PRIVACY STATEMENT – CONTACT FORM

As Borusan Holding A.Ş. (the “Borusan” or “Company”) we prepared this Privacy Statement to inform you about how we handle your personal data as a data controller in accordance with.
This Privacy Statement includes information on how we process personal data through the contact form on the https://borusanventures.com/ website (“Site”).

1. What Personal Data Do We Collect and How Do We Use It?

Below, we have explained for which purposes and legal grounds your personal data is processed:

Processing Purposes	Processed Personal Data	Legal Ground for the Processing
To contact with you We process your personal data to contact you. This may be related to solving an issue you have raised with us, to take your request, question, or complaint, or to ask for your feedback. Your feedback and complaints help us to improve your experience and the quality of our services offered.	Identity information (such as your name  and surname) Contact information (such as e-mail address) Contact Information (such as your feedback, request, question, or complaint) Transaction Information (such as IP, device ID)	Legitimate Interest
For security and defense of the legal claims We are obligated to fulfil our legal obligations in cases where authorized institutions or organizations make a request from us or when we are expected to notify these institutions (for example, sharing your personal data when a public institution requests a transaction that is suspected of an illegal transaction). We may also use your personal data in order to protect our rights in a possible lawsuit or dispute.	Identity information (such as your name  and surname) Contact information (such as e-mail address) Contact Information (such as your feedback, request, question, or complaint) Transaction Information (such as IP, device ID) Legal Transaction Information (such as information in the legal documents, notices, and correspondences with judicial and administrative authorities)	Legal Obligation   Legitimate Interest

 

2. What Methods Do We Collect Your Personal Data With?

 We collect your personal data through our electronic contact form on the Site.

3. With Whom Do We Share Your Personal Data?

As a principle, we do not share your personal data with third parties without a legal ground. However, we may share your data in case of legal obligations or any other legal ground. For instance, in case of the need to provide information to authorized institutions and organizations arises, your personal data will be shared with authorized institutions and organizations. This is a sharing that is necessary in order to fulfill our legal obligations. Even if your data is shared with an authorized institution and organization, we take the necessary measures to ensure the security of your data.

We work with carefully selected service providers that carry out certain functions on our behalf. These service providers include companies that help us with technology infrastructures or legal or other professional services. We only share limited data with them as necessary for performing the services.

While we are sharing your personal data, we comply with all the rules set out in the applicable laws and take all necessary measures to keep your data safe.

As a rule, your personal data will be processed within the European Economic Area (EEA). Exceptionally, personal data may be processed by us/service providers located in countries outside the EEA. If there is no comparable data protection standard in such a country, we ensure that data protection is adequately guaranteed by other measures.

4. How Long Do We Use Your Personal Data?

We keep your personal data for the purposes set out in this Privacy Statement and in accordance with the applicable laws. We only process your personal data for as long as we need it. When determining the retention period for your personal data, we take the nature, amount, processing purposes of such data, and other legal requirements into account.

We understand that your personal data only belongs to you, and when we receive a request from you to destroy your personal data, if there is no legal obligation to which we are legally bound, we fulfill your request as soon as possible. In cases where we do not have a legal obligation, we delete, anonymize, or destroy your personal data.

5. How Do We Secure Your Personal Data?

We highly value your privacy. Therefore, we are doing our best to ensure the security of your personal data. We implement the appropriate security measures to protect your personal data against unauthorized use, access, disclosure, alteration, or loss of your personal data.

6. What Are Your Rights and How to Exercise Them?

You have several rights under applicable data protection laws. We try to make it easy for you to take control of your personal data and exercise your legal rights below. Your rights are as below:

• Right to Access : You have the right to know how your personal data has been collected and processed, what data exists in our systems, and for what purposes it has been processed. This information may be accompanied by a copy of the requested data.
  
  
• Right to Correction (Rectification) : You have the right to request a correction on incorrect or incomplete personal data of yours.
  
  
• Right to Erasure (Right to Be Forgotten) : You have the right to have your personal data permanently deleted. But this is not an absolute right to require all personal data to be deleted. We will consider each erasure request in accordance with the requirements of applicable laws.
  
  
• Right to Restriction of Processing : You have the right to block or suppress your personal data being processed.
  
  
• Right to Data Portability : You have the right to move, copy, or transfer personal data from one data controller to another, in a safe and secure way, in a commonly used and machine-readable format.
  
  
• Right to Object to Processing : You have the right to object to being subject to processing your data based upon the lawful basis of legitimate interest. You also have the right to stop your personal data from being included in direct marketing databases.
  
  
• Right to Not Be Subject to Automated Decision Making : You have the right not to be subject to a decision which is based on automated processing where the decision will produce a legal effect or a similarly significant effect on you.

You also have the right to complain to a Data Protection Authority about our use and collection of your personal data. For more information, please contact the relevant Data Protection Authority in your country.

If you have any questions about how we collect, store, and use personal data or if you want to exercise your rights, please contact us.

• You can send an e-mail to holdingkvkk@borusan.com and write Data Subject Access Request (DSAR) as the subject matter.
  
  
• You can send your written request by direct mail to PÜRTELAŞ HASAN MAHALLESİ MECLİSİ MEBUSAN CADDESİ NO.37 SALIPAZARI, BEYOĞLU, İSTANBUL, TÜRKİYE
  
  

7. Changes to the Privacy Statement

We reserve the right to update this Privacy Statement from time to time. The modifications and changes will take effect after the updated privacy statement is released. If we make material changes to the Privacy Statement, we will prominently notify you regarding the update via the communication channels that you have provided to us.