Privacy Policy

1. Who is the Data Controller?

Under the Personal Data Protection Law No. 6698 (‘KVKK’), your personal data is processed by Visavis Consulting Limited Company (‘Company’) as the data controller. This document has been prepared to inform you about how your personal data is collected, processed, transferred and protected.

2. What Personal Data Do We Process?

Our company may process the following categories of personal data:

  • Identity Information: Name, surname, Turkish ID number, date of birth, gender, etc.
  • Contact Information: Phone number, address, email address, etc.
  • Customer Transaction Information: Records related to the service received, requests, questions, and complaints.
  • Financial Information: Invoice, payment and bank details.
  • Transaction Security Information: IP address, log records, password information.

3. For what purposes do we process your personal data?

Your personal data is processed in accordance with the personal data processing conditions specified in Articles 5 and 6 of the KVKK for the following purposes:

  • The provision and execution of our services,
  • Customer relationship management
  • Conducting communication activities,
  • Monitoring and auditing of internal business processes,
  • Management of requests and complaints,
  • Compliance with obligations arising from legislation,
  • Improvement of our services and operations,
  • Implementation of technological infrastructure and security processes,
  • Providing information to authorised public institutions and organisations,
  • If explicit consent is given, the performance of promotional, informational and marketing activities.

4. Method of Collection of Personal Data and Legal Grounds

Your personal data is collected verbally, in writing or electronically, via our website, mobile application, email, telephone, social media, contracts, forms and similar methods when you use the services provided by our Company or when you contact us.

These data;

  • The conclusion and performance of a contract (KVKK Art. 5/2-c),
  • To fulfil our company’s legal obligation (KVKK Article 5/2-ç),
  • The establishment, exercise or protection of a right (KVKK Art. 5/2-e),
  • The legitimate interest of the Company, provided that it does not harm the fundamental rights and freedoms of the relevant person (KVKK Article 5/2-f),
  • Explicit consent (KVKK Art. 5/1)

is being processed based on legal reasons.

5. Transfer of Personal Data

Your personal data is processed in accordance with Articles 8 and 9 of the KVKK;

  • Legally authorised public institutions and organisations,
  • Audit and financial advisory firms,
  • Technology companies that provide services to our company (cloud systems, software, email services, etc.),
  • E-mail and archiving service providers that transfer data to servers located outside the country.
  • To our group companies or representatives, if necessary,

can be transferred with the necessary technical and administrative security measures in place.

Your data will only be transferred abroad with your explicit consent or if sufficient protection is provided in accordance with Article 9 of the KVKK.

6. How long will your personal data be stored?

Your personal data will be stored for the periods specified in the relevant legislation and for as long as necessary for the purpose of processing. Data whose storage period has expired will be deleted, destroyed or anonymised as part of periodic destruction processes. Data is stored in accordance with the following principles:

  • Customer relationship data: 10 years after the end of the service relationship.
  • Financial information: 5 years in accordance with the Tax Procedure Law,
  • Contractual data: 10 years in accordance with the Law on Obligations.
  • Marketing data: During the period of explicit consent, it will be deleted immediately upon withdrawal of consent.

7. What are your rights as a data subject?

In accordance with Article 11 of the KVKK, you have the following rights:

  1. Right to know whether your personal data is being processed or not,
  2. Request information about your personal data if it has been processed,
  3. Learning the purpose of processing and whether data is being used appropriately for that purpose.
  4. Knowing the third parties to whom they have been transferred within or outside the country,
  5. Request correction of data that is incomplete or incorrect,
  6. Requesting the deletion or destruction of data,
  7. Requesting notification of third parties to whom the data has been transferred regarding correction, deletion or destruction operations.
  8. Objecting to a decision made solely on the basis of automated processing of your data that has adverse consequences for you.
  9. Request compensation for any damages incurred as a result of unlawful data processing.

8. How can you exercise your rights?

Your requests regarding your rights:

  • Please send a signed letter with your identity documents to the following address: ‘İstiklal Caddesi, Gönül Sk No:1, Ay Han, Kat:5, Daire:35, Beyoğlu / İstanbul’ by hand or by post.
  • You can send an email to bilgi@visavis.com.tr.

Your requests will be answered free of charge within 30 days of the date of application. However, if the process incurs additional costs, a fee may be charged in accordance with the rates determined by the Personal Data Protection Board.