Privacy Notice
Online Visitor Information Notice
As Ankaref Innovation and Technology Inc. (“Company”), we value the security and privacy of your personal data. In this respect, we present the following information as the “Data Controller” within the scope of the Law on the Protection of Personal Data No. 6698 (“KVKK”), in order to fulfill our obligation to inform under Article 10 of the Law regarding the personal data we request from you and that you share with us.
FOR WHAT PURPOSES DO WE PROCESS YOUR PERSONAL DATA?
Your personal data is processed for the purposes of: conducting information security processes, ensuring that activities are carried out in compliance with legislation, carrying out communication activities, conducting storage and archiving activities, following up requests and complaints, managing customer relations and satisfaction processes, ensuring the security of data controller operations, fulfilling information obligations towards authorized persons, institutions, and organizations.
METHODS AND LEGAL GROUNDS FOR COLLECTING PERSONAL DATA
Personal data collected may be shared, within the framework of the conditions and purposes of personal data processing set forth in Article 8 of the Law and for the purposes specified in this Policy, with: domestic official institutions and organizations, law enforcement agencies, courts, and enforcement offices, domestic third-party natural and legal persons with whom we cooperate, service provider companies and their officials, business partners, shareholders of our Company, suppliers, and support service providers, domestic persons and institutions providing cloud data storage services. Your personal data may also be transferred abroad within the scope of the conditions specified in Article 9 of the Law, limited to the purposes specified in this Policy, through third-party cookies activated upon your approval of this Policy and/or by changing cookie preferences through your browser (e.g., Google cookies), and limited to the data accessible by such cookies. For detailed information regarding our cookie practices, please review our our Cookie Policy.
TRANSFER OF PROCESSED PERSONAL DATA
The personal data collected may be shared, in line with the purposes stated above and within the framework of Article 8 of the Law, with domestic official institutions and organizations, law enforcement agencies, courts and enforcement offices, third-party natural and legal persons with whom we cooperate, service providers, business partners, Company shareholders, suppliers, and support service providers, as well as domestic cloud storage service providers.
Additionally, your personal data may be transferred abroad under the conditions specified in Article 9 of the Law, limited to the purposes in this Policy, through third-party cookies activated via your approval or browser cookie preferences, and limited to the data accessible by these cookies. For detailed information regarding our cookie practices, please review our our Cookie Policy.
METHODS AND LEGAL GROUNDS FOR COLLECTING PERSONAL DATA
Your personal data is collected verbally, in writing, or electronically through: Cookies created by our website, Third-party tracking cookies, Website usage measurement systems, Log records kept in line with our obligations under Law No. 5651 on the Regulation of Publications on the Internet, Other documents submitted by the relevant individual via the communication section of our website.
The personal data obtained through these methods are processed in accordance with Articles 5 and 6 of the KVKK and the fundamental principles of personal data protection law.
HOW DO WE STORE YOUR PERSONAL DATA?
Your personal data shared with our Company is stored on secure domestic servers, in accordance with legal regulations, KVKK provisions, and Company policies.
HOW LONG DO WE RETAIN YOUR PERSONAL DATA?
In compliance with KVKK, once the purpose requiring processing is eliminated and/or the statutory limitation periods for processing have expired, your personal data will be deleted, destroyed, or anonymized by us.
SECURITY MEASURES FOR YOUR PERSONAL DATA
Our Company takes all necessary technical and administrative measures, within the limits of available technology, to prevent unlawful processing of personal data and ensure secure storage.
RIGHTS OF DATA SUBJECTS
Pursuant to Article 11 of the KVKK, everyone has the right to apply to the data controller and request:
To learn whether their personal data is processed,
To request information if personal data has been processed,
To learn the purpose of processing and whether it is used in line with such purpose,
To know the third parties to whom personal data is transferred domestically or abroad,
To request the correction of incomplete or incorrect data,
To request deletion or destruction of data within the framework of Article 7,
To request notification of the actions taken as per (d) and (e) above to third parties to whom data has been transferred,
To object to results arising against themselves through analysis of data exclusively by automated systems,
To request compensation if they suffer damages due to unlawful processing of personal data.
HOW CAN YOU EXERCISE YOUR RIGHTS?
You can submit your requests regarding your rights listed above by filling out the Application Form accessible here and sending it to the Data Controller.
According to the Communiqué on the Procedures and Principles of Application to Data Controller, applications must include: name, surname, signature if the application is in writing, Turkish ID number (or passport number if foreign), residential or workplace address for notification, email address (if available), telephone and fax numbers, and details of the request.
The Data Subject must clearly and explicitly state the matter requested in the application, including explanations regarding the right they wish to exercise, and must attach the relevant information and documents to the application.
The subject of the request must concern the applicant personally; however, if acting on behalf of another person, the applicant must be specifically authorized in this regard and provide documentation of such authorization (special power of attorney). In addition, the application must include the applicant’s identity and address information, and documents verifying their identity must be attached.
Requests made by unauthorized third parties on behalf of others will not be considered.
RESPONSE TIME TO YOUR REQUESTS
Requests regarding your personal data will be evaluated and responded to within 30 days at the latest from the date of receipt. However, if the process incurs an additional cost, our Company may charge the fee determined by the Personal Data Protection Board.
If your application is rejected, reasons for the refusal will be sent to the address or contact details you provided in your application primarily by email or post.
CONTACT INFORMATION OF THE DATA CONTROLLER
Ankaref Innovation and Technology Inc.
METU Technopolis, Twin Blocks, 1st Floor, No:3, Çankaya, Ankara
Tel: +90 312 299 21 64
Email : ankarefino@hs01.kep.tr
EN 
TR 
DE 
AR