KVKK Information Text

KVKK Information Text,

Information Text Within the Scope of Personal Data Protection Law No. 6698

It takes all kinds of technical and legal measures in accordance with the Personal Data Protection Law No. 6698 ("KVKK") in the processing of your personal data due to the activities it carries out. Relevant persons can access detailed information on the processing of their personal data, transfer to third parties, legal reasons for collecting personal data and their rights under KVKK from the information text below. Principles Applied in the Processing of Personal Data: Within the scope of personal data processing activities, we act in accordance with the general principles explained below.

1- Acting in accordance with the law and the rules of honesty:

Personal data is processed in accordance with KVKK legislation and general rules of trust and honesty.

2- Accuracy and being up to date when necessary:

While processing personal data, necessary administrative and technical measures are taken to ensure that personal data is accurate and up-to-date when necessary, and necessary arrangements are made regarding personal data, taking into account the requests of personal data owners in this context.

3- Processing for specific, clear and legitimate purposes:

Personal data is processed in accordance with the law, for clear and legitimate purposes, and data owners are clearly informed regarding such purposes.

4- Being related to the purpose for which they are processed, limited and proportionate:

Personal data is processed for the purposes notified to the data owner and to the extent necessary, and the processing of unnecessary personal data is avoided.

5- Preservation for the period stipulated in the relevant legislation or required for the relevant purpose:

Personal data are retained for the period stipulated in the relevant legislation or necessary for the purpose for which they are processed. Personal data is deleted, destroyed or anonymised by us or upon the request of the relevant data owner, at the end of the storage period or if the purpose of processing ceases to exist. Processed Personal Data: Personal data is processed through the express consent received from the data owners or within the framework of activities that can be carried out without explicit consent under Articles 5 and 6 of the KVKK, and these data are processed only within the framework of the purposes exemplified in the "Purposes of Processing of Personal Data" section. The main types of personal data processed in compliance with KVKK principles are as follows:

1- Identity Data:

Name, surname, Turkish Republic Identity Number (TR ID Number), identity card information, identity information on the driver's license, identity information on the marriage certificate, identity information in the CV, name, surname, TR ID number of the spouse and child, birth date and gender information, tax identification number,

2- Communication Data:

Address, residence document information, e-mail, home phone, company phone, mobile phone, phone numbers of people to be reached in case of emergency, real person supplier address, real person supplier/representative e-mail, phone, mobile phone.

3- Legal Transaction Data:

Information in the case files, enforcement information.

4- Customer Transaction Data:

Call center records, invoice information, receipt information, order information, request information.

5- Physical Space Security Data:

Camera recordings.

6- Transaction Security Data:

User code, password, IP address, internet access logs, company login/logout logs, domain name, server information.

7- Risk Management Data:

Collection tracking information.

8- Financial Data:

IBAN, expense amount, deduction amount (traffic fine/HGS/OGS/advance/lien), employee spouse income information, credit card information, payment information, share amount of real person partners in the company.

9- Marketing Data:

Information obtained through campaigns or events, past purchase information.

10- Visual and Audio Records Data:

Photos, audio recording

Purposes of Processing Personal Data: Your personal data may be processed by the data controller or the real/legal persons appointed by him in the following cases and conditions:

1- For the purpose of performing the services to be performed within the scope of our work in accordance with the relevant legislation,
2- For the purpose of fulfilling the obligations, ensuring occupational health and safety and business continuity, creating a common database, facilitating the functionality of the common database, ensuring ease of communication and marketing, and brand and reputation management,
3- In order to ensure that the products and services produced and offered by us are delivered to consumers, suppliers, business partners and public institutions in a healthy way in line with the realization of our commercial / public and social goals,
4- In accordance with the relevant laws and in order to fulfill our contractual obligations,
5- In order to carry out the necessary quality and standard inspections or to fulfill our other obligations determined by laws and regulations,
6- In order to fulfill our post-service obligations,
7- For the purpose of complete execution and control of the contracts to which we are a party,
8- In order to ensure the legal security of real/legal persons in relationship,
9- In order to determine and implement our business strategies,
10- In order to prepare various reports, research and presentations, plan emergency management processes, follow up finance and accounting affairs, and ensure security,
11- Photos and videos taken at meetings, seminars and other social organizations, award ceremonies, corporate meetings; In order to promote and announce the event and inform the public,
12- In order to notify of changes in the legislation or the policies we accept or to make notifications that concern the data owner,
13- In order to provide internet access to our guests visiting our work areas,
14- In order to ensure the security of our employees, guests and buildings with camera recording and other security measures and to control entrances and exits,
15- Voice and call recordings, in case of communication with our call centers or phones, are used to detect the communication and determine the content.
16- For the purpose of planning and execution of shuttle services and various logistics activities,
17- In order to carry out activities for customer satisfaction,
18- In order to create statistical data, record visitor information and provide feedback in case our website is visited,

Situations Where Explicit Consent is Not Required: The personal data of the data owner may be processed without explicit consent in the following cases, limited to the purposes within the personal data processing conditions specified in the 2nd paragraph of Article 5 and the 3rd paragraph of Article 6 of the KVKK:

1- It is clearly foreseen in the laws, 2- It is necessary to process personal data of the parties to the contract, provided that it is directly related to the establishment or performance of a contract, 3- It is necessary for the protection of the life or physical integrity of the person or someone else who is unable to express his/her consent due to actual impossibility or whose consent is not given legal validity, 4- It is mandatory to fulfill our legal obligation, 5- It has been made public by the data owner himself, 6- Data processing is mandatory for the establishment, exercise or protection of a right, 7- It is mandatory to process data for our legitimate interests, provided that it does not harm the fundamental rights and freedoms of the data owner, 8- Processing of special personal data other than health and sexual life is prescribed by law, 9- Personal data of special nature regarding health and sexual life can only be used by persons or authorized institutions and organizations under the obligation of confidentiality for the purpose of protecting public health, carrying out preventive medicine, medical diagnosis, treatment and care services, planning and management of health services and their financing. ensuring processing. 1. Transfer of Personal Data

Your personal data processed for the above purposes and within the framework of the conditions determined by KVKK:

1- To our business partnerships or affiliate companies in order to provide our services and ensure continuity and coordination, 2- To our suppliers, business partners, Affiliate Companies, on a limited basis, for the purpose of providing products and services, 3- To authorized public institutions and organizations for the purpose of auditing our activities in accordance with the relevant legislation; to private integrator companies, independent audit firms, financial advisor/accounting firms within the scope of relevant contracts, 4- To legally authorized public institutions and organizations and judicial bodies, in line with the requests of relevant public institutions and organizations and limited to the purposes of the request, 5- To our suppliers and solution partners for the purpose of creating a common database and facilitating its functionality, ensuring ease of communication, and brand and reputation management, 6- To our suppliers for the purpose of preparing and implementing strategies regarding our services and commercial activities, 7- To real/legal persons and public institutions and organizations with which we cooperate in order to realize our activities, 8- To domestic and/or international private and public legal entities in order to increase our awareness and brand value, improve the internet infrastructure and maintain up-to-dateness, 9- To companies operating in this field from which services are received for the purpose of organizing events, conferences, celebrations and similar social events, 10- Emergency medical interventions and occupational health To occupational health and safety companies, hospitals and health institutions in order to fulfill their and safety obligations, 11- SAP, CRM, ERP, QDMS, Patrol, IOMA etc. To software companies and technology companies established at home and abroad, in order to create databases of operating systems and computer programs, to ensure program operability and to perform maintenance and repair of the program, 12- To solution partner companies that provide repair, maintenance, repair and service services, our suppliers and companies operating in this field, 13- Within the scope of security, technology and cloud services, digital data is provided to institutions/organizations established at home and abroad that provide these services, 14- In order to develop new business areas, increase our quality standards and reduce costs, we can transfer our services to consultancy firms specialized in financial, commercial and financial, management and human resources issues.

Method and Legal Reason for Collecting Personal Data

Your personal data may be processed by real/legal persons who process data on our behalf, through application forms, websites, various contracts, all kinds of information forms, surveys, job application forms, employment contracts, social media applications, written data received from Affiliate Companies, our suppliers and business partners. Verbal and digital notifications are collected through verbal, written or electronic channels, including but not limited to call centers and those listed here, within the scope of your express consent or other data processing conditions stipulated in the KVKK. This information is obtained in order to be able to present our commercial and administrative activities within the framework of the law and to carry out our services within this scope, to continue its commercial life and to fulfill its responsibilities arising from the law completely and accurately. Storage and Destruction of Personal Data It stores personal data in line with the purpose of processing personal data in a manner proportionate to the purpose of processing. Personal data is stored until the end of the period required by the relevant legislation, if the purpose and/or reason for processing is no longer valid. When the purpose and reason for processing personal data no longer exists and the statute of limitations required to ensure our legal obligations are completed, personal data will be destroyed. Destruction and anonymization of personal data within the scope of the exception arising from public service will be carried out within the framework of the applicable legal legislation. Rights of the Relevant Person

Each relevant person has the following rights in accordance with Article 11 of the KVKK:

1. Learning whether personal data is processed or not, 2. Requesting information if personal data has been processed, 3. Learning the purpose of processing personal data and whether they are used for their intended purpose, 4. Knowing the third parties to whom personal data is transferred at home or abroad, 5. Requesting correction of personal data in case of incomplete or incorrect processing and requesting that the action taken in this context be notified to third parties to whom personal data has been transferred, 6. Requesting the deletion or destruction of personal data in case the reasons requiring processing no longer exist, even though it has been processed in accordance with the provisions of KVKK and other relevant laws, and requesting that the action taken in this context be notified to third parties to whom personal data has been transferred, 7. Objecting to the emergence of a result that is unfavorable to the person by analyzing the processed data exclusively through automatic systems, 8. Requesting compensation for the damage in case of damage due to illegal processing of personal data. The relevant person may submit his/her requests regarding these rights in writing, by sending a notice to the address below via a notary public, or by applying in person by presenting his/her ID. The requests of the relevant person will be evaluated and decided free of charge as soon as possible and within thirty (30) days at the latest. If the evaluation and decision-making process requires an additional cost, the fee in the tariff determined by the Personal Data Protection Board will be taken as basis.

With our respects, it is presented to the public.

Identity of the Data Controller

Web Address: https://alanyanet.com.tr/

Mersis Number: 0048057505700012

Phone Number: 0 850 885 07 85

E-Mail Address: info@alanyanet.com.tr

Address : Hacet Mah. Tosbağcı Sok 29/A Alanya / ANTALYA