Law on Personal Data Protection (KVKK)
PRIVACY AND PERSONAL DATA PROTECTION POLICY
This statement includes the legal clarification obligation regarding the Privacy and Personal Data Protection Policy of Vize Merkezi Hizmetleri A.Ş (referred to as the “Company or Vize Merkezi”). As the Visa Center data controller, we adopt the principles stipulated by the Privacy and Personal Data Protection Policy Law in order to protect the fundamental rights and freedoms of individuals, especially the privacy of private life regulated in Article 20 of the Constitution, and to comply with the Law on the Protection of Personal Data No. 6698, and fulfill our obligations regarding data security. The Privacy and Personal Data Protection Policy regulated in this context is made available to natural persons (“Relevant Person”) whose personal data are processed.
I- Who is the Data Controller?
In accordance with the Law on the Protection of Personal Data No. 6698, Data Controller is defined as “the natural or legal person who determines the purposes and means of processing personal data and is responsible for the establishment and management of the data recording system”. Your personal data is collected and processed by Vize Merkezi Hizmetleri A.Ş (Central Registry System No: 0925078440300001) (“Company”) (firstname.lastname@example.org) as the data controller, in accordance with the law and honesty, for current, legitimate purposes, in moderation and in accordance with the relevant legislation.
II- What are your Personal Data Processed by the Visa Center and for What Purpose?
The data specified in this Table-1 are requested by the Foreign Consulates and Embassies, visa application centers, and the personal data and special categories of personal (criminal record) data processed by the Vize Merkezi are directly related to the performance of the services provided. For this reason, the following personal data must be processed.
Name-Surname, Gender, Maiden Surname, TR Identity Number or Passport No, Place of Birth, Year of Birth, Nationality, Marital Status, Criminal Record, Residence Address, Contact Information, Social Media Usernames, Graduated School, Address, Phone number; Workplace title, Workplace address, Salary Information, Place of National Duty; Parent Name-Surname, Parent Birth Year, Parent Nationality Information, Spouse-Child Name Surname, Spouse-Child Nationality Information, Spouse-Child Birth Year; Name-Surname of the person to be traveled with, Nationality information of the person concerned.
Vize Merkezi will be able to record, store, update, disclose, transfer, classify and process your personal information to third parties in cases and to the extent permitted by the legislation. Your personal data is used for the following purposes:
III- To Whom and For What Purpose Does the Visa Center Transfer Your Personal Data?
Vize Merkezi transfers personal data to third parties only for the purposes specified in this Privacy and Personal Data Protection Policy and in accordance with Articles 8 and 9 of the Law of Personal Data Protection.
Your personal data is shared with our business partners, suppliers, group companies, affiliates, companies from which we receive outsourcing services in order to fulfill our contractual or legal obligations (security, health, work safety, law, etc.), Foreign Consulates, Embassies and intermediary institutions and organizations authorized by these institutions.
In addition to the technical measures to ensure their security, the personal data subject to transfer mentioned above; considering that the other party of the legal relationship is a data controller or a data processor, it is also legally protected thanks to the provisions in line with the Law on Personal Data Protection included in our contracts.
While transferring personal information to countries other than Turkey during the sharing of information as stated above, it is ensured that the data is transferred in accordance with this policy and as permitted by the applicable law on data protection.
IV- What is the Method and Legal Reason for the Vize Merkezi to Collect Your Personal Data?
Vize Merkezi collects personal data through websites, call centers, notifications from administrative and judicial authorities and other communication channels, in audio, electronic or in writing, in accordance with the personal data processing conditions specified in the Law on Personal Data Protection and as specified in this Privacy/Personal Data Protection Policy. collected for legal reasons.
Your personal data is fully or partially automated or non-automatic; in all kinds of verbal, written, electronic media; miscellaneous documents, job application forms, customer information forms, mail and e-mails sent to our company; call center, company website, social media tools, mobile applications, corporate communication accounts and devices, company information systems and devices, security cameras;
Third parties such as group companies, business partners, companies to which our company provides services or services, through various channels such as employment companies and job search portals, and limited to the purposes specified in the Law of Personal Data Protection; (i) the explicit consent of the data subject, (ii) expressly provided for by law, (iii) the personal data has been made public by the personal data owner himself, (iv) it is necessary to process the personal data of the parties to the contract, provided that it is directly related to the establishment or performance of a contract, (v) it is mandatory for our company to fulfill its legal obligation, (vi) data processing is mandatory for the establishment, exercise or protection of a right, (vii) provided that it does not harm the fundamental rights and freedoms of personal data owners, it is collected for the period necessary for the purpose of processing based on one or more of the legal reasons that data processing is mandatory for our Company’s legitimate interests, and is collected by our Company or the data processors assigned by our Company.
V- What are your rights arising from the Personal Data Protection Law?
Vize Merkezi informs you of your rights in accordance with Article 10 of the Personal Data Protection Law; it provides guidance on how to exercise these rights and carries out the necessary internal functioning, administrative and technical arrangements for all these. Personal data owners pursuant to Article 11 of the Law;
You can submit your requests and applications regarding the implementation of the Law in person to the address “Rumeli cad., No: 78/12 Osmanbey, Şişli / Istanbul” by filling out the Personal Data Protection Law Data Owner Application Form on our website, or through a notary public or through secure electronic means. You can send it electronically to email@example.com kep address by using signature or mobile signature. Information and documents related to the subject must be attached to the application.
Vize Merkezi concludes the requests included in the application free of charge, as soon as possible and within thirty days at the latest, depending on the nature of the request. However, if the said transaction requires an additional cost, the fee in the tariff determined by the Board may be charged.
Our company may accept the request or reject it by explaining the reason, and notify the relevant person in writing or electronically. If the request in the application is accepted, our Company fulfills its requirements as soon as possible and informs the relevant person. If the application is due to the fault of our Company, the fee charged is returned to the data owner.
In cases where the application is rejected, the response given is insufficient, or the application is not responded to in due time; the data owner has the right to file a complaint with the Board within thirty days from the date of learning the answer and in any case within sixty days from the date of application.
VI- Personal Data Sharing with Official Authorities
Legally authorized to request such information in order for Vize Merkezi to fulfill its obligations under the law (in cases where Vize Merkezi has a legal or administrative obligation to notify or provide information, including but not limited to the fight against crime, the threat to state and public security, etc.). can be shared with public institutions and organizations.
VII- Terms of Deletion, Destruction and Anonymization of Personal Data
Vize Merkezi keeps the personal data it processes for the periods required by the relevant laws and/or the processing purpose in accordance with articles 7, 17 of the Personal Data Protection Law and article 138 of the Turkish Penal Code. In the event that these periods expire, it will delete, destroy or anonymize Personal Data in accordance with the provisions of the Regulation on the Deletion, Destruction or Anonymization of Personal Data.
Deletion of personal data by Vize Merkezi means the process of making personal data inaccessible and unusable for the relevant users in any way. Vize Merkezi takes the necessary measures to carry out the deletion in the database.
Destruction of personal data by Vize Merkezi means the process of making personal data inaccessible, irretrievable and unusable by anyone in any way.
Vize Merkezi explains in detail the methods of deletion, destruction and anonymization and the technical and administrative measures it has taken within the scope of the Personal Data Storage and Disposal Policy prepared in accordance with the Regulation on the Deletion, Destruction or Anonymization of Personal Data. In this Policy, the period of time for the periodic destruction stipulated by the Regulation is determined as 6 months.
VIII- Amendments to the Privacy/Personal Data Protection Policy
Vize Merkezi can make changes to this Privacy and Personal Data Protection Policy at any time. These changes will become effective immediately upon the publication of the amended new Privacy and Personal Data Protection Policy. In order to be aware of the changes in this Privacy and Personal Data Protection Policy, the necessary information will be provided to you through our website.