YILDIZLAR YATIRIM HOLDING A.Ş. Official Website Privacy Policy
The purpose of this Privacy Policy is to determine the terms and conditions for the use of personal data shared with the Company by Website users/members/visitors ("Data Owner") during the operation of the www.yildiz.com website ("Website") operated by YILDIZLAR YATIRIM HOLDING A.Ş. ("Company") or generated by the Company during the use of the Website. The Data Owner declares that they have been informed about the processing of their personal data by this Privacy Policy and consent to the use of their personal data as set forth herein.
Which Data Are Processed?
Under this heading, which data are processed by the Company and considered personal data in accordance with the Personal Data Protection Law are listed. Unless expressly stated otherwise, the term "personal data" under the terms and conditions provided under this Privacy Policy shall include the following information.
- Contact Form
- Contact Information
- First and Last Name
- E-Mail Address
- Phone
- Request Text
Data that is irrevocably anonymized by the provisions of Articles 3 and 7 of the Personal Data Protection Law shall not be considered personal data in accordance with the provisions of said law and processing activities related to this data shall be carried out without being bound by the provisions of this Privacy Policy.
In addition, IP addresses and e-mail addresses of Website Visitors within the scope of cookie information within the Official Website of www.yildiz.com shall be protected by the Company within the framework of the obligations under PDPL No. 6698.
Who Can Access The Data? The Company may transfer the personal data of the Data Owner and the new data obtained by using these personal data to its business partners, shareholders, suppliers, Company officials, YILDIZLAR YATIRIM HOLDING A.Ş. and its Companies in order to realize the purposes specified by this Privacy Policy limited for the purpose of providing such services. Company may share with third parties such as outsourcing service providers, hosting service providers, law offices, research companies, call centers, including those who send SMS to improve the Data Owner experience (including improvement and personalization), ensure the security of the Data Owner, detect fraudulent or unauthorized uses, investigate operational evaluation, correct errors in Website services, and perform any of the purposes of this Privacy Policy. The Data Owner agrees that the aforementioned third parties may store the personal data of the Data Owner on their servers all over the world, provided that they are limited to the above-mentioned purposes.
About Right of Access to Data and Correction Requests
The Data Owner, by applying to the Company, has the following rights:
To learn whether their personal data is processed,
To request the relevant information if personal data has been processed,
To learn the purpose for the processing of personal data and whether they have been used in accordance with the purpose or not,
To know the third parties to whom personal data has been transferred within Turkey or abroad,
To request the rectification of the incomplete or inaccurate data, if any,
To request the erasure or destruction of their personal data under the conditions stipulated in the relevant legislation,
To request notification of correction, deletion and disposal operations made in accordance with the relevant legislation to third parties to whom personal data has been transferred,
To object to a result against the person themselves by analyzing the processed data exclusively through automated systems,
To claim compensation in the event that they suffer a loss due to illegal processing of the personal data.
“Form for Applications to the Data Controller by the Personal Data Owner" may be used to exercise the rights related to personal data. Applications to be made in this direction are answered within 30 (thirty) days at the latest. Detailed information about the use of legal rights can be found at www.yildiz.com in the YILDIZLAR YATIRIM HOLDING A.Ş. Personal Data Protection Policy.
The Data Owner undertakes that the information subject to this Privacy Policy is complete, accurate and up-to-date and will update them immediately in case of any change in this information. The Company shall have no liability if the Data Owner has not provided up-to-date information. The Data Owner accepts that they may not fully benefit from the operation of the Website if they make a request that will result in the inability to use any of their personal data by the Company and declares that any responsibility arising within this scope will belong to them.
Storage Period of Personal Data
The Company shall store the personal data provided by the Data Owner for the period required by the aforementioned processing purposes.
In addition, in the event of any dispute between the Company and the Data Owner, the Company may retain the personal data for the duration of the statute of limitations determined in accordance with the relevant legislation, limited to the purpose of carrying out the necessary defences under the dispute.
Data Security Measures and Commitments
The Company undertakes to take the necessary technical and administrative measures to ensure the appropriate level of security in order to ensure that • personal data are not unlawfully processed, • personal data are not unlawfully accessed and • personal data are protected under the conditions specified in the relevant legislation or stated in this Privacy Policy, and to make the necessary audits.
The Company may not disclose the personal data obtained about the Data Owner to anyone else in contravention of the provisions of this Privacy Policy and the Personal Data Protection Law and may not use them for purposes other than processing.
If links are provided to other applications through the Website, the Company has no responsibility for the privacy policies and contents of the applications.
Changes to the Privacy Policy
The Company may change the terms of this Privacy Policy at any time. The current Privacy Policy becomes effective on the date it is submitted to the Data Owner by any means.