DASE TECHNOLOGY AND CONSULTING INC.
INFORMATION TEXT UNDER THE LAW NO. 6698 ON THE PROTECTION OF PERSONAL DATA
DASE TECHNOLOGY AND CONSULTING INC. (“DASE”) places the utmost importance and sensitivity on the security of your personal data in accordance with the Law No. 6698 on the Protection of Personal Data (“Law”). This Information Text informs you about the methods of collection, processing, use, transfer, destruction of this data, and your rights.
- Data Controller
According to the Law No. 6698, DASE is the Data Controller.
- Scope and Legal Basis
Within the framework of our legal obligations arising from the Turkish Commercial Code No. 6102, the Labor Law No. 4857, the Turkish Code of Obligations No. 6098, the Turkish Penal Code No. 5237, the Law on the Regulation of Publications Made on the Internet No. 5651, and other relevant legislation and regulations, your personal data (name-surname, address, occupation, education, marital status, date and place of birth, resume, email, Turkish ID number, phone number, gender, vehicle license plate, location data opened when accessing the website, IP address, and campus camera records) may be shared with us upon your explicit consent or in accordance with the aforementioned relevant legislation. In accordance with the Law on the Protection of Personal Data, our Company may collect, record, store, update, reorganize, transfer to third parties located domestically or internationally within the limits and circumstances permitted by law, and process these personal data by taking necessary administrative and technical measures.
These personal data may be processed with all necessary information security measures, provided that they are not used for purposes and scope outside those specified in this Information Text, and will be retained for the legal retention period or the duration necessary for the purpose of processing, and at the end of the necessary processing period, will be anonymized and may continue to be used by our Company or will be destroyed in accordance with the Law and relevant legislation as per Company Procedures.
DASE pays particular attention to ensuring that personal data is processed lawfully and fairly, accurately, and, where necessary, kept up to date, for specified, explicit, and legitimate purposes, in a manner compatible with the purpose for which it is processed, limited, and proportionate, for the duration specified in the relevant legislation or for the duration necessary for the purpose of processing, and necessary audits are conducted for this purpose. DASE shows maximum sensitivity regarding the security of your personal data and takes all necessary technical, administrative, and legal measures to protect your personal data.
- Purpose of Processing Personal Data
Your personal data may be processed verbally, in writing, or electronically, within the framework permitted by the Law for the following purposes: a. To take necessary steps for the making, implementation, and execution of commercial decisions by DASE, b. To ensure the security of our facilities and personnel, c. For contract management, establishment of legal transactions, and monitoring of legal processes, d. To plan, audit, and implement information security processes to protect our company’s trade secrets and ensure information security, e. To monitor finance and/or accounting operations, f. To carry out our Human Resources activities in accordance with the legislation, g. To establish and manage cybersecurity technology infrastructure, h. To conduct efficiency and/or appropriateness analyses of our commercial activities, and to plan and/or execute these activities, i. To determine and implement commercial and business strategies, j. To establish and protect intellectual and industrial property rights, k. To increase staff productivity and measure/sustain satisfaction, l. To fully and duly fulfill DASE’s obligations arising from contracts and legislation, m. To evaluate, respond to, and make improvements regarding the suggestions, requests, complaints, and fault reports you submit via our website.
- Sharing Personal Data with Third Parties
Our Company may share your personal data only based on the explicit consent of individuals or as explicitly provided in the laws, for the establishment or performance of a contract, for the fulfillment of a legal obligation, or when required for legitimate interests, with sufficient precautions taken in accordance with the security and confidentiality principles stated in the Law. This data may be shared with domestic/foreign affiliates, legal and natural persons we have agreements with as part of our activities, suppliers, subcontractors, business partners, shareholders, legal, financial, and tax advisors, auditors, auditing firms, or public institutions or organizations authorized to request this data as a legal obligation, in accordance with the personal data processing conditions and purposes outlined in Articles 8 and 9 of the Law.
- Your Rights as Data Subject
With the exceptions provided in Article 28 of the Law, as data subjects under Article 11 of the Law, you have the following rights: a. To learn whether your personal data has been processed, b. To request information regarding your processed personal data, c. To learn the purpose of processing your personal data and whether they are used in accordance with that purpose, d. To know the third parties to whom your personal data is transferred domestically or internationally, e. To request the correction of your personal data if they are incomplete or inaccurately processed, f. To request the deletion or destruction of your personal data under the conditions set forth in Article 7 of the Law, g. To request notification of the transactions performed on your personal data to the third parties to whom they were transferred, h. To object to a result occurring against you due to the analysis of your personal data exclusively through automated systems, i. To request compensation for damages in case you suffer damage due to unlawful processing of your personal data.
It is important that the information/data you share with DASE is accurate and correctly transmitted to DASE, as this is essential for exercising your rights. If there are any changes to your personal data, you must notify DASE. The responsibility for any incorrect or faulty information rests with the party transmitting the information/data to DASE.
In this context, your requests can be submitted in writing or through registered electronic mail, secure electronic signatures, mobile signatures, or the electronic mail address previously notified to DASE and registered in our systems. To do this, you must fill out the application form provided on our Company’s website (www.dasetek.com.tr) including your name-surname, signature, Turkish ID number, residential or workplace address, and if applicable, email address, phone or fax number, along with explanations regarding the right you wish to exercise, and send it via postal mail to our Company’s address: Kızılırmak Mah. 1450 Sk. No:3/64 Çankaya-Ankara.
If a request is made by someone other than the data subject, a special power of attorney arranged by the data subject for the person applying on their behalf must be provided. Applications must be made in accordance with the Notification on the Application Procedures and Principles to the Data Controller, and responses to applications will also be made in accordance with the same Notification. DASE will conclude the application free of charge within the legal period of 30 days following the application. In cases requiring cost calculation for fulfilling your requests, DASE reserves the right to request a fee equivalent to the cost incurred.
Our Company reserves the right to make changes to this information text due to potential changes in the Law and new methods or regulations that may be determined by the Personal Data Protection Board.