Damage Indemnity Privacy Notice

Data Controller: Aras Kargo Yurt İçi Yurt Dışı Taşımacılık Anonim Şirketi Rüzgarlıbahçe Mahallesi Yavuz Sultan Selim Caddesi Aras Plaza No:2, 34820 Kavacık/Beykoz/İstanbul

This privacy notice herein, regarding the processing, storage and transmission of your personal data during the implementation of the damage indemnity procedure, has been prepared by Aras Kargo Yurt İçi Yurt Dışı Taşımacılık A.Ş. (“Aras Kargo”) within the scope of Act No. 6698 on the Protection of Personal Data (“KVKK”) and the relevant legislation.

Which of Your Personal Data are Processed and What are the Purposes, Legal Grounds, and Collection Methods of Your Personal Data?

When executing the damage indemnity process, your identity (first name, last name, T.R. ID number), contact (address data, mobile phone number, e-mail address), finances (bank name, account number, IBAN number), customer transactions (delivery note, customer invoice, product information, consignment number, compensation number, complaint/appeal information) are processed via electronic online forms.

The processing of your personal data is limited to the implementation of customer relationship management processes, the implementation of financial and accounting processes, the implementation of customer satisfaction activities, the implementation of activities in accordance with legislation, the implementation / audit of business activities and the follow-up of enquiries / complaints.

Your personal data processed will be processed based on the legal grounds of subparagraph (c) of paragraph 2 of Article 5 of the KVKK 'Processing of personal data of the parties of a contract is necessary, provided that it is directly related to the establishment or performance of the contract.' and subparagraph (e) 'Data processing is necessary for the establishment, exercise or protection of any right'.

To Whom and For What Purposes Can Your Personal Data Be Transferred?

By no means will your personal data be transferred to any recipient group.

What are your rights as the data subject?

Regarding your personal data, pursuant to Article 11 of the KVKK, you are entitled:

To learn whether your personal data is being processed or not,
To request information if your personal data has been processed,
To learn the purpose of processing personal data and whether they are used in accordance with their intended purpose,
To request information on the third parties to whom your personal data are transferred domestically or abroad,
To request correction of your personal data in case of incomplete or incorrect processing,
To request the deletion or destruction of your personal data within the framework of the conditions stipulated in the KVKK legislation,
To request that this situation be notified to third parties to whom personal data is transferred, in case you request the correction of incomplete or incorrect data and the deletion or destruction of your personal data,
To object to the result in case an unfavourable result arises by analysing the processed data exclusively through automated systems and
To demand compensation in case of damage due to unlawful processing of personal data.

How Can You Exercise Your Rights?

You can submit your requests and enquiries regarding your personal information to Aras Kargo by using the Data Subject Request Form or by submitting a written request:

By sending it to Rüzgarlıbahçe Mahallesi Yavuz Sultan Selim Caddesi Aras Plaza No:2, 34820 Kavacık/Beykoz/İstanbul with a wet signature and documents certifying your identity,
By applying to Aras Kargo in person with a valid identity document,
By sending it to Aras Kargo's araskargo@hs02.kep.tr registered e-mail address by using a registered electronic mail (KEP) address and secure electronic signature or mobile signature,
By sending an e-mail to kisiselveri@araskargo.com.tr by using your e-mail address previously notified to Aras Kargo and registered in Aras Kargo's system (In this application, Aras Kargo reserves the right to request additional identity authentication depending on the subject of the request).

According to the Communiqué on the Procedures and Principles for Requests to the Controller, the data subject's request must include the data subject's first name, last name, signature if the request is made out in writing, Turkish identity card number (passport number if the applicant is a foreigner), home or work address for notification, e-mail address for notification, telephone number and, if applicable, fax number, as well as information on the subject of the request.

The data subject shall set out the subject matter of the request in a clear and comprehensible manner, including explanations of the right she or he will invoke to exercise the above rights and the right she or he is requesting to exercise. The application shall be accompanied by information and documents relating to the application.

Although the subject matter of the application must be related to the person of the applicant, if the applicant is acting on behalf of another person, she or he must be specially authorised to do so and this authorisation must be documented (special power of attorney). Furthermore, the application must contain information on the identity and address, and documents confirming the identity must be attached to the application.

Applications submitted by unauthorised third parties on behalf of another person will not be assessed.

How long does it take for your requests regarding the processing of your personal data to be answered?

Your requests regarding your personal data will be examined and answered within 30 days of receipt at the latest. If your request is assessed negatively, reasons for refusal will be sent by e-mail or by post to the address you provided in the request, in particular by one of the methods selected in the request form for the person concerned.