GDPR Privacy Notice

AW ON THE PROTECTION OF PERSONAL DATA - CLARIFICATION TEXT

1. Purpose and Scope

Within the framework of the relevant provisions of the Constitution of the Republic of Turkey and the Law No. 6698 on the Protection of Personal Data (“KVKK”), this clarification text has been prepared by WayOfTurkey, as the Data Controller, due to the obligation to inform individuals about their rights regarding the processing, purpose, and possible transfer of their personal data based on their explicit consent, and the retention of such data in accordance with legal regulations, particularly Articles 10 and 11 of the Law.

Accordingly, all personal data processed by WayOfTurkey, including data of our customers, employees, suppliers, and third parties, fall within the scope of this policy.

2. Data Controller Role

As a company, we process your personal data in accordance with the legislation presented on this page in our capacity as the Data Controller.

2.1 Data Controller Information

• Title: WayOfTurkey

• Phone: +90 541 611 19 22

• E-mail: info@wayofturkey.com

• Address: Duayeri Mahallesi Karağandere Sokak No: 30/1 Ürgüp - Nevşehir, Turkey

3. How Are Your Personal Data Protected?

In order to protect personal data, administrative and technical measures appropriate to the nature of the data are taken in line with applicable legislation and current technological conditions. In addition, data security is continuously monitored and maintained.

4. Your Rights Under Law No. 6698

You may exercise the following rights by submitting a written application to the address below or via methods determined by the Personal Data Protection Authority, provided that your identity is verified:

Address: Duayeri Mahallesi Karağandere Sokak No: 30/1 Ürgüp - Nevşehir, Turkey

Pursuant to Article 11 of KVKK, data subjects have the following rights:

a) To learn whether personal data is being processed,
b) To request information if personal data has been processed,
c) To learn the purpose of the processing of personal data and whether they are used in accordance with the intended purpose,
ç) To know the third parties to whom personal data is transferred, whether domestically or abroad,
d) To request correction of personal data if it is incomplete or incorrectly processed,
e) To request deletion or destruction of personal data under the conditions set out in Article 7 of the Law,
f) To request notification of the operations carried out under subparagraphs (d) and (e) to third parties to whom personal data has been transferred,
g) To object to any result that is to the detriment of the data subject, arising from the analysis of personal data exclusively through automated systems,
ğ) To request compensation in case of damage due to the unlawful processing of personal data.

5. Purposes of Personal Data Processing

Your personal data may be processed for the following purposes:

1. Execution of Access Authorization Processes

2. Conducting Activities in Compliance with Legislation

3. Execution of Finance and Accounting Processes

4. Execution of Management Activities

5. Providing Information to Authorized Persons, Institutions, and Organizations

6. Execution of Communication Activities

7. Execution / Supervision of Business Activities

8. Execution of Goods / Services Procurement Processes

9. Execution of After-Sales Support Services for Goods / Services

10. Execution of Sales Processes for Goods / Services

11. Execution of Goods / Services Production and Operation Processes

12. Execution of Customer Relationship Management Processes

13. Recording and Tracking Visitor Information

14. Execution of Performance Evaluation Processes

15. Execution of Risk Management Processes

16. Execution of Storage and Archiving Activities

17. Execution of Contractual Processes

18. Tracking Requests / Complaints

19. Ensuring the Security of Data Controller Operations

Applications in this context will be accepted following identity verification, and a response will be provided to the relevant persons in writing or electronically within the legal timeframe.