MR DIY PRIVACY NOTICE FOR E-BULLETIN MEMBERS
In this Privacy Notice, the principles regarding processing your personal data before the data controller MRDIY Turkey Ev Gereçleri ve Yapı Malzemeleri İthalat A.Ş. (‘Company’) based in “Esentepe Mah. Büyükdere Cad. Ferko Signature Blok No: 175 İç Kapı No: 7 Şişli/İstanbul” are indicated below in accordance with Turkish Law on Protection of Personal Data No.6698 (‘Law’), European Union General Data Protection Regulation (“GDPR”), and other applicable legislation.
1. The Purpose of Processing Personal Data
Your e-mail information, which is obtained as a result of your registration to our e-bulletin list is processed for the purpose of sending informative and promotional content, sharing e-bulletins regarding product promotion or the services of the Company, and sending e-mail messages with an advertisement, promotion, and campaign content. It is processed for the purpose of monitoring, analysis, and marketing activities of business development projects.
2. Locations to which Processed Personal Data are Transferred and Purpose of Transfer
The purpose of transferring the data is in line with the purpose of processing personal data. Our company may transfer the personal data it collects to the institutions and organizations it cooperates with in order to carry out its activities, institutions in collaboration with Company to manage commercial communication, and public authorities and related business partners upon request.
3. Method and Legal Basis For Collecting Your Personal Data
The personal data (e-mail information) collected for an e-bulletin subscription is collected semi-automatically by typing the e-mail address of the person concerned in the e-bulletin subscription section. Such data is processed pursuant to the consent obtained by the data subject’s e-bulletin subscription and in a complaint with the provision of 5/1 of Law.
4. Application to the Data Controller and Your Rights
As per the Article 11 of the Law and Articles 12 through 23 of GDPR, you are entitled to a) learn whether your personal data are being processed, b) if they are, request information, c) obtain information on the purpose of processing and find out whether personal data has been used as fit for the purpose d) obtain information about the third persons in Turkey and abroad, to whom personal data are transferred, e) request rectification of personal data that may have been incompletely or inaccurately processed, f) request the deletion or destruction of personal data as per the Article 7 of the Law and the Article 17 of GDPR g) request notification of the operations made as per indents (e) and (f) to third parties to whom personal data have been transferred, h) object to occurrence of any detrimental result by means of analysis of personal data exclusively through automated systems and i) request compensation for the damages due to unlawful processing of personal data. Also, you can unsubscribe from the e-mail list free of charge by clicking the link in the e-mail content.
You can submit your information and application requests regarding your rights mentioned above to the Data Controller in accordance with the Communiqué on Application Procedures and Principles. You can also submit your information and application requests to the address “Esentepe Mah. Büyükdere Cad. Ferko Signature Blok No: 175 İç Kapı No: 7 Şişli/İstanbul” via registered letter or by e-mail address [email protected].
Our company fulfills your requests as soon as possible and within thirty days at the latest and once for free of charge. However, the data subject may be charged for the following requests or for the initial request if the action taken on the request requires additional cost. Our company can accept and process the request or reject the request in writing by explaining its reason.
You are entitled to file a complaint to the Turkish Board of Personal Data Protection (“Board”) within thirty days as of the notification of the reply and in all cases, within sixty days if the application is rejected after carrying out the procedure mentioned above, the reply is deemed to be insufficient or the requests are not responded in a timely manner. However, the complaint cannot be filed without exhausting this application process.
The Board may conduct the necessary inspections within its field of duty upon receiving a complaint or ex officio upon detecting a breach. The complaint shall be examined by the Board and answers shall be provided to those concerned. If no replies are given within sixty days as of the date of the complaint, the request shall be deemed to be rejected. If, as a result of inspections upon receiving a complaint or ex officio investigation, a breach is detected, the Board shall rule the identified contraventions of law be eliminated by the data controller and shall notify those concerned accordingly. This decision shall be fulfilled without delay but no later than within thirty days as of the notification of the decision. The Board is authorized to halt data processing or international transfer of data if damages that are hard or impossible to compensate occur and if there is an explicit infringement of the law.
We would like to emphasize that your data is meticulously protected by our Company and thank you for the trust that you place in us.