General Information About the Personal Data Protection Law
The Law on the Protection of Personal Data No. 6698 (hereinafter referred to as KVKK) was adopted on March 24, 2016, and published in the Official Gazette No. 29677 dated April 7, 2016. Some parts of the KVKK were effective as of the publication date, while others came into effect on October 7, 2016.
Information as a Data Controller
Under Law No. 6698 on the Protection of Personal Data and as a data controller, your personal data may be recorded, stored, updated, disclosed/transferred to third parties when permitted by legislation, classified, and processed in the ways specified on this page.
How Your Personal Data May Be Processed
According to Law No. 6698 on the Protection of Personal Data, your personal data shared with our company may be processed entirely or partially, automatically or non-automatically, by being obtained, recorded, stored, modified, reorganized, in short, processed in any way specified by the KVKK. Any operation performed on data within the scope of the KVKK is considered as "processing of personal data."
Purposes and Legal Grounds for Processing Your Personal Data
The personal data you share may be processed for the following purposes:
- To fulfill the requirements of the services we provide to our customers, to perform contracts and comply with technological requirements,
- To identify the information of the transaction owner, such as identity, address, and other necessary information, for transactions based on the Law No. 6563 on the Regulation of E-Commerce, Law No. 6502 on Consumer Protection, and relevant regulations,
- To regulate payment systems obligatory in banking and electronic payment areas, to prepare all records and documents based on transactions in electronic contracts or paper, and to comply with information storage, reporting, and disclosure obligations required by legislation and other authorities,
- To provide information to prosecutors, courts, and relevant public officials in matters related to public security and legal disputes, upon request and in accordance with the legislation,
- In compliance with Law No. 6698 on the Protection of Personal Data and related secondary regulations. Information about third parties to whom your personal data may be transferred Within the framework of the purposes mentioned above, your personal data may be transferred to individuals/institutions, including but not limited to ShopGaranti.com, which provides the e-commerce infrastructure of our company, suppliers, courier companies, and other service-related individuals and organizations, program partner organizations with which cooperation is carried out, domestic/foreign organizations, and other third parties.
How Your Personal Data Is Collected
Your personal data is collected through:
- Forms on our company's website and mobile applications, containing information such as name, surname, Turkish ID number, address, phone, business or personal email, as well as data such as preferences on pages accessed using a username and password, IP records of transactions, cookie data collected by the browser, and navigation time and details,
- Verbal, written, or electronic means through channels such as our sales and marketing department employees, our branches, suppliers, other sales channels, paper forms, business cards, digital marketing, and call centers,
- Data obtained indirectly through different channels, such as websites, blogs, competitions, surveys, games, campaigns, and similar (micro) websites, as well as data obtained from social media platforms, public databases, and publicly shared profiles and data from social media; can be processed and collected.
Your personal data obtained before the effective date of the KVKK
Your personal data obtained lawfully before the effective date of the KVKK, such as membership, electronic communication consent, product/service purchase, and other lawful means, are processed and stored in accordance with the terms and conditions specified in this document.
Transfer of Your Personal Data Abroad
Your personal data, collected by any of the above-mentioned methods, may be transferred abroad in compliance with the KVKK, provided that it remains within the scope of the KVKK and in line with the purposes of the contracts, to service providers in countries accredited by the Personal Data Protection Board, where adequate protection of personal data is available.
Storage and Protection of Your Personal Data
Your personal data will be kept confidential in the database and systems of our company in accordance with Article 12 of the KVKK. They will not be shared with third parties in any way other than legal obligations and regulations specified in this document. Our company is obliged to take software measures such as preventing the unlawful processing of personal data, preventing unauthorized access, access management, and physical security measures in the systems and databases where your personal data is located, in accordance with Article 12 of the KVKK. In case it is learned that personal data has been obtained unlawfully by others, the situation will be immediately reported to the Personal Data Protection Board in compliance with legal regulations and in writing.
Keeping Your Personal Data Accurate and Up-to-Date
Under Article 4 of the KVKK, our company has the obligation to keep your personal data accurate and up-to-date. In this context, our customers need to share or update their correct and up-to-date data through the website/mobile application or other communication channels to enable our company to fulfill its obligations arising from the current legislation.
Rights of the Data Subject Under the Law No. 6698 on the Protection of Personal Data
According to Article 11 of Law No. 6698 on the Protection of Personal Data, which came into effect on October 7, 2016, the rights of the data subject are as follows:
The data subject has the right to;
- Learn whether personal data is being processed,
- Request information if personal data has been processed,
- Learn the purpose of the processing of personal data and whether they are used appropriately for their purpose,
- Know the third parties to whom personal data are transferred, domestically or abroad,
- Request correction of personal data in case of incomplete or incorrect processing,
- Request deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the KVKK,
- Request notification of the correction, deletion, and destruction processes to third parties to whom personal data have been transferred, in case personal data is corrected, deleted, or destroyed,
- Object to the occurrence of a result against the individual by analyzing the processed data exclusively through automated systems,
- Demand compensation for the damages in case the personal data is processed unlawfully and causes damage. Personal Data Subjects are informed that İstanbul Chamber of Commerce is the Data Controller registered with the number [..........................], having MERSIS number [.............................], located at Hamidiye, Hamidiye Mah. Veysel Karani Cad, Akşemsettin Sk. No:29, 34408 Kâğıthane/İstanbul under the scope of ARS Mobile Stage & Event. The Data Controller Representative to be appointed by our company will be announced on the Data Controllers Registry and the internet address where this document is located when the legal infrastructure is provided. Data Subjects can direct their questions, opinions, or requests to any of the following contact channels:
Email: info@arsorg.com
Phone: 0505 465 90