Onsekiz İş Merkezi Ortaklar Caddesi Bahçeler
Sokak 18/4 Şişli İstanbul
Global IT Bilişim Hizmetleri A.Ş (Global IT), as the data controller, processes your personal data in accordance with the Law on the Protection of Personal Data No. 6698 (KVKK) and other relevant legislation.
According to Article 10 of the KVKK, which regulates the Disclosure Obligation, data controllers are obliged to inform the relevant persons whose personal data they process on certain issues.
This clarification text has been prepared in accordance with the Communiqué on the Procedures and Principles to be Followed in the Fulfillment of the Disclosure Obligation published by the Personal Data Protection Authority in order to fulfill the legal obligation.
According to the Law on the Protection of Personal Data No. 6698:
Personal data includes any information relating to an identified or identifiable natural person;
Processing of personal dataany operation performed on personal data, such as obtaining, recording, storing, preserving, changing, rearranging, disclosure, transferring, taking over, making available, classifying or preventing the use of personal data by fully or partially automatic means or by non-automatic means provided that it is part of any data recording system;
The person concerned means the natural person whose personal data is processed;
The data controller is the natural or legal person who determines the purposes and means of processing personal data and is responsible for the establishment and management of the data recording system.
The obligation to clarify is that during the acquisition of personal data, the data controller or the person authorized by him/her shall notify the relevant persons; the obligation to provide information about the identity of the data controller, the purpose for which the personal data will be processed, to whom and for what purpose the processed personal data can be transferred, the method and legal reason for collecting personal data and other rights listed in Article 11 of the Law;
You, whose personal data is processed by Global IT due to our relations with the legal entity from which we supply goods and/or services and with which you work, are defined by us as a Supplier Officer/Employee and you are accepted as a Data Subject by the Law. This clarification text has been prepared to enlighten you about your personal data processed due to your in-company training support.
It is the Global IT data controller who determines the purposes and means of processing personal data with respect to personal data concerning you and is responsible for the establishment and management of the data recording system.
The table below lists the legal grounds for processing your personal data and the purposes for which it is processed.
|Due to the fact that the person concerned in Article 5/2d of the KVKK has been made public by himself;
|For the purpose of carrying out storage and archive activities
|Identity (Name, Surname, Signature), Institution Information (Trade Name, Title)
|Provided that it does not harm the fundamental rights and freedoms of the data subject in Article 5/2f of the KVKK, since the data processing is mandatory for the legitimate interests of the data controller;
|For the purpose of carrying out training activities
|Identity (Name, Surname, Signature), Institution Information (Position in the Institution, Trade Title, Title), Education Information (Date of Education, Training Platform, Subject of Training etc.)
If your personal data is requested within the framework of Article 28/1 of the KVKK, it may be transferred to the relevant authorities without any obligation to clarify and without seeking your explicit consent.
In addition, in unforeseen cases, your personal data may be transferred to public institutions (administrative authorities such as ministries) specified in the laws within the purposes and limitations stipulated in the law if requested in cases explicitly specified in the laws.
Your personal data is not transferred to any institution, person or organization except for our legal obligations that do not have an obligation to clarify and do not require your explicit consent
Relevant persons must first apply to the data controller in order to exercise their rights regarding their personal data. According to Article 14 of the Law, no complaint can be made directly to the Personal Data Protection Board.
In accordance with the law, your personal data
a) To learn whether personal data is processed or not,
b) If your personal data has been processed, to request information about it,
c) To learn the purpose of processing your personal data and whether they are used in accordance with their purpose,
ç) To know the third parties to whom your personal data is transferred domestically or abroad,
d) Requesting the correction of your personal data if it is incomplete or incorrectly processed,
e) Requesting the deletion or destruction of your personal data in the event that the reasons requiring its processing disappear,
f) (d) and Requesting that the transactions carried out in accordance with subparagraphs (e) are notified to the third parties to whom your personal data is transferred,
g) To object to the occurrence of a result against you by analyzing your processed data exclusively by means of automated systems,
ğ) Requesting the compensation of the damage in case you suffer damage due to the unlawful processing of personal data
You can exercise your rights by contacting the data controller, i.e. us.
More detailed information about the procedures and principles to be followed when applying can be found in the Communiqué on the Procedures and Principles of Application to the Data Controller of the Personal Data Protection Authority.