Personal Data and General Confidentiality Agreement

INFORMATION NOTICE ON THE PROCESSING OF PERSONAL DATA

Pursuant to the Law on the Protection of Personal Data No. 6698 (“Law No. 6698”), our company İyibirNet Internet Technologies, registered with the Istanbul Trade Registry Office under registration number 74678‑5 and located at İçerenköy Mah. Bahçelerarası Sk. No:43/22 Ataşehir/İstanbul, acts as the Data Controller. At İyibirNet, the confidentiality and security of your personal data are among our highest priorities. In fulfillment of our disclosure obligation under Article 10 of Law No. 6698, we hereby inform you as follows:

1. Identity of the Data Controller & Purpose of this Notice

This notice is intended to explain who the Data Controller is, how personal data are collected, for what purposes and on what legal grounds they are processed, to whom and for what purposes they may be transferred, and what rights you have as data subjects. It applies to natural persons who (i) seek information about İyibirNet’s products or services, (ii) submit requests, suggestions or complaints via our website or call center, (iii) act as customers or prospects, suppliers, job applicants, former employees, subcontractors and their personnel, business partners or corporate representatives.

2. Legal Basis for Processing Personal Data

Pursuant to Article 5 of Law No. 6698, personal data may be processed where:

• The data subject has given explicit consent;

• Processing is necessary for the performance of a contract to which the data subject is party;

• Processing is necessary for compliance with a legal obligation;

• Processing is necessary to protect life or physical integrity of a person who is unable to give consent;

• Processing is necessary for the establishment, exercise or protection of a legal claim;

• Processing is necessary for the legitimate interests of the Data Controller, provided this does not prejudice the fundamental rights and freedoms of the data subject.

İyibirNet takes all technical and administrative measures required to prevent unlawful access to, and preservation of, personal data collected under these legal grounds.

3. Purposes of Processing

Depending on context, channel, and type of relationship, İyibirNet may collect and process your personal data—including sensitive data, where explicitly permitted—by lawful means (written, verbal or electronic) for the following purposes:

• Delivering products and services, and fulfilling related contractual obligations

• Verifying identity of persons conducting transactions

• Recording contact and address details

• Conducting commercial relationships

• Fulfilling obligations under distance‑selling and consumer‑protection legislation

• Improving service quality

• Communicating with data subjects

• Preparing and maintaining records and documents in electronic or paper form

• Running marketing campaigns, profiling, surveys, tele‑sales, data mining and statistical analyses (with your explicit consent)

• Handling customer complaints and suggestions

• Sales, marketing and informational activities

• Customer acquisition, risk analysis and service development

• Internal audit, reporting and market research

• Managing human‑resources processes and evaluating job applications

• Sending newsletters, invitations and announcements

• Ensuring physical security of İyibirNet premises

• Complying with KVKK and other legal obligations

4. Recipients of Personal Data

Your personal data may be shared, subject to your explicit consent or as required by law, with:

• Public authorities and judicial bodies in compliance with legal obligations

• Business partners, service providers and suppliers for the delivery of İyibirNet services

• Marketing agencies and third parties engaged in promotional activities (with your consent)

All transfers are conducted under contractual and technical safeguards to protect your data.

5. Methods and Sources of Data Collection

Personal data may be collected through various channels, including but not limited to:

• Online or paper membership and contact forms

• Social‑login integrations on our website

• Cookies and mobile applications

• Email, fax and postal correspondence you submit

• Third‑party service providers acting on our behalf

• Social media platforms and search engines

• Trade fairs, events, surveys, competitions and other promotional activities

• Résumés and recruitment platforms for job applicants

• Customer service interactions via telephone or email

6. Rights of Data Subjects

Under Article 11 of Law No. 6698, you have the right to:

1. Learn whether your personal data are processed;

2. Request information if your data have been processed;

3. Learn the purpose of processing and whether they are used for their intended purpose;

4. Know domestic or international third parties to whom your data have been transferred;

5. Request correction of incomplete or inaccurate data;

6. Request deletion or destruction of your data;

7. Request notification of recipients to whom your data have been transferred;

8. Object to decisions based solely on automated processing, including profiling;

9. Claim compensation for damages arising from unlawful processing.

Requests will be finalized free of charge within 30 days.

To Exercise Your Rights:

• Send a signed petition by registered mail or deliver in person to:
  İyibirNet Internet Technologies
  İçerenköy Mah. Bahçelerarası Sk. No:43/22
  Ataşehir/İstanbul

• Email us from your registered address to info@iyibir.net

• Submit a secure‑electronic‑signature‑signed request to info@iyibir.net

7. Contact

For any questions or concerns regarding your personal data, you may always contact us at:

info@iyibir.net