Building Customer Confidence Since 1995
Personal Data Protection Law
As Doğanlar İnşaat, we continue to carry out our studies on the Protection of Personal Data, which we attach great importance to since the day we were founded, in line with the “Personal Data Protection Law (PDPL)”. In this context, some terms stated in the law along with information about our data processing to fulfill our obligations are presented below.
What is PDPL?
The law on the protection of personal data was adopted on 24/03/2016 at the Grand National Assembly of Turkey and was published to take effect, in the Official Gazette No. 29 677 dated 07.04.2016. The law is based on the compatibility of all data processing persons and institutions within the framework of basic purposes such as ensuring the onfidentiality of personal data, protecting it and preventing unauthorized use. Our company is obliged to comply with this law like all organizations. Personal data processed in all processes of our company are within this scope
What is Personal Data?
All data or data sets that make the person directly or indirectly identifiable are considered personal data.
What is Data Processing?
Any transaction performed on personal data is accepted as “data processing”. Therefore, data processing includes archiving, storage, modification, rearrangement, disclosure, transfer, analysis and classification of data.
Who is the Relevant Person / Data Owner?
One of the expressions frequently mentioned in the law and in our corporate policies is “related person” or “data owner”. Refers to natural persons whose personal data are processed.
Who is the Data Controller?
The data controller is the natural or legal person who determines the purposes and methods of processing personal data and is responsible for the establishment and management of the data recording system. At this point, our company becomes the Data Supervisor in terms of the data of our customers, visitors and employees.
Who is a Data Processor?
Data processors are natural or legal persons who process data on behalf of the data controller. These persons may also be separate natural or legal persons authorized by the data controller to process personal data.
Data Processing Conditions
All data controllers have the right to process data only when the following conditions are met or the related person gives explicit consent to:
• Explicitly stipulated in the laws
• Being directly related to the establishment or performance of a contract,
• Data controller to fulfill its legal obligation,
• It has been made public by the person concerned,
• Data processing is mandatory for the establishment, use or protection of a right,
• Legitimate interest of the data controller.
Bow to Data Owner Demands
The law on the protection of personal data, gives the relevant persons the right to request which personal data are processed in which processes and the current status of these data. Institutions and individuals who are data controllers or process data are obliged by the Law to enlighten data owners about the personal data they process.
