KVKK Politikamız
SADIKOĞLU
ISI TEKNİK TURİZM YATIRIMLARI SANAYİ VE TİCARET LİMİTED ŞİRKETİ
LAW ON THE
PROTECTION OF PERSONAL DATA
CUSTOMER&GUEST&VISIT&SUPPLIER&BUSINESS
PARTNER REAL PERSON LIGHTING TEXT
SADIKOĞLU ISI
TEKNİK TURİZM YATIRIMLARI SANAYİ VE TİCARET LİMİTED ŞİRKETİ As (referred to as
" Büyük Truva Hotel
" or the company), it is among our primary principles
to protect the fundamental rights and freedoms
of our customers, guests and visitors,
as well as to protect the privacy
of their private lives, and to
ensure and protect information security; We wanted
to inform you about "Protection of Personal
Data". Büyük Truva Hotel Hotel
reserves the right to update
this Information on the Protection of Personal Data at any time within the framework
of the changes that can be made in the current legislation.
Since your personal data may
be collected pursuant to Article 10 of the Law on the
Protection of Personal Data
No. 6698 (“Law”) and Article 13 of the European Union Data Protection Directive (“GDPR”), the collection method and legal reason for personal
data is determined by which of your personal
data is provided by our Company. We
have an obligation to inform you
about the purposes for which
your personal data is processed, to which third
parties your personal data is disclosed/transferred and for what purposes,
and your rights that you
can exercise as a data owner.
Personal Data Processed:
Identity Data: Name, surname, TR Identity No, Passport No, License Plate, Marital Status, Date, Gender,
Contact Data: E-mail address, address and phone number,
Physical Space Security Information: Camera recordings taken at the entrance to
the physical space, during the
stay in the physical space, etc.
Visual and Audio Data: Camera recordings,
Finance Information: IBAN number,
Transaction Security Information: IP address information, website login and
logout information, password and password
information,
Customer Transaction Information: Call center records, invoice, promissory note, check information, order information, demand information,
Risk
Management: Information processed for the
management of commercial, technical and administrative
risks,
Data
Subject Person Group:
Shareholder/Partner
Supplier Employee
Supplier Officer
Business
Partner
Potential Product and Service User
Product and Service
Recipient
Visitor
How and for what
reasons do we collect your personal
data? What are the Legal Reasons?
Your personal
data; Compulsory cookies called "cookies" (small files placed
on your hard drive) that allow our
computers to automatically recognize you when you
visit our website via our
corporate website, e-mail or other means,
tour operators, travel agencies, GDS reservation Physical forms (guest undertaking,
mail order, etc.) at the time of guest check-in, are stored
in various ways, including verbal, written or electronic
media, through various channels such as recording your accommodation information in the hotel program, sending your business card
to us at fairs.
It can be processed
based on the reasons stated in Articles 5 and 6 of the Law on the
Protection of Personal Data
No. 6698 and the reasons for compliance
with the law given below.
Prediction in laws
·
Turkish Commercial Code No. 6102,
·
Tax Procedure Law No. 213,
·
Law No. 6698
on Protection of Personal
Data,
·
Turkish Civil Code No. 4721,
·
Law of Obligations No. 6098,
·
Law No. 6502
on the Protection of Consumers,
·
Law on Provincial Administration No.
5442,
·
Regulation of Broadcasts on the Internet No.
5651 and Fighting Against Crimes Committed Through These Broadcasts About the Law
·
Identity Reporting Law No. 1774,
·
Data processing is mandatory for the
legitimate interests of the data controller,
provided that it does not harm the
fundamental rights and freedoms of the data subject.
·
It is necessary to process
the personal data of the parties
to the contract,
provided that it is directly related to the establishment
or performance of a contract,
·
To be able to offer
the requested products and services
and to fulfill
the requirements of the contracts you
have concluded,
·
It is compulsory for the fulfillment of the legal obligation,
·
Data processing is mandatory for the
establishment, exercise or protection of a right,
For What Purposes Do We Process Your
Personal Data?
Your personal data obtained
by us in accordance with the law
is processed by our Company in order to fulfill
our legal obligations, within the scope
of the Company's legitimate interests and without harming
your rights.
Your personal data will be retained
for the maximum
period specified in the relevant legislation
or required for the purpose
for which they are processed,
and for the
statutory limitation periods. The retention
period may vary depending on the personal data
categories and processing purposes.
- Execution of Emergency Management Processes
- Execution of
Access Authorities
- Execution of Activities in Compliance with the Legislation
- Execution of Finance and Accounting Affairs
- Ensuring Physical Space Security
- Following and Execution of Legal Affairs
- Execution of Communication Activities
- Execution / Supervision of Business Activities
- Execution of Occupational Health / Safety Activities
- Execution of Activities for Ensuring Business Continuity
- Execution of Goods / Services After-Sales Support Services
- Execution of Goods / Service Sales Processes
- Production of Goods / Services and Execution of Operation Processes
- Execution of Customer Relationship Management Processes
- Execution of
Marketing Activities
- Execution of Storage and Archiving Activities
- Execution of Contract Processes
- Follow-up of Requests / Complaints
- Execution of
Marketing Processes of Products
/ Services
- Ensuring the Security of Data
Controller Operations
- Providing Information to Authorized Persons, Institutions and Organizations
- Execution of Management Activities
- Creation of Visitor Records
- Execution of processes related to accommodation service
Where Do We Transfer Your Personal Data?
Your data is not shared with unrelated
third parties. Personal data of our guests are
shared with the Police Department
in accordance with the Identity Reporting
Law; Private Law Persons and
Authorized Public Institutions and Organizations can be shared with the business
if requested in accordance with other legal regulations.
Your Rights
As per Article 11 of the KVKK, on
the condition
that you prove your identity
to us personally, regarding your personal data;
·
You can learn whether we
are processing personal data about
you, and if we are,
you can request information about it.
·
You can learn the purpose
of processing your personal data and
whether they are used in accordance
with its purpose.
·
• You can find out whether
your personal data is transferred domestically or abroad and to
whom it is transferred.
·
• You can request the correction
of your incorrect and incomplete personal data and
the notification of the recipients to whom this
data has been or may have been
transferred.
·
You can request the destruction
(deletion, destruction or anonymization) of your personal data
within the framework of the conditions stipulated in Article 7 of the KVKK. However, by evaluating
your destruction request, we will
evaluate which method is appropriate according to the
conditions of the concrete case. In this context,
you can always request information from us about why
we have chosen
the destruction method we have
chosen.
·
You can request the third
parties to whom your personal
data has been or may be transferred
to be informed about your destruction
request.
·
You can object to the
results of your personal data analysis
created exclusively by using an automated
system, if these results are
against your interests.
·
If you suffer damage
due to unlawful
processing of your personal data, you
can request compensation for the damage.
Your requests in
your application will be concluded free of charge within thirty days
at the latest, depending on the nature of the request.
However, if the transaction requires a separate cost for the
Company, the fee in the tariff
determined in the Communiqué on Application Procedures and Principles to the
Data Controller by the Personal Data Protection Board may be charged.