Medyado Information Technologies Tic.Ltd.Şti. (Referred to as "Medyado" for short.) Users' personal data transmitted to them electronically via the website www.medyado.com ("Website") or mobile applications are subject to the "Personal Data Protection Law No. 6698" and the General Data Protection Regulation ( GDPR) will not share, sell or make available for other purposes, except as described.
Medyado's "Personal Data and General Privacy Policy" is given below.
IP Numbers: Medyado detects and uses the IP address of users when necessary in order to identify system-related problems, to promptly resolve problems that may arise on the website / mobile applications, and to notify legal authorities when necessary, in accordance with legal procedures and principles. IP addresses may also be used to identify users publicly (anonymously) and gather broad demographic information.
Anonymous Data: Information requested by Medyado or information provided by the user or information regarding transactions made through the Website / Mobile Application, various statistical evaluations, database creation, personal data, anonymously by Medyado and its collaborators (without disclosing the user's identity). It can be used in presenting packages/offers and market research.
Linking to other sites: Medyado may provide links to other sites within the Website / Mobile Application. Medyado does not bear any responsibility for the privacy practices and content of sites accessed via links.
Bank / Credit Card Information: Medyado uses SSL certificate (green bar) that provides information security with 256 bit encryption algorithm in data transmission. Users' debit/credit card information is used only by the bank or payment institution during the purchase process and is not kept recorded in the database in any way. Medyado can offer an infrastructure where card information can be stored through PCI DSS certified institutions to facilitate users' next purchases. As a result of Card Storage Services, which have the PCI DSS standard and are licensed by BRSA, the information contained in debit / credit cards facilitates the Authentication and Authoziation steps, providing debit / credit card holders the opportunity to use a safe and easy payment tool.
Situations in which user data may be disclosed: Personal data of the user includes name-surname, address, telephone number, e-mail address and all kinds of information to identify the user. Medyado will not disclose any of the personal data to third parties, except for affiliated companies with which Medyado cooperates, unless stated otherwise in this privacy policy. In the cases stated below, Medyado may go beyond the provisions of this privacy policy and disclose user information to third parties. These situations;
Law, Decree Law, Regulation etc. Compliance with the obligations imposed by the legal rules in force and issued by the competent legal authority;
Fulfilling the requirements of the contracts concluded by Medyado with the users and putting them into practice;
In cases where it is necessary to request information about users for the purpose of conducting a research or investigation duly carried out by the competent administrative and judicial authority and to provide information to protect the rights or security of the Users.
Medyado undertakes to keep confidential information strictly private and confidential, to consider this as a confidentiality obligation, and to take all necessary precautions and exercise due care to ensure and maintain confidentiality and to prevent all or any part of the confidential information from entering the public domain or unauthorized use or disclosure to a third party. promises to show.
Status of cookies: Medyado can obtain information about users and their use of the Website by using a technical communication file (Cookie-Cookie) prepared by itself or by third parties. The technical communication files in question are small text files that a website sends to the user's browser to be stored in the main memory. The technical communication file keeps the user logged in by storing the user's login information, password and preferences, and facilitates use by recognizing the user on his or her next visit. The technical communication file helps to obtain statistical information about how many people use the Website, for what purpose, how many times a person visits the Website and how long they stay, and to dynamically produce advertisements and content from user pages specially designed for users. The technical communication file is not designed to retrieve data or any other personal information from main memory or e-mail. of browsers
Most of them are initially designed to accept technical communication files, but if users wish, they can change the settings so that the technical communication file does not arrive or a warning is given when the technical communication file is sent.
Most of them are initially designed to accept technical communication files, but if users wish, they can change the settings so that the technical communication file does not arrive or a warning is given when the technical communication file is sent.
Birçoğu başlangıçta teknik iletişim dosyalarını kabul edecek şekilde tasarlanmıştır ancak kullanıcılar dilerse teknik iletişim dosyasının gelmemesi veya teknik iletişim dosyası gönderildiğinde uyarı verilmesini sağlayacak biçimde ayarları değiştirebilirler.
Most of them are initially designed to accept technical communication files, but users can change the settings so that the technical communication file is not received or a warning is given when the technical communication file is sent.
Çoğu, başlangıçta teknik iletişim dosyalarını kabul edecek şekilde tasarlanmıştır ancak kullanıcılar, teknik iletişim dosyasının gelmemesi veya teknik iletişim dosyası gönderildiğinde uyarı verilmesini sağlayacak biçimde ayarları değiştirebilirler.
Data collected in surveys, competitions and similar situations: The information requested from users who respond to periodic surveys and competitions organized by Medyado within the Website is used by Medyado and its collaborators for the purpose of direct marketing to these users, making statistical analysis and creating a database.
E-bulletin submissions and announcements: Medyado sends weekly e-bulletins to inform its users about economic developments, agenda and their fields. It may send promotional and informative Campaign / Offer / Package announcements when deemed necessary or in agreement with 3rd party partners. When you create an account on our system for the first time, you accept standard e-mail and SMS transmissions. Users can prevent these e-mails from reaching them by clicking on the specified link as explained at the bottom of the e-mail. Additionally, there are possibilities to prevent these in your user panel. If you want to unsubscribe from our daily e-mail sending list at any time, you can easily unsubscribe from the e-bulletin membership with a single click by clicking the "Please click to unsubscribe from our e-bulletin list" link at the bottom of the e-mails we send.
General information about the Personal Data Law
Personal Data Protection Law No. 6698 was accepted on 24 March 2016 and published in the Official Gazette No. 29677 dated 7 April 2016. The European Union Data Protection Regulation (GDPR) entered into force on 25 May 2018. As the data controller within the scope of the Law on the Protection of Personal Data No. 6698 and the European Union Data Protection Regulation (GDPR), we will record, classify, process, store and update the personal data of our valued customers and, where permitted by the legislation rules and the 3rd Party. We can disclose it to individuals and we inform you about our mutual rights and obligations within the scope of the legal regulation in question.
Information as Data Controller
As Medyado, whose detailed corporate information is published below, in accordance with the above-mentioned laws, as the Data Controller, your personal data within the framework explained below; will be recorded, stored, updated, disclosed/transferred to third parties, classified and processed where permitted by the legislation.
Definition of Personal Data Under the Law
Your identity (name, surname, date of birth, TR ID number, etc.), communication, information regarding the methods used to access the products (IP, mobile phone brand-model, browser type, version, social media information, movements on screens, etc.). It refers to any information that will enable you to be determined or identifiable, such as .).
How Your Personal Data May Be Processed
In accordance with KVKK No. 6698 and EU General Data Protection Regulation - GDPR, your personal data you share with our company may be obtained, recorded, stored, changed, rearranged, in whole or in part, automatically or by non-automatic means provided that it is part of any data recording system; Provided that its security and confidentiality are ensured within the scope of the legislation: by disclosing, transferring, taking over, making available, classifying or preventing its use, in short, it can be processed by us as the subject of all kinds of operations carried out on the data. Any operation performed on data within the scope of the above-mentioned laws is considered "processing of personal data".
Purposes and Legal Reasons for Processing Your Personal Data
Personal data you share;
To be able to fulfill the requirements of the services we provide to our customers in accordance with the requirements of the contract and technology, and to improve our products and services,
To be able to issue official invoices after the purchase of all products and services we offer,
To comply with the information storage, reporting and information obligations required by the legislation and other authorities,
In order to provide information to prosecutors' offices, courts and relevant public officials on matters related to public security and legal disputes, upon request and in accordance with the legislation,
It will be processed in accordance with the scope, procedures and principles of KVKK No. 6698 and EU General Data Protection Regulation - GDPR.
Recording your identity, address, tax number and other information in order to determine the owner and addressee of the transaction in all kinds of business and transactions related to all kinds of products and services we will offer you, and the transactions and transactions to be carried out electronically.
Arranging the information and documents that will be the basis for the transactions, complying with the information storage, reporting and information obligations stipulated by all judicial and administrative authorities (such as courts, TBB, BRSA, CMB, TCMB, MASAK, BTK) in accordance with the relevant legislation, It will be processed for the purposes of providing products and services and fulfilling the requirements of the contracts between us.
Information about third parties or organizations to which your personal data may be transferred
Persons / organizations to which your personal data you share with our company may be transferred for the purposes stated above; Our main shareholders, our direct or indirect domestic/foreign subsidiaries, and including, but not limited to, persons and organizations related to the service provided, program partner organizations, domestic and international companies from which we receive service and cooperate in order to carry out our activities and/or as Data Processors. / foreign organizations and other third parties.
In addition, your personal data may be transferred to program partner institutions, organizations, banks, financial institutions, providers or companies from which we receive services regarding product/service comparison and application, to whom we have an agreement to send messages to our customers. It may be transferred to institutions and other third parties within the framework of our relevant collaborations.
How Your Personal Data is Collected
Your personal data;
Through the forms on our company's website and mobile applications, the preferences on the pages accessed using name, surname, citizenship number, passport number, address, telephone, business or private e-mail address, age, gender, profession, username and password, IP of the transactions performed. in the form of records, cookie data collected by the browser, data containing browsing time and details, location data;
Verbally, in writing or electronically through our sales and marketing department employees, agents, dealers, channels such as paper forms, business cards, digital marketing and call center;
In a physical or virtual environment, face to face or distance, verbal or written, or in a physical or virtual environment, from people who share their personal data through business cards, CVs, bids and other means, for purposes such as establishing commercial relations with our company, applying for a job, making an offer. electronically;
In addition, data obtained indirectly from different channels, (micro) websites and social media used for websites, blogs, contests, surveys, games, campaigns and similar purposes, e-bulletin reading or clicking movements, data provided by public databases. , profiles and data available for sharing on social networking sites such as social media platforms (Facebook, Twitter, Google, Instagram, Snapchat, etc.);
can be processed and collected.
Your personal data obtained before KVKK No. 6698 and EU General Data Protection Regulation - GDPR came into force, was lawfully obtained before 7 April 2016, the effective date of the KVKK, and 25 May 2018, the effective date of the EU General Data Protection Regulation - GDPR. Your personal data is processed and stored on our servers located in the "24/7 secure and all kinds of protection measures" data center located in "Germany" in accordance with the terms and conditions set out in this document.
Storage and Protection of Personal Data
Your personal data will be kept confidential in the database and systems within our company, in accordance with KVKK No. 6698 and EU General Data Protection Regulation – GDPR; It will not be shared with third parties in any way except for legal obligations and regulations specified in this document. Our company protects the systems and databases where your personal data is stored by preventing the unlawful processing of personal data in accordance with KVKK No. 6698 and EU General Data Protection Regulation - GDPR, and preventing access by unauthorized persons; In order to ensure their protection, they are obliged to take software and physical security measures such as hashing, encryption, transaction recording, and access management. If it becomes known that personal data has been obtained by others through illegal means, the situation will be immediately reported to the Personal Data Protection Board in accordance with legal regulations and in writing.
Personal data will be stored as long as the purpose for providing this information is valid. Your data will continue to be processed by us after the service you receive from us, in order to determine your needs, provide you with quicker service, and meet your subsequent service requests. If data is required to be kept subject to legal periods and for reporting and information purposes to legal authorities and relevant public authorities, or if it is required to be kept for longer periods in accordance with the legislation, these limits will be observed. Preventing the loss of stored and recorded data, authorization
Necessary security measures will be taken by us to prevent it from falling into the hands of third parties and to prevent illegal use.
Keeping Personal Data Updated and Accurate
In accordance with Article 4 of the KVKK, our Company has the obligation to keep your personal data accurate and up-to-date. In this context, in order for our Company to fulfill its obligations arising from the current legislation, our Customers are required to share their accurate and up-to-date data or update it via the website / mobile application.
Rights of Personal Data Owner in Accordance with KVKK No. 6698 and EU General Data Protection Regulation – GDPR
Personal Data Owner may contact our Company (data controller) to:
Learning whether personal data is processed or not,
Requesting information if personal data has been processed,
Learning the purpose of processing personal data and whether they are used for their intended purpose,
Knowing the third parties to whom personal data is transferred at home or abroad,
Requesting correction of personal data if it is incomplete or incorrectly processed,
Requesting the deletion or destruction of personal data within the framework of the conditions stipulated in Article 7 of the KVKK,
In case of correction, deletion or destruction of personal data, to request that these transactions be notified to third parties to whom personal data have been transferred,
Objecting to the emergence of a result that is unfavorable to the individual by analyzing the processed data exclusively through automatic systems,
In case of damage due to unlawful processing of personal data, they have the right to request compensation for the damage.
Personal Data Owners can direct their questions, opinions or requests to any of the following communication channels:
Email: info@medyado.com
Postal Address: Şirinevler, Nil Sok. no:25, 34188 Bahçelievler/Istanbul
Our company may give a positive/negative response to the submitted requests in writing or digitally, provided that it is justified and responds within 30 days. It is essential that the necessary procedures regarding requests are free of charge. However, if the transactions require a cost, our Company reserves the right to request a fee. These fees are determined by the Personal Data Protection Board in accordance with Article 13 of the Personal Data Protection Law.
Turkey (Türkçe)
Worldwide (English)