• 0

    Protection of Personal Data


    General Information on the Personal Data Protection Law

    The Law on Protection of Personal Data No. 6698 (KVKK) was enacted on March 24, 2016, and published in the Official Gazette on April 7, 2016, with issue number 29677. While some parts of the law came into force on the publication date, others became effective on October 7, 2016.


    Information as a Data Controller

    Under KVKK No. 6698, as a Data Controller, we process your personal data within the scope described on this page. Your personal data may be recorded, stored, updated, disclosed/transferred to third parties where legally permitted, classified, and processed as per the KVKK.


    How Your Personal Data is Processed

    Your personal data shared with our company may be collected, recorded, stored, altered, or rearranged, either partially or fully, automatically or through non-automated means as part of a data recording system. Any transaction performed on personal data is considered as “processing of personal data” under KVKK.


    Purposes and Legal Grounds for Processing Personal Data

    The personal data you share with us is processed for the following purposes:

    • To fulfill the requirements of the services we offer, in compliance with Electronic Commerce Law No. 6563, Consumer Protection Law No. 6502, and relevant regulations.
    • To identify transaction owners and record necessary identity, address, and other details.
    • To fulfill banking and electronic payment obligations, including keeping records of electronic and paper-based transactions.
    • To comply with legal obligations regarding data retention, reporting, and notification requirements.
    • To provide relevant information to public authorities, courts, and officials when legally required.

    Your personal data may be processed in accordance with KVKK and related secondary regulations.


    Third Parties and Organizations with Access to Your Personal Data

    Your personal data may be shared with:

    • Our e-commerce infrastructure provider (i.e., ikas Teknoloji A.Ş.),
    • Suppliers, courier companies, payment service providers,
    • Third-party business partners involved in our commercial activities,
    • Legal authorities when required.


    Collection Methods for Personal Data

    Your personal data may be collected through:

    • Website and mobile application forms (e.g., name, surname, ID number, address, phone number, email),
    • Transaction logs, browser cookies, IP records, location data,
    • Physical or digital forms, business interactions,
    • Social media engagements, blog subscriptions, surveys, and similar online activities.


    Personal Data Collected Before KVKK

    Personal data collected before KVKK’s effective date of April 7, 2016, including membership details, electronic communication consents, purchase records, and others, continue to be processed in accordance with this policy.


    Transfer of Personal Data Abroad

    Your data may be transferred to data processors in foreign countries that are approved by the Turkish Personal Data Protection Authority for maintaining sufficient security and ensuring compliance with KVKK.


    Storage and Protection of Personal Data

    Your personal data will be securely stored in our database as per Article 12 of KVKK.

    • We take technical and physical measures to prevent unauthorized access.
    • If an unauthorized data breach occurs, we will notify the Personal Data Protection Authority immediately.


    Keeping Personal Data Accurate and Up-to-Date

    As per Article 4 of KVKK, you are responsible for ensuring that the personal data you provide to our company is accurate and up to date. You may update your details via our website or mobile app.


    Your Rights Under KVKK

    According to Article 11 of KVKK, personal data owners have the right to:

    1. Learn whether personal data is processed.
    2. Request information regarding data processing.
    3. Understand the purpose of data processing and whether it is used appropriately.
    4. Know the third parties to whom personal data is transferred.
    5. Request correction of incomplete or incorrect data.
    6. Request deletion or destruction of personal data under KVKK Article 7.
    7. Request notification of any correction, deletion, or destruction of data to third parties with whom the data was shared.
    8. Object to automatic processing that results in unfavorable consequences.
    9. Demand compensation if personal data is processed unlawfully and causes harm.


    Contact Information for Personal Data Inquiries

    For inquiries, requests, or complaints regarding your personal data, you may contact us via:

    Email: [.........................]
    Phone: [.........................]
    Fax: [.........................]


    Our company is registered with the Chamber of Commerce under [................] trade registry number and [................] MERSIS number. The Data Controller Representative appointed by our company will be announced in the Data Controllers Registry and published on this page once the legal framework is in place.