INFORMATION NOTICE ON PROCESSING OF PERSONAL DATA

The Personal Data Protection Law was published in the Official Gazette on April 7, 2016, under number 29677 and entered into force. This law was created by considering international documents, comparative law practices, and Turkey's needs. Its main purpose is to ensure the processing and protection of personal data in compliance with current standards. The law regulates the conditions for processing personal data, how individuals' fundamental rights and freedoms will be protected during this process, the responsibilities of individuals and institutions processing personal data, and the procedures and principles they must follow.

As LEAGLE TEKNOLOJİ ANONİM ŞİRKETİ, we act as the data controller and take necessary measures to protect personal data.

General Principles Followed in Processing Personal Data

Our company is committed to the fundamental principles specified by the Personal Data Protection Law (Law No. 6698) for the processing of personal data. Our main principles in data processing are as follows:

  1. Accuracy and, when necessary, updating of data,
  2. Compliance with legal rules and principles of integrity,
  3. Processing for specific, legitimate, and clear purposes,
  4. Limitation and proportionality with the purpose of processing,
  5. Retention for the period required by the relevant legislation or necessary for the purpose.

Personal data, depending on the services, products, or commercial activities provided by our company, may be collected verbally, in writing, or electronically via our company offices, branches, dealers, call centers, websites, social media channels, mobile applications, and similar channels, both automatically and manually.

Additionally, when you contact our call center, visit our website, or participate in trainings, seminars, events, and meetings organized by our company, your personal data may be processed.

Legal Grounds for Collecting Personal Data

Your personal data are collected through various verbal, written, or electronic means to provide our company's products and services within legal boundaries and to fulfill our company's responsibilities from contracts and legal obligations accurately. The personal data collected on these legal grounds may be processed and shared in line with the purposes specified in this notice and in accordance with Articles 5 and 6 of the Personal Data Protection Law (PDPL).

Personal data processed by our company may be used for the following purposes:

  • Improvement of services, development of new services, and relevant notifications,
  • Campaign and service promotions for existing and potential customers who have given electronic communication consent,
  • Sending invitations and event information electronically based on customer request and approval,
  • Resolution of customer complaints and issues,
  • Statistical analysis and market research,
  • Determination and implementation of the company’s commercial and business strategies,
  • Managing relations with business partners and affiliates,
  • Tracking of accounting and payment processes,
  • Compliance with legal processes and regulations,
  • Responding to information requests from administrative and judicial authorities,
  • Planning of internal reporting and business development activities,
  • Financial control and reporting along with legal notifications,
  • Management of internal audit and control activities,
  • Ensuring information and transaction security and preventing misuse.

In addition to all these, the policies regarding personal data are detailed in our company's VERBIS (Data Controllers Registry) registration, accessible at the following link: https://verbis.kvkk.gov.tr/Query/Details?q=m13X5i7TnJudujSMxNS50A%3D%3D&isNeviChange=duu6TOm7jzzm1f64DfpShw%3D%3D

Sharing of Processed Personal Data

Our company may share your personal data with our domestic and international partners, affiliates, banks, financial institutions, independent audit firms, as well as other entities permitted by laws and regulations relating to Payment and Securities Settlement Systems, Payment Services, and Electronic Money Institutions, under the conditions and purposes set forth in Articles 8 and 9 of the PDPL.

Our company retains records and documents of transactions with our clients in accordance with legal requirements. If you request deletion of your personal data, this request can be fulfilled when the legally required retention period expires. During this period, your personal data will not be processed or shared with third parties, except as required by law.

Legal Rights of Personal Data Owners

As personal data owners, if you submit your requests regarding your rights to our company as described below in this Information Notice, our company will conclude the request as soon as possible and at the latest within thirty days without charge, depending on the nature of the request. However, if a fee is stipulated by the Personal Data Protection Board, a fee will be charged according to the tariff set by our company. Within this scope, personal data owners have the right to:

  • Learn whether their personal data is processed,
  • Request information if their personal data has been processed,
  • Learn the purpose of processing personal data and whether they are used in accordance with their purpose,
  • Know the third parties to whom personal data are transferred domestically or abroad,
  • Request correction of personal data if they are incomplete or incorrect and request notification of the correction to third parties to whom personal data have been transferred,
  • Request deletion or destruction of personal data in cases where the reasons for processing no longer exist, even if processed in accordance with the PDPL and other relevant law provisions, and request notification of the deletion or destruction to third parties to whom personal data have been transferred,
  • Object to any negative consequences that may arise from the analysis of processed data exclusively through automated systems,
  • Request compensation for damages if they incur losses due to unlawful processing of personal data.

In accordance with Article 13 of the PDPL, you may submit your request regarding the above-mentioned rights in writing or by other methods determined by the Personal Data Protection Board. Since the Personal Data Protection Board has not currently defined any other methods, you must submit your request in writing to our company. In this context, the channels and procedures to submit written applications to our company under Article 11 of the PDPL are explained below.

To exercise your rights mentioned above, you can submit your request in person to "Esentepe Mah. Ecza Sk. No:4 İç Kapı No: 1 Şişli / Istanbul" with identity verification documents, send it via registered mail, send it through a notary, or send the request signed with a secure electronic signature to info@leagleapp.com.

LEAGLE TEKNOLOJİ ANONİM ŞİRKETİ