GDPR

ANADOLU AJANSI MEDYA İLETİŞİM TEKNOLOJİLERİ ANONİM ŞİRKETİ Within the scope of the Law on the Protection of Personal Data Privacy Policy and Clarification Text

Data Controller

Anadolu Ajansı Medya İletişim Teknolojileri Anonim Şirketi

Website: aateknoloji.tr
Phone Number: +90 312 999 20 00
Email Address: info@aateknoloji.tr
Address: Eti Mh. Gazi Mustafa Kemal Boulevard No:132 06570 Maltepe-Çankaya Ankara

Data Controller

Anadolu Ajansı Medya İletişim Teknolojileri Anonim Şirketi

Website: aateknoloji.tr
Phone Number: +90 312 999 20 00
Email Address: info@aateknoloji.tr
Address: Eti Mh. Gazi Mustafa Kemal Boulevard No:132 06570 Maltepe-Çankaya Ankara

General Principles of Data Protection

We process your personal data in accordance with the general principles of data protection law. These principles are:

  • Processing personal data transparently, lawfully and fairly,
  • Processing personal data for specific, explicit and legitimate purposes,
  • Processing personal data only for the purposes stated and in a limited manner,
  • Keeping data accurate and up to date,
  • Retaining data only for as long as necessary for the processing purpose,
  • Storing data securely.

What Types of Data Do We Collect?

As Anadolu Ajansı Media Communication Technologies Joint Stock Company (the "Company"), within the scope of our activities, we process your personal data in line with the general principles foreseen in Article 4 of the Law on the Protection of Personal Data ("KVKK") and Article 5 of the General Data Protection Regulation (GDPR). The personal data we process are as follows:

  • Your identity information (Name, surname, trade name for sole proprietorships, signature/signature circular, Turkish ID number, gender, date of birth)
  • Your contact information (Phone number, email address, business address and residence address information)
  • Your professional experience information (position/title, rank, unit, organization/company, resume, education information)
  • Your financial information (Bank account-IBAN information, amount information, payment information, invoice information, tax office information, receivable-debt information, reconciliation information)
  • Your marketing information (Communication preference information, cookie records)
  • Your legal transaction information (Information included in correspondence with judicial authorities, personal data in case/execution files, contract information, approval/consent information)
  • Your request and complaint information (Request, complaint and suggestion content information, social media account information)

Where Do We Obtain This Data?

We obtain the personal data we process via:

  • The Company website and the forms on this address, by automatic means,
  • Your order processes, by automatic means,
  • Case/execution files and notifications, by non-automatic and partly automatic means,
  • Documents you submit to us, by non-automatic means,
  • Relevant public institutions and organizations, by non-automatic and partly automatic means,
  • Email, by partly automatic means,
  • Verbally, by non-automatic means,
  • Physical documents delivered to us, by non-automatic means,
  • Applications submitted, by partly automatic and non-automatic means,
  • Contracts, by non-automatic means,
  • Accounting systems, by partly automatic means,
  • Relevant software and programs used, by automatic means.

What Are Our Purposes for Processing This Data and Which Legal Basis Do We Rely On?

Data processing conditions foreseen under KVKK are:

  • Existence of explicit consent (Art.5/1, Art.6/3-a)
  • Explicitly stipulated in laws (Art.5/2-a, Art.6/3-b)
  • It is necessary to protect the life or physical integrity of the person who is unable to disclose his/her consent due to actual impossibility or whose consent is not legally valid (Art.5/2-b)
  • Provided that it is directly related to the conclusion or performance of a contract, processing of personal data of the parties is necessary (Art.5/2-c)
  • It is necessary for the data controller to fulfill its legal obligations (Art.5/2-ç)
  • Personal data made public by the data subject (Art.5/2-d)
  • It is necessary for the establishment, exercise or protection of a right (Art.5/2-e)
  • Provided that it does not harm the fundamental rights and freedoms of the data subject, processing is necessary for the legitimate interests of the data controller (Art.5/2-f)

Data processing conditions foreseen under the General Data Protection Regulation (GDPR) are:

  • The data subject has given consent to the processing of his or her personal data for one or more specific purposes (Art.6/1-a)
  • Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract (Art.6/1-b)
  • Processing is necessary for compliance with a legal obligation to which the controller is subject (Art.6/1-c)
  • Processing is necessary in order to protect the vital interests of the data subject or of another natural person (Art.6/1-d)
  • Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller (Art.6/1-e)
  • Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject (Art.6/1-f)

Your identity information

  • To verify your identity, (KVKK, m.5/2-ç, m.5/2-f) – (GDPR, m.6/1-c, m.6/1-f)
  • To carry out and supervise business activities, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out communication activities, (KVKK, m.5/2-c, m.5/2-ç, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-c, m.6/1-f)
  • To carry out payment and payment request processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To fulfill our legal obligations, (KVKK, m.5/2-a, m.5/2-ç, m.5/2-e) – (GDPR, m.6/1-c)
  • To follow legal and judicial processes, (KVKK, m.5/2-a, m.5/2-ç, m.5/2-e) – (GDPR, m.6/1-c)
  • To carry out contract processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out invoicing processes, (KVKK, m.5/2-c, m.5/2-ç) – (GDPR, m.6/1-b, m.6/1-c)
  • To carry out withholding tax declaration processes, (KVKK, m.5/2-ç) – (GDPR, m.6/1-c)
  • To create current cards and perform reconciliations, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out request and complaint processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)

Your contact information

  • To carry out and supervise business activities, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out communication activities, (KVKK, m.5/2-c, m.5/2-ç, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-c, m.6/1-f)
  • To fulfill our legal obligations, (KVKK, m.5/2-a, m.5/2-ç, m.5/2-e) – (GDPR, m.6/1-c)
  • To follow legal and judicial processes, (KVKK, m.5/2-a, m.5/2-ç, m.5/2-e) – (GDPR, m.6/1-c)
  • To carry out contract processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out invoicing processes, (KVKK, m.5/2-c, m.5/2-ç) – (GDPR, m.6/1-b, m.6/1-c)
  • To carry out withholding tax declaration processes, (KVKK, m.5/2-ç) – (GDPR, m.6/1-c)
  • To carry out payment and payment request processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To create current cards and perform reconciliations, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out request and complaint processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)

Your professional experience information

  • To carry out and supervise business activities, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out communication activities, (KVKK, m.5/2-c, m.5/2-ç, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-c, m.6/1-f)
  • To carry out contract processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To follow legal and judicial processes, (KVKK, m.5/2-a, m.5/2-ç, m.5/2-e) – (GDPR, m.6/1-c)
  • To create current cards and perform reconciliations, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)

Your financial information

  • To carry out and supervise business activities, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out payment and payment request processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To follow legal and judicial processes, (KVKK, m.5/2-a, m.5/2-ç, m.5/2-e) – (GDPR, m.6/1-c)
  • To carry out contract processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out invoicing processes, (KVKK, m.5/2-c, m.5/2-ç) – (GDPR, m.6/1-b, m.6/1-c)

Your marketing information

  • To carry out contract processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out communication activities, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out request and complaint processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)

Your legal transaction information

  • To carry out and supervise business activities, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To fulfill our legal obligations, (KVKK, m.5/2-a, m.5/2-ç, m.5/2-e) – (GDPR, m.6/1-c)
  • To follow legal and judicial processes, (KVKK, m.5/2-a, m.5/2-ç, m.5/2-e) – (GDPR, m.6/1-c)
  • To carry out contract processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To carry out invoicing processes, (KVKK, m.5/2-c, m.5/2-ç) – (GDPR, m.6/1-b, m.6/1-c)

Your request/complaint information

  • To carry out request and complaint processes, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)
  • To receive and respond to hardware, software and technical support requests, (KVKK, m.5/2-c, m.5/2-f) – (GDPR, m.6/1-b, m.6/1-f)

With Whom Do We Share Data?

We may share the personal data we process with:

  • Courts and authorized public institutions and organizations to follow legal and judicial processes,
  • Authorized public institutions and organizations to fulfill our legal obligations,
  • Law firms for the execution of legal processes,
  • Banks for the execution of payment processes,
  • Auditors for the execution of audit processes,
  • Relevant suppliers for the execution and supervision of business activities,
  • Private and legal persons we correspond with to carry out necessary correspondence and communication activities,

We may share as above. Apart from the third parties specified, we do not share your personal data with unrelated or unauthorized third parties.

Storage and Destruction of Personal Data

As a company, we process and store your personal data in line with the purpose of processing and in a manner connected and proportionate to that purpose, in compliance with general principles.

We take all kinds of technical and administrative measures to ensure the security of the personal data stored, and we audit the compliance of third parties to whom we transfer your data with these measures.

We store your personal data by taking into account factors such as the purpose and reason for processing, the period required by the relevant legislation and our legal obligations.

According to the stated criteria, if we no longer need a personal data item and we do not have a legal retention obligation, we destroy the relevant personal data.

What Are Your Rights Under KVKK

Data subjects may apply to us and:

  • Learn whether personal data is processed,
  • Request information if personal data has been processed,
  • Learn the purpose of processing personal data and whether it is used in accordance with the purpose,
  • Know the third parties to whom personal data is transferred domestically or abroad,
  • Request correction of personal data if it is incomplete or incorrectly processed, and request that the transaction carried out in this context be notified to third parties to whom personal data has been transferred,
  • Request deletion or destruction of personal data if the reasons requiring processing are eliminated, even though it has been processed in accordance with the KVKK and other relevant laws, and request that the transaction carried out in this context be notified to third parties to whom personal data has been transferred,
  • Object to the emergence of a result against the person by analyzing the processed data exclusively through automated systems,
  • Request compensation for damages in case of damage due to unlawful processing of personal data

You can submit your requests regarding your rights in accordance with the Communiqué on the Principles and Procedures of Application to the Data Controller. Your requests will be evaluated free of charge and concluded as soon as possible and at the latest within thirty (30) days. If the evaluation and decision-making process requires an additional cost, the fee determined in the tariff by the Personal Data Protection Board will be charged. If you would like to receive detailed information regarding your data processing processes, you can contact us again.