EN
TR EN AR

PDPL Compliance Notice

PDPL Clarification Text

This text has been prepared for information purposes within the scope of the Personal Data Protection Law. It is recommended that it be reviewed by legal counsel in line with your current company processes before final publication.

Data Controller: MF Bilişim

Contact: info@mfbilisim.com - +90 555 555 55 55

Address: Kirazli Mah. Belediye Cad. 1219 Sok. No:10/A 34210 Bagcilar - Istanbul / TURKEY

1. Purpose and Scope

MF Bilişim has prepared this clarification text to inform relevant persons about the personal data processed within the scope of products, services, and communication processes.

2. Categories of Personal Data Processed

  • Identity and contact data (name, surname, email, phone, etc.).
  • Customer transaction and request data (offers, forms, support records).
  • Transaction security data (IP, logs, traffic data).
  • Website usage data (cookie preferences and analytics data).

3. Purposes of Processing Personal Data

  • Receiving, evaluating, and concluding requests and applications.
  • Managing, improving, and supporting products and services.
  • Managing customer relations, information, and communication activities.
  • Fulfilling legal obligations and audit processes.
  • Ensuring information security and system continuity.

4. Collection Methods and Legal Grounds

Personal data may be collected through website forms, email, phone, digital application channels, and contractual processes.

Processing activities may rely on explicit consent, legal obligations, contractual necessity, establishment or protection of a right, and legitimate interest where applicable.

5. Transfer of Personal Data

Personal data may be transferred to authorized public institutions, legally authorized private persons, service providers, and technical infrastructure partners in accordance with applicable legislation.

6. Retention Period and Disposal

Personal data is retained for the period required by applicable legislation or by the purpose of processing. At the end of the retention period, it is deleted, destroyed, or anonymized in accordance with the law.

7. Rights of the Data Subject

  • To learn whether personal data is processed.
  • To request information if personal data has been processed.
  • To learn the purpose of processing and whether data is used accordingly.
  • To know third parties to whom data is transferred domestically or abroad.
  • To request correction of incomplete or inaccurate data.
  • To request deletion or destruction under legal conditions.
  • To request notification of correction/deletion to third parties.
  • To object to results arising against the person through automated analysis.
  • To request compensation in case of damage due to unlawful processing.

8. Application Method

You may submit your requests within the scope of the law to info@mfbilisim.com together with information and documents verifying your identity. Applications are concluded as soon as possible and within 30 days at the latest depending on their nature.

Last Updated: March 17, 2026