Back to Home

GDPR Notice

Last updated: December 22, 2024

Your personal data is processed by Photivu Yazılım ve Teknoloji A.Ş. ("Company"), acting as the data controller, in accordance with the scope and purposes set forth below, and in compliance with Law No. 6698 on the Protection of Personal Data (KVKK).

1. Purposes of Personal Data Processing for Service Provision

The personal data categories listed below are processed by the Company in compliance with Law No. 6698 on the Protection of Personal Data and, where required, the European Union General Data Protection Regulation (GDPR):

  • Identity and Contact Data: Data that identifies you and enables us to contact you, such as name, surname, phone number, date of birth, gender, address information, employer information, email address, etc.
  • Location Data: GPS-based location information obtained from your device during your access to the Services.
  • Transaction Security Data: Session information used for account access, username/password information, and digital trace records related to system security.
  • Biometric and Facial Recognition Data: Facial features extracted from photographs, face shape and expression, hair and beard status, age estimation.
  • Data Shared by Users: Event creation information (event name, location, date), photographs uploaded to the platform.

2. Personal Data Collection Process and Legal Grounds for Processing

Your personal data is obtained and processed by the Company through the Company's websites and digital platforms, subject to your consent to share, wholly or partially by automated means or by non-automated means provided that it is part of a data recording system.

Your personal data is primarily processed based on your explicit consent under Article 5/1 of the KVKK. In addition, where the necessary conditions exist, your personal data may also be processed without your explicit consent under Articles 5/2-c, 5/2-ç, 5/2-e, and 5/2-f of the KVKK.

3. Purpose and Scope of Transfer of Personal Data to Third Parties

Your personal data may be transferred to business partners, intermediary service providers, service suppliers, and consultants in business relationships with us, in accordance with the purposes stated above and pursuant to Articles 8 and 9 of Law No. 6698, within the scope of requirements such as ensuring service provision and security, sending commercial electronic messages, and conducting data processing and storage activities.

4. Data Subject Rights (KVKK Article 11)

  • You have the right to request information on whether your personal data has been processed.
  • If your personal data has been processed, you may request a detailed explanation about these processing activities.
  • You have the right to learn for what purposes your personal data is being processed.
  • If you believe your personal data has been processed incorrectly or incompletely, you have the right to request its correction.
  • You have the right to learn which third parties your personal data has been shared with, domestically or internationally.
  • Within the framework of legislation, you may request the deletion or destruction of your personal data.
  • You have the right to object to the emergence of a result against you through the analysis of your personal data exclusively through automated systems.
  • If you suffer damage due to the unlawful processing of your personal data, you may request compensation for this damage.

Data subjects may submit their requests under Article 11 of the KVKK to the Company. The Company will conclude such requests as soon as possible depending on the nature of the request and in any case within 30 (thirty) days at the latest.