Protection of personal data Diginet Bilgisayar Sistemleri Eğitim ve Danışmanlık San.Tic.Ltd.Şti adopts the principles stipulated by the KVK Law to comply with the Law No. 6698 on Protection of Personal Data ("KVK Law"), processing, deletion of personal data. , destroying, making anonymous, transferred, the Republic of Turkey on the provision of related person disclosure and fulfill the laws of data security obligations. The Privacy and Protection of Personal Data Policy, which is organized within this scope, is made available to the real persons (“Contact Person”) whose personal data is processed.

  1. Scope and Purpose of Privacy and Personal Data Protection Policy

1.1. This Privacy and Personal Data Protection Policy;  

1.2. Methods of collecting personal data and legal reasons  

1.3. Which contact groups are processing personal data (Data Subject Contact Group Category asi)  

1.4. In which category personal data is processed (Data Categories) and sample data types regarding these contact groups,  

1.5. In which business processes and for what purposes this personal data is used,  

1.6. Technical and administrative measures taken to ensure the security of personal data,  

1.7. To whom and for what purpose the personal data can be transferred,  

1.8. Personal data retention times,  

1.9. Profiling and Segmentation  

1:10. What are the rights of the Persons related to their personal data and how they can exercise these rights,                    

1:11. Related Persons' how they can positively or negatively change their preferences for receiving electronic commercial messages,                    

1:12. Sharing personal data with public authorities                    

1:13. Describes Cookie Usage and Management.                    

  1. Personal Data Collection Methods and Legal Reasons

Diginet Bilgisayar personal data through the websites mobile applications of the websites , social media accounts, cookies, notifications from the call center, administrative and judicial authorities and other communication channels, in accordance with the personal data processing conditions specified in KVK Law and this It gathers in accordance with the legal reasons specified in the Privacy / Personal Data Protection Policy .

  1. Data Subject Contact Group Categorization

Diginet Bilgisayar categorizes the data subject persons whose personal data is processed in the personal data processing processes and activities related to these processes as follows. However, personal data of other groups of people (consultant, educator, blogger ) can be processed in accordance with the personal data processing conditions specified in Articles 5 and 6 of the KVK Law and for the legal reasons specified in this Privacy / Personal Data Protection Policy .

  1. Data Categories and Sample Data Types
  1. Member Customer

1.1. Identity Information: Name, surname, date of birth, gender, TR identity number  

1.2. Location Information: City, county (delivery address of the shopping made through n11.com/n11pro.com)  

1.3. Contact Information: mobile phone, e-mail address, address, post code, fixed phone  

1.4. Financial Information: Tax office, billing information  

1.5. Customer / Member Information: Membership information, membership ID number  

1.6. Customer / Member Transaction Information: Product / purchased, shopping amount, shopping date, call center interview records, commercial communication permit, campaigns / competitions used, coupons used, order information  

1.7. Risk Management Information: IP address  

1.8. Transaction Security Information: Password, password information  

1.9. Marketing Information: Cookie records, targeting information, evaluations showing habits and likes  

1:10. Audio Data: Call center interview recordings                    

1:11. Legal Transaction and Compliance Information: The start and end time of the service provided, the type of service used, the amount of data transferred, the commercial electronic message permit given by the Relevant Person , the membership agreement that it approves, the institutional membership agreement, and the other services that enable the use of the services offered by Diginet Computer. legal texts and contracts                    

1:12. Marketing Information: SMSs , e-mail messages or calls made by the call center for marketing purposes sent based on the commercial electronic message permission given by the person concerned.                    

1:13. Claim / Complaint Management / Reputation Management Information: Records regarding the complaints and / or requests submitted by the relevant person through the website, mobile application, social media accounts or call center related to the product or service purchased and the transactions made during the evaluation or management of these requests.                    

 

  1. Guest Customer (users who shop on the site without being a member)

4.1. Identity Information: Name, surname, date of birth, gender, TR identity number  

4.2. ocation Information: City, county ( delivery address of the shopping made through discountbasladi.com )  

4.3. Contact Information: mobile phone, e-mail address, address, post code, fixed phone  

4.4. Financial Information: Tax office, billing information  

4.5. Guest Customer Transaction Information: Purchased product / , shopping amount, shopping date, call center interview records, commercial communication permit, benefited campaigns, order information  

4.6. Risk Management Information: IP address  

4.7. Transaction Security Information: Password, password information  

8.4. Marketing Information: Cookie records, targeting information, evaluations showing habits and likes  

4.9. Audio Data: Call center interview recordings  

4:10. Legal Transaction and Compliance Information: The start and end time of the service provided, the type of service used, the amount of data transferred, the commercial electronic message permit given by the Relevant Person other legal texts and contracts that enable the use of the services offered by Diginet Computer.                    

4:11. Marketing Information: SMSs , e-mail messages or calls made by the call center for marketing purposes sent based on the commercial electronic message permission given by the person concerned.                    

4.12. Claim / Complaint Management / Reputation Management Information: Records regarding the complaints and / or requests submitted by the relevant person through the website, mobile application, social media accounts or call center related to the product or service purchased and the transactions made during the evaluation or management of these requests.                    

  1. Online Visitor

2.1. Transaction Security Information: Password, mobile phone, password information    

2.2. Legal Transaction Information / Risk Management Information: IP address    

2.3. Legal Transaction and Compliance Information: Start and end time of the service provided, the type of service utilized, the amount of data transferred.    

  1. Person to whom the purchased product will be delivered

3.1. Identity Information: Name, surname, date of birth, gender, TR identity number    

3.2. Location Information: City, county (delivery address of the shopping made through n11.com/n11pro.com)    

3.3. Contact Information: mobile phone, e-mail address, address, post code, fixed phone    

3.4. Financial Information: Tax office, billing information    

  1. Vendor / Supplier / Vendor Candidate / Vendor or Supplier Employee or Authority

4.1. Identity Information: TC Identity No, Name Surname    

4.2. Contact Information: e-mail address, phone, REM address, address, mobile phone    

4.3. Financial Information: Account Number, Tax office, Tax Identification Number, tax plate, IBAN    

4.4. Legal Transaction and Compliance Information: Signature circular, activity certificate,    

4.5. Special Qualified Personal Data / Legal Transaction Information: Signature    

4.6. Visual Information: Photograph    

  1. In Which Business Processes and For What Purposes Is Personal Data Used?

5.1. Member Customer Personal Data  

5.1.1. Performing membership transactions,

5.1.2. DigiNet operated by computer "indirimbasladi.co" and e-commerce platform (the "Platform"); to improve the services provided, to develop new services and to inform them,

5.1.3. For the purpose of fulfillment of the Membership Agreement established with the Member Customer, commercial electronic mail confirmation for existing Member Customers; Analyzing the preferences, likes and needs of the Member Customer and providing special promotion, opportunity and benefit to the Member Customer,

5.1.4. Promotion and marketing of applications, goods / products and services in line with the preferences and preferences of the Member Customer by making remarketing, targeting, profiling and analysis in accordance with the express consent of the Member Customer,

5.1.5. Resolving Member Customer problems and complaints,

5.1.6. Improving Member Customer experience on both platform and mobile application,

5.1.7. Follow-up of accounting and purchasing transactions,

5.1.8. Legal processes and compliance with legislation,

5.1.9. Answering information requests from administrative and judicial authorities,

5.1.10. Providing information and transaction security and preventing malicious use,  

5.1.11. Making necessary arrangements to ensure that the processed data is up-to-date and correct  

5.2. Guest Customer (users who shop on the site without being a member) Personal Data  

5.2.1. Shopping as “guest” from platforms,

5.2.2. Improving the services offered through the platforms, developing new services and informing them,

5.2.3. In terms of Guest Customers with commercial electronic message approval; analyzing preferences, likes and needs and providing special promotion, opportunity and benefit to the Guest Customer,

5.2.4. Promotion and marketing of applications, goods / products and services in line with the preferences and tastes of the Guest Customer by making remarketing, targeting, profiling and analysis in line with the express consent of the Guest Customer

5.2.5. Resolving Guest Customer problems and complaints,

5.2.6. Improving the Guest Customer experience on both the platform and the mobile application,

5.2.7. Follow-up of accounting and purchasing transactions,

5.2.8. Legal processes and compliance with legislation,

5.2.9. Answering information requests from administrative and judicial authorities,

5.2.10. Providing information and transaction security and preventing malicious use,  

5.2.11. Making necessary arrangements to ensure that the processed data is up-to-date and correct,  

5.2.12. Fulfillment of legal obligations  

  1. Online Visitor Personal Data

6.1. Processing of online visitor data within the scope of Law No. 5651,  

6.2. Legal processes and compliance with legislation,  

6.3. Answering information requests from administrative and judicial authorities,  

6.4. Providing information and transaction security and preventing malicious use,  

6.5. Fulfillment of legal obligations  

  1. Personal Data of the Person to whom the Purchased Product will be Delivered

7.1. Execution of product delivery processes,  

7.2. Follow-up of accounting and purchasing transactions,  

7.3. Legal processes and compliance with legislation,  

7.4. Answering information requests from administrative and judicial authorities,  

7.5. Providing information and transaction security and preventing malicious use,  

7.6. Making necessary arrangements to ensure that the processed data is up-to-date and correct,  

7.7. Fulfillment of legal obligations  

  1. Personal Data of Vendor / Supplier / Vendor Candidate / Vendor or Supplier Employee or Authority

8.1. Execution of contract processes,  

8.2. Follow-up of accounting and purchasing transactions,  

8.3. Legal processes and compliance with legislation,  

8.4. Answering information requests from administrative and judicial authorities,  

8.5. Providing information and transaction security and preventing malicious use,  

8.6. Making necessary arrangements to ensure that the processed data is up-to-date and correct,  

8.7. Fulfillment of legal obligations  

  1. Technical and Administrative Measures Taken to Ensure the Security of Personal Data

9.1. Diginet Bilgisayar is committed to taking all necessary technical and administrative measures and taking due care to ensure the confidentiality, integrity and security of your personal data.  

9.2. Diginet Computer takes the necessary measures to prevent unauthorized access to personal data, misuse, and illegal processing, disclosure, modification or destruction of personal data. Diginet Computer uses generally accepted security technology standards such as firewalls and Secure Socket Layer (SSL) encryption when processing personal data. In addition, when sending your personal data to Diginet Bilgisayar through the website, mobile application and mobile site , this data is transferred using SSL.  

9.3. Regarding the prevention of illegal access to personal data processed by Diginet Bilgisayar, prevention of illegal processing of such data and ensuring the protection of personal data:  

9.4. All areas on the website or mobile application where personal data are taken protect with SSL,  

9.5. It creates and implements access authorization and control matrices for its employees so that personal data collected from the website or mobile application is not illegally processed,  

9.6. To ensure that personal data is unlawfully accessed; periodically penetration tests, testing the system's resistance to unauthorized access,  

9.7. It uses the Pseudonymization (alias data) method for all secondary data processing other than the primary processing purpose Pseudonymous uses encryption methods in systems where this data is included and applies a more strict access and control policy to ensure that the data is impossible to identify.  

9.8. It ensures that personal data in the paper medium is kept in lockers and only accessible by authorized people.  

9.9. Personal data processed through the cookies of third parties, from which services are received, are deleted from the systems of third parties if the membership ends.  

9:10. Although Diginet Computer takes the necessary information security measures Diginet Computer immediately notifies you and the Personal Data Protection Board in case of personal data being damaged or being hit by unauthorized third parties as a result of attacks on the platforms operated by Diginet Bilgisayar or the Diginet Computer system. takes necessary measures.                    

  1. To whom and for what purpose the personal data can be transferred

10.1. Diginet Bilgisayar transfers personal data to third parties only for the purposes specified in this Privacy and Personal Data Protection Policy and in accordance with Articles 8 and 9 of the KVK Law. In this context, the processed Customer Customer / Guest Customer data and the person information to be delivered on behalf of the purchased product are shared with the seller and the cargo company and this data can also be accessed by the call center when necessary. The contact information to be issued in the name of the invoice is shared with the cargo company for the purpose of sending the invoice to the relevant person.                    

10.2. Mobile number and / or e-mail address of the Member Customer / Guest Customer; Based on commercial electronic message approval, it is shared with commercial electronic messaging service provider in order to promote, advertise and offer benefits and opportunities in line with shopping preferences, tastes and habits.                    

10.3. The cookie service is shared with our local / foreign business partners in order to use the website or mobile application usage preferences and browsing history, to make segmentation and to contact the Member Customer / Guest Customer in accordance with their tastes and preferences Personal data transfers within this scope are realized through the secure environment and channels provided by the relevant third party. Depending on the content and scope of the service received from third parties; In all cases where the transfer of the personal data of the Member Customer / Guest Customer is not required, the transfer is made using Pseudonymous data.                    

10.4. In order to increase the satisfaction and loyalty of the Member Customer / Guest Customer, the data of the Member Customer / Guest Customer are shared with the companies that will conduct market research.                    

5.10. In addition to the technical data to ensure their security, the personal data subject to domestic and international transfer, which we have mentioned above , are Considering that the opposite party of the legal relationship is the data controller or data processor, the KVK Law included in our contracts is also protected legally through compatible provisions.                    

10.6. During the shared information, as stated above, when transferring personal data to countries outside of Turkey, the data transfer as permitted by applicable law and in accordance with this policy for data protection is ensured.                    

  1. Personal Data Retention Times

11.1. Diginet Computer maintains the personal data it processes in accordance with the KVK Law for the periods stipulated in the relevant legislation or required by the processing purpose. In our Personal Data Retention and Destruction Policy, these periods are approximately as follows:                    

11.1.1. Call Center audio recordings 3 years 6563 and related secondary legislation Law No. I                              

11.1.2. Registration for membership and order 10 years Law No. 6098                              

11.1.3. All records on accounting and financial transactions 10 years Law No. 6102, Law No. 213                              

11.1.4. Cookies Maximum 540 days                              

11.1.5. Commercial electronic message approval records 1 year 6563 numbered Law and related secondary legislation from the date of approval                              

11.1.6. Traffic information for online visitors 2 years Law No. 5651                              

11.1.7. Information and / or CVs received due to job application 1 year                              

11.1.8. Personal data on Member Customer / Guest Customers 10 years after the legal relationship ends; According to the 6563 Law and related secondary legislation, 3 years Law No. 6563, Law No. 6102, Law No. 6098, Law No. 213, Law No. 6502                              

11.1.9. Personal data about suppliers 10 years after the legal relationship has ended, Law No. 6102, Law No. 6098 and Law No. 213                              

11.1.10. Personal data received for the purpose of usability test research 2 weeks                                                  

11.1.11. You can review our Cookie Policy on the retention periods of personal data we obtain through cookies .                      

 

11.2. Profiling and Segmentation                    

By using the personal data processed by Diginet Computer Member Customer / Guest Customer;

 

11.2.1. Regarding the Member Customer / Guest Customer who approves to receive commercial electronic messages, he / she is profiling and segmentation in order to prepare content that is more suitable to the likes and preferences of the Member Customer / Guest Customer , to make advertisements, promotions, discounts .  

11.2.2. Profiling and segmentation is done in terms of Member Customer / Guest Customer who have not given commercial electronic message approval ;  

11.2.2.1. Product improvement (determination of the most sold or unsold product categories),        

11.2.2.2. Organizing and uploading campaigns for customer groups that have the potential to buy a particular product by making modeling by analyzing shopping preferences,        

11.2.2.3. Studies such as taking actions to increase sales potential are carried out.        

11.2.3. Within the scope of profiling and segmentation studies, the personal data of the Member Customer / Guest Customer, especially name and surname, mobile phone, e-mail or address information are not used directly, instead , transactions are made with the Member Customer / Guest Customer IDs assigned to them Members Customer / Guest Customer ID or other data through the use of an expression nicknamed Customer / Member of the protection of personal data is provided. Member Customer / Guest Customer IDs are only accessible to the relevant people or departments within Diginet Computer. These IDs assigned to the Member Customer / Guest Customer are kept encrypted in the system by Diginet Computer and access to this section is only given to limited people.  

  1. Related Persons' Personal Data and What We Have These Rights on the Rights of how they can use

The rights of the Person in accordance with Article 11 of the KVK Law on the personal data processed by Diginet Bilgisayar are listed below:

12.1. Learning whether personal data is processed,                    

12.2. If personal data is processed, requesting information about it,                    

3.12. Learning the purpose of processing personal data and whether they are used in accordance with its purpose,                    

12.4. To know the third parties to whom personal data are transferred domestically or abroad,                    

12.5. Requesting correction of personal data if it is incomplete or incorrectly processed,                    

12.6. Request the deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the KVK Law,                    

7.12. Requesting notification of transactions made in accordance with subparagraphs 12.4 ) and ( 12.5 ) to third parties to whom personal data are transferred,                    

12.8. To object to the emergence of a result against the person by analyzing the processed data exclusively through automated systems,                    

12.9. Requesting the elimination of the loss in the event that personal data is damaged due to illegal processing.                    

12.10. In order to exercise your rights on your personal data; You can access your account and perform the necessary changes, updates and / or deletions from the "My Account" section of the Diginet Computer website , mobile application and mobile site. In addition, you can make your application and use your rights by using the methods specified in the "Application Form" in accordance with article 13 of the KVK Law on the website or mobile application of electronic commerce platforms operated by Diginet Computer .                

  1. How Relevant Persons Can Change Their Positive or Negative Preferences for Receiving Electronic Commercial Messages

You can change or update your positive or negative preferences regarding receiving commercial electronic messages that you have given at a later time when you subscribe to the website or mobile application of electronic commerce platforms operated by Diginet Bilgisayar.

Termination of membership does not mean the withdrawal of your consent to receive commercial electronic messages. For this reason, also make sure that you have completed all the procedures to withdraw your consent.

As regards cookie management, you can follow the steps outlined in our Cookie Policy.

  1. Personal Data Sharing with Official Authorities

Diginet Computer, your traffic information such as your personal information and navigation information about your visit or membership to electronic commerce platforms and mobile applications operated by Diginet Computer; DigiNet computer in order to carry out its laws against liabilities (the fight against crime, government and public safety threats and the like but it not limited thereto DigiNet computer's legal or administrative as a statement or provide information in cases where the available liability) legally authorized to request such information will be able to share with public institutions and organizations.

  1. Cookies ( Cookie ) Use and Management

For detailed information about cookies, cookie types, purposes, retention periods and cookie management used by Diginet Computer, you can review our Cookie Policy.

  1. Conditions for Deleting, Destroying and Anonymizing Personal Data

Diginet Bilgisayar stores the personal data it processes through its website, mobile application or mobile site for the periods stipulated by the relevant laws and / or the periods required by the purpose of processing in accordance with article 7, 17 of the KVK Law and article 138 of the Turkish Penal Code. In the event that these periods expire, it will delete, destroy or anonymize in accordance with the provisions of the Regulation on the Deletion, Destruction or Anonymization of Personal Data.

Deleting personal data by Diginet Computer refers to the process of making personal data inaccessible and unusable for the users concerned. To this end, Diginet Computer creates and implements a user level access authorization and control matrix. Takes necessary measures to perform deletion in the database.

The destruction of personal data by Diginet Computer refers to the process of making personal data inaccessible, irreversible and reusable by anyone.

Anonymizing personal data by Diginet Computer implies that personal data can never be associated with an identified or identifiable natural person, even if it is matched with other data.

Diginet Bilgisayar describes in detail the methods for erasing, destroying and anonymizing and the technical and administrative measures it takes within the scope of the Personal Data Retention and Disposal Policy prepared pursuant to the Regulation on the Deletion, Destruction or Anonymization of Personal Data. In this Policy, the period for the periodic destruction stipulated by the Regulation is determined as 6 months.

  1. Changes to the Privacy / Personal Data Protection Policy

Diginet Bilgisayar may make changes to this Privacy / Personal Data Protection Policy at any time. These changes take effect immediately with the release of the new, modified Privacy / Personal Data Protection Policy In order to be aware of the changes in this Privacy / Personal Data Protection Policy , you, our members will be informed.