Skip to content

Cart

Your cart is empty

Personal Data Protection Law (KVKK) Information Text

DATA PRIVACY STATEMENT AND INFORMATION TEXT REGARDING THE PROTECTION AND PROCESSING OF PERSONAL DATA

Data Controller

The website with the domain name edscarf.com (“ Website ”) is operated by HARDEM TEKSTİL MOBİLYA GIDA İNŞAAT MADENCİLİK SAN. VE TİC. LTD. ŞTİ. (“ Company ”), located at Uludağ OSB. Kale Mah. Balıkçı Ali Cad. No:3 Kestel - BURSA - TURKEY. As the data controller, the COMPANY is responsible for determining the purposes and means of processing personal data, establishing and managing the data recording system.

We attach great importance to the protection of your personal data. In accordance with the Law on the Protection of Personal Data ( 'KVKK' ), we would like to inform you about the collection, storage, transfer, and processing of data obtained in connection with your use of the "Company Website," as well as the purpose of such processing.

Processing and Transfer of Personal Data

The COMPANY requests certain personal data from its customers during the registration process or while using the Company Website. Personal data is any information that makes a person identifiable or ascertainable. This type of information may include, for example, your name, address, email address, or telephone number. Information collected using cookies that does not directly allow for the identification of your identity, such as how you use the Company Website, can also be considered personal data if it is collected, stored, and processed on the basis of an identity assigned to the user and therefore individualized. Non-personal data is only aggregated information that can be classified as big data, summarized, collected, evaluated, and anonymized so that it cannot be linked to a real person.

Your personal data is collected by our company through the completion of the membership form by the Data Subject, as required by the nature of the business. To identify system-related problems and to quickly resolve any issues or disputes that may arise regarding the services provided, our company records and uses the IP addresses of its members. IP addresses may also be used to generally identify users and collect comprehensive demographic information.

Our company may use the requested information, even outside the purposes and scope defined in the Membership Agreement, for direct marketing purposes, either directly or through its collaborators. Personal information may also be used to contact the user when necessary. Information requested by our company, information provided by the user, or information related to transactions made through the Company Website may also be used by our company and its collaborators, even outside the purposes and scope defined in the "Membership Agreement," for various statistical evaluations, database creation, and market research, without disclosing the identity of our members.

Our company may periodically send notifications to its customers and members regarding campaign information, new packages, and promotional offers. Members can choose whether or not to receive such information during registration, and this choice can be changed later via the administration panel after logging in, or by clicking the link in the notification message they receive.

The COMPANY uses personal data entered during purchases made through the COMPANY Website (name, surname, telephone, etc.) only a few times to send SMS or email notifications to remind the customer of items they may have forgotten in their shopping cart.

Purposes of Processing Personal Data

Our company processes Personal Data for specific, explicit, and legitimate purposes. In this context, Personal Data may be processed for the purposes listed below:

  • The provision and modification of services offered through the website,
  • Customizing the products and services offered to meet demands; updating and improving them due to customer needs, legal and technical developments,
  • User definitions must be created for the systems, specific to the products and services offered.
  • Announcing new or existing products, services and campaigns, conducting sales and marketing activities,
  • Conducting market research,
  • Generating statistics and analyzing usage,
  • Payment, collection, and selection of payment methods for products, services, and products.
  • Fulfilling the information obligation arising from Law No. 6563 on the Regulation of Electronic Commerce and other related legislation.
  • The company's website and advertisements for products and services relevant to the purpose of data processing are sent to the Data Subject, and information about products, services, promotions and campaigns is provided.
  • To provide solutions to problems encountered during website usage.
  • Improving website visit, usage, page navigation and purchasing experiences, and providing higher quality service.
  • Establishing contact/communication,
  • Managing commercial relationships with partner companies, suppliers, resellers, and service providers.
  • Reporting within the framework of cooperation,
  • Developing and planning the company's business strategies,
  • Contacting the company for satisfaction surveys,
  • Creating participant registrations, issuing certificates/participation documents, determining award/gift recipients and delivering awards/gifts in events/trainings/competitions organized by the COMPANY,
  • Managing judicial/administrative processes, responding to requests from public institutions and organizations,
  • Fulfilling legal obligations and resolving legal disputes in accordance with legal regulations.
  • Managing investor relations,
  • In the event of a merger, division, or transfer of all or part of the company with another company, securing the consequences arising from this legal transaction,
  • Social media posts should include the introduction of company employees, individual customers, and relevant parties.
  • Conducting job interviews, evaluating job applications,
  • Establishment, execution, and termination of employment relationships/contracts,
  • Ensuring that company employees benefit from their primary and ancillary rights arising from their employment contracts, and evaluating their performance and work,
  • Creating user accounts for employees,
  • If the company participates in an event, a participant registration must be created.
  • Creating records of employee participation in trainings and certifications.
  • Ensuring the security of the Company Website and Applications,
  • Website usage analysis,
  • Creating a personal data inventory,
  • Evaluating and responding to all questions, requests, suggestions, complaints, and applications, including those relating to personal data, whether submitted in writing, orally, or electronically.
  • Data is transferred to systems located domestically or in other relevant countries, primarily in European Union countries, for the purposes of contract performance, data security, compliance with our company policies, and other purposes mentioned above (you can contact our company in writing for more detailed information).

Method and Legal Basis for Personal Data Collection

Data regarding current and potential users of the Company Website is collected, in whole or in part, through automated or non-automated means, for reasons determined by contract or legislation, as required by our business activities.

Personal Data Processed Without Explicit Consent

According to the Personal Data Protection Law (KVKK);

We may process and share personal information that you have made public without your explicit consent, including sharing it with third parties.

If the legislation explicitly allows the processing of your personal data without your explicit consent, we may process and share this data with third parties without your explicit consent.

We may process your personal data without your explicit consent if it is necessary to fulfill our legal obligations, including information that must be disclosed pursuant to applicable laws or regulations, or a court order or administrative order.

We may process your personal data without your explicit consent if such processing is necessary for the establishment, exercise, or protection of a right.

Data Transferred to Third Parties

We may share your personal data, subject to our rights under the KVKK (Turkish Personal Data Protection Law), with Company employees, company officers, legal, financial and tax consultants, auditors, Tekrom Teknoloji Anonim Şirketi (from whom the Company receives services that complement or extend its activities, including e-commerce software infrastructure services), cloud companies located abroad, primarily in the United States and European countries (please contact the Company for detailed information), Amazon Web Services, Inc (AWS), collaborating consultants and partner organizations, educational institutions, advertising and marketing agencies the Company works with, and natural or legal persons for the purpose of presenting advertisements that may interest the Data Subject, in an anonymized form, within the scope of commercial activities on the Company Website. You are giving your explicit consent to the Data Controller regarding this sharing.

Network Server Data Log

When you access the Company Website, your web browser is technically configured to automatically transmit the following data (“data log”) to our internet server, after which we record the following information in the data log records even without your consent:

Entry date

Login time

Application website URL

Files received

Amount of data transmitted

Browser type and version

Operating system

IP address

Your internet service provider's domain name

This information is required for technical purposes to ensure the accurate delivery of the content you requested, and its collection is an unavoidable aspect of using websites. The data log is analyzed solely for statistical purposes to improve our website and the underlying technology, and is then deleted.

Data logs are stored separately from other data collected as part of your use of the Company Website.

 

 

Cookies

Like many other websites, we use "cookies". Cookies are small text files that a web page server transmits to your hard drive. In this way, we automatically obtain certain data such as your IP address, the browser you are using, the operating system on your computer, and your internet connection. These technical communication files facilitate internet usage by storing information and preferences about the site. These technical communication files are not designed to retrieve data or any other personal information from your main memory or email. Furthermore, cookies cannot be used to run programs or send viruses to your computer.

We use cookies and similar technologies to recognize you across different Services, to learn about your interests on and off our Services, to improve your experience, to enhance security, to measure the use and effectiveness of our Services, to obtain statistical information about how many people visit the site, for what purpose, and how long they stay, and to help generate dynamic advertisements and content from user pages specifically designed for users. We may use cookies to offer you various discounts and campaign offers, to advertise and promote, to personalize the Company Website for you, to provide a personalized Company.com experience, to track your browsing on the Company Website and your transactions in your membership account, and to analyze your personal data collected on the Company Website or third-party sites and mobile applications through various methods.

In any case, the data we collect cannot be shared with third parties without your consent. Of course, you can always view our website without cookies. Internet browsers are always set to accept cookies. You can control and stop the use of cookies at any time through browser settings and other tools. Please use your browser's help function to learn how to change these settings. Please note that certain features of our website may not work when you stop the use of cookies.

The Use of Social Plugins in the Context of Social Media

The COMPANY uses social plugins (“plugins”) from the following social networks: Facebook, operated by Facebook Inc., Palo Alto, CA, USA; YouTube, operated by YouTube LLC, 901 Cherry Ave. San Bruno, CA 94066 USA; Twitter, operated by Twitter Inc., 1355 Market Street, Suite 900, San Francisco, CA 94103 USA; and Instagram, operated by Arbitration Opt-out LLC, 1601 Willow Rd. Menlo Park, CA 94025 USA.

If you visit a page on our website that contains such plugins, they are initially inactive. The plugins cannot be activated unless you click the specified button. By activating the plugins, you connect with these social networks and consent to data transfer to them. If your sessions on these social networks are open, the social networks may associate this visit with your account on that social network. If you press the relevant button, the corresponding information is transmitted directly by your browser to the relevant social network and stored there.

For information on the scope and purpose of data collection, processing and use of data by the relevant social networks, and the settings you can make to protect your rights and privacy, please refer to the Data Protection notices of the relevant social networks. If you do not want these social networks to collect data about you through our website, you must log out of your sessions on those social networks before visiting our site.

Your Rights Regarding Your Personal Data

In accordance with the legislation regarding the processing of your personal data, you have the right to: learn whether your personal data is being processed; request information regarding the processing of your personal data if it has been processed; learn the purpose of the processing of your personal data and whether it is being used in accordance with its purpose; know the third parties to whom your personal data has been transferred, domestically or abroad; request the correction of your personal data if it is incomplete or inaccurate; request the deletion or destruction of your personal data; request that the correction and/or deletion or destruction of your personal data be notified to the third parties to whom your personal data has been transferred; object to a result that is detrimental to you arising from the analysis of your processed data exclusively through automated systems; and demand compensation for damages if you have suffered harm due to the unlawful processing of your personal data.

Exercise of Rights, Application and Communication

You can submit your requests regarding your rights under the KVKK (Personal Data Protection Law) mentioned above to the COMPANY in writing, either in person or in accordance with the legislation (e.g., via a notary public), to the address specified above, provided that your identity is verified.

Data Security

The company has taken technical and administrative measures to ensure data security within the scope of the KVKK (Turkish Personal Data Protection Law), to the extent possible. Information regarding these measures is detailed under the heading "Personal Data Protection, Storage, Processing and Destruction Policy".

Data Pertaining to Minors

Personal data of minors should not be sent without the permission of their parents or guardians.

Links to Other Websites

The Company Website contains links to other websites. We have no influence over whether the operators of these sites comply with data protection regulations. The COMPANY is not responsible for the content of the linked sites (and the content of other sites linked from those sites) and has no authority to interfere with the content of the linked sites.

 

Amendments to the Data Privacy Statement and the Clarification Text Regarding the Protection and Processing of Personal Data

This “Data Privacy Statement and Clarification Text Regarding the Protection and Processing of Personal Data” will be amended as necessary to announce changes in our data protection-related services, for example, when introducing new services and to comply with applicable legal requirements.

User Access

No one will have access to your account unless invited by you. Only in the event of a technical or system malfunction, and with your permission, will authorized COMPANY personnel access your data for support purposes.

Data Sharing

Data transfer will not be shared with our business partners without your consent and without adequate security measures. Tekrom Teknoloji A.Ş., from whom we receive e-commerce software infrastructure services, is exempt from this clause.

Data Backup

Your data is backed up daily to protect against potential technical problems.

Responding to Security Breaches

Despite our best efforts, no method of transmission and no method of electronic storage on the Internet is completely secure. We cannot guarantee absolute security. However, if the COMPANY becomes aware of a security breach, we will alert affected users so they can take appropriate protective measures. Our breach notification procedures are consistent with our obligations under regulatory regulations and all industry rules or standards to which we comply. Notification procedures include providing email notifications or posting a notification on our website in the event of a breach.

Your responsibilities

Keeping your data secure also depends on you ensuring the security of your account by using sufficiently complex passwords and storing them securely. You must ensure that the computer, tablet, or phone you use to access the COMPANY service has adequate security features.