Our organization collects and processes personal data in compliance with the laws of Türkiye and European Union Member States, focusing on protecting the fundamental rights and freedoms of individuals, especially the right to privacy.

All our personal data processing activities are governed by our policy. This includes the processing of personal and sensitive data related to customers, employees, suppliers, business partners, and any other data collected and processed by the organization from any source.

Our organization takes necessary technical and administrative measures to ensure an appropriate level of security, preventing unlawful processing of personal data, unauthorized access, and ensuring data preservation, while also carrying out or commissioning necessary audits.

Regarding personal data processing, we operate in accordance with the law and principles of fairness, ensuring data is accurate and up-to-date when necessary, pursuing specific, clear, and legitimate purposes, and processing data in a purpose-related, limited, and proportional manner.

Our organization retains personal data for the period required by law or necessary for the purpose of processing the data.

Our organization informs data subjects and provides necessary information if requested by personal data owners.

Our organization adheres to regulations regarding the processing of special categories of personal data and does not engage in any actions or activities without explicit consent, except where explicitly required by law.

Our organization conducts actions and activities in compliance with the regulations set forth in the law regarding the transfer of personal data.

In our organization, we continue our efforts to protect personal data by setting traceable, measurable, and evaluable targets.

Our organization raises awareness about personal data protection and communicates the relevant obligations to both internal and external parties.

Our organization conducts training programs to enhance technical and behavioral competencies, aiming to increase awareness of personal data protection.

Our organization manages personal data violations, evaluates them according to disciplinary procedures, and immediately informs the relevant authorities for crimes and violations that require penalties.

Our organization continuously monitors the confidentiality, integrity, timeliness, and access authorizations of personal data through process-based asset inventory and risk assessments.

Our organization is committed to implementing and systematically managing the Personal Data Protection Management System, ensuring continuous improvement and allocating the necessary resources for the system.