GDPR and General Privacy Policy

Last Updated at 19 Oct 2020 will not share, sell or use the personal data transmitted electronically to the users via the website ("Website") with third parties, except for the purposes described in the scope of the relevant law and the collection of personal data.'s Personal Data Policy is below.

IP Numbers: determines and uses the IP address of users when necessary in order to identify problems related to the system and to resolve any problems that may arise on the Website. IP addresses can also be used to identify users in a public (anonymous) manner and to collect comprehensive demographic information.

Anonymous Data: Information requested by or information provided by the user, or information regarding transactions made through the Website, various statistical evaluations anonymously by and its collaborators (without revealing the identity of the user) can be used for database creation, personalized packages / offers and market research.

Linking to other sites: may link to other sites within the Website. does not bear any responsibility for the privacy practices and contents of sites accessed via links.

Bank / Credit Card Information: uses an SSL certificate that provides information security with 256 bit encryption algorithm in data transmission. The bank / credit card information of the users is only used by the bank or payment institution during the purchase process and is in no way kept in the database. offers an infrastructure where card information can be stored through PCI DSS certified institutions in order to facilitate the next purchases of users. As a result of Card Storage Services with PCI DSS standard and licensed by the BRSA, the information on debit / credit cards facilitates the steps of Authentication and Authorization, and provides bank / credit card holders with the opportunity to use a safe and easy payment tool.

Where user data can be disclosed: User personal data includes name, surname, address, phone number, e-mail address and all kinds of information to identify the user. Unless otherwise stated in this privacy policy, will not disclose any of the personal data to third parties except and affiliated companies. may disclose user information to third parties by going beyond the provisions of this privacy policy in the following situations. These situations;

  1. Law, Decree Law, Regulation etc. Complying with the obligations imposed by the rules of law issued and in force by the competent legal authority;
  2. Fulfilling the requirements of the contracts concluded by with users and putting them into practice;
  3. It is the cases where it is necessary to request information about users for the purpose of conducting a research or investigation duly carried out by the competent administrative and judicial authority and to provide information to protect the rights or security of the Users., to keep confidential information strictly private and confidential, to consider it as a confidentiality obligation and to ensure and maintain confidentiality, to take all necessary measures to prevent the unauthorized use or disclosure of all or any part of confidential information to the public domain, and undertakes to show the necessary care.

Cookie status: can obtain information about users and their use of the Website by using a technical communication file (Cookie-Cookie) prepared by itself or by third parties. The mentioned technical communication files are small text files that a website sends to the user's browser to be stored in the main memory. The technical communication file keeps the session open by storing the user's session information, password and preferences, making it easier to use by recognizing the user on their next visit. The technical communication file helps the Help Center to obtain statistical information about how many people use the Website, for what purpose, how many times a person visits the Website and how long they stay, and to dynamically produce advertisements and content from user pages specially designed for users. . The technical communication file is not designed to receive data or any other personal information from the main memory or e-mail. Most of the browsers are originally designed to accept the technical communication file, but users can change the settings so that the technical communication file does not arrive or a warning is given when the technical communication file is sent.

Data collected in surveys, competitions and similar situations: Information requested from users responding to periodic surveys and competitions organized by within the Website, and direct marketing to these users by and its collaborators, It is used for statistical analysis and to create a database.

E-bulletin submissions and announcements: sends weekly e-bulletins to inform users about economic developments, agenda and their own fields. If deemed necessary or in agreement with 3rd party partners, it may send Campaign / Offer / Package announcements with promotion and information content. Users can block these e-mails from reaching them by clicking the specified link, as explained at the bottom of the e-mail. If you want to unsubscribe from our daily e.mail mailing list at any time, you can easily unsubscribe from e-newsletter subscription with one click by clicking the "Please click to unsubscribe from our e-newsletter list" link at the bottom of the e-mails we send.

Informing as a data controller
As, whose detailed corporate information is published below, in accordance with the GDPR as Data Supervisor, your personal data are explained below; will be recorded, stored, updated, disclosed / transferred to third parties, classified and processed in the ways listed in the GDPR, when permitted by the legislation.

Definition of Personal Data Under Law
Your identity (name, surname, TR ID number, etc.), communication, information about the methods used to access products (IP, mobile tel brand-model, browser type, version, social media information, movements on the screens, etc.) It refers to all kinds of information that will enable you to be determinative or identifiable.

How your personal data can be processed
In accordance with GDPR, your personal data you share with our company are obtained, recorded, stored, changed, rearranged, completely or partially, automatically, or by non-automatic means provided that it is a part of any data recording system; Provided that its security and confidentiality is ensured within the scope of the legislation: by disclosing, transferring, taking over, making it available, classifying or preventing its use, in short, it can be processed by us as the subject of any transaction performed on the data. Within the scope of the GDPR, any transaction performed on data is considered as "processing of personal data".

Purposes and legal reasons for processing your personal data
The personal data you share,

  • In order to fulfill the requirements of the services we provide to our customers in accordance with the requirements of the contract and technology, to improve our products and services;
  • To arrange all the records and documents that are mandatory in the field of banking, insurance, electronic payment, electronic contract or paper processing; In order to comply with the information storage, reporting and informing obligations stipulated by the legislation and other authorities;
  • In order to provide information to public prosecutors, courts and relevant public officials on issues related to public security and legal disputes, upon request and in accordance with the legislation;
It will be processed in accordance with the GDPR and relevant secondary regulations.

Registration of your identity, address, tax number and other information to determine the transaction owner and addressee in all kinds of business and transactions related to all kinds of products and services we will offer to you, the arrangement of the information and documents that will be the basis for the business and transactions to be carried out in electronic environment, legal and To comply with the information storage, reporting and information obligations stipulated by all administrative authorities to provide other products and services offered and requested as and to fulfill the requirements of the contracts between us will be processed.

Information about third parties or organizations to which your personal data may be transferred
Persons / organizations to whom your personal data shared with our company can be transferred for the purposes stated above; Our main shareholders, our direct or indirect domestic / foreign affiliates and, including but not limited to, individuals and organizations related to the service provided, to carry out our activities and / or as Data Processors, we cooperate with, program partner organizations, domestic / foreign organizations and other third parties.

In addition, to the individuals and institutions from whom we receive services in terms of product / service comparison and application, we cooperate with, program partner institutions, organizations, banks , financial institutions, providers or companies, whom we receive service for storing data in cloud environment, The messages we send to our customers can be transferred to the contracted institutions and other third parties within the framework of our related collaborations.

How your personal data is collected
Your personal data,

  • Through the forms on the website of our company, name, surname, ID number, passport number, address, telephone, business or private e-mail address, age, gender, profession, food preferences, user name and password preferences, transactions performed In the form of IP records, cookie data collected by the browser and data including browsing time and details, location data;
  • Through our channels such as sales and marketing department employees, agents, dealers, paper forms, business cards, digital marketing and call center, verbally, in writing or electronically;
  • For purposes such as establishing a commercial relationship with our company, applying for a job, making a proposal, business cards, CVs, bids and other means, taken from persons who share their personal data, in a physical or virtual environment, face to face or distance, verbally or in writing or from the electronic environment;
  • In addition, data obtained indirectly from different channels, from (micro) websites and social media used for websites, blogs, contests, surveys, games, campaigns and similar purposes, e-bulletin reading or clicking movements, data provided by public databases From profiles and data open to sharing on social networking sites such as social media platforms (Facebook, Twitter, Google, Instagram, Snapchat etc.);
    can be processed and collected.

Storage and protection of personal data
Your personal data will be kept confidential in the database and systems of our company in accordance with article 12 of the GDPR; It will not be shared with third parties in any way other than legal obligations and regulations specified in this document. Our company prevents the systems and databases in which your personal data is stored, by preventing the unlawful processing of personal data in accordance with Article 12 of the GDPR, by preventing the access of unauthorized persons; It is obliged to take software and physical security measures such as hash, encryption, transaction recording, access management in order to ensure their protection. If it is learned that personal data is obtained illegally by others, the situation will be immediately reported to the Personal Data Protection Board in accordance with the legal regulation and in writing.

Personal data will be stored for as long as the purpose of providing this information is valid. Your data will continue to be processed by us even after the service you receive from us in order to determine your needs, to serve you more quickly and to meet your next service requests. These limits will be complied with if the data are subject to legal periods and are required to be kept for reporting to legal authorities and relevant public authorities, for information purposes or to be stored for longer periods in accordance with the legislation. Necessary security measures will be taken by us to prevent the loss of stored and recorded data, to prevent unauthorized use and to prevent unlawful use.

Keeping personal data up-to-date and accurate
In accordance with the GDPR, our Company has an obligation to keep your personal data accurate and up to date. In this context, in order for our Company to fulfill its obligations arising from the current legislation, our customers are required to share accurate and up-to-date data or update them on the website.

Rights of personal data owner in accordance with GDPR
Personal Data Owner, by applying to our Company (data controller), regarding him;

  1. Learning whether personal data is processed,
  2. If personal data has been processed, to request information regarding this,
  3. Learning the purpose of processing personal data and whether they are used in accordance with their purpose,
  4. To know the third parties to whom personal data are transferred domestically or abroad,
  5. To request correction of personal data in case of incomplete or incorrect processing,
  6. To request the deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the GDPR,
  7. In case of correction, deletion or destruction of personal data, requesting that these transactions be notified to third parties to whom personal data are transferred,
  8. Object to the occurrence of a result against the person himself by analyzing the processed data exclusively through automated systems,
  9. To demand the compensation of the damage in case of damage due to the processing of personal data illegally, has the rights.

The Data Controller Representative to be appointed by will be announced in the Data Controllers Registry and on the internet address where this document is located when the legal infrastructure is provided.

Our company can give a positive / negative response to the requests submitted in writing or digitally, provided that they are justified and respond within 30 days. It is essential that the necessary procedures regarding the requests are free of charge. However, if the transactions require a cost, our company reserves the right to request a fee. These fees are determined by the Personal Data Protection Board over the tariff determined in accordance with Article 13 of the Personal Data Protection Law.