Privacy Policy (KVKK)

This notice explains how Galipoglu Panel Çit Tel Örgü İth. İhr. Paz. San. Tic. Ltd. Şti. (“Company”, “we”) processes personal data in accordance with the Turkish Personal Data Protection Law No. 6698 (“KVKK”).

1) Data Controller & Contact

Data Controller: Galipoglu Panel Çit Tel Örgü İth. İhr. Paz. San. Tic. Ltd. Şti.
Address: Sünlü Mahallesi, Ankara Bulvarı No:447, Çubuk / Ankara / Türkiye
Phone/WhatsApp: +90 536 063 36 41 — E-mail: [email protected] — Web: www.galipoglu.com

2) Categories of Data We Process

  • Identity & Contact: name, company, address, phone, e-mail, tax/VAT info (for B2B).
  • Order & Payment: cart content, invoice details, IBAN/transaction info (no card is stored on our servers).
  • Logistics: delivery address, consignee, carrier tracking data.
  • Support & Communication: messages, call/WhatsApp/email records, support tickets.
  • Website Data: cookies, IP, device/browser info, usage analytics (see Cookies Policy).

3) Purposes of Processing

  • Concluding and performing sales contracts; order, payment, delivery and after-sales support.
  • Customer services, returns/refunds, warranty processes and legal obligations (tax, invoicing).
  • Account management, fraud prevention, security and system logs.
  • Marketing communications with your consent (campaigns, newsletters) and measuring effectiveness.
  • Supplier and dealership processes, tender/project management.

4) Legal Bases (KVKK Art. 5–6)

  • Performance of a contract and establishment/execution of rights.
  • Legal obligation (tax, accounting, consumer law, distance sales).
  • Legitimate interests (security, improvement, fraud prevention) provided that your fundamental rights are not harmed.
  • Explicit consent where required (e.g., electronic marketing, certain cookies).
  • Sensitive data is not processed unless a lawful basis exists (e.g., health info for after-sales only where strictly necessary and lawful).

5) Methods of Collection

Personal data is obtained via our website, e-commerce panel, calculators, contact forms, e-mail/phone/WhatsApp, contracts, invoices, delivery notes and carrier integrations.

6) Transfers of Personal Data

We may transfer data to domestic service providers (IT hosting, payment, cargo, call center, accounting/ERP), professional advisors and legally authorized public bodies. Cross-border transfers (e.g., cloud hosting, email/CDN analytics) occur only where KVKK transfer conditions or your explicit consent exist, and with appropriate safeguards.

7) Retention Periods

We retain data only as long as necessary for the purposes above and legal periods (e.g., commercial & tax records generally up to 10 years). When the reason for processing ends and legal periods expire, data is deleted, destroyed or anonymized in accordance with our retention policy.

8) Your Rights (KVKK Art. 11)

You may apply to the Company to:

  • Learn whether your personal data is processed and obtain information.
  • Learn the purpose of processing and whether it is used in line with that purpose.
  • Know third parties to whom data is transferred domestically/abroad.
  • Request rectification if data is incomplete/incorrect; request deletion/destruction under KVKK Art. 7.
  • Request notification of corrections/deletions to third parties to whom data was transferred.
  • Object to results arising to your detriment from exclusively automated systems.
  • Request compensation for damages arising from unlawful processing.

9) How to Apply

Send your applications (with identity documents if needed) to [email protected] or by post to our address above. We respond within 30 days free of charge, except where a fee is allowed by the Board. If you are not satisfied, you may file a complaint with the Personal Data Protection Authority (KVKK) after following the application process.

10) Cookies & Digital Marketing

We use essential cookies for site operation and, with consent, analytics/advertising cookies to improve performance and personalize offers. Details and choices are explained in our Cookie Policy. You can manage preferences via the cookie banner/browser settings and unsubscribe from e-mails anytime.

11) Data Security

We implement administrative and technical measures (access controls, encryption where appropriate, logging, need-to-know principle, contracts with processors, staff awareness). In case of a data breach likely to harm you, we will notify you and the Authority as required by law.

12) Updates

This Policy may be updated to reflect legal or operational changes. The latest version is published on this page with the effective date.

Effective date: 2025-MM-DD
Controller: Galipoglu Panel Çit Tel Örgü İth. İhr. Paz. San. Tic. Ltd. Şti.

cultureSettings.RegionId: 0 cultureSettings.LanguageCode: EN