INFORMATION NOTICE ON THE PROTECTION AND PROCESSING OF PERSONAL DATA

Home   |   INFORMATION NOTICE ON THE PROTECTION AND PROCESSING OF PERSONAL DATA

INFORMATION NOTICE ON THE PROTECTION AND PROCESSING OF PERSONAL DATA

Pursuant to the Personal Data Protection Law No. 6698 and the Law on the Regulation of Electronic Commerce (“ETK”), personal data obtained/to be obtained by Enerjisa Enerji Üretim A.Ş. (“Company”), or shared/to be shared with the Company by you or by the company of which you are an authorized representative/employee within the scope of tender, contract, order and payment, and risk assessment processes, may be processed, recorded, stored, updated and transferred to third parties by the Company, acting as the data controller, in accordance with the law and the principle of good faith, within the scope of the purposes stated below.

IDENTITY OF THE DATA CONTROLLER

Title: ENERJİSA ENERJİ ÜRETİM ANONİM ŞİRKETİ

Mersis No: 0335006561200012

Address: BARBAROS MAHALLESİ ÇİĞDEM SK. AGAOGLU MY OFFICE Apt. NO: 1/16 ATAŞEHİR/İSTANBUL

Phone Number: (0216) 512 40 00

Registered Electronic Mail (KEP): [email protected]

CATEGORIES OF PERSONAL DATA PROCESSED
The categories of personal data processed by the Company are listed below:

  • · Email address
  • · Name and surname
  • · Phone number
  • · Financial data,
  • · Customer transaction data

METHOD OF COLLECTING PERSONAL DATA

Your personal data is collected in accordance with KVKK through the completion of supplier information forms, via email in electronic environments, and through online forms within the scope of fulfilling the purposes explained below. Your personal data may also be transferred to physical archives and information systems and stored in both digital and physical environments.

PURPOSES AND LEGAL GROUNDS FOR PROCESSING YOUR PERSONAL DATA

Your personal data may be processed by the Company within the framework of the personal data processing conditions set forth in Article 5 of KVKK, for the purposes (“Purposes”) and legal grounds stated below:

Your personal data is processed for the following purposes, including but not limited to:

  • Sending electronic commercial messages (campaigns, promotions, notifications, offers, etc.),
  • Provision and improvement of our services,
  • Conducting customer satisfaction activities.
  • Based on the legal ground that data processing is necessary for the legitimate interests of the Company, provided that it does not harm the fundamental rights and freedoms of the data subject;
  • Identity and contact data for the purpose of managing access authorizations by the Company
  • Transaction security data for the purpose of creating and tracking visitor records by the Company
  • Identity, contact and customer transaction data for the purpose of conducting contract processes by the Company,
  • Identity, contact and customer transaction data for the purpose of carrying out business activities by the Company,
  • Identity, contact, financial and customer transaction data for the purpose of ensuring business continuity and carrying out activities by the Company
  • Contact and identity data for the purpose of storage and archiving activities by the Company,
  • Identity, contact and customer transaction data for the purpose of conducting communication activities by the Company,
  • Identity and contact data for the purpose of conducting customer satisfaction activities by the Company,
  • Identity, contact and customer transaction data for the purpose of receiving and evaluating suggestions for improving business processes by the Company
  • Contact and identity data for the purpose of following up and executing legal affairs
  • Identity, contact, financial and customer transaction data for the purpose of informing authorized institutions and organizations
  • Transaction security data for the purpose of ensuring the security of data controller operations
  • Identity, contact, financial and customer transaction data for the purpose of conducting audit / ethics activities,
  • Contact and identity data for the purpose of conducting Occupational Health / Safety activities,
  • For the purpose of conducting commercial communication processes, your identity (name, surname), contact (mobile phone number, email address) and customer transaction (message content, message sending date and time) data to the electronic commercial communication service provider from which we receive services,
  • For the purpose of fulfilling our legal obligations, your identity (name, surname), contact (mobile phone number, email address) and legal transaction (commercial communication consent/rejection information, source of consent, how the consent was obtained, date and time of consent, approved communication method) data to İleti Yönetim Sistemi A.Ş. (İYS), based on the legal ground that “it is mandatory for the data controller to fulfill its legal obligation”; and the same data, within the scope of conducting commercial communication processes, for the purpose of receiving integration services for recording commercial communication records to İYS

Based on the legal ground that it is explicitly stipulated by law and mandatory for the data controller to fulfill its legal obligations;

  • Identity, contact, financial, customer transaction and transaction security data for the purpose of carrying out activities in compliance with legislation

Based on the legal ground that processing of personal data is necessary for the establishment or performance of a contract, provided that it is directly related to the contract;

  • Identity, contact, financial and customer transaction data for the purpose of conducting goods and services procurement processes
  • Identity, contact, financial, legal transaction and customer transaction data for the purpose of conducting contract processes
  • Identity, contact and customer transaction data for the purpose of managing access authorizations
  • Identity, contact and customer transaction data for the purpose of conducting communication activities

Based on your explicit consent;

  • Conducting business development activities, evaluating potential collaborations and organizing meetings / appointments for this purpose

PARTIES TO WHOM YOUR PERSONAL DATA MAY BE TRANSFERRED AND PURPOSES OF TRANSFER

Your collected personal data may be transferred, in line with the realization of the above-mentioned Purposes; to our affiliates and subsidiaries, business partners, Company shareholders, legally authorized public institutions and organizations within the scope of legal obligations and where explicitly stipulated by law, and to service provider companies whose servers are located abroad for the use of Company systems and software, in accordance with Articles 8 and 9 of KVKK regarding the transfer of personal data, provided that necessary security measures are taken and limited to the extent required by business processes and legal requirements.

YOUR RIGHTS REGARDING PERSONAL DATA

You may submit your requests regarding your personal data processed by us within the scope of Article 11 of KVKK, in accordance with the Communiqué on the Principles and Procedures for Application to the Data Controller, in writing or via registered electronic mail (KEP), secure electronic signature or the email address previously notified to us and registered in our system, at any time to the addresses below:

E-mail: [email protected]

KEP: [email protected]

Address: Barbaros Mh. Çiğdem Sk. Ağaoğlu My Office Apt No: 1/16 Ataşehir / İstanbul