PRIVACY AND PROTECTION OF PERSONAL DATA POLICY

PRIVACY AND PROTECTION OF PERSONAL DATA POLICY

DEFINITIONS

The abbreviations used in this Policy are as follows.

1. COMPANY:
ATTAŞ Alarko Turistik Tesisler A.Ş., the official owner of the website, with legal headquarters at the address Muallim Naci Caddesi, No: 69, Ortaköy, Istanbul and administrative headquarters at Nispetiye Cad. Ahular Sokak No:6 Etiler – Istanbul

2.SITE:
The internet page with the domain name www.hillside.com.tr

3. VISITOR:
Person or persons who read the site without sharing his/their personal contact details and visit the site for information purposes or share his/their personal data with the site owner company via the forms in the site and on his/their own consent. To be hereinafter referred to as “User” in the Policy.

4. CUSTOMER:
Any person or organization that benefits from the services specified in the site in exchange for a fee and share their personal and organizational data on their consent for this. To be hereinafter referred to as “User” in the Policy.

ARTICLES

1. Confidentiality:

This SITE contains links that transfer the User to other websites whose content is not controlled by the COMPANY. If the SITE connects the User to other Internet sites, privacy-security policies and terms of use of the aforementioned sites are applied to all usage and operation; the COMPANY is not responsible for any disputes, pecuniary and non-pecuniary damages and losses that arise from information usage (especially for compiling, using or revealing personal data), and also arise from ethical principles, privacy-security principles, service quality and other applications of these websites, when the user is connected to other websites while viewing any advertisements, banners, contents, or for any other reason. When you click on a link that connects you to an external website, you confirm that you are out of the COMPANY’s area of responsibility, and after that point the COMPANY bears no responsibility in any sense, since these sites are prepared and controlled by third parties. The COMPANY is not responsible for any direct or indirect damage, harm and costs that may arise from any error, interruption, delay in data transfer, computer virus, line or electrical fault during the use of the SITE. Similarly, when the User is connected to the SITE via a link provided by other websites, with or without the COMPANY’s permission, the COMPANY bears no responsibility because of the structure that does not allow for the control of these links.

The copyright of any data and material on the SITE, and the arrangement of these belongs to the COMPANY. All copyrights of content on our site concerning registered trademark, patent, intellectual and other property rights are reserved by the COMPANY. A person and/or organization cannot use a part of the SITE in any other website, or in a link of any other website, without obtaining the prior authorization of the COMPANY.

If you wish to get additional information about any topic, you can consult the COMPANY via the contact addresses listed on the SITE.

2. Impersonal and Compiled Information:

When the SITE is visited, general information such as the IP via which you enter the SITE, the pages you visit on our SITE and how much time you spend on each page, data form and application are recorded. The purpose of keeping this information is to develop the site of the COMPANY by monitoring it regularly and improve its services. This information is usually obtained using the IP addresses which are not connected with the personal identification details.

3. Personal Data:

When a USER sends a question via the SITE, fills out a contact form or makes an application for a certain service, personal data (such as name-surname, commercial and delivery address, phone number, e-mail address and/or social media/messaging accounts) can be collected from the USER and recorded by the COMPANY by way of compulsory fields in the form in order to be used by the COMPANY for purposes limited to the execution of services, requests for information, and applications. In addition, in case the User shares personal data (such as name-surname, commercial and delivery address, phone number, e-mail address and/or social media/messaging accounts) with the COMPANY by an open consent given on the SITE, the COMPANY can store the personal data by way of compulsory fields in the forms for any product-service promotion, advertising, communication, special offers, sales, marketing, and member registration, notification and execution purposes. Personal and/or sensitive data about you obtained by the COMPANY and our call center on behalf of the COMPANY, or through the SITE, our social media accounts, or any other written, oral or electronic channel not limited to these examples, can be recorded, stored, updated, periodically reviewed, rearranged, classified, captured or processed in other ways. The COMPANY can share this personal data obtained from the USER if needed for the purposes specified herewith in this Privacy and Protection of Personal Data Policy with domestic and international business partners, third party providers of services such as Web hosting, data analysis, payment transactions, order processing, provision of IT technologies and relevant infrastructure, customer services, e-mailing, credit card transactions, and auditing, as well as insurance companies; it can disclose this information to the said parties, and transfer it abroad. The third party to which personal data is transferred will not use the data for purposes other than those specified herewith in this statement and will only employ them for Attaş Alarko Turistik Tesisler A.Ş.’s data processing purposes.Your personal data will be processed within the scope of Articles 5 and 6 of the Law on the Protection of Personal Data covering open consent, explicit requirement in the legislation, establishment and execution of a service agreement, establishment, use or protection of a right, protection of our legitimate interest as the COMPANY and performing our legal obligations.

The COMPANY may use your personal data for the following purposes:

Vis-à-vis the use and disclosure of your personal data for the purposes explained in this Privacy and Protection of Personal Data Policy, you can use any one of the methods stated below to access and update your contact details and choice of communication and, as stipulated in the Law and the Communiqué No. 30356 on the Procedures and Principles of Application to the Data Controller, you can personally deliver your requests to access, update, delete or edit the personal data you have provided to the COMPANY or any request regarding your rights listed below in writing and signed to the application address below, send it through a notary public, send a registered e-mail to the account attas.alarko@hs01.kep.tr, or send an e-mail to kvkk@hillside.com.tr using your secure electronic signature, mobile signature or the e-mail account you have declared to the COMPANY before and that is registered in our system. We will respond to your request(s) at our earliest convenience and in line with the current legislation.

APPLICATION ADDRESS: Nisbetiye Caddesi, Ahular Sokak, No: 6, Etiler, Beşiktaş, Istanbul.

Unless a longer storage period is required or prohibited by law, we will store your personal data as long as needed for the purposes explained in this Privacy and Protection of Personal Data Policy. Your personal data will be stored for a maximum of twenty years.

In accordance with the Law, if the USER applies to the COMPANY, s/he is entitled to the right to (a) learn whether these personal data have been processed, (b) if they have been processed, to ask for information on the process, (c) learn about the purpose of data processing, and whether they have been used to serve the initial purpose, (d) find out about the third persons the personal data was transferred to in the country and abroad, (e) ask for the correction of personal data if they have been processed incompletely or inaccurately, (f) ask for the deletion or destruction of their personal data, (g) ask for the notification of third persons about the actions taken in response to requests under (e) and (f) above, (h) object to a conclusion against themselves reached through an analysis of the processed data carried out exclusively by automated systems, and (i) claim indemnification for losses should they incur a loss due to the unlawful processing of personal data.

4. Cookies:

In time, the COMPANY or its partners may send a “cookie” to your computer. Cookies are small data sent by the web server to your Internet browser and then stored in the memory of your computer. Cookies cannot retrieve data from the memory of your computer or cookie files created by other webpages. Cookies do not harm your system. Cookies are used to identify which parts of the SITE are visited or whether the pages are rearranged by you. This facilitates repeat visits to the website. By changing the settings of your Internet browser, you may reject cookies or have your browser alert you when a cookie is sent to your computer. By restoring the settings of your browser to its original state, you accept all cookies. If you reject cookies, the number of applications you see in the SITE and other websites may decrease and some features may not function as desired. The COMPANY shall not be responsible for the lower number of applications and malfunctions.

5. Data Security:

To prevent unauthorized access to the SITE, to maintain data integrity and to enable the accurate use of the information, physical, electronic and administrative procedures are applied to protect and secure the information collected via the SITE. Despite all conditions, the COMPANY cannot guarantee that personal data cannot be obtained by illegal means from the systems of the COMPANY and you accept all the risks and responsibility that may arise including the risk of lack of security in our systems by using the online services of the COMPANY.

6. Linked Sites

This SITE contains links that convey the Users to other websites whose content is not controlled by the COMPANY. These linked websites may have different conditions than the confidentiality terms specified in this Policy. The COMPANY shall not be responsible for the collection, use or disclosure of personal data that may be collected by such websites. The COMPANY does not assume responsibility for any damages that may arise from such a collection, use or disclosure. That links to other sites are provided in the site of the COMPANY does not mean these sites are safe, and the relevant responsibility shall be entirely born by the user. The Users accept that when you click on a link that is directed to external sites, as these sites are prepared and controlled by third parties, they leave the responsibility area of the COMPANY and from this point on, the COMPANY does not have any responsibilities whatsoever. The COMPANY shall not be responsible for any direct or indirect damages, harm and costs that may arise due to any error, cut, delay in data transfer, computer virus, line and power failure that may occur while using the SITE. Similarly, when the User is connected to the SITE via a link provided by other websites, with or without the COMPANY’s permission, the COMPANY bears no responsibility because of the structure that does not allow for the control of these links.

7. Information Given on the Site

The COMPANY reserves the right to change and/or limit the content, design or access terms of the SITE without notification. The COMPANY can limit or ban access to the SITE for any reason and solely based on its own decision.

The COMPANY makes every effort to keep the SITE‘s content current and correct, however this does not guarantee the accuracy of this information, and the COMPANY accepts no responsibility for its accuracy, completeness and currency. The use of the information is up to the USER and is not legally binding.

8. Amendments to the Policy:

This Policy is subject to amendment and can be changed without any announcement made by the COMPANY. Change(s) made to the terms of use will be valid as of their publication on the SITE. The USER is responsible for checking the updated version of the terms of use.