Agreement

KVKK Clarification Text

Under KVKK, you can find here the purposes, legal grounds, transfer processes, and application procedures regarding the processing of your personal data.

UNDER THE LAW NO. 6698 ON THE PROTECTION OF PERSONAL DATA

Visitor Clarification Text

Purpose and Scope of the Clarification Text

As EKUPSOFT INFORMATION TECHNOLOGIES INC., we take measures to protect your personal data within the scope of the Law No. 6698 on the Protection of Personal Data ("KVKK" or the "Law"). We process your Personal Data within the scope of KVKK and the relevant legal legislation, in our capacity as the "data controller," for the reasons and by the methods explained below. The EKUPSOFT INFORMATION TECHNOLOGIES INC. Clarification Text on the Processing of Personal Data has been prepared, pursuant to Article 10 of the KVKK titled "The Data Controller's Obligation to Inform," in order to inform you in the most transparent manner about the identity of the data controller, the method and legal basis for collecting your personal data, for what purpose these data will be processed, to whom and for what purpose they may be transferred, the data processing period, and what your rights listed in Article 11 of the KVKK are.

Data Controller

Data Controller: EKUPSOFT INFORMATION TECHNOLOGIES INC.
(The Data Controller shall hereinafter be referred to as the "Company" within the scope of this Clarification Text.)
Address: Yıldırım Beyazıt Mah. Aşık Veysel Bulv. Erciyes Teknopark Tekno-1 Building No: 61 Apt. No: 28 Melikgazi/KAYSERİ
Website: ekupbilisim.com
Phone Number: 0212 541 40 02
E-Mail Address: info@ekupbilisim.com
KEP Address: ekupsoftbilisim@hs06.kep.tr
Pursuant to the Law No. 6698 on the Protection of Personal Data ("Law No. 6698"), your personal data may be processed by the ("Company"), as the data controller, within the scope explained below.

Method of Collection of Personal Data and Legal Grounds

Your personal data may be collected verbally, in writing, or electronically, by automatic or non-automatic methods, through visitor entry forms, security camera records, and similar means used for carrying out activities within the Company. Your personal data may be processed within the period stipulated by legislation or required by the processing purposes and may be stored in both digital and physical environments. Your personal data are processed in line with the purposes set out under the heading "Your Processed Personal Data and Processing Purposes" and within the scope of the explicit consent requirement under paragraph 1 of Article 5 of Law No. 6698, or pursuant to paragraph 2 of Article 5, where:
a) it is explicitly provided for by law,
c) it is mandatory for the data controller to fulfill its legal obligation,
e) data processing is mandatory for the establishment, exercise, or protection of a right,
f) data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the data subject.

Your Processed Personal Data

Your personal data may be processed by EKUPSOFT INFORMATION TECHNOLOGIES INC. within the personal data processing conditions specified in Articles 5 and 6 of Law No. 6698, for the purposes of ensuring security and public order on our premises, managing access records, and fulfilling obligations arising from legislation. Your processed personal data may be transferred to legally authorized persons and parties within the framework of the personal data processing conditions and purposes specified in Articles 8 and 9 of Law No. 6698. Personal Data are processed securely and in compliance with the Personal Data Protection Law. In this context, the following data are collected as personal data;
Identity: This is the data group containing information regarding a person's identity. (e.g. Name, Surname, Turkish ID Number)
Physical Space Security: This data category refers to data types such as employees' entry and exit records and camera records. (e.g. camera image records)
Transaction Security: This data category refers to data types such as IP address information, website login and logout information, password and passcode information. (e.g. log records, IP addresses)

Purposes of Processing Personal Data

Your collected personal data are processed for the following purposes:

  • Ensuring the security of our Company
  • Keeping visitor records
  • Controlling visitor entries and exits
  • Ensuring rapid and effective intervention in emergencies
  • Fulfilling obligations arising from legislation
  • Carrying out activities in compliance with legislation, and in this context, particularly fulfilling the Company's obligations under the Law No. 6502 on the Protection of Consumers, the Law No. 5651 on the Regulation of Publications on the Internet and Combating Crimes Committed Through Such Publications, and the Distance Contracts Regulation,
  • Carrying out processes related to loyalty to the Company / products / services,
  • Monitoring and carrying out legal affairs and, within this scope, preparing invoices, dispatch notes, and similar documents required for sales,
  • Carrying out communication activities and, within this scope, particularly fulfilling the Company's rights and obligations arising from the Law on the Regulation of Electronic Commerce,
  • Carrying out / auditing business activities,
  • Receiving and evaluating suggestions for improving business processes,
  • Carrying out after-sales support services for goods / services,
  • Carrying out sales processes for goods / services,
  • Carrying out production and operational processes for goods / services,
  • Carrying out customer relationship management processes,
  • Carrying out activities aimed at customer satisfaction,
  • Carrying out marketing analysis studies and, within this scope, conducting studies aimed at improving user experience on the website,
  • Carrying out advertising / campaign / promotion processes,
  • Carrying out risk management processes,
  • Carrying out contract processes,
  • Ensuring the security of the Company's information systems and, within this scope;
  • Carrying out information security processes,
  • Carrying out access authorization processes,
  • Monitoring requests / complaints,
  • Carrying out the marketing processes of products / services and, within this scope, ensuring that products of interest are shown to the Visitor and monitoring the Visitor's browsing activities on the website,
  • Providing information to authorized persons, institutions, and organizations

Transfer of Personal Data

Your personal data may be transferred to legally authorized public institutions and organizations, to our lawyers for the resolution of legal disputes, and to legally authorized private persons. In addition, they may be transferred to domestic and foreign data processors only on condition that the necessary technical and administrative measures are taken.

Rights of the Personal Data Owner

Pursuant to Article 11 of the KVKK, the following rights are granted to personal data owners:

  • To learn whether your personal data are being processed
  • To request information if your personal data have been processed
  • To learn the purpose of processing your personal data and whether they are used in accordance with that purpose
  • To know the third parties to whom your personal data are transferred domestically or abroad
  • To request correction of your personal data if they have been processed incompletely or incorrectly
  • To request the deletion or destruction of your personal data within the framework of the conditions stipulated in Article 7 of the KVKK,
  • To request that the operations made regarding correction, deletion, or destruction of your personal data be notified to third parties to whom your personal data have been transferred,
  • To object to the occurrence of a result against you by means of analysis of processed data exclusively through automated systems,
  • To request compensation for damages in case you suffer damage due to unlawful processing of your personal data.

Personal Data Processing Period and Retention Period

Your personal data shall be processed, limited to the purposes specified in this Clarification Text, in compliance with the data processing and limitation periods set forth in all relevant laws and other legal legislation to which the Company's affiliated centers and units are subject. In the event of amendments to the laws regarding data processing periods, the newly determined periods shall be taken as basis. Your personal data are processed, as required by the principle of limitation to purpose, only for the period necessary to fulfill the purposes described in this Clarification Text and in any case limited to the legal periods and the period required in accordance with the Company's commercial practices; after the expiration of these periods, they are deleted, destroyed, or anonymized. If you would like to obtain detailed information regarding the retention periods of your personal page data, you may contact us through the addresses provided in the section on the rights of the relevant person.

Application Methods Within the Scope of the Rights of the Relevant Person

Pursuant to paragraph 1 of Article 13 of the Personal Data Protection Law, you may submit your request regarding the exercise of your rights stated above through the methods specified in the EKUPSOFT INFORMATION TECHNOLOGIES INC. Clarification Text, in accordance with the "Communiqué on the Procedures and Principles of Application to the Data Controller" published on March 10, 2018, numbered 30356. EKUPSOFT INFORMATION TECHNOLOGIES INC. shows utmost sensitivity in acting in compliance with the Constitution and the Law No. 6698 on the Protection of Personal Data and in ensuring the security of your personal data, and takes security measures at the highest level.