THE INFORMATIVE TEXT ON PROCESSING PERSONAL DATA
This document was prepared to ensure that your personal data (all sorts of data of the related person who is identified or possible to identify such as name, address, phone number and email) that is collected by and/or submitted to Cyberwise Siber Güvenlik
Tic. A.Ş. (“CYBERWISE”) within the establishment and execution of a contract with CYBERWISE is processed and informing responsibilities regarding your rights are served in accordance with the Law on the Protection of Personal Data
number 6698 Article 10 and General Data Protection Regulation) (“GDPR”).
Cyberwise Siber Güvenlik Tic. A.Ş.,based in ODTÜ Teknokent İkizler Binası Üniversiteler Mah. İhsan Doğramacı Bulvarı No:35 Kat:1 B blok No:5 Çankaya/Ankara, is the Data Controller concerning Processing Personal Data in accordance
with the Law. In this way, your Personal Data can be processed and protected by CYBERWISE in accordance with the Law.
CYBERWISE can process your Personal Data for such purposes; preservation of your Personal Data within the law for obligatory and beneficial process, your Personal Data being needed when supplying service and/or product, giving
employee info to CYBERWISE customers for service purposes within contract extent if needed, saving info such as ID, address and tax number and other information to identify the owner and interlocutor of all sorts of businesses and
processes that will be held in this extent, organizing data and documents that will support businesses and processes held in electronic environment or on paper.
2.METHODS AND LEGAL REASON FOR COLLECTING PERSONAL DATA
Personal Data is collected by CYBERWISE based on the legal reasons for CYBERWISE accomplishing its responsibilities emerging from contracts and laws complete and accurate in the extent of CYBERWISE offering product and/or service to its customers and/or
establishment and execution of a contracted or non-contracted commercial relationship with CYBERWISE by all tools and channels on spoken, written and electronic medium. Personal Data collected for these legal reasons can also be processed
and transferred by CYBERWISE with purposes stated in this text suiting the guiding principles stated by law within rules and purposes of processing Personal Data stated in the 5. and 6. Articles of the Law.
CYBERWISE will only collect Personal Data for certain, obvious and legal purposes, will be able to preserve Personal Data as long as purposes for processing Personal Data, as it is stated above in the concerned section, requires.
CYBERWISE will not process Personal Data for purposes other than what was stated in this text and the Law and when processing is no longer required , keeping situations that legally needs to be hidden, hidden, with the demand of the
concerned individual or independently will delete or exterminate or anonimize.
3.HOW AND FOR WHICH PURPOSES THE PROCESSED PERSONAL DATA CAN BE TRANSFERRED
Personal Data can be transferred to business partners and processed inside and outside of Turkey by CYBERWISE for legal compliance process, legal, financial, taxing etc. control purposes to achieve data processing purposes stated above, customers, suppliers
and producers, direct or indirect domestic/foreign associates, CYBERWISE authorized, CYBERWISE units, co-partners, internal and external auditors and contracted independent auditing firm, legal advisers, third parties CYBERWISE is
receiving or planning to receive service, support or other consultancies, third parties CYBERWISE is receiving or planning to receive consultancy service or support on other issues(including cloud computing service vendors who might
have servers in several countries), institutions and organizations and private people authorized by Law within the scope of Personal Data Processing terms and purposes stated in the 8. and 9. Articles of Law. Mentioned Personal Data
can also be shared through other mediums.
4.PERSONAL DATA HOLDER’S RIGHTS
Personal Data Holders, by applying CYBERWISE, are entitled;
• Learn whether or not their personal data have been processed,
• Request information as to processing if their data have been processed,
• Learn the purpose of processing of the personal data and whether data are used in accordance with their purpose,
• Know the third parties in the country or abroad to whom personal data have been transferred,
• Request rectification in case of the personal data are incompletely or incorrectly processed, and within this scope, to request notification to the third persons to whom the personal data is transferred,
• Request deletion or destruction of personal data
• Object to occurrence of any result processed data analyses made exclusively by electronic/automated systems, if they are to the detriment of the personal data holders,
• Request compensation for the damages, in case the person incurs damages due to unlawful processing of personal data in defiance of the law.