I. INFORMATION ABOUT THE PROTECTION OF PERSONAL DATA

Personal Data Protection Law No. 6698 was accepted on 24 March 2016 and was published in the Official Gazette No. 29677 dated 7 April 2016. Personal Data Protection Law No. 6698 was accepted in order to protect the fundamental rights and freedoms of individuals, especially the privacy of private life, in the processing of personal data and to regulate the obligations of real and legal persons processing personal data and the procedures and principles to be followed.

A.     Data Controller Information

Arge Group Consultancy Software Promotion and Training Services Ltd. (Hereinafter referred to as "Arge Group"), which has detailed corporate information on our website, we will use your personal data with respect to the relevant legislation as the data controller in accordance with the Personal Data Protection Law No. 6698.

B.     How Can Your Personal Data Be Processed?

In accordance with the Personal Data Protection Law No. 6698, any operations performed on data such as obtaining by non-automatic means, recording, storing, preserving, changing, rearranging, disclosing, transferring, taking over, making available, classifying or preventing use of your personal data, including sensitive personal data (such as people's race, ethnic origin, political, philosophical thoughts, health, criminal records, union memberships) ,provided that your personal data is fully or partially automated or part of any data recording system, can be carried out by Arge Group, as the data controller.

Your personal data, including your special personal data;

Properly performing Arge Group’s activities such as training, seminars, workshops, summits and events,

Planning and management of events,

Carrying out risk management and quality improvement activities, conducting research,

Conducting statistical evaluations and market research,

Ensuring information and transaction security and preventing malicious use,

Fulfilling legal and regulatory requirements,

Resolving customer problems and complaints,

In terms of customers with commercial electronic message approval and prospective customers, promotion and marketing of campaigns and services,

Managing internal control and audit activities,

Invoicing for our services, verifying your identity,

Issuing participation certificates and/or processing PDU data at the end of the events,

Measuring participant satisfaction and event performance,

Providing support upon your request during the exam application and certification processes,

may be processed for such purposes.

C.     Kişisel Verilerinizin İşlenme Amaçları ve Hukuki Sebepleri Nelerdir?

We shall process the personal data you share with us for purposes such as providing the services we offer in accordance with the requirements of the legislation, contract and technology, organizing training and consultancy services, contacting various agencies on your behalf and carrying out transactions on your behalf, providing the best service within the scope of one-to-one meetings, fulfilling our data storage, reporting and information obligations requested by judicial and administrative authorities, carrying out promotional and information activities, carrying out news and deliver our promotional bulletins to you, and archiving purposes in accordance with the Personal Data Protection Law No. 6698 and the relevant legislation.

D.     Information Regarding Persons or Organizations to Whom We Can Transfer Your Personal Data

In accordance with the above-mentioned purposes, only in case of need, in proportion to the purpose of processing and only within the limits allowed by the legislation; İt will be shared with Company employees, managers, partners, external service providers, business partners, human resources, who share our sensitivity regarding data security and comply with the relevant legislation, third parties from whom consultancy is received, such as legal, financial and tax advisors, auditors and if required authorized public institutions and organizations such as authorities, ministries, judicial authorities, the institution/organization you work for, and third parties domestically and internationally (PMI etc.).

Your personal data can be transferred electronically or physically. During this transfer, all security measures are taken on the basis of data security for the security of transfers to be made electronically and for transfers to be made physically, and your personal data is not allowed to take possession of unauthorized persons.

E.      How is your personal data collected?

Your personal data can be collected verbally, in writing or electronically, through personally provided data, our employees, our website, mobile applications, channels such as call center, contracts, applications, forms, offers, cookies that our computer uses to recognize you during website visits, etc.

F.      Storage of Personal Data

Unless a longer retention period is required or permitted by law, we will retain your personal information for the required 2 (two) years to fulfill the purposes outlined herein and then delete, destroy or anonymize it in accordance with the Law.

G.     What Are Your Personal Data Processed?

Name, Surname

In case of issuing a private invoice;

TR Identity Number / Passport number

Address

If the invoice for the service received is processed on behalf of the company;

Company name

Tax Administration

Tax number

Address of company

E-mail address

Phone number

Event information attended

Event testimonials

Participant opinions

Exam application information

Certificate information obtained after the exam

Photos and/or videos taken during the event

H.     Withdrawal of Consent

Your express consent regarding the processing of your personal data remains valid until you withdraw that consent in writing. At any time, you can submit your request to the Company stating that you withdraw your consent to the use of your personal data and that you do not want your personal data to be used anymore. Unless there is a legal regulation or legal obligation to the contrary, the Company shall cease processing your personal data based on your explicit consent, effective from the date of your request.

I.       Your Rights Under the Personal Data Protection Law

In accordance with Article 11 of the Personal Data Protection Law, you have the right to learn whether your personal data is being processed or not, to request information regarding this, to learn whether the data is used for its intended purpose, to know the third parties to whom your personal data has been transferred at home or abroad, to request correction of your personal data if it has been processed incompletely or incorrectly, and to request that the transaction carried out in this context be notified to the third parties to whom your personal data has been transferred, to request the deletion or destruction of personal data in case the reasons requiring processing are eliminated and to request that the transaction carried out in this context be notified to third parties to whom your personal data has been transferred, to object if a result arises against you by analyzing the processed data exclusively through automatic systems, and to request compensation for the damage if you suffer damage due to the unlawful processing of your personal data.

You can submit your applications and complaints regarding your rights listed above by filling out the Data Owner Application Form, which you can access from the Company's website or request from the Data Controller contact person, to the Company's “Hacettepe Teknokent 4.Ar-Ge Binası No:95/37 Beytepe Kampüsü Çankaya/ANKARA” address or email info@argegrupdanismanlik.com.tr via the e-mail address where your membership is confirmed. Your request shall be answered by the Company within 30 days at the latest. If the transaction requires an additional cost, you may be charged a fee in accordance with the tariff determined by the Personal Data Protection Board.

J.       Protection of Your Personal Data 

In order to ensure the security of your personal data and to prevent unauthorized access, collection, disclosure, use, copying, modification and similar risks to your personal data; necessary administrative and technical measures have been taken by the company.

Including but not limited to:

Network security and application security are ensured.

Key management is implemented.

Security measures are taken within the scope of supply, development and maintenance of Information Technology systems.

The security of personal data stored in the cloud is ensured.

Up-to-date anti-virus systems are used.

Firewalls are used.

Log records are kept without user intervention.

Intrusion detection and prevention systems are used.

Data loss prevention software is used.

Training and awareness activities are carried out for employees at regular intervals regarding data security.

There are disciplinary regulations for employees that include data security provisions.

Corporate policies on access, information security, use, storage and destruction have been prepared and implemented.

The authorities of employees who change their duties or leave their jobs in this area are removed.

Confidentiality commitments are made.

The signed contracts contain data security provisions.

Personal data security policies and procedures have been determined.

Necessary security measures are taken regarding entry and exit to physical environments containing personal data.

However, at this point, we would like to remind you that data sharing over the internet and data kept electronically can never be completely secure. Although all kinds of security measures have been taken by the Company and the security measures regarding your data security are periodically inspected and improved by the Company, we would like to remind you that it is not possible to ensure one hundred percent data security.

K.     Accuracy and Recency of Personal Data

The Company assumes that your personal data submitted by you personally or by a third party you have authorized is accurate and current. It is your responsibility to ensure that the personal data submitted by you or third parties is accurate and current; please inform the Company in writing of any changes to your personal data so that the Company can follow that your personal data is complete, accurate and current.

 II. PERMISSION DECLARATION

The relevant person hereby declares that he/she is aware of the above information about all rights and obligations regarding the Personal Data Protection Law No. 6698 and one/several/all of the information letters available on our company's website ,www.argegrupdanismanlik.com.tr, and examines them in detail and gives this consent statement.

Our company may update the information letter on its website when necessary.

The person giving permission declares and accepts that;

His/her personal data, including sensitive personal data, shall be kept/processed by ARGE GROUP CONSULTANCY in accordance with the relevant legislation, especially the Personal Data Protection Law No. 6698, provided that the necessary security measures are taken in the database,

All personal data, including sensitive personal data, shall be shared with third parties from whom ARGE GROUP CONSULTANCY receives consultancy, INCLUDING ABROAD, such as external service providers, business partners, human resources, legal, financial and tax consultants, auditors, and authorized public institutions and organizations such as authorities, ministries, judicial authorities and third parties domestically and internationally (PMI etc.) when necessary,

He/she is aware that his/her which are not subject to permission and consent to be processed in accordance with the law, shall continue to be processed and stored even if the permission and consent are removed/withdrawn he/she has no objection to this.

RIGHTS OF THE RELATED PERSON AND INFORMATION STATEMENT

In accordance with the relevant articles of the Personal Data Protection Law No. 6698, I declare that I have been informed about communication at all times during the training, seminars, workshops, summits and various online events I participated in and after the end of the program, learning whether personal data is being processed, requesting information regarding data processing, learning the purpose of processing my personal data and whether they are used for their intended purpose, knowing the third parties to whom my personal data is transferred at home or abroad, requesting correction of my personal data if they are incomplete or incorrectly processed, requesting the deletion or destruction of my personal data in the event that the reasons requiring processing are eliminated even though it has been processed in accordance with the provisions of the law, requesting that the information regarding my exercise of the right to rectification or deletion be notified to third parties to whom the personal data has been transferred, objecting to the emergence of a result against me by analyzing the processed data exclusively through automatic systems, requesting compensation in case I suffer damage due to the unlawful processing of my personal data, and that I consent to the processing of my personal data in accordance with the Law for the purposes specified in the information letter.