PROCESSING AND PROTECTION OF PERSONAL DATA POLICY
1. INTRODUCTION
Within the framework of this Personal Data Protection and Processing
Policy (“Policy”), Medet Global Dış Ticaret Ltd. Şti. Sti. Principles adopted in the conduct
of personal data processing activities carried
out by and Medet Global Foreign Trade Ltd. Sti. The basic principles adopted in terms of
compliance of data processing activities with the regulations in the Law on the Protection
of Personal Data No. 6698 (“Law”) are explained,
and thus our Company, informs personal data owners about the legal provisions and general
principles adopted.
With full awareness of our responsibility in this context, your
personal data is processed within the scope
of this Policy and at a reasonable level. is protected.
2. PURPOSE OF THE POLICY
The main purpose of this Policy is Medet Global Foreign
Trade Ltd. Sti. To set forth the principles regarding the personal data processing activity
and the protection of personal data carried out
in accordance with the law, In this context, it is to ensure transparency by enlightening
and informing the people whose personal data are processed by our company.
3. SCOPE OF THE POLICY
This Policy; Medet Global Foreign Trade Ltd. Sti. regarding
your personal data processed by it; principles of processing personal data and personal
health data, purposes and conditions of processing
these data You are informed below about the practices and principles regarding the transfer,
destruction, and your rights on the processed data in Turkey and abroad.
4. ACCESS AND UPDATE
The policy is published on the website of our Company and is
made available to the relevant persons upon the request of the personal data owners and is
updated when necessary. (The personal data we
collect and process Your data must be accurate and up-to-date when necessary in accordance
with Article 4 of the Personal Data Processing Law No. 6698. Therefore, in case of any
change in your personal data, You can report
your personal and correct personal information through the methods described in the
Clarification Text on our website.)
Our company reserves the right to make changes in
the Policy in line with the legal regulations.
In case of conflict between the current legislation, including the law, and the regulations
included in this Policy, the provisions of the legislation shall apply.
5. DEFINITIONS
The definitions used in this Policy are as follows:
Term |
Definition |
Explicit consent |
Consent on a particular subject, based on information and freely expressed |
Anonymizing |
Making personal data incapable of being associated with an identified or
identifiable natural person under any circumstances, even by matching with other
data |
Personal data |
Any information relating to an identified or identifiable natural person |
Processing of personal data |
Obtaining, recording, storing, preserving, changing personal data completely or
partially automatically or by non-automatic means provided that it is a part of
any data recording system, all kinds of operations performed
on data such as rearrangement, disclosure, transfer, takeover, making available,
classifying or preventing its use |
KVK Law |
Law on Protection of Personal Data No. 6698 |
KVK Board |
Personal Data Protection Board |
KVK Institution |
Personal Data Protection Authority |
Personal data of special nature |
The person's race, ethnic origin, political opinion, philosophical belief,
religion, sect or other beliefs, disguise and dress, association, foundation or
union membership, health, sexual life, criminal conviction and
security measures biometric and genetic data with relevant data |
Data owner |
The real person whose personal data is processed and who is considered as a
"relevant person" in the KVK Law |
Data controller |
The natural or legal person who determines the purposes and means of processing
personal data and is responsible for the establishment and management of the
data recording system |
Data processor |
Real or legal person who processes personal data on behalf of the data
controller, based on the authority given by the data controller |
Data Controllers Registry |
Register of data controllers (VERBIS) kept by the Presidency under the
supervision of the Personal Data Protection Board |
Data Inventory |
Medet Proje Dıç Ticaret Ltd.Sti.'s personal data processing activities carried
out in connection with its business processes; personal data processing
purposes, the recipient group to which the personal data is transferred
and the relevant personal data. Inventory created and detailed by associating
with the data subject group. |
6. PERSONAL DATA INVENTORY AND CLASSIFICATION OF PERSONAL DATA
Medet Proje Dıç
Ticaret Ltd.Sti. by Medet Global Foreign Trade Ltd. Sti. In line with the legitimate and
lawful personal data processing purposes of KVK Law,
Based on and limited to one or more of the personal data processing conditions specified in
Article 5, in particular the principles specified in Article 4 regarding the processing of
personal data, as specified in the KVK Law.
In compliance with the general principles and all obligations set forth in the KVK Law,
personal data owners within the scope of this Policy (Product and Service Purchaser,
Potential Product and Service Buyer, Employees, Employee
Candidates, Visitors, Supplier Employees, Supplier Authorities, Reference,
Shareholder/Partner, Employee Relative, Workplace Physician, Reference Person) ;
•
To fulfill the requirements of commercial activities carried
out by our company To ensure that the relevant persons benefit from the products and
services offered by our company, with the performance of the service,
• Execution of
Goods / Services Production and Operation Processes
• Goods / Service Sales Processes
Execution,
• Execution of Goods / Services After Sales Support Services,
•
Execution of Logistics Activities,
• Execution of Customer Relationship Management
Processes,
• Marketing
Analysis Studies execution,
• Execution of Marketing Processes of Products / Services
• Execution of
Advertising / Campaigns / Promotion Processes,
• Execution of Contract Processes,
•
Follow-up of Requests / Complaints,
• Supply
Chain Management Execution of the Processes,
• Providing Information to Authorized
Persons, Institutions and Organizations,
• Execution / Supervision of Business
Activities,
• Execution of Communication Activities,
• Execution of Finance and
Accounting Affairs,
• Follow-up and Execution of Legal Affairs,
• Information sharing, reporting and
fulfillment of information obligations stipulated by Public Institutions and all
authorities,
• Information and documents arising
from legal legislation For the purposes of fulfilling the storage obligations, personal data
will be processed within the terms and purposes of processing specified in Articles 5 and 6
of the Law No. 6698.
Medet Global
Dış Ticaret Ltd. Şti. Sti. , Personal A personal data inventory has been created in
accordance with the Data Controllers Registry issued by the Data Protection Authority. In
this data inventory, data categories, data source,
data processing purposes, data processing process, There are recipient groups and storage
periods to which the data is transferred.
In this context, Medet Global Foreign Trade
Ltd. Sti. The following types of data categories
include, but are not limited to, these types. ;