KARDEMİR HADDECİLİK SAN. VE TİC. Inc. aspect; Processing the personal data of real persons, including our customers, suppliers and employees, in accordance with the Constitution of the Republic of Turkey, international conventions regarding human rights to which our country is a party, and the relevant legislation, in particular the Law on the Protection of Personal Data No. 6698 (“KVKK”), and to effectively enforce the rights of the data subjects. Ensuring its use is our priority. Therefore, but not limited to those listed; Our employees, suppliers, customers, users visiting our website, in short, the processing, storage and transfer of data regarding all personal data we obtain during our activities are carried out by KARDEMİR HADDECİLİK SAN. VE TİC. Inc. We do this in accordance with the Personal Data Retention and Disposal Policy. Protection of personal data and observance of the fundamental rights and freedoms of natural persons whose personal data are collected are the basic principles of our policy regarding the processing of personal data. For this reason, we carry out all our activities in which personal data are processed, taking into account the protection of privacy, the confidentiality of communication, freedom of thought and belief, and the right to use effective legal remedies. In order to protect personal data, we take all administrative and technical protection measures required by the nature of the relevant data in accordance with the legislation and current technology. This Policy explains the methods we follow for the processing, storage, transfer, deletion or anonymization of personal data shared during our commercial or social responsibility and similar activities within the framework of the principles mentioned in the KVKK.
All personal data processed by the Company, including our customers, employees, suppliers and third parties, are within the scope of this Policy. Our policy is implemented in all activities related to the processing of personal data owned or managed by the Company, and has been handled and prepared by considering the KVKK and other relevant legislation regarding personal data and international standards in this field.
In this section, special terms and phrases, concepts, abbreviations, etc. in the Policy. briefly explained.
Explicit Consent: Consent to a particular subject, based on information and free will, with a clear and unambiguous, limited only to that transaction.
Anonymization: It is the rendering of personal data in no way associated with an identified or identifiable natural person, even by matching with other data.
Employee: Company Personnel.
Personal Data Owner (Relevant Person): The natural person whose personal data is processed.
Personal Data: Any information relating to an identified or identifiable natural person.
Sensitive Personal Data: Data about people's race, ethnic origin, political opinion, philosophical belief, religion, sect or other beliefs, clothing, membership to associations, foundations or unions, health, sexual life, criminal convictions and security measures. biometric and genetic data.
Processing of Personal Data: Obtaining, recording, storing, storing, changing, rearranging, disclosing, transferring, taking over, making available, classifying personal data by fully or partially automatic or non-automatic means provided that it is a part of any data recording system. or any kind of operation performed on the data, such as preventing its use.
Data Processor: The natural or legal person who processes personal data on behalf of the data controller, based on the authority given by the data controller.
Data Controller: KARDEMİR HADDECİLİK SAN. VE TİC. Inc.
KVK Board: Personal Data Protection Board.
KVK Authority: Personal Data Protection Authority.
KARDEMİR HADDECİLİK SAN. VE TİC. Inc. KVK Committee: KARDEMİR HADDECİLİK SAN. VE TİC. Inc. Personal Data Protection Committee
KVKK: Law on Protection of Personal Data published in the Official Gazette dated 7 April 2016 and numbered 29677.
Policy: KARDEMİR HADDECİLİK SAN. VE TİC. Inc. Personal Data Retention and Disposal Policy.
The Board of Directors is responsible for the oversight of the determination and operation of notification, review and sanction mechanisms in case of non-compliance with the Policy, rules and regulations. Personal Data Protection and Processing Policy has been approved by the Board of Directors. It is the authorized approval mechanism to ensure that the policy is created, implemented and updated when necessary.
KARDEMİR HADDECİLİK SAN. VE TİC. Inc. KVK Committee is responsible. KARDEMİR HADDECİLİK SAN. VE TİC. Inc. KVK Committee IT Manager, Human Resources Manager, Import Manager, Export Manager, Legal Advisor, KARDEMİR HADDECİLİK SAN. VE TİC. Inc. KVKK Committee; evaluates this Policy in terms of timeliness and development needs, when necessary. Publishing the prepared document on the corporate portal, distributing it within the institution and publishing it on the website KARDEMİR HADDECİLİK SAN. VE TİC. Inc. It is the responsibility of the KVK Committee.
Legal obligations within the scope of protection and processing of personal data as a data controller pursuant to KVKK are listed below:
While collecting personal data as a data controller;
For what purpose your personal data will be processed,
Our identity, information on the identity of our representative, if any,
To whom and for what purpose your processed personal data can be transferred,
Our method of collecting the data and the legal reason,
Rights arising from Article 11 of the Law,
We have an obligation to inform the Relevant Person regarding its matters. As a company, we take care to ensure that this Policy, which is open to the public, is clear, understandable and easily accessible.
As the data controller, we take the administrative and technical measures stipulated in the legislation to ensure the security of the personal data in our responsibility. Obligations and measures regarding data security are detailed in the 9th and 10th sections of this Policy.
Personal data; Any information relating to an identified or identifiable natural person. The protection of personal data is only related to real persons, and information belonging to legal entities that do not contain information about the real person is excluded from personal data protection. Therefore, this Policy does not apply to data belonging to legal entities.
Data on people's race, ethnic origin, political opinion, philosophical belief, religion, sect or other beliefs, their costumes, associations, foundations or union memberships, health, sexual life, criminal convictions and security measures, and biometric and genetic data are privately owned. qualified personal data.