TSMART MARKET GDPR INFORMATION TEXT

  1. Personal Data Controller Identity This GDPR Information Text (“Information Text”) has been prepared by TSmart Market (“Company”) in accordance with Article 10 of the Law on the Protection of Personal Data No. 6698 (“Law”), and the Communiqué on the Procedures and Principles to be Complied with in Fulfilling the Information Obligation published in the Official Gazette dated March 10, 2018 and numbered 30356 (“Communiqué”). Your personal data may be collected, stored, processed and transferred to third parties by the Company as the data controller within the scope and conditions specified below. However, your existing rights under the Law are explained in detail in this Disclosure Text.
  2. Personal Data Categories and Types The Company may collect and process personal data such as name, surname, contact details (phone number, email address), and other necessary information of customers, suppliers, and employees in relation to the wholesale trade of food, beverage, home care, and personal care products. This data may be collected through automatic or non-automatic means.
  3. Purpose of Processing Personal Data Your personal data collected is used in direct proportion to the purposes listed below, primarily for the establishment and/or execution of the contract that is the subject of your disclosure of this data to the Company, for our business units to carry out the necessary work to make you benefit from the products and services offered by the Company, for the products and services offered to you to be customized according to your tastes, usage habits, and needs, for the determination of the Company’s commercial and business strategies and for the conduct of business relations with you. Personal data processing conditions specified in Articles 4, 5, and 6 of the Law may be processed for:
  • Carrying out the company’s activities in accordance with the legislation,
  • Ensuring the legal and commercial security of the company and continuing commercial activities,
  • Providing information to authorized institutions in accordance with the legislation,
  • Carrying out and following up contract processes and/or legal affairs,
  • Ensuring customer relations management,
  • Carrying out communication activities,
  • Planning, carrying out, and improving business activities and processes,
  • Interaction with and execution of relevant processes to obtain the highest efficiency from business processes,
  • Planning and/or carrying out after-sales support services,
  • Carrying out audit/ethical activities.
  1. Methods and Legal Reasons for Collecting Personal Data The company may collect personal data transmitted directly from the customer, its authorities, or employees through its business activities or through the website, e-mail, post, telephone, fax, survey, notifications from administrative and judicial authorities, and other communication channels. It collects your personal data in writing, verbally, or electronically in accordance with the processing conditions set forth in Articles 5 and 6 of the Law. These processing conditions include:
  • Our personal data processing process is clearly prescribed by law,
  • The processing of your personal data is necessary for establishing a contractual relationship or directly related to our performance obligations arising from the contract,
  • The occurrence of mandatory situations in order to fulfill our legal obligations,
  • The sharing or publicization of personal data directly by the personal data owner,
  • The processing of personal data is mandatory for the establishment, exercise, or protection of a right,
  • The processing of your personal data is mandatory, provided that it does not harm your fundamental rights and freedoms.
  1. To Whom and For What Purpose Will Processed Personal Data Be Transferred Your personal data collected by the Company may be transferred to our domestic business partners and service providers, suppliers, shareholders, company officials, legally authorized public/private institutions and organizations and/or their economic enterprises in accordance with the personal data processing conditions determined by Articles 8 and 9 of the Law, limited to the purposes specified in this Disclosure Text.
  2. Rights of the Personal Data Owner Existing in Article 11 of the Law Within the scope of this Disclosure Text, the relevant person(s) who owns personal data in accordance with Article 11 of the Law has the right:
  • To learn whether their personal data has been processed,
  • To request information regarding their personal data if they have been processed,
  • To learn the purpose of processing their personal data and whether they are used in accordance with their purpose,
  • To know the third parties to whom their personal data is transferred domestically or abroad,
  • To request correction of their personal data if they are processed incompletely or incorrectly,
  • To request the deletion or destruction of their personal data within the framework of the conditions stipulated in Article 7 of the Law,
  • To request that the transactions made pursuant to Articles 5 and 6 of the Law be notified to third parties to whom their personal data is transferred,
  • To object to the emergence of a result against the person by analyzing their personal data exclusively through automated systems,
  • To request compensation for their damages in the event that they suffer damages due to the unlawful processing of their personal data.

As the personal data owner, in order to exercise your existing rights under the Law, you can apply in writing to the Company’s official mailing address at [Company Address] or via the official e-mail address [Company Email] or submit your request through our website [Company Website]. Applications made to the Company by personal data owners will be finalized free of charge as soon as possible and within 30 days at the latest, depending on the nature of the application and request. However, if the transaction required by the application incurs an additional cost, the fee in the tariff determined by the GDPR Policy Board may be requested from the applicant.