CTech | Privacy Policy
EN
CONTACT
 CTech | Privacy Policy
CTech | Privacy Policy

PRIVACY POLICY

HOME
/
PRIVACY POLICY

PERSONAL DATA PROTECTION CLARIFICATION TEXT

As CTech Information Technologies Industry and Trade Joint Stock Company (“CTECH” or the “Company”), we attach great importance and sensitivity to the protection of your personal data. With this awareness, in our capacity as the “Data Controller” as defined in the Law on the Protection of Personal Data No. 6698 (“KVKK”), we process all kinds of personal data belonging to all individuals we are associated with in accordance with the KVKK, carefully and diligently, within the purposes and methods explained below, and within the limits set, complying with destruction requirements and retention periods.

Definitions

Within the scope of this Clarification Text on the Protection of Personal Data, the following terms shall mean:

  • Personal Data: Any data relating to an identified or identifiable natural person (such as Name, Surname, Turkish ID Number, Email Address, Phone Number, and similar data),

  • Sensitive Personal Data: Any data that, if learned, may cause discrimination or victimization and must be protected more strictly than other personal data (such as race, ethnic origin, biometric data, and similar),

  • Processing of Personal Data: Any operation performed on personal data such as collection, recording, storage, alteration, sharing with third parties, and transfer abroad by automatic or non-automatic means as part of a data recording system,

  • KVKK: The Law on the Protection of Personal Data No. 6698, published in the Official Gazette on April 7, 2016,

  • Regulation: The Regulation on the Procedures and Principles to be Followed in Fulfilling the Obligation to Inform, published in the Official Gazette dated March 10, 2018, No. 30356,

  • Authority: The Personal Data Protection Authority,

  • CTech or Company: CTech Information Technologies Industry and Trade Joint Stock Company,

  • Data Processor: A natural or legal person who processes personal data on behalf of the data controller based on its authorization,

  • Data Controller: The person who determines the purposes and means of processing personal data and is responsible for establishing and managing the data recording system,

  • Data Subject: The natural person whose personal data is processed,

  • Contact Person: The person responsible for communication with the Authority and data subjects,

  • Country: The country in which CTech is established and operates, in this case, Turkey,

  • Website: The internet site of CTech with the domain name “https://ctech.com.tr/”, all intellectual property rights of which belong to CTech,

  • IP Address: A number assigned to every device connected to the Internet used to identify the device’s location, also known as the Internet Protocol address.

Data Controller and Contact Person

  • Data Controller: CTech Information Technologies Industry and Trade Joint Stock Company

  • Address: Teknopark Sanayi Mah. Teknopark Bulvarı A Blok, Kat:2, Kurtköy, 34912 Pendik/İstanbul

  • Contact Person: Onur HÜNERLİ

3. Processed Data, Purposes of Processing, and Collection Methods

The personal and sensitive personal data of you, our valued stakeholders, are collected in the following categories and by the methods mentioned below, and are processed by our Company for the purposes stated below.

3.1. OUR CUSTOMERS

From our customers who have entered into agreements and/or contracts with CTech to purchase products and/or services, the personal data listed below are collected by the methods and for the purposes mentioned below.

3.1.1. Identity Information

  • Processed Personal Data: Name – Surname, Turkish ID Number

  • Purposes of Processing:

    • Compliance with legal obligations

    • Conducting finance and accounting processes

    • Legal follow-up and procedures

    • Conducting communication activities

    • Managing and auditing business activities

    • Managing product/service sales processes

    • Providing post-sales support services

    • Managing customer relations

    • Archiving and storage

    • Managing contract processes

    • Providing information to authorized persons, institutions, and organizations

  • Collection Methods: Website contact forms, other communication forms, meetings, phone calls, billing information, quotation requests, contracts, and events.

3.1.2. Contact Information

  • Processed Personal Data: Email Address, Billing & Delivery Addresses, Communication Address, Mobile Phone Number

  • Purposes of Processing: (same as above)

  • Collection Methods: (same as above)

3.1.3. Legal Transaction Information

  • Processed Personal Data: Information in litigation/enforcement files in case of dispute, information in correspondence with judicial and administrative authorities

  • Purposes of Processing:

    • Compliance with legal obligations

    • Legal follow-up and procedures

    • Conducting communication activities

    • Providing information to authorized persons, institutions, and organizations

    • Archiving and storage

  • Collection Methods: Through official documents and correspondence received from judicial and administrative authorities.

3.1.4. Physical Space Security

  • Processed Personal Data: Camera recordings

  • Purposes of Processing: Ensuring physical space security

  • Collection Methods: Via cameras located at our Company premises visited by customers.

3.1.5. Financial Information

  • Processed Personal Data: Credit Card Details, Bank Account / IBAN Numbers, Tax Identification Number

  • Purposes of Processing:

    • Compliance with legal obligations

    • Conducting finance and accounting processes

    • Providing post-sales support services

    • Managing product/service sales processes

    • Managing customer relations

    • Providing information to authorized persons, institutions, and organizations

      Methods of Collecting Personal Data:

      The personal data mentioned above are collected through printed and electronic forms, emails, and telephone calls.

      3.2. WEBSITE VISITORS

      From visitors accessing the website, the personal data listed below are collected for the purposes and by the methods specified below.

      3.2.1. Transaction Security

      • Processed Personal Data: IP Address

      • Purposes of Processing: Conducting information security processes; executing and auditing business activities; providing information to authorized individuals, institutions, and organizations

      • Collection Methods: The personal data mentioned above are collected through the website.

      3.3. EMPLOYEES / INTERNS / SHAREHOLDERS

      Detailed information about the personal data of employees, interns, and shareholders within CTech is shared in a way that only they can access, and they are informed in detail about this.

      3.4. JOB APPLICANTS

      These are candidates who have applied to work at CTech or who have been identified by CTech through various channels or platforms.

      3.4.1. Identity Information

      • Processed Personal Data: Name – Surname, Turkish ID Number, Gender, Nationality

      • Purposes of Processing: Managing job application processes; conducting communication activities; planning human resources processes

      • Collection Methods: Collected via resumes sent by email to our company, through private employment agencies (İŞKUR, Kariyer.net, etc.), other platforms (LinkedIn, etc.), and personal declarations.

      3.4.2. Contact Information

      • Processed Personal Data: Email Address, Contact Address, Mobile Phone Number

      • Purposes of Processing: (same as above)

      • Collection Methods: (same as above)

      3.4.3. Employment Information

      • Processed Personal Data: Resume details, military service status, reference information, social security premium days, language scores, personality analysis indicators

      • Purposes of Processing: (same as above)

      • Collection Methods: Collected via resumes, private employment agencies (İŞKUR, Kariyer.net), online platforms (LinkedIn, company website), references, and intermediary organizations providing language score or personality analysis.

      3.4.4. Physical Space Security

      • Processed Personal Data: Camera recordings

      • Purposes of Processing: Ensuring the security of physical premises

      • Collection Methods: Recorded through security cameras located at company premises.

      3.4.5. Professional Experience Information

      • Processed Personal Data: Educational background and details, work history and details, diploma information, foreign language proficiency, computer skills, position/title information

      • Purposes of Processing: (same as above)

      • Collection Methods: (same as 3.4.3)

      3.5. SUPPLIER REPRESENTATIVE

      Personal data from representatives of suppliers who provide goods/services to CTech under agreement or contract are processed as follows:

      3.5.1. Identity Information

      • Processed Personal Data: Name – Surname, Signature Circulars, Signature, ID Copy

      • Purposes of Processing:

        • Compliance with legal regulations

        • Conducting finance and accounting processes

        • Managing communication activities

        • Managing purchasing and logistics processes

        • Executing contract processes

        • Tracking requests/complaints

        • Providing information to authorized individuals, institutions, and organizations

      • Collection Methods: Collected through contracts, forms, order and request-related emails, invoices, and documents related to procurement processes.

      3.5.2. Contact Information

      • Processed Personal Data: Email Address, Contact Address, Mobile Phone Number

      • Purposes of Processing: (same as above)

      • Collection Methods: (same as above)

      3.5.3. Physical Space Security

      • Processed Personal Data: Camera recordings

      • Purposes of Processing: Ensuring physical space security

      • Collection Methods: Collected through security cameras at the company premises.

      3.5.4. Financial Information

      • Processed Personal Data: Invoice Information, Bank Account Information, Current Account Information

      • Purposes of Processing:

        • Compliance with legal regulations

        • Conducting finance and accounting operations

        • Managing supply chain processes

        • Providing information to authorized individuals, institutions, and organizations

      • Collection Methods: (same as 3.5.1)

      3.6. SUPPLIER EMPLOYEE

      Personal data of employees of suppliers providing goods/services to CTech are collected as follows:

      3.6.1. Identity Information

      • Processed Personal Data: Name – Surname, Signature, ID Copy

      • Purposes of Processing: (same as 3.5.1)

      • Collection Methods: (same as 3.5.1)

      3.6.2. Contact Information

      • Processed Personal Data: Email Address, Contact Address, Mobile Phone Number

      • Purposes of Processing: (same as 3.5.2)

      • Collection Methods: (same as 3.5.2)

        Methods of Collecting Personal Data

        The personal data mentioned above are collected through contracts, forms, request/order and related email correspondences, invoices, and procurement-related documents.

        3.6.3. Physical Premises Security

        • Processed Personal Data: Camera footage

        • Purpose of Processing: Ensuring the security of physical premises

        • Collection Method: The aforementioned personal data are collected through security cameras located at our company premises.

        3.7. VISITORS

        This refers to individuals visiting CTech’s premises for various reasons.

        3.7.1. Physical Premises Security

        • Processed Personal Data: Camera footage

        • Purpose of Processing: Ensuring the security of physical premises

        • Collection Method: The aforementioned personal data are collected through security cameras at the company premises.

        Clarification Under KVKK

        As the Data Controller, we would like to inform you within the scope of the Law on the Protection of Personal Data (KVKK). Pursuant to Article 4 of the KVKK, your personal and sensitive personal data, processed for the purposes and via the methods described above, will be:

        • Processed lawfully and in good faith,

        • Accurate and, where necessary, up to date,

        • For specific, explicit, and legitimate purposes,

        • Relevant, limited, and proportionate to the purposes for which they are processed,

        • Retained for the period stipulated in relevant legislation or required for the purposes for which they are processed.

        Transfer of Personal Data

        Your personal data may be transferred, in line with the above-mentioned purposes and in full compliance with KVKK and all applicable legislation, to:

        • Our shareholders,

        • Our business partners,

        • Our suppliers,

        • Regulatory and supervisory authorities or official public institutions and organizations, as required by the applicable legislation and the purpose of company activities.

        Retention and Deletion of Personal Data

        Our company retains personal data for the periods specified in the relevant legislation or, where no period is stipulated, in accordance with company procedures and policies, in line with the services provided and industry practices. When the storage period expires, the data are deleted or destroyed using methods defined in our procedures and policies.

        Your Rights as the Data Subject

        According to Article 11 of KVKK, you have the right to:

        1. Learn whether your personal data are processed,

        2. Request information regarding the processing,

        3. Learn the purpose of processing and whether it is being used in accordance with that purpose,

        4. Know the third parties to whom your personal data are transferred domestically or abroad,

        5. Request correction if your data are incomplete or incorrectly processed,

        6. Request deletion or destruction of your data under applicable laws,

        7. Request notification to third parties to whom the data were transferred in case of correction or deletion,

        8. Object to a result that is to your detriment, arising from the analysis of personal data exclusively through automated systems,

        9. Request compensation for damages in case of unlawful data processing.

        Exercising Your Rights

        To exercise your rights, you may submit the Data Subject Application Form:

        • In person or via postal mail or through a notary, to the address “Teknopark Sanayi Mah. Teknopark Bulvarı A Blok, Kat:2, Kurtköy, 34912 Pendik/İstanbul” with a wet signature and relevant documents,

        • By sending a scanned version of the signed form to “ctech@hs01.kep.tr” from your registered email address that is on file with CTech.

        To ensure that your application is processed, it must include:

        1. A clear and understandable request,

        2. Content related to your personal data,

        3. Proof of authorization if acting on behalf of someone else,

        4. Identification and address details,

        5. A copy of a document verifying your identity.

        Application Evaluation Process

        Your request will be concluded free of charge within the shortest time possible, and at the latest within 30 (thirty) days from the date of receipt by the Company. However, if the process incurs a cost, a fee may be charged according to the tariff set by the Board.

        If your application is denied, not answered within the time period, or found insufficient, you may file a complaint to the Board within 30 days of being notified of the response, or in any case within 60 days from the application date.

        Exceptions to Consent Requirement

        Article 5 of KVKK regulates cases where your personal data may be processed without your explicit consent. Article 28 outlines exceptions to the application of the Law.

        Enforcement and Publication

        This Clarification Text came into effect on 20/09/2020 and is published on the CTech Website at: https://ctech.com.tr/

        Should any part or the entirety of the Clarification Text require updates due to changing conditions or legislation, the effective date will be revised and re-announced.

        GDPR APPLICATION FORM
Cookie Settings
On this website, we use cookies and similar functions to process device information and personal data. The processing serves to integrate content, elements of external services and third parties, statistical analysis/measurement, personalized advertising and social media integration. Depending on the function, the data is transferred to third parties and processed by them. This consent is optional, not required for the use of our website and can be revoked at any time using the icon in the lower left.
Functional
Always Active
Statistics
Marketing