Sigma Elektrik Sigma Elektrik

TR | EN
444 60 78
Contact Us

Policies

Sigma Elektrik Policies

Clarification Text

LIGHTING TEXT REGARDING THE PROCESSING OF PERSONAL DATA

Data Controller: SİGMA ELEKTRİK SAN. VE TİCIGLILIGHTING TEXT REGARDING THE PROCESSING OF PERSONAL DATA

Data Controller: SİGMA ELEKTRİK SAN. VE TİC. A.Sh.

We have prepared this clarification text in order to inform our Online Visitors, Customers, Potential Customers about the processing, storage and transfer of your personal data within the framework of the activities arisinGHTING TEXT REGARDING THE PROCESSING OF PERSONAL DATA

Data Controller: SİGMA ELEKTRİK SAN. VE TİC. A.Sh.

We have prepared this clarification text in order to inform our Online Visitors, Customers, Potential Customers about the processing, storage and transfer of your personal data within the framework of the activities arising from the Personal Data Protection Law No. 6698 (“KVKK”) and the relevant legislation and legal regulations.

Which of Your Personal Data are Being Processed and What are the Purposes of Processing Your Personal Data?


Our Online Visitors

Categories of Personal Data Processed: Identity Information, Contact Information, Transaction Security Information

Purposes of Personal Data Processing: Execution of Activities in Accordance with the Legislation, Execution of Information Security Processesategories of Personal Data Processed: Identity Information, Contact Information, Transaction Security Information

Purposes of Personal Data Processing: Execution of Activities in Accordance with the Legislation, Execution of Information Security Processes,


Our Customers

Categories of Personal Data Processed: Contact Information, Customer Transaction Information, Physical Venue Security Information, Financial Information, Marketing Information,

Purposes of Personal Data Processing: Conducting Activities in Accordance with the Legislation, Conducting Finance and Accounting Affairs, Conducting / Auditing Business Activities, Conducting Logistics Activities, Conducting Goods/ Services After-sales Support Services, Conducting Goods/Services Sales Processes, Conducting Marketing Analysis Studies, Conducting Contract Processes, Providing Information to Authorized Persons, Institutions and Organizations, Ensuring Physical Space Security Julses of Personal Data Processing: Conducting Activities in Accordance with the Legislation, Conducting Finance and Accounting Affairs, Conducting / Auditing Business Activities, Conducting Logistics Activities, Conducting Goods/ Services After-sales Support Services, Conducting Goods/Services Sales Processes, Conducting Marketing Analysis Studies, Conducting Contract Processes, Providing Information to Authorized Persons, Institutions and Organizations, Ensuring Physical Space Security Jul

Our Potential Customers

Categories of Personal Data Processed: Identity Information, Contact Information, Customer Transaction Information, Physical Location Security Information

Purposes of Personal Data Processing: Managing the Sales Processes of Goods/Services, Execution of Jul-ture Processes, Provision of Physical Space Security


What are the Methods of Collection of Your Personal Data?

Your personal data specified in the above categories; application forms, employment contract, contracts, visitor forms, resume, electronic tracking and physical access control systems at work, (E.G. CCTV), information systems and electronic devices (E.G. telecommunications infrastructure, computers and telephones), IŞKUR and private employment offices (Kariyer.net , etc. including), third parties (FOR example, KKB and Findeks) are collected through our website and other documents declared by the relevant person.


What is the Legal Reason for the Collection of Your Personal Data?

Your personal data is provided by SIGMA ELEKTRIK in accordance with the realization of the purposes described above, which are specified in Article 5 of the Law No. 6698;

To be clearly stipulated in the laws. personal data is provided by SIGMA ELEKTRIK in accordance with the realization of the purposes described above, which are specified in Article 5 of the Law No. 6698;

To be clearly stipulated in the laws.

The processing of personalYour personal data is provided by SIGMA ELEKTRIK in accordance with the realization of the purposes described above, which are specified in Article 5 of the Law No. 6698;

To be clearly stipulated in the laws.

The processing of personal data of the parties to the contract is necessary, provided that it is directly related to the establishment or performance of a contract.

It is necessary for the data controller to fulfill its legal obligation.

The data processing is mandatory for the establishment, use or protection of a right.

Provided that it does not harm the fundamental rights and freedoms of the person concerned, the data controller

that data processing is mandatory for their legitimate interests.Provided that it does not harm the fundamental rights and freedoms of the person concerned, the Provided that it does not harm the fundamental rights and freedoms of the person concerned, the data controller

that data processing is mandatory for their legitimate interests.


it is processed based on legal reasons.


Do We Transfer Your Personal Data to a Third Party?

Personal data belonging to our visitors may be shared with law enforcement agencies and judicial authorities for the purpose of resolving legal disputes and if requested in accordance with the relevant legislation.

The personal data of our customers are transferred to the authorized public institutions and organizations within the country for the purpose of conducting activities in accordance with the legislation, tracking and conducting legal affairs, providing information to authorized persons, institutions and organizations, conducting / auditing business activities, to community companies to the extent necessary for the purpose of performing the service as required, within the scope of legal regulations. In addition, the personal data in question may be transferred to judicial authorities in order to be used as evidence in legal disputes that may arise in the future.

Personal data belonging to our potential customers may be transferred to judicial authorities in order to be used as evidence in legal disputes that may arise in the future.Personal data belonging to our potential customers may be transferred to judicial authorities in order to be used as evidence in legal disputes that may arise in the future.

Personal data belonging to our online visitors may be shared with judicial authorities for the purpose of resolving legal disputes and if requested in accordance with the relevant legislation

The personal data belonging to our supplier employee is not transferred to any third party.

Personal data belonging to our supplier authority are transferred to Authorized Public Institutions and Organizations within the country for the purpose of conducting activities in accordance with the legislation, tracking and conducting legal affairs, providing information to authorized persons, institutions and organizations, conducting / auditing business activities within the scope of legal regulations.ersonal data belonging to our supplier authority are transferred to Authorized Public Institutions and Organizations within the country for the purpose of conducting activities in accordance with the legislation, tracking and conducting legal affairs, providing information to authorized persons, institutions and organizations, conducting / auditing business activities within the scope of legal regulations. In addition, the personal data in question may be transferred to judicial authorities in order to be used as evidence in legal disputes that may arise in the future.


Do We Transfer Your Personal Data Abroad ?

As SIGMA ELEKTRIK, we do not transfer your personal data abroad.


What are Your Rights that You Can Exercise in Relation to Your Personal Data?As SIGMA ELEKTRIK, we do not transfer your personal data abroad.


What are Your Rights that You Can Exercise i ELEKTRIK, we do not transfer your personal data abroad.


What are Your Rights that You Can Exercise in Relation to Your Personal Data?

Regarding your personal data;

Learning whether your personal data is processed or not,

Requesting information if your personal data has been processed,

To learn the purpose of processing the personal data and whether they are used in accordance with the purpose,

To know the third parties to whom your personal data are transferred at home or abroad

To request correction of your personal data in case of incomplete or incorrect processing of your personal data,

Requesting the deletion or destruction of your personal data within the framework of the conditions stipulated in the KVKK legislation,

When you request the deletion or destruction of your personal data by correcting incomplete or incorrect data, to request that this situation be notified to the third parties to whom we have transferred your personal dataRequesting the deletion or destruction of your personal data within the framework of the conditions stipulated in the KVKK legislation,

When you request the deletion or destruction of your personal data by correcting incomplete or incorrect data, to request that this situation be notified to the third parties to whom we have transferred your personal data,

By analyzing the processed data exclusively through automated systems

do not object to the appearance of a result against the person himself

If you suffer damage due to the unlawful processing of personal data, you have the right to request compensation for this damage.


How Can You Exercise Your Rights?

11 of the Law. Your requests regulating the rights of the relevant persons in the article “Notification about the Principles to be Followed in the Application to the Data Controller” Emek Mah. Sivat Cad. No: to the address 15/1/3 Istanbul / Turkey or kvkk@sigmaelektrik.com you can send it. You can review the contact person application form for detailed information about the subject.

SIGMA ELECTRIC INDUSTRY AND TRADE INC.

Information Notice Regarding Security Cameras on the Premises

This information notice has been prepared by SIGMA ELECTRIC INDUSTRY AND TRADE INC. to fulfill its obligation to provide information under the Personal Data Protection Law.

Security cameras located in our service area record images for the purpose of ensuring building security, and the images are monitored by the supervising unit.

The personal data in question is processed automatically based on the legal grounds set out in Article 5 of the Law, namely “it is necessary for the data controller to fulfill its legal obligations” and “it is necessary for the data controller's legitimate interests, provided that it does not harm the fundamental rights and freedoms of the data subject.”

The personal data in question will be shared with law enforcement agencies and judicial authorities for the purpose of resolving legal disputes and when requested in accordance with the relevant legislation.

You may send your requests regarding the rights of data subjects regulated in Article 11 of the Law to the address Emek Mah. Sıvat Cad. No:15/1 Sancaktepe/İstanbul in accordance with the “Communication on the Principles to be Followed in Applications to the Data Controller.”

Storage and Disposal Policy

SIGMA ELEKTRIK SAN AND TIC A.Sh.
PERSONAL DATA STORAGE AND DESTRUCTION POLICY
ingredients
CONTENTS 2
INTRODUCTION 3
Goal 3
Scope 3
Definitions 3
PRINCIPLES 6
EXPLANATIONS ABOUT THE REASONS REQUIRING STORAGE AND DESTRUCTION 6
PRINCIPLES RELATED TO STORAGE AND DISPOSAL PERIODS 7
PROCEDURES FOR THE STORAGE AND DESTRUCTION OF PERSONAL DATA BY THE COMPANY 8
RECORDING MEDIA 8
TECHNICAL AND ADMINISTRATIVE MEASURES 9
Administrative Measures: 9
Technical Measures: 10
DISTRIBUTION OF RESPONSIBILITIES AND DUTIES 11
PROCEDURES FOR THE DESTRUCTION OF PERSONAL DATA 11
Deletion of Personal Data 12
Destruction of Personal Data 12
Anonymization of Personal Data 13
STORAGE AND DISPOSAL PERIODS 13
PERIODIC DESTRUCTION PERIOD 14
PUBLICATION AND STORAGE OF THE POLICY 14
POLICY UPDATE PERIOD 14
VALIDITY AND CANCELLATION OF THE POLICY 14
OTHER MATTERS 14
SIGMA ELEKTRIK SAN AND TIC A.Sh.
PERSONAL DATA STORAGE AND DESTRUCTION POLICY
entry
Purpose
Personal Data Storage and Destruction Policy, (“Policy”) SIGMA ELEKTRIK SAN. and tic. A.Sh.
It has been prepared in order to determine the procedures and principles regarding the works and operations related to the storage and disposal activities carried out by (SIGMA ELEKTRIK). It has been prepared in order to determine the procedures and principles regarding the works and operations related to the storage and disposal activities cIt has been prepared in order to determine the procedures and principles regarding the works and operations related to the storage and disposal activities carried out by (SIGMA ELEKTRIK).
As SİGMA, we process personal data belonging to company employees, employee candidates, customers, visitors and other third parties in accordance with the T.C. The Constitution, international conventions, the Law on the Protection of Personal Data numbered 6698 (the “Law”) and other relevant legislation in accordance with the processing and ensuring the effective use of the rights of the persons concerned has determined as a priority.
The works and transactions related to the storage and destruction of personal data are carried out in accordance with the Policy prepared by the Company in this direction.
Scopee works and transactions related to the storage and destruction of personal data are carried out in accordance with the Policy prepared by the Company in this direction.
Scope
Personal data belonging to Company employees, employee candidates, service providers, visitors and other third parties are within the scoplated to the storage and destruction of personal data are carried out in accordance with the Policy prepared by the Company in this direction.
Scope
Personal data belonging to Company employees, employee candidates, service providers, visitors and other third parties are within the scope of this Policy, and this Policy is applied to all recording environments and personal data processing activities owned or managed by the Company in which personal data are processed.
Definitions
Abbreviation
Description
Recipient Group
The category of natural or legal person to whom personal data is transferred by the data controller.
Explicit Consent
Related to a specific topic, based on being informed and with free will
explained consent.
Anonymization
Even by matching personal data with other data, it becomes impossible to associate personal data with an identifiable or identifiable real person in any way
to be brought.
Employee
Company personnel
Electronic Media
Environments where personal data can be created, read, modified and written with electronic devices.
Non-Electronic Media
All written, printed, visual, etc. that are outside the electronic media. other environments.
related person
The real person whose personal data is processed.
The Relevant User
Except for the person or unit responsible for the technical storage, protection and backup of the data, the authority and instructions received from the data controller or from the data controller within the data controller organization
they are the persons who process personal data in accordance with the procedure.
Extermination
Deletion, destruction or anonymization of personal data.
Law/KVKK
Law No. 6698 on the Protection of Personal Data.
Recording Media
Personal data processed by means that are fully or partially automatic or by non-automatic means provided that they are part of any data recording system
any kind of environment where the data is located.
Personal Data
All kinds of information about an identified or identifiable real person.
Inventory of Personal Data Processing
The inventory in which the data controllers detail the personal data processing activities that they perform depending on their business processes, the purposes of processing the personal data and the legal reason, the data category, the recipient group transferred and the contact group of the data subject, explaining the maximum retention period required for the purposes for which the personal data are processed, the personal data that are projected to be transferred to foreign countries and the measures taken for data security.ntory in which the data controllers detail the personal data processing activities that they perform depending on their business processes, the purposes of processing the personal data and the legal reason, the data category, the recipient group transferred and the contact group of the data subject, explaining the maximum retention period required for the purposes for which the personal data are processed, the personal data that are projected to be transferred to foreign countries and the measures taken for data security.
Processing of Personal Data
The acquisition, recording, storage, storage, modification, reorganization, disclosure, transfer, acquisition, acquisition, classification or use of personal data by means that are fully or partially automatic or non-automatic, provided that they are part of any data recording systemThe acquisition, recording, storage, storage, modification, reorganization, disclosure, transfer, acquisition, acquisition, classification or use of personal data by means that are fully or partially automatic or non-automatic, provided that they are part of any data recording system
all kinds of operations performed on the data, such as blocking.
Deletion of Personal Data
Deletion of personal data means rendering personal data inaccessible and unusable in any way for the Relevant Users.tion of personal data means rendering personal data inaccessible and unusable in any way for the Relev of personal data means rendering personal data inaccessible and unusable in any way for the Relevant Users.
Destruction of Personal Data
The process of making personal data inaccessible, irrevocable and unusable again by no one in any way.
Assembly
Personal Data Protection Board.
Special Categories of Personal Data
Related to the race, ethnic origin, political thought, philosophical belief, religion, sect or other beliefs of persons, disguise and clothing, membership of an association, foundation or trade union, health, sexual life, criminal conviction and security measuresRelated to the race, ethnic origin, political thought, philosophRelated to the race, ethnic origin, political thought, philosophical belief, religion, sect or other beliefs of persons, disguise and clothing, membership of an association, foundation or trade union, health, sexual life, criminal conviction and security measures
data with biometrted to the race, ethnic origin, political thought, philosophical belief, religion, sect or other beliefs of persons, disguise and clothing, membership of an association, foundation or trade union, health, sexual life, criminal conviction and security measures
data with biometric and genetic data.
Periodic Destruction
In case all of the conditions for processing personal data contained in the Law disappear, the deletion, destruction or December of personal data will be carried out on your own at recurring intervals specified in the retention and destruction policy.
the process of anonymization.
Politics
Policy of Storage and Destruction of Personal Data.
Processing DataPolicy of Storage and Destruction of Personal Data.
Processing Data
A natural or legal person who processes personal data on behalf of the data controller baselicy of Storage and Destruction of Personal Data.
Processing Data
A natural or legal person who processes personal data oe and Destruction of Personal Data.
Processing Data
A natural or legal person who processes personal data on behalf of the data controller based on the authorolicy of Storage and Destruction of Personal Data.
Processing Data
A natural or legal person who processes personal data on behalf of the data controller based on the authority granted by the data controller.
Data Recording System
A registration system in which personal data is processed by being structured according to certain criteria.
Data Controller
The natural or legal person who determines the purposes and means of processing personal data and is responsible for the establishment and management of the data recording system.
Data Responsibilities Registry Information System
An information system that data controllers will use for applying to the Registry and other related transactions related to the Registry, accessible via the Internet, created and managed by the Presidency.
VERBIS
Data Controllers Registry Information System
Regulation
Regulation on the Deletion, Destruction or Anonymization of Personal Data published in the Official Gazette dated October 28, 2017.
PRINCIPLES
SIGMA acts within the framework of the following principles in the storage and destruction of personal data by SIGMA:
4 Of the Law on erasure, destruction and anonymization of personal data. with the principles listed in Article 12. which must be taken within the scope of the article and this Policy
5.2. Of the Law on erasure, destruction and anonymization of personal data. with the principles listed in Article 12. which must be taken within the scope of the article and this Poli4 Of the Law on erasure, destruction and anonymization of personal data. with the principles listed in Article 12. which must be taken within the scope of the article and this Policy
5.2. the technical and administrative measures specified in the article, the provisions of the relevant legislation, the decisions of the Board and this Policy are fully complied with.
All transactions related to the deletion, destruction, anonymization of personal data are recorded by the Company and these records are stored for at least 3 years, excluding other legal obligations.
Unless a decision to the contrary is taken by the Board, the appropriate method of erasing, destroying or anonymizing personal data is selected by us. However, if requested by the Person Concerned, the appropriate method will be selected by explaining the rationale.ision to the contrnless a decision to the contrary is taken by the Board, the appropriate method of erasing, destroying or anonymizing personal data is selected by us. However, if requested by the Person Concerned, the appropriate method will be selected by explaining the rationale.
Articles 5 and 6 of the Law in the event that all of the conditions for processing the personal data contained in the articles disappear, the personal data are deleted, destroyed or anonymized by the Company on your own or upon the request of the Relevant Person. In the event of an application to the Company by the Relevant Person in this regard;
The submitted requests are finalized within 30 (thirty) days at the latest and information is provided to the Relevant PersonThe submitted requests are finalized within 30 (thirty) days at the latest and information is provided to the Relevant Person,
If the data subject to the request has been transferred to third parties, this Jul-ture is notified The submitted requests are finalized within 30 (thirty) days at the latest and information is provided to the Relevant Person,
If the data subject to the request has been transferred to third parties, this Jul-ture is notified to the third party to whom the data has been transferred and the necessary actions are ensured to be taken by the third parties.
EXPLANATIONS REGARDING THE REASONS REQUIRING STORAGE AND DESTRUCTION
The personal data belonging to the data owners shall be stored by the Company in a secure manner, within the limits specified in the KVKK and other relevant legislation, in accordance with the principles set out in article 4 of the KVKK, 5.1. it is stored in the physical or electronic environments specified in the article, especially within the framework of the following purposes.ta belonging to the data owners shall be stored by the Company in personal data belonging to the data owners shall be stored by the Company in a secure manner, within the limits specified in the KVKK and other relevant legislation, in accordance with the principles set out in article 4 of the KVKK, 5.1. it is stored in the physical or electronic environments specified in the article, especially within the framework of the following purposes.
Continuing commercial activities.
Planning and execution of employee rights and fringe benefits.
To manage customer relations and provide better service to customers.
To ensure company security.
Establishing contact with real/legal persons who have a business relationship with the institution.
Storing personal data due to its direct relevance to the establishment and performance of contractsEstablishing contact with real/legal persons who have a business relationship with the institution.
Storing personal data due to its direct relevance to the establishment and performance of contracts.
Storage of personal data for the establishmenEstablishing contact with real/legal persons who have a business relationship with the institution.
Storing personal data due to its direct relevance to the establishment and performance of contracts.
Storage of personal data for the establishment, exercise or protection of a right.
Storage of personal data is mandatory for the legitimate interests of the Company, provided that it does not harm the fundamental rights and freedoms of individuals.
Storage of personal data for the purpose of fulfilling any legal obligations of the Company.
The explicit provision of the storage of personal data in the legislation.
The obligation of proof as evidence in legal disputes that may arise in the future.The obligation of proof as evidence in legal disputes that may arise in the future.
In accordance with the Regulation, in the following cases, the personal data belonging to the dataThe obligation of proof as evidence in legal disputes that may arise in the future.
In accordance with the Regulation, in the following cases, the personal data belonging to the data owners are deleted, destroyed or anonymized by the Cohe obligation of proof as evidence in legal disputes that may arise in the future.

Contact Person Application Form

CONTACT PERSON APPLICATION FORM GENERAL EXPLANATIONS

Personal data owners or legal representatives of these persons (“Applicant” or “Relevant Person”) who are defined as the relevant person within the scope of the Personal Data Protection Law No. 6698 (“KVKK” or the “Law”), 11 of the KVKK. in the article, the right to find out whether the personal data about them have been processed, to request them if they have been processed, to correct them if the content of the data is incomplete or incorrect, to delete, destroy and notify the third parties that the data have been disclosed and to request compensation for damages due to the illegal processing of the data is regulated.

13 Of the KVKK. in accordance with the first paragraph of the article; in the capacity of data controller

SIGMA ELEKTRIK SAN. and tic. A.Sh.

You must submit your requests regarding the processing of your personal data. Your requests are subject to the Article 6 of the Communiqué on Application Procedures and Principles to the Data Controller (“Communiqué”)ou must submit your requests regarding the processing of your personal data. Your requests are subject to the Article 6 of the Communiqué on Application Procedures and Principles to the Data Controller (“Communiqué”). in accordance with the article, it will be concluded free of charge as soon as po must submit your requests regarding the processing of your personal data. Your requests are subject to the Article 6 of the Communiqué on Application Procedures and Principles to the Data Controller (“Communiqué”). in accordance with the article, it will be concluded free of charge as soon as possible and no later than thirty days according to the nature of the request from the date it reaches us. However, if the transaction also requires a cost, the Communiqué 7. fees may be charged according to the article.


APPLICATION METHOD

Application by Mail or in Person: You can apply in person or by mail to Emek Mah. Sivat Cad. No:15/1/3 Istanbul / Türkiye with the application form filled out and signed by the Applicant and documents showing your identityApplication by Mail or in Person: You can apply in person or by mail to Emek Mah. Sivat Cad. No:15/1/3 Istanbul / Türkiye with the application form filled out and signed by the Applicant and documents showing your identity.

Application via Registered Electronic Mail (KEP): The application form completed by signing with a secure electronic signature or mobile signature defined in the Electronic Signature Law No. 5070 by the applicant, from your KEP address kvkk@sigmaelektrik.com you can make an application by sending it to the e-mail address.

In addition, an application can also be made through a Notary Public or by methods that are legally valid and provide the possibility of identity verification. It is recommended to comply with the above-mentioned issues in applications to the extent that the relevant method allows, as it will increase the likelihood of a positive and short-term outcome of the application.


APPLICATION FORM CONTACT INFORMATION

name surname:

Nationality: ☐Turkey ☐Other: (please specify)

TCKN or Passport No / Foreign ID No:

The Address of the Place of Residence or Place of Business Based on the Notification:

KEP (Registered E-Mail) address: E-mail address:

Phone No / Fax No:


Your relationship with the Data Controller

☐ Company Employee / Former Employee Years of Employment:

☐ Employee candidate Application date:

☐ Trainee/ Trainee Candidate Description:

☐ Customer Description:

☐ Supplier Employee/Official: Description:

☐ Visitor Description:

☐ Other Explanation:


CONTENT OF THE APPLICATION

The Data Controller to Whom the Application is Submitted:

SIGMA ELEKTRIK SAN AND TIC. A.Sh.

The Subject of the Request to be Submitted Within the Scope of the Application

1. ☐ I would like to know if my personal data has been processed.

2. ☐ If my personal data has been processed, I request information about it.

3. ☐ I want to know the purpose of processing my personal data and whether they are used in accordance☐ I want to know the purpose of processing my personal data and whether they are used in accordance with their purpose.

4. ☐ If it is a question of transferring my personal data to third☐ I want to know the purpose of processing my personal data and whether they are used in accordance with their purpose.

4. ☐ If it is a question of transferring my personal data to third parties at home or abroad, I would like to find out about the third parties to whom it was transferred at home or abroad.

5. ☐ I would like to have my personal data deleted or destroyed or anonymized within the framework of the conditions stipulated by law.

6. ☐ I think that my personal data has been processed incompletely or incorrectly and I want them to be corrected. (Please provide detailed information about your personal data that you want to be corrected in the description section.)

7. ☐ If changes are made to my personal data upon my request, I would like to notify the third parties to whom my personal data is transferred.

8. ☐ I object to the occurrence of a result against me by analyzing my personal data exclusively through automated systems.

9. ☐ I request the compensation of the damage I have suffered due to the illegal processing of my personal data. (Please provide detailed information in the description section about which data processing activity, when and how your damage occurred as a result of which data processing activity.e compensation of the damage I have suffered due to the illegal processing of my personal data. (Please provide detailed information in the description section about which data processing activity, when and how your damage occurred as a result of which data processing activity.)

EXPLANATIONS:

If requests numbered 6 or 8 are selected, the scope of the application must be clear, specific and understandable in order to respond to your application in full.

This application form has been prepared in order to respond to your requests accurately, completely and within the period specified in the law.his application form has been prepared in order to respond to your requests accurately, completely and within the period specified in the law. In order to prevent unauthorized persons from accessing personal data in an unauthorized way by applying as the data controller and to ensure the security of your personal data, additional documents and information for identification and authorization determination (copy of identity card or driver's license, Oct.) we reserve the right to request. If the information about your requests that you are submitting within the scope of the form is not accurate and up-to-date, with false/misleading information, or if an unauthorized application is made, your application will be rejected and legal remedies will be applied for the person who committed an irregular transaction.

History:

Applicant's Name and Surname:

Signature (E-signature can be used for applications made via KEP):

(Please send the information about your relationship with the applicant and/or the power of attorney, the population registration sample or the relevant document showing your authority by attaching it to your application.

Policy regarding the Security of Personal Data of a Special Nature

SIGMA ELEKTRIK SAN AND TIC A.S

POLICY FOR THE SECURITY OF PERSONAL DATA OF A SPECIAL NATURE ELEKTRIK SAN AND TIC A.S

POLICY FOR THE SECURITY OF PERSONAL DATA OF A SPECIAL NATURE

SCOPE AND DEFINITIONS

Article 6 of the Personal Data Protection Law No. 6698 (“Law”) has determined a number of personal data that carry the risk of causing victimization or discrimination to individuals when processed unlawfully as “Special Category Personal Data”.rticle 6 of the Personal Data Protection Law No. 6698 (“Law”) has determined a number of personal data that carry the risk of causing victimization or discrimination to individuals when processed unlawfully as “Special Category Personal Data”. The scope of special categories of personal data includes race, ethnic origin, political thought, belief, religion, sect or other beliefs, disguise and clothing, association, foundation or trade union membership, health, sexual life, criminal conviction and security measures related data, as well as biometric and genetic data.


Within the scope of this policy;

"SIGMA ELEKTRIK SAN. and tic. A.Sh. "'yi

"Data Owner” means the real person whose personal data is processed,

"Data Controller” means the legal entity that determines the purposes and means of processing personal data and is responsible for the establishment and management of the data recording system,

The "Board" shall designate the Personal Data Protection Board as,

”Employee" refers to the Sigma Electrical staff.


PROCESSING OF PERSONAL DATA OF A SPECIAL NATURE


Sigma Elektrik attaches great importance to the processing of Private Personal Data containing sensitive data of the relevant persons in accordance with the law and shows maximum effort for the protection of these data.Sigma Elektrik attaches great importance to the processing of Private Personal Data containing sensitive data of the relevant persons in accordance with the law and shows maximum effort for the protection of thSigma Elektrik attaches great importance to the processing of Private Personal Data containing sensitive data of the relevant persons in accordance with the law and shows maximum effort for the protection of these data.


Personal Data of a Special Nature are processed by Sigma Elektrik in accordance with the Law, provided that adequate measures to be determined by the Board are taken, in the presence of the following conditions:


If the Data Owner has explicit consent, or


If the Data Subject does not have explicit consent, private personal data other than the Data Subject's health and sexual life are processed by persons or authorized institutions and organizations that are under obligation to keep secrets for the purposes of (i) protection of public health, (ii) preventive medicine, (iii) medical diagnosis, (iv) treatment and care services, (v) planning and management of health services and financing, in the cases provided for by law. Private personal data related to the Data Subject's health and sexual life are processed only by (i) protection of public health, (ii) preventive medicine, (iii) medical diagnosis, (iv) execution of treatment and care services, (v) planning and management of health services and financing.


PRECAUTIONS RELATED TO THE PROCESSING OF SPECIAL PERSONAL DATA


Sigma Elektrik, Article 6 of the LawRECAUTIONS RELATED TO THE PROCESSING OF SPECIAL PERSONAL DATA


Sigma Elektrik, Article 6 of the Law in the processing of Personal Data of a Special Nature contained in the Article, the Board dated 31.01.2018 and 2018/10 No.lCAUTIONS RELATED TO THE PROCESSING OF SPECIAL PERSONAL DATA


Sigma Elektrik, Article 6 of the Law in the processing of Personal Data of a Special NatuPRECAUTIONS RELATED TO THE PROCESSING OF SPECIAL PERSONAL DATA


Sigma Elektrik, Article 6 of the Law in the processing of Personal Data of a Special Nature contained in the Article, the Board dated 31.01.2018 and 2018/10 No.lu in accordance with its decision, in its capacity as Data Controller, it takes the following measures::


This Policy, which is systematic, clearly defined, manageable and sustainable for the security of personal data of a special nature, has been determined.


For the Employees involved in the processing of Personal Data of a Special Nature,

Trainings are provided regularly on Special issues of Personal Data security with the law and related regulations,

Confidentiality agreements are made,

The scope and duration of authorization of users authorized to access the data are clearly definedTrainings are provided regularly on Special issues of Personal Data security with the law and related regulations,

Confidentiality agreements are made,

The scope and duration of authorization of users authorized to access the data are clearly defined,

Periodic authority checks are carried out,

The powers of Employees who have changed their duties or have left their jobs in this area are immediately removed. Within this scope, the inventory allocated to them by the Data Controller is refunded.


The environments where Personal Data of Special Nature are processed, stored and/or accessed are not kept in electronic environmentThe environments where Personal Data of Special Nature are processed, stored and/or accessed are not kept in electronic environment,


If the physical environment is the environment in which Personal Data of a Special Nature are processed, stored and /or accessed;

Adequate security measures (electriche environments where Personal Data of Special Nature are processed, stored and/or accessed are not kept in electronic environment,


If the physical environment is the environment in which Personal Data of a Special Nature are processed, stored and /or accessed;

Adequate security measures (electricity leakage, fire, flooding, theft, etc.) according to the nature of the environment in which Personal Data of Special Nature is located. against situations) are taken,

Unauthorized entry and exit are prevented by ensuring the physical security of these environments.


If Personal Data of a Special Nature will be transferred;

If it is necessary to transfer Personal Data via e-mail, it is transferred encrypted with a corporate e-mail address or using a Registered E-Mail (KEP) account,

If Portable Memory needs to be transferred via media such as CD, DVD, it is encrypted by cryptographic methods and the cryptographic key is kept in a different environment,

If the transfer is performed between servers in different physical environments, data transfer is performed between the servers by Decrypting Decryption by VPN or by SFTP method.,

If it is necessary to transfer Personal Data via paper medium, necessary measures are taken against risks such as theft, loss of documents or being seen by unauthorized persons, and the documents are sent in a “Confidential” format.If it is necessary to transfer Personal Data via paper medium, necessary measures are taken against risks such as theft, loss of documents or being seen by unauthorized persons, and the documents are sent in a “Confidential” format.

In addition to the measures mentioned If it is necessary to transfer Personal Data via paper medium, necessary measures are taken against risks such as theft, loss of documents or being seen by unauthorized persons, and the documents are sent in a “Confidential” format.

In addition to the measures mentioned above, technical and administrative measures to ensure the appropriate level of security specified in the Personal Data Security Guide published on the website of the Personal Data Protection Authority are also taken into account Jul.


TRANSFER OF PERSONAL DATA OF A SPECIAL NATURE


Sigma Elektrik may transfer the Data Owner's Special Category Personal Data to third parties in accordance with the data processing purposes, by taking the necessary security measures, for Special Category Personal Data that it has obtained in accordance with the law.igma Elektrik may transfer the Data Owner's Special Category Personal Data to third parties in accordance with the data processing purposes, by taking the necessary security measures, for Special Category Personal Data that it has obtained in accordance with the law. Accordingly, Sigma Elektrik will be able to transfer Special Personal Data to third parties in the presence of one of the following conditions.


If the Data Owner has explicit consent,,


If the Data Subject does not have explicit consent, private personal data other than the Data Subject's health and sexual life, if provided for by law, private personal data related to the Data Subject's health and sexual life are processed and transferred only by persons or authorized institutions and organizations under the obligation to keep secrets for the purposes of (i) protection of public health, (ii) preventive medicine, (iii) medical diagnosis, (iv) treatment and care services, (v) planning and management of health services and financing.


TRANSFER OF SPECIAL CATEGORIES OF PERSONAL DATA ABROAD


Sigma Elektrik does not transfer the special personal data it processes abroad.

WhatsApp Support