Last Update Date:[01.01.2026]
1. Data Controller Information
Company Name:** WBE Digital Marketing Agency
Address:** Suadiye Mahallesi, Bağdat Caddesi, Kazım Özalp Sokak, No:10, D:8 Kadıköy/İstanbul
Phone:** 0542 722 72 34
E-mail:** [email protected]
2. Purpose and Scope
This policy regulates the principles regarding the processing of personal data collected by WBE Digital Marketing Agency from customers, potential customers, suppliers, employees, and website visitors. The policy has been prepared in accordance with the Personal Data Protection Law No. 6698 (GDPR) and relevant legislation.
3. Personal Data Collected and Processing Purposes
Our company processes the following personal data for legitimate purposes and to a limited extent:
3.1. Data Categories Collected
– Identity Information: Name, surname, Turkish ID number (only when legally required)
– Contact Information: Email address, phone number, address details
– Customer Transaction Information: Invoice information, order history, payment details
– Marketing Information: Preferences, subscription status, campaign participation information
– Website Usage Data: IP address, cookies, browser information, page view history
3.2. Data Processing Purposes
– Provision of digital marketing services and fulfillment of contracts
– Management of customer relationships and communication processes
– Fulfillment of legal and regulatory requirements
– Planning and execution of marketing activities (with explicit consent)
– Analysis and improvement of website performance
4. Data Processing Methods and Legal Bases
Personal data is processed through automated or non-automated methods, as part of a data recording system. The legal bases for our processing activities are:
– GDPR Article 5/2-c: Establishment or performance of a service contract
– GDPR Article 5/2-ç: Fulfillment of legal obligations by the data controller
– GDPR Article 5/2-f: Being necessary for our legitimate interests
– GDPR Article 5/1: Explicit consent (only in cases where explicit consent is given)
5. Data Sharing and Transfer
Your personal data is shared only in the following circumstances and for limited purposes:
5.1. Domestic Transfer
– Our service providers (server hosting, software development)
– Public institutions and organizations when legally required
– Financial institutions (for payment processes)
5.2. International Transfer
Transfer of personal data abroad is carried out when the conditions specified in Article 9 of GDPR are met and necessary security measures are taken.
6. Data Security
Our company has implemented the following technical and administrative measures to protect your personal data:
– Secure network infrastructure and firewalls
– Limited access and authorization systems
– Regular security audits and tests
– Employee training and confidentiality commitments
– Data masking, encryption, and anonymization techniques
7. Data Retention Periods
Your personal data is retained for the period necessary for the processing purposes. These periods include:
– Duration of service contracts and subsequent legal statute of limitation periods
– Legal retention requirements (10 years for accounting records)
– Duration of our legitimate interests
– Until you withdraw your consent, if explicit consent has been given
8. Your Rights (GDPR Article 11)
In accordance with Article 11 of GDPR, you have the following rights regarding your personal data:
- Learn whether your personal data is being processed
- Request information if your data has been processed
- Learn the purpose of processing and whether it is used appropriately
- Know the third parties to whom your data is transferred domestically or internationally
- Request correction if data is incomplete or inaccurate
- Request deletion or destruction of data within the framework of conditions set forth in Article 7 of GDPR
- Request notification of correction or deletion operations to third parties to whom data has been transferred
- Object to any result against you arising from analysis of processed data exclusively through automated systems
- Request compensation for damages if you suffer harm due to unlawful processing of personal data
9. Methods to Exercise Your Rights
To exercise your rights, you can apply with documents verifying your identity through:
– Written Application: Via post to our company address
– E-mail: By sending an email with “GDPR Application” in the subject line to [email protected]
– Other Methods: Through other methods determined by the Ministry
Your applications will be concluded free of charge within 30 (thirty) days at the latest. However, if the process requires additional costs, a fee may be charged according to the tariff determined by the Personal Data Protection Authority.
10. Cookie Policy
Our website uses cookies to improve user experience. Cookie types include:
– **Essential Cookies:** Necessary for basic site functions
– **Performance Cookies:** For site usage statistics
– **Functional Cookies:** To remember user preferences
– **Targeting Cookies:** For marketing purposes (only with explicit consent)
You can manage your cookie preferences through your browser settings or use the cookie management panel on our website.
11. Changes and Updates
This policy may be updated due to legal changes or changes in company practices. The current policy will always be published on our website, and we will inform you of significant changes.
12. Contact
For all questions, opinions, and requests regarding the protection of your personal data:
WBE Digital Marketing Agency
GDPR Contact: [email protected]
Address: Suadiye Mahallesi, Bağdat Caddesi, Kazım Özalp Sokak, No:10, D:8 Kadıköy/İstanbul
Phone: 0542 722 72 34
E-mail: [email protected]
*This policy has been prepared in accordance with GDPR and relevant legislation, and our company places great importance on the protection of personal data.*
