Privacy Policy
LEGAL NOTICE ON PERSONAL DATA PROCESSING AND PROTECTION FOR THE PROCESS OF PROVIDING CONSULTANCY
1. Information Related to Data Controller
We, as Ljus İletişim Organizasyon Tasarım ve Danışmanlık Limited Şirketi (Ljus Communication Organization Design and Consultancy Limited Company) (Tax ID: 6091341146) ("LJUS" or "COMPANY"), located at Atatürk Mah. Parmaksız Cad. No: 23/3 Büyükçekmece/İstanbul, are extremely sensitive to the security of your personal data. With this awareness, we attach great importance to the processing and preservation of personal data belonging to individuals with whom the Company interacts, in accordance with the Law on the Protection of Personal Data numbered 6698 ("Law" or "DPL"), secondary regulations (regulations, communiqués, etc.) issued and to be issued in accordance with the Law, and binding decisions taken and to be taken by the Personal Data Protection Board. With full awareness of our responsibility as defined in the Law as the "Data Controller", we process your personal data and take all necessary technical and administrative measures to ensure an adequate level of security in order to prevent the unlawful processing of personal data, prevent unauthorized access to personal data and ensure the preservation of personal data within the limits prescribed by the legislation."
2. Processed Personal Data Categories and Types
Personal Identifying Information: Name, surname (belonging to the authorized personnel of the Client/Customer who will conclude the consultancy agreement)
Contact Information: Phone number, e-mail address (belonging to the authorized personnel of the Client/Customer who will conclude the consultancy agreement)
Finance ve Marketing: Credit card and payment information if not a company account
Customer Processes: Invoice, customer ID.
Above stated personal data will be processed during the conclusion and processing of consultancy agreement between the client company and LJUS and will belong to the authorized personnel of the Client who will conclude the consultancy agreement. Therefore, LJUS request the Client Company to notify its authorized personnel about this notice on personal data processing and protection. Once this Notice is delivered to the client Company, the responsibility of informing authorized personnel will be on the Client Company, and LJUS will not be held responsible.
3. Personal Data Collection Methods and the Activity from Which it is Obtained
As the Company, we collect your personal data automatically or semiautomatically through electronic methods.
4. Purposes and Legal Reasons for the Processing Personal Data
As the Company, we process your personal data for the purposes and legal reasons described below.
In addition, personal data in the category of identity and contact data, processed within the scope of sending informative commercial electronic messages for advertising, campaigns and promotions related to the product and service marketing and strategic marketing activities will be processed based on the legal reason of your explicit consent in Article 5/1 of the Law.
5. Transfer of Personal Data and Purposes of Transfer
6. Data Retention Period
Your personal data stated above will be stored for the period your business relationship continues and, if terminated, for further 10 (ten) years starting from the termination. Your personal date will be erased and destructed at the first periodic destruction period after the termination of client/consultant relation, in accordance with the related legislations. If your relation with LJUS and status change (becoming a employer etc.), data retention periods may also change and you will be informed about it additionally.
7. Data Protection Methods
We take all appropriate technical and organizational measures to safeguard your personal data and to mitigate risks arising in connection with unauthorized access, accidental data loss, deliberate erasure of or damage to personal data.
In this respect our Company;
-
Ensures data security by utilizing protection systems, firewalls and other software and hardware containing intrusion prevention systems against virus and other malicious software,
-
Ensures the lawfulness of the data processing activities by way of internal policies and procedures,
-
Applies strict measures for access to personal data,
-
In case of external access to personal data due to procurement of outsourced services, our Company obliges the relevant third party to undertake to comply with the provisions of the DPL,
-
It takes necessary actions to inform all employees, especially those who have access to personal data, about their duties and responsibilities within the scope of the DPL.
8. If You Fail to Provide Personal Data or Withdrawing of Consent
Within this process you are under no statutory or contractual obligation to provide your personal data to LJUS. However, if you do not provide the information, we may not be able to provide you the services you demand from LJUS (regarding the consultancy agreement) and fullfill the purposes stated above.
9. Right of the Related Person/Data Subject
You may apply to LJUS at any time;
-
to learn whether personal data related to you are/have being processed,
-
if it is processed, to request information with regard to processing,
-
to learn purposes of the processing and whether your personal data has been used for the intended purpose
-
to know the third parties within or outside the country, to whom your personal data are transferred,
-
to request correction of the personal data if the data is processed incompletely or inaccurately,
-
to request deletion or destruction of the personal data under the conditions set forth in Article 7 of the Law No. 6698 on Personal Data Protection,
-
to request notifying third persons to whom the personal data are transferred, about the processes completed within the scope of Art 11/d-e of the Law,
-
to object to negative consequences about you that are concluded as a result of analysis of the processed personal data exclusively by automatic means,
-
to claim indemnification if you suffered damage due to illegal processing of your personal data.
You may exercise your rights listed above through filling out and signing a form that you can obtain from us or, www.ljusconsulting.com and apply to the following address personally or with a notary approved power of attorney:
-
Fill in the application form; sign with your wet-ink signature and pass it to “Atatürk Mah. Parmaksız Cad. No: 23/3 Büyükçekmece/İstanbul” by personal application, by certified mail or through a notary public.
-
Sign with your electronic signature or mobile signature and send it to asli@ljusconsulting.com by using your Registered Electronic Mail (REM) address or the e-mail address registered to the data recording system of the Company.
If there is a written response to your application, there will be no charge for the first 10 (ten) pages, and a transaction fee of 1 TL will be charged for each page above 10 (ten) pages. If the response to your application is given in a recording medium such as a CD or flash memory, the exigible cost will be no more than the cost of the recording medium.
Your application as a personal data owner, if you want to use or demand the use of your rights mentioned above, the request should be clear and understandable enough, the subject of your request should be related to you or if you are acting on behalf of someone else, you must submit a special power of attorney approved by the notary.
First name, signature, identity number, residence or workplace address, e-mail address, telephone and fax number, and the presence of the requisite elements are obligatory in accordance with the “Notification on the Procedures and Principles of Application to the Data Officer”. Applications that do not include such elements will be rejected by the Company.
LJUS reserves the right to make changes in this Notice, due to the Law, secondary regulations and Board decisions. Changes in the Notice and the current text will enter into force immediately as of the date of notification.
PERSONAL DATA PROTECTION LAW (DPL) APPLICATION FORM