Personal Data Protection Policy

We process your personal data in the identity, contact, customer transaction, transaction security, finance, marketing, and visual and audio records categories, collected from you through digital forms completed online, call center conversations, and physical forms completed via our representatives, for the purposes and on the legal bases detailed below.

1Based on the legal ground that processing is expressly provided for by law (Article 5/2-a of Law No. 6698), we process your data in the identity, contact, transaction security, and customer transaction categories for the following purposes:
Conducting Activities in Compliance with Legislation
Follow-up and Execution of Legal Affairs
Conducting / Auditing Business Activities
Conducting Processes for the Sale of Goods / Services
Conducting Risk Management Processes
Conducting Storage and Archive Activities
Providing Information to Authorized Persons, Institutions, and Organizations
Conducting Management Activities
2Based on the legal ground that processing personal data belonging to the parties of a contract is necessary, provided that it is directly related to the establishment or performance of that contract (Article 5/2-c of Law No. 6698), we process your data in the identity, contact, customer transaction, transaction security, and finance categories for the following purposes:
Conducting Information Security Processes
Conducting Activities in Compliance with Legislation
Conducting Finance and Accounting Affairs
Follow-up and Execution of Legal Affairs
Conducting Communication Activities
Conducting / Auditing Business Activities
Conducting Logistics Activities
Conducting After-Sales Support Services for Goods / Services
Conducting Processes for the Sale of Goods / Services
Conducting Production and Operation Processes for Goods / Services
Conducting Customer Relationship Management Processes
Conducting Activities Aimed at Customer Satisfaction
Conducting Storage and Archive Activities
Conducting Contract Processes
Executing the Remuneration Policy
Ensuring the Security of Data Controller Operations
Providing Information to Authorized Persons, Institutions, and Organizations
Conducting Management Activities
3Based on the legal ground that processing is mandatory for the data controller to fulfill its legal obligations (Article 5/2-ç of Law No. 6698), we process your data in the identity, contact, customer transaction, and finance categories for the following purposes:
Conducting Information Security Processes
Conducting Activities in Compliance with Legislation
Conducting Finance and Accounting Affairs
Follow-up and Execution of Legal Affairs
Conducting Processes for the Sale of Goods / Services
Conducting Risk Management Processes
Conducting Storage and Archive Activities
Conducting Contract Processes
Executing the Remuneration Policy
Ensuring the Security of Data Controller Operations
Providing Information to Authorized Persons, Institutions, and Organizations
Conducting Management Activities
4Based on the legal ground that processing is mandatory for the legitimate interests of the data controller, provided that it does not harm the fundamental rights and freedoms of the data subject (Article 5/2-f of Law No. 6698), we process your data in the identity, contact, customer transaction, transaction security, and visual and audio records categories for the following purposes:
Conducting Activities in Compliance with Legislation
Conducting Loyalty Processes for the Company / Products / Services
Conducting Internal Audit / Investigation / Intelligence Activities
Conducting / Auditing Business Activities
Receiving and Evaluating Suggestions for the Improvement of Business Processes
Conducting Activities to Ensure Business Continuity
Conducting Logistics Activities
Conducting After-Sales Support Services for Goods / Services
Conducting Processes for the Sale of Goods / Services
Conducting Production and Operation Processes for Goods / Services
Conducting Customer Relationship Management Processes
Conducting Activities Aimed at Customer Satisfaction
Conducting Risk Management Processes
Conducting Storage and Archive Activities
Conducting Strategic Planning Activities
Follow-up of Requests / Complaints
Providing Information to Authorized Persons, Institutions, and Organizations
Conducting Management Activities
5Based on explicit consent (Article 5 of Law No. 6698), where consent has been given for advertising and marketing activities and campaign notifications, we process your data in the identity, contact, customer transaction, transaction security, marketing, and visual and audio records categories for the following purposes:
Conducting Loyalty Processes for the Company / Products / Services
Conducting Communication Activities
Conducting Activities to Ensure Business Continuity
Conducting Customer Relationship Management Processes
Conducting Activities Aimed at Customer Satisfaction
Conducting Marketing Analysis Studies
Conducting Advertising / Campaign / Promotion Processes
Conducting Risk Management Processes
Conducting Strategic Planning Activities
Follow-up of Requests / Complaints
Executing the Remuneration Policy
Conducting Marketing Processes for Products / Services
Providing Information to Authorized Persons, Institutions, and Organizations
Conducting Management Activities
Your personal data is processed by us on the legal bases and for the purposes set out above.