Search
Privacy and Cookie Policy
Privacy, Data Security, and International Compliance Policy
I. Identity and Declaration of the Data Controller
This Policy governs all data processing activities on sanlisoy.com (hereinafter referred to as the "Platform"), operated by Şanlısoy Technology and Internet Services (hereinafter referred to as the "Company"). As the "Data Controller" under the Law No. 6698 (KVKK) and international standards (GDPR - EU 2016/679), our Company commits to ensuring the security of your personal data and protecting your privacy rights within the framework of global legal principles.
II. Purposes and Legal Basis for Processing Personal Data
Data collected via the Platform is processed in accordance with Articles 5 and 6 of the KVKK and GDPR provisions for purposes such as establishing contracts, managing technical support processes, ensuring information security, and fulfilling legal obligations (including the retention of traffic data under Law No. 5651). The categories of data processed include:
- A. Identity and Contact Data: Name, surname, corporate email, and contact numbers provided via explicit consent or contractual necessity.
- B. Technical Transaction Security: Access logs, IP address distribution, system logs, and network traffic records maintained to prevent cyber-attacks.
- C. Marketing and User Experience: Navigation paths, clickstream data, and preference analysis on the Platform.
III. Cookies and Advanced Tracking Technologies
Our Platform utilizes first-party and third-party cookies to optimize user interaction and measure service quality. These technologies are small data files placed on your terminal device and perform the following functions:
| Functional Classification | Legal Basis and Technical Purpose |
|---|---|
| Strictly Necessary Cookies | Essential for system stability, load balancing, and firewall (WAF) validations. Cannot be disabled. |
| Analytical and Performance | Anonymized traffic analysis via Google Analytics and proprietary metric tools. Operates with user consent. |
| Targeting Pixels | Used for profiling in remarketing processes and advertising optimization. |
IV. Data Transfer and International Sharing Protocols
Personal data may be transferred to business partners, outsourced service providers (Cloud, CDN, Security Services), and legal authorities for the continuity of internet services. International transfers are based on "Adequacy" standards and "Data Processing Agreements" (DPA) as per GDPR. Şanlısoy Technology never transfers, sells, or rents your data to third parties for commercial purposes.
V. Technical Security and Retention Periods
Our Company deploys industrial-grade security measures (256-bit SSL encryption, periodic penetration tests, physical data center security, and access authorization matrices). Data is retained for the period stipulated by legislation or required for the processing purpose, and is subsequently anonymized or deleted using secure technical destruction procedures.
VI. Data Subject Rights (Right of Application)
Under KVKK and GDPR, data subjects have the right to learn whether their data is processed, request correction, deletion (right to be forgotten), or demand compensation for damages arising from unlawful processing.
Application Procedure: Requests can be sent to info@sanlisoy.com via secure electronic signature or by mail to the Company headquarters with official identification. Requests will be finalized within 30 days.
Effective Date: March 08, 2026
Şanlısoy Technology and Internet Services