures to keep the information of visitors, customers, employees, suppliers and similar persons confidential and not to share this information with third parties in accordance with the Personal Data Protection Law No. 6698.

 In addition, your personal data may also be processed when you use our call centers or our Website to use the services provided by the INITIATIVE, or when you visit the INITIATIVE or our Website. 

  Personal data provided by the INITIATIVE in accordance with the PDPP; 

• In accordance with the law and the rule of honesty, 

• Correctly and up-to-date as needed, 

• For specific, clear and legitimate purposes, 

• In connection with the purposes for which they are processed, limited and in moderation, 

* Special attention is paid to their processing for the period stipulated in the relevant legislation or for the period necessary for the purpose for which they are processed, and the necessary inspections are carried out for this purpose.

 As an INITIATIVE, we show maximum sensitivity to the security of your personal data and take all necessary technical, administrative and legal measures to protect your personal data.

 As personal data owners, if you submit your requests regarding your rights to the INITIATIVE by the methods set out below in this Clarification Text 

The INITIATIVE will finalize the request free of charge within thirty days at the latest, depending on the nature of the request. However, if a fee is stipulated by the Personal Data Protection Board, the fee in the tariff determined by the INITIATIVE will be charged.

 Personal data owners in this context; 

Learning whether personal data is processed, 

If your personal data has been processed, do not request information about it, 

To learn the purpose of processing personal data and whether they are used in accordance with their purpose, 

Knowing the third parties to whom personal data are transferred at home or abroad, 

Requesting correction of personal data in case of incomplete or incorrect processing and requesting notification of the transaction made in this context to the third parties to whom the personal data are transferred, 

  Despite being processed in accordance with the provisions of the PDPP Law and other relevant laws, requesting the deletion or destruction of personal data if the reasons requiring its processing disappear, and requesting that the transaction performed in this context be notified to the third parties to whom the personal data are transferred, objecting to the occurrence of a result against the person himself by analyzing the processed data exclusively through automated systems, It has the right to request compensation of the damage if it suffers damage due to the unlawful processing of personal data. 

  You can submit a signed copy of the form to the address ENTERPRISE – Sofia 1463, Triaditsa district, 56 Vitosha Blvd., 1st floor, office 1.personally by hand with identifying documents, through a notary or other methods specified in the PDPP Law, by filling out the “REQUEST FORM FOR PERSONAL DATA PROTECTION” form containing your explanations about your rights that you request to use in order to exercise your above-mentioned rights related to personal data, you can send a signed copy of the form to the address ENTERPRISE -Sofia 1463, Triaditsa district, 56 Vitosha Blvd., 1st floor, office 1.  by notary public or by other methods specified in the PDPP Law.