This policy sets out the principles regarding the processing, storage and protection of personal data of individuals who use our website (“Data Subject”), within the scope of the Personal Data Protection Law No. 6698 (KVKK) and the European Union General Data Protection Regulation (GDPR).

1. Data Controller
As the data controller, we are responsible for the personal data collected on this website, in accordance with applicable legislation. You can contact us through the channels listed on the website.

2. Personal Data Collected
The following data may be collected from the user directly or by automated means:

Identity Information: Name, surname, username, date of birth

Contact Information: Phone number, email address, postal address

Technical Information: IP address, browser type, operating system, device information

Usage Information: Site navigation, transaction history, click records

Financial Information: Payment and billing information (in case of a transaction)

Cookie Data: Information collected through cookies

3. Purposes of Processing Personal Data
The collected data may be processed for the following purposes:

Providing, improving and personalising services

Carrying out membership and transaction processes

Responding to requests and complaints

Fulfillment of legal obligations

Improving user experience

Marketing, campaign and information activities (with explicit consent)

4. Legal Basis
Your personal data;

Explicit consent

Performance of the contract

Fulfillment of legal obligations

Legitimate interest
is processed based on legal reasons.

5. Data Retention Period
Personal data is stored for the periods specified in relevant legislation or until the purpose of processing ceases. Once this period expires, the data is securely deleted, destroyed, or anonymized.

6. Sharing of Personal Data
Your personal data will only be used for;

Legal obligations

Requests from authorized public institutions and organizations

Our service provider partners (hosting, shipping, payment, etc.)
is shared in cases.

Data is not sold or shared with third parties for commercial purposes.

7. Data Transfer Abroad
When required by the service, your data may be transferred abroad to countries that provide adequate protection in accordance with the KVKK and GDPR requirements or with your explicit consent.

8. Data Security
For the security of your personal data;

Technical measures to prevent unauthorized access (encryption, firewall, SSL, etc.)

Authorization and access control

Personnel confidentiality obligations
is implemented.

9. Data Owner's Rights
Within the scope of Article 11 of the KVKK and Articles 15-22 of the GDPR, data owners have the following rights:

Request access to personal data

Requesting correction of data

Requesting deletion or destruction of data

Request restriction of processing

Requesting portability of processed data

Objection to processing

Withdrawing explicit consent

To exercise these rights, you can contact us via the contact addresses provided on our website.

10. Policy Changes
This policy may be updated from time to time. The updated version will become effective when published on our website.