TEKSTİLAY KONFEKSİYON SANAYİ VE TİCARET ANONYMOUS COMPANY
INFORMATION TEXT ON PROCESSING OF PERSONAL DATA

This Disclosure Text has been prepared by TEKSTİLAY KONFEKSİYON SANAYİ VE TİCARET ANONİM ŞİRKETİ (“Company”) in order to inform the Company’s customers regarding the processing of their personal data by the Company within the scope of the Personal Data Protection Law No. 6698 of the Republic of Turkey (“Law”).

You can access detailed information regarding the processing of your personal data within the scope of this Information Text from the Tekstilay Konfeksiyon Sanayi ve Ticaret Anonim Şirketi Personal Data Protection and Processing Policy located at www.mavipink.com.tr.

a) Methods of Obtaining Personal Data and Legal Reasons
Your personal data is collected in electronic or physical environment. Your personal data collected for the legal reasons specified in this Disclosure Text may be processed and shared within the framework of the personal data processing conditions specified in Articles 5 and 6 of the Law.

b) Purposes of Processing Personal Data
Your personal data is processed for the purposes of planning and executing the activities required for customizing the products and services offered by the Company according to the tastes, usage habits and needs of the relevant persons and recommending and introducing them to the relevant persons within the framework of the personal data processing conditions specified in Articles 5 and 6 of the Law, carrying out the necessary work by the business units to benefit the relevant persons from the products and services offered by the Company and carrying out the relevant business processes, carrying out the necessary work by the relevant business units to carry out the commercial activities carried out by the Company and carrying out the relevant business processes, planning and executing the commercial and/or business strategies of the Company and ensuring the legal, technical and commercial-occupational security of the Company and the relevant persons who have a business relationship with the Company.

c) Parties with whom Personal Data may be shared and Sharing Purposes Your personal data will be shared for the purposes of planning and executing the activities required for customizing the products and services offered by the Company according to the tastes, usage habits and needs of the relevant persons and recommending and introducing them to the relevant persons within the framework of the personal data processing conditions and purposes specified in Articles 8 and 9 of the Law, carrying out the necessary work by the business units and carrying out the relevant business processes to benefit the relevant persons from the products and services offered by the Company, carrying out the necessary work by the relevant business units and carrying out the relevant business processes to carry out the commercial activities carried out by the Company, planning and executing the commercial and/or business strategies of the Company and ensuring the legal, technical and commercial-occupational security of the Company and the relevant companies in business relations with the Company, social media platforms, companies performing advertising/analysis measurement, companies providing marketing infrastructure via e-mail, and all relevant persons in relationship with the Company. It may be shared with the Company's business partners and suppliers, legally authorized institutions and organizations, and legally authorized private law legal entities within the scope of the Company.

d) Rights of Data Owners and Exercise of These Rights
If you, as personal data owners, submit your requests regarding your rights specified below to the Company using the methods specified under the heading Exercise of Rights by Data Owners, your requests will be evaluated and finalized by our Company as soon as possible and in any case within 30 (thirty) days.

As a personal data owner, you have the following rights in accordance with Article 11 of the Law:

To learn whether your personal data has been processed,
To request information about your personal data if it has been processed,
To learn the purpose of processing your personal data and whether it is used in accordance with its purpose,
To know the third parties to whom your personal data has been transferred domestically or abroad,
To request correction of your personal data if it has been processed incompletely or incorrectly and to request notification of the transaction made within this scope to the third parties to whom the personal data has been transferred,
To request deletion or destruction of your personal data if the reasons requiring processing are eliminated despite the fact that it has been processed in accordance with the provisions of the Law and other relevant laws and to request notification of the transaction made within this scope to the third parties to whom the personal data has been transferred,
To object to the emergence of a result against the person by analyzing your processed data exclusively through automated systems,
To request compensation for the damages incurred due to the unlawful processing of your personal data.
The second paragraph of Article 28 of the Law lists the cases in which data owners do not have the right to request, and in this context;

Personal data processing is for the prevention of crimes and or it is necessary for a criminal investigation,

Processing of personal data made public by the relevant person,

Personal data processing is necessary for the execution of audit or regulatory duties and disciplinary investigation or prosecution by authorized and authorized public institutions and organizations and professional organizations with the status of public institution based on the authority granted by the law,
Personal data processing is necessary for the protection of the economic and financial interests of the State regarding budget, tax and financial issues,
In such cases, the rights specified above cannot be exercised regarding the data.
According to Article 28, paragraph 1 of the Law, since the data will be outside the scope of the Law in the following cases, the requests of the data owners will not be processed regarding this data either:
Processing of personal data by real persons within the scope of activities related to themselves or their family members living in the same residence, provided that they are not disclosed to third parties and that the obligations regarding data security are complied with.
Processing of personal data for purposes such as research, planning and statistics by making them anonymous with official statistics.
Processing of personal data for artistic, historical, literary or scientific purposes or within the scope of freedom of expression, provided that it does not violate national defense, national security, public safety, public order, economic security, privacy or personal rights or does not constitute a crime.

Processing of personal data within the scope of preventive, protective and intelligence activities carried out by public institutions and organizations authorized by law to ensure national defense, national security, public safety, public order or economic security.

Processing of personal data by judicial authorities or enforcement authorities regarding investigation, prosecution, trial or execution procedures.

Use of Rights by Data Owners

Data owners can make a request to Member Login> My Account> Support Request via www.mavipink.com.tr to exercise the above-mentioned rights.
Applications are evaluated after they are sent to [email protected] e-mail address, together with documents that will identify the relevant data owner.
The Company responds to data owners who wish to exercise such rights within the limits set forth in the Law, within a maximum of thirty (30) days as set forth in the Law. In order for third parties to apply on behalf of personal data owners, there must be a special power of attorney issued by the data owner through a notary public in the name of the person who will apply.

While data owner applications are processed free of charge as a rule, a fee may be charged according to the fee schedule[1] stipulated by the Personal Data Protection Board.

The Company may request information from the relevant person in order to determine whether the applicant is the personal data owner and may ask questions to the personal data owner regarding their application in order to clarify the issues specified in the application.


[1] In accordance with the “Communiqué on the Procedures and Principles of Application to the Data Controller” published in the Official Gazette dated 10.03.2018 and numbered 30356, if a written response is to be given to the application of data owners, no fee will be charged for up to ten pages. A processing fee of 1 Turkish Lira may be charged for each page over ten pages. If the response to the application is given on a recording medium such as a CD or flash memory, the fee that may be requested by the Institution cannot exceed the cost of the recording medium.

 

cultureSettings.RegionId: 0 cultureSettings.LanguageCode: EN