Gökdenizler Automotive Loj . and Eng. Singing. Trade Ltd. Sti. We attach importance to the protection of your personal data and/or special quality personal data. We are sensitive about keeping all your personal data and/or special quality personal data transmitted to our company through various means. In this context, Gökdenİzler , in order to comply with the provisions of the Turkish Constitution and other legislation, especially the Law on Protection of Personal Data No. 6698 . Automotive lodging _ and Eng. Singing. Trade Ltd. Sti. We have taken all technical and administrative measures. We would like to emphasize that we will protect your rights guaranteed by the laws. In this context, you can safely share your personal data with our company and forward your suggestions, complaints and hesitations to us. We share with you our Privacy Policy, which has been put into effect in our Company, which is particularly important for the protection of your personal data.

Gokdenizler Automotive Loj . and Eng. Singing. Trade Ltd. Sti.

  1. PURPOSE OF THE PRIVACY POLICY

Protecting personal data and complying with the law is our basic principle. Our company has always shown the necessary sensitivity regarding the protection of personal data and/or sensitive personal data. Gokdenizler Automotive Loj . and Eng. Singing. Trade Ltd. Sti. (hereinafter referred to as “Gökdenizler” or “Company”), the personal data and/or sensitive personal data we receive from you in all our works are kept confidential and not shared with third parties. Again, in accordance with the Law on the Protection of Personal Data No. 6698, our in-house regulations have been re-made; All technical and administrative measures have been taken. In the ongoing process, as Gökdenizler, we accept, declare and undertake to comply with all the responsibilities brought by the Laws.

  1. SCOPE OF PRIVACY POLICY

This Privacy Policy has been prepared in accordance with the Law on the Protection of Personal Data No. 6698. Your personal data and/or sensitive personal data are obtained with your consent or within the scope of compliance with the law. Your said data;

- Ensuring company security,
- Providing you with a complete service,
- Carrying out our commercial activities,
- Quickly solving your problems,
- Increasing our quality.

Some personal data and/or sensitive personal data coming from you are depersonalized and anonymized in accordance with the procedures stipulated by the Law. The data used for statistical purposes are currently not included in the regulation of the Law and the scope of our policy. As Gökdenizler, we have the right to change personal data in order to protect personal data within the scope of compliance with the Law in accordance with our data policy, regulation and directive. The privacy policy aims to protect the data obtained by any means of customers, employees and all other persons of real and legal persons with whom Gökdenizler is a solution partner. In this context, it includes various regulations in order to achieve the intended target.

  1. BASIC PRINCIPLES OF PROCESSING PERSONAL DATA AND/OR SPECIAL QUALITY PERSONAL DATA

Our basic principles regarding the processing of personal data and/or special categories of personal data are as follows. In this context , these principles will also apply to the data that Gökdenizler collects or processes based on consent or

in accordance with the Law. -Compliance with the Law: Gökdenizler questions the source and legality of the personal data and/or personal data of special nature that it receives from natural and legal persons and that it collects through various means. In this context, it is important for Gökdenizler to obtain the data in accordance with the law.

- Compliance with the Rules of Integrity: Gökdenizler questions the source of personal data and/or personal data of special nature that it collects from natural and legal persons and collected through various means. In this context, it is important for Gökdenizler that the data is obtained within the framework of honesty rules.

-Limited, Measured and Connected to the Purpose for which they are Processed: Gökdenizler uses the personal data and/or special quality personal data obtained from various ways in accordance with the purpose for which they are processed, limited for the purpose of processing, in a measured manner and to the extent required by the performance of the service.

- Accuracy of Personal Data and/or Special Quality Personal Data: Gökdenizler attaches importance to the fact that the personal data and/or sensitive personal data received from natural and legal persons and collected through various means do not contain false information and are accurate. - Keeping Up-to-

Date When Necessary: Gökdenizler attaches importance to the communication of the said change to the company and updating the data if there is a change in the personal data obtained in various ways and/or in the personal data of special nature.

-Processing for Specific and Legitimate Purposes: Gökdenizler processes the data within the framework of the consent given by the data owner in order to carry out the commercial activity and to ensure the performance of the work. It does not process and use personal data other than for the purpose of carrying out its commercial activities and ensuring the performance of the business. It does not allow third parties to use and process it.

-Preservation for as long as required by the law and/or for the purpose for which they are processed: Gökdenizler stores the personal data and/or sensitive personal data it obtains for the periods stipulated in the relevant laws. In this context, contractual personal data is kept under its responsibility as much as the statute of limitations and the duration of disputes stipulated by the Laws, as well as the requirements of Commercial, Obligations and Tax Law. When the said purposes are over, it anonymizes, destroys or deletes the data. These data are deleted and destroyed in accordance with the "PERSONAL DATA STORAGE, TRANSFER, DELETE AND ANONIMIZATION POLICY" .

  1. RIGHTS OF THE RELATED PERSON REQUESTING INFORMATION ACCORDING TO ARTICLE 11 OF THE LAW ON THE PROTECTION OF PERSONAL DATA

The rights of the data owner are stipulated in Article 11 of the Law on the Protection of Personal Data No. 6698. In the law, the data owner is deemed to be the relevant person; The right to make certain requests regarding the processing of the data is foreseen. Pursuant to this article, the request rights of the person concerned are as follows:

a) To learn whether personal data has been processed,

b) To request information if personal data has been processed,

c) To learn the purpose of processing personal data and whether they are used in accordance with its purpose,

ç) In the country or abroad Knowing the third parties to whom personal data is transferred,

d) Requesting correction of personal data in case of incomplete or incorrect processing,

e) Requesting the deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the law titled "Deletion, destruction or anonymization of personal data" f) To request that

the information regarding the correction of incomplete or incorrectly processed data or that the data has been deleted or destroyed upon the request of the person concerned, to be notified to the third parties to whom the personal data has been transferred

, h) To demand the compensation of the damage in case of loss due to

unlawful processing of personal data.

Information Request Form in accordance with the Law No. 6698 regarding the application process that enables you to exercise your aforementioned rights. Prepared by Gökdenizler and uploaded to the website . You, whose personal data are processed, can exercise your above-mentioned rights by following the application procedures and principles on our website.

  1. DELETING, DESTROYING AND ANNOUNCEMENT OF PERSONAL DATA

Your personal data and/or sensitive personal data will be deleted, destroyed or anonymized when the statute of limitations and storage periods stipulated in the Law expires, the judicial processes are completed or other relevant requirements are terminated. These data are deleted and destroyed in accordance with the "PERSONAL DATA STORAGE, TRANSFER, DELETE AND ANONIMIZATION POLICY" . Deletion, destruction and anonymization processes are carried out at the request of the relevant data owner or by Gökdenizler ex officio (spontaneously).

  1. PRINCIPLE OF MISSING

The principle of stinginess, also known as the principle of maximum savings. Personal data and/or special quality personal data received through various means are transferred to our Company's system. In accordance with the said principle, the data is processed into the system as much as necessary. The data to be collected by Gökdenizs are determined in accordance with the purpose and vary. In this context, data are collected in accordance with the purpose and data that are not parallel to the purpose are not collected. Redundant data other than its purpose is not recorded in the company system, deleted or anonymized. However, these data can be used for statistical purposes.

  1. PRIVACY AND SECURITY OF DATA

As Gökdenizler, we attach importance to the privacy of your personal data and/or private data. In this context, your personal data and/or personal data of special nature that reach our Company by any means are confidential. Gökdenizler respects the confidentiality of the said data at every stage of its commercial activities. In this context, this Company's privacy policy is fully complied with. Necessary technical and administrative measures are taken to ensure that personal data and/or sensitive personal data collected through various means do not fall into the hands of unauthorized persons, that the rights of the data owner are not harmed, that they are not victims, and that the data is protected. In addition, data protection is requested from companies with which we share personal data and/or sensitive personal data within the framework of Legal Compliance. Again, our software programs are updated and constantly renewed. In order to provide a high level of protection, all technological requirements are fulfilled and compliance with standards is ensured.

  1. CURRENTITY OF DATA

The principle of timeliness is essential in Gökdenizler. Because personal data obtained in various ways and/or special quality personal data are processed and updated upon request. Necessary measures regarding this issue are also taken by Gökdenizler.

  1. ACCURACY OF DATA

The principle of accuracy of declared personal data and/or personal data of special nature has been adopted by Gökdenizler. Gökdenizler is not obliged to investigate the accuracy of personal data and/or sensitive personal data declared by its customers or real and legal persons with whom it is in contact . Because this is not possible legally and in line with our working principles. In this context, all transactions are carried out with the belief that the declared data is correct.

  1. PURPOSE OF PROCESSING PERSONAL DATA AND/OR SPECIAL QUALITY PERSONAL DATA

processing of personal data and/or special quality personal data will be carried out in line with the purposes set forth in the Clarification Text of Gökdenizler . You can access the Illumination Text on the Gökdenizler website.

  1. PROCESSING PERSONAL DATA AND/OR SPECIAL QUALITY PERSONAL DATA

Gökdenizler may process your personal data and/or sensitive personal data in order to carry out its commercial activities, to provide the performance of the service and to fulfill its legitimate purposes. The said data is never used for Unlawful services and illegitimate reasons. Also, sensitivity is shown for the processing of special categories of personal data. Our company complies with the "Policy of Protection and Processing of Special Quality Personal Data" regarding the processing of special quality personal data . In addition, all necessary and sufficient .

  1. PROCESSING PERSONAL DATA AND/OR SPECIAL QUALITY PERSONAL DATA FOR ADVERTISING PURPOSES

Electronic messages sent for advertising purposes must be approved by the recipient. In this context, e-mails for advertising purposes can only be sent to people with prior consent. The subject in question is also clearly regulated in the “Law on the Regulation of Electronic Commerce” and the “Regulation on Commercial Communication and Commercial Electronic Messages ” . Gökdenizler acts in accordance with the provisions of the Law mentioned above when sending electronic commercial messages for advertising purposes. It also complies with the approval and the details of the approval in accordance with the Law. said consent; It can be received in physical environment by all kinds of electronic communication tools or in written form. The basis for the approval is the presence of a positive declaration of will of the recipient of the commercial electronic message that they accept the sending of the commercial electronic message, the presence of the electronic communication address and name-surname. Approval received from the buyer, marketing, promoting the company's goods and services, promoting its business, ensuring its recognition, celebration, wish and congratulation, etc. It should cover all commercial electronic messages sent to electronic communication addresses in order to increase its recognition with the content.

  1. DATA TRANSACTIONS DUE TO THE COMPANY'S LEGAL OBLIGATION AND EXPRESSLY PROVIDED IN THE LAW

Personal data may be processed without further approval, only for the purpose of clearly stating the data processing in the relevant Law and/or fulfilling a legal obligation determined in the Law. The type and scope of the processed data must be necessary for the data processing activity permitted by law. Compliance with the provisions of the relevant Law is essential in all circumstances.

  1. COLLECTION AND PROCESSING OF PERSONAL DATA WITHIN THE CONTRACT RELATIONSHIP

If a contractual relationship is established with customers or prospective customers, the data collected pursuant to the contract may be used by Gökdenizler without obtaining approval. The personal data in question are used within the framework of the performance of the service, the execution of the contract, the execution of the commercial activity and the requirements. This data can be updated by contacting customers.

  1. PERSONAL DATA SHARED WITH BUSINESS - SOLUTION PARTNERS AND TRADE PARTNERS

Gökdenizler has made it a principle to act in accordance with the Law regarding the sharing of personal data. In this context , it acts in accordance with the provisions of the relevant Law while sharing data with its business - solution partners and commercial partners. Gökdenizler shares with its business - solution partners and commercial partners only as much personal data as is necessary for the performance of the service, the execution of the business and the continuation of the commercial activity, with its commitment to data confidentiality . With the shared data, business - solution partners and commercial partners are requested to take the necessary administrative and technical measures to ensure data security.

  1. PERSONAL DATA AND/OR SPECIAL DATA PROCESSED THROUGH AUTOMATIC SYSTEMS

Data obtained from information obtained through automated systems without the explicit consent of individuals cannot be used against individuals. Gökdenizler can only make decisions about the people to be processed by using the data in its own system . With all this in mind, Gökdenizler complies with all relevant legislative provisions regarding personal data and/or special quality personal data processed through automated systems.

  1. GÖKDENİZLER AUTOMOTIVE LOJ. AND ENG. SINGING. TRADE. LTD. ŞTİ.'S PERSONAL DATA AND/OR SPECIAL QUALIFIED PERSONAL DATA



PROCESSING WITHIN THE FRAMEWORK OF LEGAL OBLIGATIONS: Personal Data of Employees may be processed by Gökdenizler without obtaining a separate approval, in order to express an explicit provision in the relevant Law regarding data processing or to fulfill the obligation stipulated by the Law. The processing of the said data is limited to the fulfillment of the obligations arising from the Law.

PROCESSING OF PERSONAL DATA ACCORDING TO THE EMPLOYMENT CONTRACT AND EMPLOYMENT RELATIONSHIP: Personal data of the employees can be processed without the consent of the employees, within the framework of proportionality, as much as necessary to ensure the employment relationship between the employees and the company. Gökdenizler undertakes to protect and confidentiality of employee data under all circumstances and to take every precaution in this regard.

PROCESSING OF SPECIAL QUALIFIED PERSONAL DATA OF EMPLOYEES: In accordance with the Law on the Protection of Personal Data No. 6698, the consent of the person whose data will be processed and additionally necessary measures prescribed by the Board are required for the processing of special quality personal data. While processing personal data with special qualifications within the framework of compliance with the Skyscraper Law and the principles of the Board, it both obtains the consent of the person concerned and takes the necessary measures determined by the Board. However, special categories of personal data may be processed

in exceptional circumstances stipulated in the Law, without the consent of the person concerned, provided that it is limited and measured . PERSONAL DATA PROCESSED THROUGH AUTOMATIC SYSTEMS: Some personal data of employees can be processed in automated systems. The said data are used in the performance evaluation of the employees, keeping the statistical data, promotions and scoring for the Company. The employees have the right to object to the unfavorable results. The objection must be made in accordance with the Company's internal rules and procedures. The said objection is subject to evaluation within the Company.

PROCESSING PERSONAL DATA FOR THE BENEFIT OF EMPLOYEES: Personal data of employees can be processed by Gökdenizler without obtaining approval for transactions related to the benefit of the employee. Again, in disputes regarding the Gökdenizler business relationship, the Company may process the personal data of the employees.

INTERNAL TELECOMMUNICATIONS, INTERNET AND COMMUNICATION: Computers, telephones, cars, applications, software and e-mail can be allocated to internal employees by Gökdenizler in order to facilitate the performance of the work. Gökdeniz can control and audit the personal data on the vehicles it has allocated. The employee, on the other hand, cannot use the vehicles allocated to him for private purposes. It is obligatory to use it only for the purpose of ensuring the performance of the work. Working again, Gökdenizler A.Ş. It accepts, declares and undertakes that it will not contain any data, information other than the work and the necessity of the work, in the vehicles allocated from the moment the working relationship starts with the company.

  1. DOMESTIC AND ABROAD TRANSFER OF PERSONAL DATA

Gökdenizler may share personal data with business-solution partners, commercial partners and controlling shareholders in order to perform the service and carry out commercial activities. Again, Gökdenizler will be able to transfer personal data to its suppliers on a limited and measured basis in order to ensure that the service is provided outsourced from the supplier and necessary for the execution of commercial activities. In this context, Gökdenizler has the authority to transfer personal data within the country and abroad in accordance with the conditions stipulated in the Law and within the framework of the principles determined by the Board and with the approval of the relevant person.

  1. RIGHTS OF THE RELATED PERSON REQUESTING INFORMATION

The rights of the data owner are stipulated in Article 11 of the Law on the Protection of Personal Data No. 6698. Gökdenizler accepts that in accordance with the Law, the consent of the data subject must be obtained before the data is processed, and that the data subject has the right to request information about the data, to be updated, deleted, destroyed and anonymized after the data is processed. Relevant persons to the "Information Request Form Pursuant to Law No. 6698 " Regarding personal data by accessing Gökdenizler 's website;

a) To learn whether personal data is processed,

b) To request information if personal data has been processed,

c) To learn the purpose of processing personal data and whether they are used in accordance with its purpose,

ç) To know the third parties in the country or abroad to whom personal data are transferred,

d) Personal data Requesting correction of data in case of incomplete or incorrect processing of data,

e) Requesting the deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the law titled "Deletion, destruction or anonymization of personal data",

f) Correction of incomplete or incorrectly processed data. or requesting that the information regarding the deletion or destruction of the data be notified to third parties upon the request of the person concerned,

g) Objecting to the emergence of a result against the person himself by analyzing the processed data exclusively through automated systems,

h) Processing of personal data unlawfully. has the right to demand the compensation of the damage in case of loss due to injury .

Applications for the above-mentioned requests are made through the Company's website or by filling in the application form obtained from the Company. The application form can be sent to the KEP address registered at our company address or to info@gokdenizler.com via a notary public, registered mail with return receipt signed with a wet signature ( together with the photocopy of the ID) . Applications must belong to the person concerned. An application cannot be made for a request for information regarding the personal data of another person. In addition, information requests made on behalf of someone else will not be answered by the Company. If it is determined by Gökdenizler that the application made on behalf of another person in the information request is made; Gökdenizler reserves the right to file any lawsuits and claims. The requests of the person concerned will be answered within thirty days at the latest from the date they reach Gökdenizler . If Gökdenizlar deems necessary, it will be able to request other information and documents from the applicant. The person concerned has no right to anonymized personal data within the company.

  1. PRIVACY POLICY

All personal data and/or sensitive personal data belonging to employees and persons who have reached Gökdenizler through various means are confidential. No one can use, reproduce, transfer, copy personal data and/or sensitive personal data outside the scope of the contract, for business purposes and for reasons of compliance with the law.

  1. AUDIT AND PROCEDURE SECURITY

Necessary technical and administrative measures are taken to ensure that personal data and/or sensitive personal data collected through various means do not fall into the hands of unauthorized persons, that the rights of the data owner are not harmed, that they are not victims, and that the data is protected. In addition, data protection is requested from companies with which we share personal data and/or sensitive personal data within the framework of Legal Compliance. Again, our software programs are updated, constantly renewed and developed. In order to provide a high level of protection, all technological requirements are fulfilled and compliance with standards is ensured. In parallel with all these, Gökdenizler has all internal and external audits carried out in order to protect personal data and/or sensitive personal data.

  1. NOTIFICATION OF PERSONAL DATA VIOLATIONS

In case of any breach of personal data, Gökdenizler immediately takes action to do its part to remedy the breaches reported to it. It takes all necessary measures to minimize the harm of the person concerned. In this context, it compensates by minimizing the damage. In the event that personal data and/or sensitive personal data are obtained from outside by unauthorized third parties, the Company notifies the Personal Data Protection Board directly. You can apply for notification of violations in accordance with the procedures specified on our Company's website. In addition, to request information about the data, please click for the “ Information Request Form Pursuant to Law No. 6698” .

  1. UPDATE

Changes to this Privacy Policy are listed and shown in the table below.

 

POLICY UPDATE DATE

26.03.2022

Customer Representative

Thank you for contacting GÖKDENİZLER GROUP! How can we help you?

20:40:40
Start Conversation