PROTECTION OF PERSONAL DATA
Cemdağ Aydınlatma San. Tic. A.S. (Cemdağ) attaches utmost importance to protecting the fundamental rights and freedoms of individuals, especially the privacy of private life regulated in Article 20 of the Constitution. In this context, it pays attention to the protection and processing of personal data in accordance with the law, and acts with this understanding in all planning and activities.
Cemdağ does not consider the protection and legal processing of personal data, which is the basis of the privacy of private life, only within the scope of compliance with legislation. He puts the value he gives to people at the basis of his approach. Acting with this awareness, Cemdağ takes all necessary administrative and technical measures to prevent personal data from being stored securely and illegally processed.
In this context, in accordance with the Personal Data Protection Law No. 6698, “http://www.cemdag.com/tr/” information about the processing and transfer conditions of personal data generated or shared during the use of the website is presented below.
Website: It is the website located at the address “www.cemlight.com”.
Law: It is the Personal Data Protection Law No. 6698.
Personal Data: All kinds of information regarding an identified or identifiable natural person.
Online Visitor / Relevant Person: All persons accessing the Website. It is included in the Visitor group in the relevant company policies.
Board: It is the Personal Data Protection Board.
Company: Cemdağ Aydınlatma San. Tic. A.Ş.
Hosting provider: Refers to real or legal persons who provide or operate systems that host services and content on the internet.
2- Personal Data Processed
The personal data of the Online Visitor, which are processed depending on the access to the Website and the transactions made on the Website, are presented below:
For Online Visitors visiting the Website,
– Transaction Security Information (IP address, site traffic information, etc.)
For Online Visitors who fill out the forms on the Website,
– Identity Information (name, surname)
– Contact Information (e-mail address, phone number)
Apart from the above, it is possible to process other data that may be mandatory for the operation, development and security of the Website in accordance with the Law.
3- Method and Legal Reason for Collecting Personal Data
Personal data are collected by using the Website and filling out the contact form to be stored for a period of time required for the purpose of processing by fully automated or partially automated means.
Personal data are processed based on the express consent of the Online Visitor. However, personal data is stated in the second paragraph of Article 5 of the Law (i) is clearly stipulated in the laws (ii) is mandatory for the data controller to fulfill its legal obligation, (iii) data processing is mandatory for the establishment, use or protection of a right , (iv) the fact that data processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of personal data owners, can be processed without explicit consent based on one of its legal reasons.
4- Purposes of Processing Personal Data
In case personal data are explicitly stipulated in the laws or within the framework of other conditions specified in the second paragraph of Article 5 of the Law, depending on the transactions made by the Online Visitor on the Website;
In case the “identity and contact information” contact form is filled in, in order to carry out / control business activities, to carry out customer relations management processes, to follow up requests / complaints and to carry out communication activities within this scope,
“Site traffic information” is processed in order to carry out information security processes. On the other hand, in accordance with the Law No. 5651 and other legislation, the Hosting Provider is obliged to record and keep the site traffic information.
The processing of personal data for the purpose of sending commercial electronic messages is subject to the express consent of the Online Visitor.
The following links contain information on how to manage (and disable) cookies in some commonly used browsers:
Chrome Browser: https://support.google.com/accounts/answer/61416?hl=tr
5- To Whom and For What Purpose the Processed Personal Data Can Be Transferred
Personal data, if one of the conditions specified in paragraph 2 of Article 5 of the Law is found, it is limited to Cemdağ’s group companies, subsidiaries, affiliates, business partners and authorized public institutions and organizations, the conditions specified in Articles 8 and 9 of the Law, limited to the purposes specified in the fourth article of the text. provided that the necessary security measures are taken within the framework of.
In the absence of any of the conditions in the second paragraph of Article 5 of the Law, the transfer of Personal Data is subject to the express consent of the Online Visitor.
6- Personal Data Owner’s Rights Pursuant to Article
Cemdağ informs the data owner about his rights in accordance with Article 10 of the Law and section 3 of the GDPR; It provides guidance on how to use these rights and carries out the necessary internal functioning, administrative and technical arrangements for all of these.
Personal data owners in accordance with Article 11 of the Law;
Learning whether your personal data is being processed,
To request information about personal data if it has been processed,
Learning the purpose of processing personal data and whether they are used appropriately for their purpose,
To know the third parties to whom personal data is transferred domestically or abroad,
To request correction of personal data if they are incomplete or incorrectly processed
To request the deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the Law,
Request notification of the transactions (correction and destruction of data) made pursuant to clauses (d) and (e) of Article 11 of the Law to third parties to whom their personal data have been transferred,
To object to the emergence of an unfavorable result by analyzing the processed data exclusively through automated systems,
To demand the compensation of the damage in case of damage due to the processing of your personal data illegally,
has the rights.
Requests and applications related to the implementation of the Law can be submitted in person to the address “Atatürk OSB Mahallesi 10007 Sokak No: 4 Çiğli / İZMİR” in writing by filling the Personal Data Owner Application Form or sent to the registered e-mail (KEP) address (cemdag@hs02).kep.tr) can be transmitted electronically using secure electronic signature or mobile signature.
Requests and applications can also be forwarded to firstname.lastname@example.org if there is an e-mail address previously notified to Cemdağ by the data owner and registered in Cemdağ’s system.
In demands and applications;
- Name, surname and signature, if application is in writing,
- for the citizens of the Republic of Turkey T. C. identification number, nationality for foreigners, passport number or identification number, if any,
- Place of residence or workplace address for notification,
- E-mail address, telephone and fax number for notification, if any,
- Subject of request,
must be found.
Information and documents related to the subject must be attached to the application.
Cemdağ concludes the requests in the application free of charge as soon as possible and within thirty days at the latest, depending on the nature of the request. However, if the transaction in question requires an additional cost, the fee in the tariff determined by the Board may be charged.
Cemdağ can accept the request or reject it by explaining the reason and notifies the relevant person in writing or electronically. If the request in the application is accepted, Cemdağ will fulfill its requirement as soon as possible and inform the Relevant Person. In case the application is caused by a fault of Cemdağ, the fee collected is returned to the data owner.
In case the application is rejected, the response is insufficient or the application is not responded in time; The data subject has the right to make a complaint to the Board within thirty days from the date of learning the answer, and in any case within sixty days from the date of application.
7-Security of Data
Cemdağ has to take all necessary administrative and technical measures to prevent unlawful processing of personal data and unlawful access to personal data, to ensure the preservation of personal data, and to ensure the appropriate level of security.
In case of redirection to other sites or applications through the website, Cemdağ is not aware of the compliance of the directed sites and applications with the legislation regarding the protection of personal data and is not under any responsibility for their privacy policies and contents.
By using the Website, the Online Visitor declares that she has read all the terms written in this information text and is enlightened about the processing of her personal data.
APPENDIX: Data Owner Application Form