Skip to content

Cart

Your cart is empty

Privacy Policy

Company Information

Company Name:
Damla Kalender

Address:
Yıldız Mahallesi Sadıkoğlu Sok. Caniko Sitesi B Blok D:5 İç Kapı No:8, Beşiktaş/Istanbul, Turkey

Mersis Number:
05306068429

Website:
damlakalender.com

Version:
0.0.1 23/02/2022

The Company is the owner of the website located at Yıldız Mahallesi Sadıkoğlu Sok. Caniko Sitesi B Blok D:5 İç Kapı No:8 Beşiktaş/Istanbul and all the pages and mobile applications affiliated with the website (“damlakalender.com”).

The Company acts as the data controller regarding the personal data of the customers and users of the Website in accordance with the Personal Data Protection Law No. 6698 (“KVKK”).

The Company gives utmost importance to the privacy and protection of your personal data as the data controller. The purpose of this Privacy Policy is to inform the users and visitors of the Website regarding the processing of personal data in compliance with Article 10 of KVKK.

This Privacy Policy may be updated from time to time due to changes in our services or legal requirements. We recommend you check the Privacy Policy on a regular basis.

“Company”, “we”, and “us” refers to Damla Kalender located at Yıldız Mahallesi Sadıkoğlu Sok. Caniko Sitesi B Blok D:5 İç Kapı No:8 Beşiktaş/Istanbul.

“Data Subject” refers to the natural person, whose personal data are processed. “Product(s)” refer to the products offered for sale on the Website.


Principles of Processing of Personal Data

The Company complies with the general principles required in KVKK regarding processing of personal data. These general principles are as follows:

  1. Lawfulness and fairness.
  2. Being accurate and kept up to date where necessary.
  3. Being processed for specified, explicit, and legitimate purposes.
  4. Being relevant, limited, and proportionate to the purposes for which they are processed.
  5. Being stored for the period laid down by relevant legislation or the period required for the purpose for which the personal data are processed.

Legal Basis for Processing of Personal Data

The Company processes personal data only when at least one of the following conditions is met in accordance with Article 5 of KVKK:

  1. Explicit consent of the data subject: Data subject’s explicit consent must be obtained for a specific subject matter, be an informed decision, and freely given.
  2. It is expressly provided for by the laws: Personal data is processed within the limits of the data categories and processing purposes provided for in the relevant law.
  3. Impossibility to obtain explicit consent: Personal data can be processed if necessary for the protection of life or physical integrity of the person or another person.
  4. Direct relationship with establishment or performance of a contract: Personal data can be processed if required for the establishment or performance of a contract.
  5. Legal obligation of the Company: Data subject’s personal data can be processed if required for compliance with a legal obligation.
  6. Data subject made their personal data public: If the data subject made their personal data public, such data may be processed within the limits of the purpose of making it public.
  7. Necessary for establishment or protection of a right: Data processing is necessary for the establishment or protection of any right.
  8. Legitimate interests: Processing of data is necessary for the legitimate interests of the Company, provided that it does not violate the fundamental rights and freedoms of the data subject.

Which Personal Data Do We Process?

Below is the personal data we process and the applicable legal basis:

Personal Data Legal Basis Scope
Name, last name, title, identity number, tax number, and address of the customer Performance of the sale agreement Data is processed to issue an invoice when a customer purchases a product.
Name, last name, and address of the customer Performance of the sale agreement Data is processed for delivery of the purchased item.
Name, last name, title, and e-mail address of the customer Performance of the sale agreement Data is processed for customer satisfaction, complaints, delays, and returns.
Customer invoices Tax laws Invoices are retained for tax declarations and dispute settlements.
Agreements with customers To establish or protect a right Agreements are retained for legal purposes, including dispute resolution.
IP address Legitimate interest Processed to detect unlawful activities and prevent breaches of security.
E-mail address Explicit consent Processed to send marketing, promotions, and newsletters if consent is given.

Transfer of Personal Data to Third Parties

We may need to transfer some personal data to third parties who provide services to us, in compliance with the legal basis for data processing:

  1. Payments are processed through iyzico, a third-party payment solution provider. For more information on the protection of your personal data, please review iyzico's privacy policy.
  2. We use hosting services and the hosting firms may process personal data as our data processor. We sign a data processing agreement with such firms.
  3. We use the services of Avcı Digital for website design and maintenance. Personal data may be accessed by this firm under the scope of a data processing agreement.
  4. We may share your personal data with law enforcement agencies and authorized bodies when required by law or to prevent a crime.

Transfer of Personal Data to Third Countries

We may transfer personal data to third countries:

  • If you give consent to receive electronic marketing messages, your email address may be shared with our email service provider to send you information about our campaigns, promotions, and newsletters. We use Mailchimp, a service provided by The Rocket Science Group LLC, based in the USA. You can read Mailchimp’s privacy policy for further details.
  • We use Google Universal Analytics (provided by Google Inc.) to analyze website usage. This service processes user data such as IP addresses with the help of cookies and other identifiers. You can read Google Universal Analytics’ privacy policy for more details.

Organizational and Technical Measures Regarding Protection of Personal Data

The Company takes necessary organizational and technical measures to prevent unlawful access to and processing of personal data, in accordance with Article 12 of the KVKK.


Retention Period of Personal Data

Personal data is retained for the period necessary to fulfill the purpose for which it was collected, and once the purpose no longer exists, personal data is deleted, destroyed, or anonymized.


Data Subjects' Rights

Under Article 11 of KVKK, you have the following rights:

  1. To learn whether your personal data is processed.
  2. To request information about the processing of your personal data.
  3. To learn the purpose of processing and whether your personal data is used in compliance with the purpose.
  4. To know third parties to whom your personal data is transferred.
  5. To request correction of incomplete or inaccurate data.
  6. To request deletion or destruction of your personal data.
  7. To request reporting of the actions taken under points (e) and (f) to third parties to whom your data was transferred.
  8. To object to the processing of data that produces an adverse result for you.
  9. To seek compensation for damages caused by unlawful processing.

Requests regarding these rights can be sent by registered email (KEP), secure electronic signature, mobile signature, or email to the Company’s contact details.

Requests will be processed within 30 days, free of charge, unless the process incurs a cost, in which case fees may apply according to the relevant regulations.


Contact Details

You can contact us with questions or concerns about this Privacy Policy and your personal data using the following contact details:

Company Name:
Damla Kalender

Mersis No:
5629-9038-6200-0001

Address:
Yıldız Mahallesi Sadıkoğlu Sok. Caniko Sitesi B Blok D:5 İç Kapı No:8 Beşiktaş/Istanbul, Turkey

Email:
info@damlakalender.com

Phone:
+90 530 606 8429