headerImage

Data Protection

HYSSA FİNANSAL TEKNOLOJİ A.Ş CUSTOMER CLARIFICATION TEXT UNDER THE PERSONAL DATA PROTECTION LAW NO. 6698

HYSSA FİNANSAL TEKNOLOJİ A.Ş. (hereinafter referred to as the “Company”) takes all kinds of technical and administrative measures in accordance with the Law on Protection of Personal Data No. 6698 ("Law") regarding the processing of your personal data.

Your personal data, by our company in the capacity of data controller, is being processed:

As the data subject, you can find detailed information about your processed personal data, the purposes of processing your personal data, transferring it to third parties, the legal reasons for collecting personal data and your rights in the Law, from the clarification text below.

A) Data Controller

As a company, we inform you that we process your personal data as a data controller within the scope of the Personal Data Protection Law No. 6698 and other relevant legislation.

TITLE : HYSSA FİNANSAL TEKNOLOJİ A.Ş.

ADDRESS : Merkez Mah. Hasat Sk. No:52/1 Şişli/İSTANBUL

COMMUNICATION : info@hyssa.com

B) Personal Data Processed, Its Categories and Our Reasons for Processing Data Based on Data Category

In accordance with the Law and other relevant legislation, the personal data categories and explanations to be processed within the scope of the purposes and legal reasons specified in this Customer Disclosure Text are as follows:

Identity Information: It is the data group that contains data regarding the identities of individuals.

It is stored for 10 years after the end of the relationship.

Customer Transaction: This data category refers to data types such as invoice, order information, request information

It is stored for 10 years after the end of the relationship.

Transaction Security: Your personal data such as username, password, IP record, Log Record.

It is stored for 10 years after the end of the relationship.

C) Method and Legal Reason for Personal Data Collection

The legal grounds on which our company is based during data processing are as follows:

In order to fulfill the purposes in paragraph (b) of this text, your personal data will be obtained verbally, in writing or electronically, with the following automatic or non-automatic methods, based on the legal reasons set forth in Article 5 (2) of the Law:

Your personal data is processed and preserved in our digital and physical environments by taking the necessary data protection measures and based on the legal reasons written above. In addition, if you would like to receive information about the purposes of data processing or its legal basis, please fill in the Data Subject Application Form and send it to us.

We would also like to point out that your Finance Data (bank account information for payment, etc.) is processed by us. Hyssa, a secure payment instrument software, securely processes your financial data and transmits your information to us in a secured form.

D) To Whom and For What Purpose the Processed Personal Data Can Be Transferred

Your personal data will be transferred for the following purposes and in accordance with Articles 8 (2) (a) of the Law, without seeking the explicit consent of the customer, as necessary and in accordance with the purpose of transfer, without any unnecessary information being shared:

E) Your Rights under Article 11 of the Law

You have rights as the data subject laid down in Article 11 of the Law. Each person has the right to request to the data controller about him/her;

Use of Your Rights Under Article 11 of the Law

Within the scope of Article 11 of the KVKK, your rights as the data subject (the person whose personal data are processed) have been listed above. You can submit your requests regarding these rights, preferably by filling in all the information specified in the Data Subject Application Form on our website. As per the 1st paragraph of Article 13 and the Communiqué on the Procedures and Principles of Application to the Data Controller and Article 11 of the Law;

Retention Period of Personal Data

In line with our company's data retention policy, your data is stored in accordance with the mandatory retention periods determined within the scope of the Laws and other relevant legislation. In case the said period expires or the purpose of processing personal data is no longer valid, personal data is deleted, destroyed, destroyed or anonymized.

Changes and Updates

This clarification text has been prepared within the scope of Law No. 6698 and other relevant legislation. Necessary changes can be made in the aforementioned disclosure text in line with the relevant legal legislation and/or changes in the Company's personal data processing purposes and policies. The company reserves the right to make changes.

In addition, you can reach our documents related to the Law and related legislation at hyssa.com and to contact us, you can send an e-mail to info@hyssa.com.